Trojan-Spy.Win32@mx

Résolu
Maxim -  
 m. -
Bonjour,
Un triangle jaune avec point d'exclamation clignote dans la barre d'outils et indique: System Alert: Trojan-Spy.Win32@mx; Type Spyware/Trojan et un autre: Critical System Warning: mon système est probablement infecté par Spyware.Ciberlog-X. Qui peut m'aider à m'en débarrasser
Configuration: Windows XP
Internet Explorer 7.0

38 réponses

  • 1
  • 2
  1. Utilisateur anonyme
     
    Bonjour

    Télécharge sur le bureau
    http://ftpclubic7.clubic.com/...
    = Clic-droit sur Hijackthis
    = Extraire ici ( ou extraire sans confirmation ou tout ou unzip)
    = clic droit sur Hijackthis ( en forme de dynamite) ==> renommer ==> écrire : test.exe ( à la place de hijackthis.exe) <== Important
    =Double-clic dessus
    = Clic Do a system scan and save the log
    =coller le rapport
    si problème voir l'aide
    [url=https://forums.cnetfrance.fr]Aide hijackthis[/url]
    0
  2. help.me
     
    Bonjour, j'ai le même probleme que Maxim, j'ai le même triangle jaune avec le point d'exclamation qui clignote et avast me signale la presence de plusieurs virus:
    Win32: Agent-MFL (trj)
    Win32: Tiny-IF (trj)
    Win32: Trojan gen (other)
    Il me propose aussi des publicités pour des antivirus qui me parraissent douteuses. Pourriez-vous m'aider s'il vous plait?
    0
  3. Utilisateur anonyme
     
    Bonjour
    il faut créer ton propre sujet
    merci
    0
  4. help.me
     
    bonsoir, oui je me suis rendu compte un peu tard que j'avais placé mon message au mauvais endroit, la j'ai un autre post: Win32 virus, rapport hijackthis. est ce que tu acceptes de m'aider? merci
    0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. maxim1180 Messages postés 15 Statut Membre
     
    Bonjour,
    Ci-après le rapport. Bizarrement, ce matin plus d'alerte système mais lorsque je me connexte sur internet, la page de démarrage est une page Internet Security qui a détecté la présence de W32.Myzor.FK@yf. J'ai scanné avec Norton Scan et Avast qui ne détectent plus de virus. J'ai fait la même chose avec Spybot-Search & Destroy qui a trouvé 4 cookies et un fichier dangereux. J'ai fait une résolution de problème. Cependant le dossier qui était renseigné hier par Norton Scan comme contenant le Trojan/Horse, à savoir Video Add-on est toujours présent dans le Program files. J'ai tenté de le supprimer mais l'accès m'est refusé. Merci de bien vouloir m'aider.

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 9:46:11, on 21/10/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16544)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\system32\drivers\CDAC11BA.EXE
    C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
    C:\WINDOWS\system32\slserv.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\ctfmon.exe
    C:\WINDOWS\system32\igfxtray.exe
    C:\WINDOWS\system32\hkcmd.exe
    C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
    C:\Apps\Powercinema\PCMService.exe
    C:\apps\ABoard\ABoard.exe
    C:\WINDOWS\system32\GSICON.EXE
    C:\WINDOWS\system32\dslagent.exe
    C:\apps\ABoard\AOSD.exe
    C:\WINDOWS\SOUNDMAN.EXE
    C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
    C:\Program Files\Philips ToUcam Camera\VProperty.exe
    C:\Program Files\QuickTime\qttask.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\Program Files\MSN Messenger\MsnMsgr.Exe
    C:\Program Files\Copernic Desktop Search\CopernicDesktopSearch.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    C:\Program Files\Dial-Messenger\Dial-Messenger.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
    C:\Program Files\Larousse\Encyclopédie Universelle Larousse\Bin\hyperappel.exe
    C:\Program Files\Philips ToUcam Camera\GameCam SE\Program\RFTray.exe
    C:\Program Files\Windows Desktop Search\WindowsSearch.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
    C:\Program Files\Windows Desktop Search\WindowsSearchIndexer.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/nl-be?checklang=1
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer fourni par Belgacom Skynet
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe
    O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: dsWebAllowBHO Class - {2F85D76C-0569-466F-A488-493E6BD0E955} - C:\Program Files\Windows Desktop Search\dsWebAllow.dll
    O2 - BHO: PBBEFRV2 - {4E7BD74F-2B8D-469E-A0E8-ED6AB197B82D} - C:\WINDOWS\system32\pbbefrv2.dll (file missing)
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
    O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O2 - BHO: (no name) - {CFE15135-C591-4000-A55E-A50E5F9F82BC} - C:\Program Files\Video Add-on\isfmdl.dll
    O3 - Toolbar: PBBEFRV2 - {4E7BD74F-2B8D-469E-A0E8-ED6AB197B82D} - C:\WINDOWS\system32\pbbefrv2.dll (file missing)
    O3 - Toolbar: Copernic Desktop Search - {C5F7A735-70F1-477F-8C36-6FF3C736017B} - C:\Program Files\Copernic Desktop Search\CopernicDesktopSearchIntegration740.dll
    O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
    O3 - Toolbar: IE Custom Tools - {23ED2206-856D-461A-BBCF-1C2466AC5AE3} - C:\Program Files\Video Add-on\ictmdl.dll (file missing)
    O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
    O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
    O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
    O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
    O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
    O4 - HKLM\..\Run: [PCMService] "c:\Apps\Powercinema\PCMService.exe"
    O4 - HKLM\..\Run: [ACTIVBOARD] c:\apps\ABoard\ABoard.exe
    O4 - HKLM\..\Run: [GSICONEXE] GSICON.EXE
    O4 - HKLM\..\Run: [DSLAGENTEXE] dslagent.exe USB
    O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [ToUcamVProperty] C:\Program Files\Philips ToUcam Camera\VProperty.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [NI.UGES_0002_N108M1607] "c:\documents and settings\jean claude\application data\setup_en[1].exe" -nag
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
    O4 - HKCU\..\Run: [Copernic Desktop Search] "C:\Program Files\Copernic Desktop Search\CopernicDesktopSearch.exe" /tray
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    O4 - HKLM\..\Policies\Explorer\Run: [some] C:\Program Files\Video Add-on\icthis.exe
    O4 - HKLM\..\Policies\Explorer\Run: [start] C:\Program Files\Video Add-on\isfmntr.exe
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - Global Startup: Accélérateur de démarrage AutoCAD.lnk = C:\Program Files\Fichiers communs\Autodesk Shared\acstart16.exe
    O4 - Global Startup: Dial-Messenger.lnk = C:\Program Files\Dial-Messenger\Dial-Messenger.exe
    O4 - Global Startup: hp psc 1000 series.lnk = ?
    O4 - Global Startup: hpoddt01.exe.lnk = ?
    O4 - Global Startup: Hyperappel de l'Encyclopédie Universelle Larousse.lnk = ?
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\microsoft office\Office\OSA9.EXE
    O4 - Global Startup: Reality Fusion GameCam SE.lnk = ?
    O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
    O8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-be\msntb.dll/search.htm
    O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
    O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
    O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-be\msntabres.dll.mui/229?938cddc684784a75b4a877af3eab2d3b
    O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-be\msntabres.dll.mui/230?938cddc684784a75b4a877af3eab2d3b
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
    O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} - https://support.norton.com/sp/en/us/home/current/info
    O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase8300.cab
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
    O16 - DPF: {CE28D5D2-60CF-4C7D-9FE8-0F47A3308078} - https://support.norton.com/sp/en/us/home/current/info
    O22 - SharedTaskScheduler: forayer - {e0e6e3da-f3af-4fb4-9411-2cf92fdeefc2} - C:\WINDOWS\system32\gaaplp.dll (file missing)
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
    O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
    O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
    O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
    O24 - Desktop Component 0: (no name) - http://65.54.233.250/cgi-bin/getmsg/Numériser0001.jpg?&msg=MSG1153179815.1&start=3679690&len=1720833&mimepart=3&curmbox=F000000001&b=19d92ff93b842123d1fe00a142b26e3c&disk=65.54.233.71_d1124&login=jcd%2emax&domain=hotmail%2ecom&hm___sig=1fb128c501c6ab3b140a7283b827a3e529b347766a452727
    0
  7. Utilisateur anonyme
     
    re

    commence par faire ceci
    Télécharger sur le bureau : [url=http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe]navilog.exe[/url]

    = Double-Clic navilog1.zip
    = Extraire tout ( ou extraire sans confirmation ou unzip)
    = Double-Clic navilog1 qui est sur le bureau
    = Appuyer sur une touche jusqu' arriver aux options
    = Choisir option 1 ( = taper 1 )
    ne pas utiliser les autres sans avis , il peut y avoir des processus légitimes

    le rapport se trouve dans c: fixnavi.txt

    tu postes ce rapport.

    ---------------------
    2°) Télecharger [url=http://www.malekal.com/download/clean.zip]clean.zip[/url] sur le bureau
    Dézipper sur le bureau.
    = ouvrir le dossier clean
    = cliquer sur le symbole roue dentée avec le nom clean
    = choisir l'option 1 et laisser clean travailler jusqu'à l'apparition du texte "appuyer sur une touche pour continuer"
    = ensuite colle le rapport
    0
  8. maxim1180 Messages postés 15 Statut Membre
     
    Bonjour ep, voici le rapport

    Search Navipromo version 3.3.0 commencé le dim. 21/10/2007 à 10:55:59,57

    !!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
    !!! Postez ce rapport sur le forum pour le faire analyser !!!
    !!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!

    Outil exécuté depuis C:\Program Files\navilog1
    Mise à jour le 17.10.2007 à 20h00 par IL-MAFIOSO

    Microsoft Windows XP [version 5.1.2600]
    Internet Explorer : 7.0.5730.11

    *** Recherche Programmes installés ***

    *** Recherche dossiers dans C:\WINDOWS ***

    *** Recherche dossiers dans C:\Program Files ***

    *** Recherche dossiers dans C:\Documents and Settings\All Users\Application Data ***

    *** Recherche dossiers dans C:\Documents and Settings\Jean Claude\Application Data ***

    *** Recherche dossiers dans C:\DOCUME~1\ALLUSE~1\MENUDÉ~1\PROGRA~1 ***

    *** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
    pour + d'infos : http://www.gmer.net

    Aucun fichier trouvé dans :

    - C:\WINDOWS\system32
    - C:\DOCUME~1\JEANCL~1\LOCALS~1\APPLIC~1

    *** Recherche avec GenericNaviSearch ***
    !!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
    !!! A vérifier impérativement avant toute suppression manuelle !!!

    * Recherche dans C:\WINDOWS\system32 *

    * Recherche dans C:\DOCUME~1\JEANCL~1\LOCALS~1\APPLIC~1 *

    *** Recherche fichiers ***

    *** Recherche clés spécifiques dans le Registre ***

    *** Module de Recherche complémentaire ***
    (Recherche fichiers spécifiques)

    1)Recherche fichiers connus:

    2)Recherche Heuristique :

    3)Recherche Certificats :

    Certificat Egroup absent !

    *** Analyse terminée le dim. 21/10/2007 à 10:56:28,81 ***
    0
  9. maxim1180 Messages postés 15 Statut Membre
     
    Et voici le rapport de Clean

    dim. 21/10/2007 a 11:01:52,28

    *** Recherche des fichiers dans C:

    *** Recherche des fichiers dans C:\WINDOWS\

    *** Recherche des fichiers dans C:\WINDOWS\system32

    *** Recherche des fichiers dans C:\Program Files
    "C:\Program Files\Dynamic Toolbar\" FOUND
    *** Fin du rapport !
    0
  10. Utilisateur anonyme
     
    relance clean en mode sans échec et choisis l'option 2
    ensuite en mode normal
    Télécharge sur le bureau [url=http://siri.urz.free.fr/Fix/SmitfraudFix.zip]SmitfraudFix.zip[/url]
    => Double clic sur SmitfraudFix.zip
    => Extraire tout
    => Double clic sur SmitfraudFix
    => Double Clic sur SmitfraudFix.cmd
    => Choisir Option 1
    => Sauver le rapport
    0
  11. maxim1180 Messages postés 15 Statut Membre
     
    Bonjour ep, voici le rapport de SmitfraudFix. Qu'en penses-tu?

    SmitFraudFix v2.240

    Rapport fait à 15:17:22,62, dim. 21/10/2007
    Executé à partir de C:\Documents and Settings\Jean Claude\Mes documents\SmitfraudFix
    OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
    Le type du système de fichiers est NTFS
    Fix executé en mode normal

    »»»»»»»»»»»»»»»»»»»»»»»» Process

    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\system32\drivers\CDAC11BA.EXE
    C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
    C:\WINDOWS\system32\slserv.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Video Add-on\icthis.exe
    C:\Program Files\Video Add-on\isfmntr.exe
    C:\WINDOWS\system32\igfxtray.exe
    C:\WINDOWS\system32\hkcmd.exe
    C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
    C:\Apps\Powercinema\PCMService.exe
    C:\Program Files\Video Add-on\icmntr.exe
    C:\apps\ABoard\ABoard.exe
    C:\WINDOWS\system32\GSICON.EXE
    C:\WINDOWS\system32\dslagent.exe
    C:\apps\ABoard\AOSD.exe
    C:\Program Files\Video Add-on\isfmm.exe
    C:\WINDOWS\SOUNDMAN.EXE
    C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
    C:\Program Files\Philips ToUcam Camera\VProperty.exe
    C:\Program Files\QuickTime\qttask.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\Program Files\MSN Messenger\MsnMsgr.Exe
    C:\Program Files\Copernic Desktop Search\CopernicDesktopSearch.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    C:\Program Files\Dial-Messenger\Dial-Messenger.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
    C:\Program Files\Larousse\Encyclopédie Universelle Larousse\Bin\hyperappel.exe
    C:\Program Files\Philips ToUcam Camera\GameCam SE\Program\RFTray.exe
    C:\Program Files\Windows Desktop Search\WindowsSearch.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\Windows Desktop Search\WindowsSearchIndexer.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
    C:\WINDOWS\system32\HPZipm12.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\WINDOWS\system32\cmd.exe
    C:\Program Files\Windows Desktop Search\WindowsSearchFilter.exe

    »»»»»»»»»»»»»»»»»»»»»»»» hosts

    »»»»»»»»»»»»»»»»»»»»»»»» C:\

    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS

    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system

    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web

    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32

    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles

    »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Jean Claude

    »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Jean Claude\Application Data

    »»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer

    »»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\JEANCL~1\Favoris

    C:\DOCUME~1\JEANCL~1\Favoris\Online Security Test.url PRESENT !

    »»»»»»»»»»»»»»»»»»»»»»»» Bureau

    »»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files

    »»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues

    »»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau

    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
    "Source"="http://65.54.233.250/cgi-bin/getmsg/Num‚riser0001.jpg?&msg=MSG1153179815.1&start=3679690&len=1720833&mimepart=3&curmbox=F000000001&b=19d92ff93b842123d1fe00a142b26e3c&disk=65.54.233.71_d1124&login=jcd%2emax&domain=hotmail%2ecom&hm___sig=1fb128c501c6ab3b140a7283b827a3e529b347766a452727"
    "SubscribedURL"="http://65.54.233.250/cgi-bin/getmsg/Num‚riser0001.jpg?&msg=MSG1153179815.1&start=3679690&len=1720833&mimepart=3&curmbox=F000000001&b=19d92ff93b842123d1fe00a142b26e3c&disk=65.54.233.71_d1124&login=jcd%2emax&domain=hotmail%2ecom&hm___sig=1fb128c501c6ab3b140a7283b827a3e529b347766a452727"
    "FriendlyName"=""

    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\1]
    "Source"="About:Home"
    "SubscribedURL"="About:Home"
    "FriendlyName"="Ma page d'accueil"

    »»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
    !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

    SrchSTS.exe by S!Ri
    Search SharedTaskScheduler's .dll

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
    "{e0e6e3da-f3af-4fb4-9411-2cf92fdeefc2}"="forayer"

    [HKEY_CLASSES_ROOT\CLSID\{e0e6e3da-f3af-4fb4-9411-2cf92fdeefc2}\InProcServer32]
    @="C:\WINDOWS\system32\gaaplp.dll"

    [HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{e0e6e3da-f3af-4fb4-9411-2cf92fdeefc2}\InProcServer32]
    @="C:\WINDOWS\system32\gaaplp.dll"

    »»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
    !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
    "AppInit_DLLs"=""

    »»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
    !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
    "System"=""

    »»»»»»»»»»»»»»»»»»»»»»»» Rustock

    »»»»»»»»»»»»»»»»»»»»»»»» DNS

    Description: Realtek RTL8169/8110 Family Gigabit Ethernet NIC - Miniport d'ordonnancement de paquets
    DNS Server Search Order: 192.168.1.1

    HKLM\SYSTEM\CCS\Services\Tcpip\..\{1E1C0C2D-B0D5-4AEC-9145-15BB8BB4C611}: DhcpNameServer=192.168.1.1
    HKLM\SYSTEM\CS1\Services\Tcpip\..\{1E1C0C2D-B0D5-4AEC-9145-15BB8BB4C611}: DhcpNameServer=192.168.1.1
    HKLM\SYSTEM\CS2\Services\Tcpip\..\{1E1C0C2D-B0D5-4AEC-9145-15BB8BB4C611}: DhcpNameServer=192.168.1.1
    HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
    HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
    HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1

    »»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll

    »»»»»»»»»»»»»»»»»»»»»»»» Fin
    0
  12. Utilisateur anonyme
     
    en mode sans echec
    relance SmitfraudFix et choisit l'option2

    ensuite refais hijack
    stp
    @+
    0
  13. maxim1180 Messages postés 15 Statut Membre
     
    Bonjour ep,
    J'ai fait ce que tu m'as recommandé. Voici les deux rapport:

    SmitFraudFix v2.240

    Rapport fait à 8:45:23,12, lun. 22/10/2007
    Executé à partir de C:\Documents and Settings\Jean Claude\Mes documents\Protection\SmitfraudFix
    OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
    Le type du système de fichiers est NTFS
    Fix executé en mode sans echec

    »»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Avant SmitFraudFix
    !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

    SrchSTS.exe by S!Ri
    Search SharedTaskScheduler's .dll

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
    "{e0e6e3da-f3af-4fb4-9411-2cf92fdeefc2}"="forayer"

    [HKEY_CLASSES_ROOT\CLSID\{e0e6e3da-f3af-4fb4-9411-2cf92fdeefc2}\InProcServer32]
    @="C:\WINDOWS\system32\gaaplp.dll"

    [HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{e0e6e3da-f3af-4fb4-9411-2cf92fdeefc2}\InProcServer32]
    @="C:\WINDOWS\system32\gaaplp.dll"

    »»»»»»»»»»»»»»»»»»»»»»»» Arret des processus

    »»»»»»»»»»»»»»»»»»»»»»»» hosts

    127.0.0.1 localhost

    »»»»»»»»»»»»»»»»»»»»»»»» Winsock2 Fix

    S!Ri's WS2Fix: LSP not Found.

    »»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix

    GenericRenosFix by S!Ri

    »»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés

    C:\DOCUME~1\JEANCL~1\Favoris\Online Security Test.url supprimé

    »»»»»»»»»»»»»»»»»»»»»»»» DNS

    HKLM\SYSTEM\CCS\Services\Tcpip\..\{1E1C0C2D-B0D5-4AEC-9145-15BB8BB4C611}: DhcpNameServer=192.168.1.1
    HKLM\SYSTEM\CS1\Services\Tcpip\..\{1E1C0C2D-B0D5-4AEC-9145-15BB8BB4C611}: DhcpNameServer=192.168.1.1
    HKLM\SYSTEM\CS2\Services\Tcpip\..\{1E1C0C2D-B0D5-4AEC-9145-15BB8BB4C611}: DhcpNameServer=192.168.1.1
    HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
    HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
    HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1

    »»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires

    »»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
    !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
    "System"=""

    »»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre

    Nettoyage terminé.

    »»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Après SmitFraudFix
    !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

    SrchSTS.exe by S!Ri
    Search SharedTaskScheduler's .dll

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
    "{e0e6e3da-f3af-4fb4-9411-2cf92fdeefc2}"="forayer"

    [HKEY_CLASSES_ROOT\CLSID\{e0e6e3da-f3af-4fb4-9411-2cf92fdeefc2}\InProcServer32]
    @="C:\WINDOWS\system32\gaaplp.dll"

    [HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{e0e6e3da-f3af-4fb4-9411-2cf92fdeefc2}\InProcServer32]
    @="C:\WINDOWS\system32\gaaplp.dll"

    »»»»»»»»»»»»»»»»»»»»»»»» Fin

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 8:51:01, on 22/10/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16544)
    Boot mode: Safe mode

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\cmd.exe
    C:\WINDOWS\explorer.exe
    C:\WINDOWS\notepad.exe
    C:\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer fourni par Belgacom Skynet
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe
    O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: dsWebAllowBHO Class - {2F85D76C-0569-466F-A488-493E6BD0E955} - C:\Program Files\Windows Desktop Search\dsWebAllow.dll
    O2 - BHO: PBBEFRV2 - {4E7BD74F-2B8D-469E-A0E8-ED6AB197B82D} - C:\WINDOWS\system32\pbbefrv2.dll (file missing)
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
    O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O3 - Toolbar: PBBEFRV2 - {4E7BD74F-2B8D-469E-A0E8-ED6AB197B82D} - C:\WINDOWS\system32\pbbefrv2.dll (file missing)
    O3 - Toolbar: Copernic Desktop Search - {C5F7A735-70F1-477F-8C36-6FF3C736017B} - C:\Program Files\Copernic Desktop Search\CopernicDesktopSearchIntegration740.dll
    O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
    O3 - Toolbar: IE Custom Tools - {23ED2206-856D-461A-BBCF-1C2466AC5AE3} - C:\Program Files\Video Add-on\ictmdl.dll (file missing)
    O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
    O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
    O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
    O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
    O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
    O4 - HKLM\..\Run: [PCMService] "c:\Apps\Powercinema\PCMService.exe"
    O4 - HKLM\..\Run: [ACTIVBOARD] c:\apps\ABoard\ABoard.exe
    O4 - HKLM\..\Run: [GSICONEXE] GSICON.EXE
    O4 - HKLM\..\Run: [DSLAGENTEXE] dslagent.exe USB
    O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [ToUcamVProperty] C:\Program Files\Philips ToUcam Camera\VProperty.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [NI.UGES_0002_N108M1607] "c:\documents and settings\jean claude\application data\setup_en[1].exe" -nag
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
    O4 - HKCU\..\Run: [Copernic Desktop Search] "C:\Program Files\Copernic Desktop Search\CopernicDesktopSearch.exe" /tray
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - Global Startup: Accélérateur de démarrage AutoCAD.lnk = C:\Program Files\Fichiers communs\Autodesk Shared\acstart16.exe
    O4 - Global Startup: Dial-Messenger.lnk = C:\Program Files\Dial-Messenger\Dial-Messenger.exe
    O4 - Global Startup: hp psc 1000 series.lnk = ?
    O4 - Global Startup: hpoddt01.exe.lnk = ?
    O4 - Global Startup: Hyperappel de l'Encyclopédie Universelle Larousse.lnk = ?
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\microsoft office\Office\OSA9.EXE
    O4 - Global Startup: Reality Fusion GameCam SE.lnk = ?
    O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
    O8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-be\msntb.dll/search.htm
    O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
    O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
    O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-be\msntabres.dll.mui/229?938cddc684784a75b4a877af3eab2d3b
    O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-be\msntabres.dll.mui/230?938cddc684784a75b4a877af3eab2d3b
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
    O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} - https://support.norton.com/sp/en/us/home/current/info
    O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase8300.cab
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
    O16 - DPF: {CE28D5D2-60CF-4C7D-9FE8-0F47A3308078} - https://support.norton.com/sp/en/us/home/current/info
    O22 - SharedTaskScheduler: forayer - {e0e6e3da-f3af-4fb4-9411-2cf92fdeefc2} - C:\WINDOWS\system32\gaaplp.dll (file missing)
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
    O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
    O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
    O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
    0
  14. Utilisateur anonyme
     
    Bonsoir relance hijack et coche ceci
    ensuite clic sue fix checked

    F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe
    O2 - BHO: PBBEFRV2 - {4E7BD74F-2B8D-469E-A0E8-ED6AB197B82D} - C:\WINDOWS\system32\pbbefrv2.dll (file missing)
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O3 - Toolbar: PBBEFRV2 - {4E7BD74F-2B8D-469E-A0E8-ED6AB197B82D} - C:\WINDOWS\system32\pbbefrv2.dll (file missing)
    O3 - Toolbar: IE Custom Tools - {23ED2206-856D-461A-BBCF-1C2466AC5AE3} - C:\Program Files\Video Add-on\ictmdl.dll (file missing)
    O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
    O4 - HKLM\..\Run: [GSICONEXE] GSICON.EXE
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [NI.UGES_0002_N108M1607] "c:\documents and settings\jean claude\application data\setup_en[1].exe" -nag
    O4 - Global Startup: Dial-Messenger.lnk = C:\Program Files\Dial-Messenger\Dial-Messenger.exe
    O4 - Global Startup: hp psc 1000 series.lnk = ?
    O4 - Global Startup: hpoddt01.exe.lnk = ?
    O4 - Global Startup: Hyperappel de l'Encyclopédie Universelle Larousse.lnk = ?
    O4 - Global Startup: Reality Fusion GameCam SE.lnk = ?
    O22 - SharedTaskScheduler: forayer - {e0e6e3da-f3af-4fb4-9411-2cf92fdeefc2} - C:\WINDOWS\system32\gaaplp.dll (file missing)
    O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe

    ensuite tu peux télécharger ceci
    et utiliser régulièrement

    CCleaner
    https://www.01net.com/telecharger/windows/Utilitaire/nettoyeurs_et_installeurs/fiches/32599.html
    un tuto pour l'aide
    https://forums.cnetfrance.fr

    Ad-Aware
    https://www.01net.com/telecharger/windows/Securite/anti-spyware/fiches/11643.html
    un tuto pour l’aide
    http://www.kachouri.com/tuto/tuto-327-ad-aware-2007--detecter-et-retirer-les-spywares.html

    spybot
    https://www.01net.com/telecharger/windows/Securite/anti-spyware/fiches/26157.html
    un tuto pour l'aide
    https://www.malekal.com/spybot-search-destroy-proteger-desinfecter-pc-virus/

    une fois que tu auras fait tout ça redémarre ton pc et dire si tu as encore des soucis
    0
  15. maxim1180 Messages postés 15 Statut Membre
     
    Bonsoir ep,
    J'effectue ton programme et te tiens au courant. @+
    0
  16. maxim1180 Messages postés 15 Statut Membre
     
    Bonjour ep,

    J'ai fait tout ce que tu m'as recommandé. Apparemment, tout est calme ce matin. J'ai refait un scan avec Ad-Aware (voir le résultat ci-après) et j'ai mis les critical objects en quarantaine et fait un remove des privacy objects. Autre info: une icône carrée avec bande bleue au-dessus et cadenas dans le coin inférieur gauche s'est installée dans la barre de menu de l'ordi, lorsque je positionne le curseur dessus elle affiche Resident de Spybot-SD et me dit que 41923 processus ont été mis sur la liste noire, suit une adresse fichier. C'est quoi? @+

    Scan Results
    Ad-Aware 2007 Free Edition
    Log File Created on:2007-10-2309:15:32
    Using Definitions File:C:\Documents and Settings\All Users\Application Data\Lavasoft\Ad-Aware 2007\core.aawdef
    Computer name:Jean-Claude
    Name of user performing scan:SYSTEM
    Name of user ordering scan:Jean Claude
    Scan completed successfully

    System Information
    File Version Information
    Ad-Aware 2007 Settings
    Extended Ad-Aware 2007 Settings
    Database Information
    Scan Statistics
    Scan Detailed Statistics
    Infections Found
    Listing of running processes
    System Information
    Number of processors:1
    Processor type:Intel(R) Pentium(R) 4 CPU 2.93GHz
    Memory Available:28%
    Total Physical Memory:527810560 Bytes
    Available Physical Memory:147435520 Bytes
    Total Page File Size:1288499200 Bytes
    Available On Page File:806973440 Bytes
    Total Virtual Memory:2147352576 Bytes
    Available Virtual Memory:1987809280 Bytes
    OS:Microsoft Windows XP 5.1 (Build 2600)
    [to top]
    File Verion Information
    File Version
    CEAPI.dll 7, 0, 2, 3
    aawservice.exe 7, 0, 2, 3
    Ad-Aware2007.exe 7.0.2.3
    [to top]
    Ad-Aware 2007 Settings
    Skipping files larger than:1048576 Bytes
    Ignoring infections with lower TAI than:3
    Safe Mode:False
    [to top]
    Extended Ad-Aware 2007 Settings
    Unload malicious processes and modules
    Unload Modules
    Let Windows remove files at Start-Up
    Deactivate Ad-Watch
    Re-analyze Scan Result
    Update Definitions on startup
    Delete Restored Items
    Permanent Archive Caching
    Write Protect System Files
    Create Log file
    Include basic settings
    Include advanced settings
    Include user and computer name
    Environment information
    Running processes
    Running processes and modules
    Include info about ignored objects in log file
    Consider definitions File Outdated after x days
    Proxy URL
    Proxy Port
    [to top]
    Database Info
    Version number:27
    Build Number:0
    Build Date and Time:2007/10/2208:08:01
    [to top]
    Scan Statistics
    Method:Full

    Items Scanned:327409
    Infections Detected:209
    Infections Removed:0
    Infections Quarantined:0
    Infections Ignored:0
    [to top]
    Scan Detailed Statistics
    Type Critical Total
    Process Scan 0 0
    Registry Scan 15 15
    Registry PE Scan 0 0
    Hosts Scan 0 0
    File Scan 0 0
    Folder Scan 0 0
    LSP Scan 0 0
    ADS Scan 0 0
    Cookie Scan 192 192
    File Hash Scan 0 0
    [to top]
    Infections Found
    Family Id Name Category TAI
    1040 Win32.Trojandownloader.Zlob Malware 10
    [300034790] Root: HKLM Path: software\microsoft\windows\currentversion\explorer\browser helper objects\{cfe15135-c591-4000-a55e-a50e5f9f82bc}
    [300035566] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\internet explorer\toolbar\webbrowser Value: {23ed2206-856d-461a-bbcf-1c2466ac5ae3}
    [300027615] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\domains\contraviruspro.com
    [300027617] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\domains\freerealitympegs.com
    [300027621] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\domains\hollywoodfiles.tv
    [300027623] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\domains\net-codec.com
    [300027627] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\domains\plus-codec.com
    [300027632] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\escdomains\contraviruspro.com
    [300027634] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\escdomains\freerealitympegs.com
    [300027637] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\escdomains\gomyron.com
    [300027638] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\escdomains\hollywoodfiles.tv
    [300027639] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\escdomains\inc-codec.com
    [300027640] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\escdomains\net-codec.com
    [300027641] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\escdomains\nmextensions.com
    [300027644] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\escdomains\plus-codec.com

    725 Tracking Cookie DataMiner 3
    [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Jean Claude\Cookies\index.dat msnportal.112.2o7.net s_vi /
    [600000262] Browser: Internet Explorer Cookie: C:\Documents and Settings\Jean Claude\Cookies\index.dat metriweb.be MetriWeb /
    [600000179] Browser: Internet Explorer Cookie: C:\Documents and Settings\Jean Claude\Cookies\index.dat atdmt.com AA002 /
    [600000144] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat doubleclick.net id /
    [600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat be.sitestat.com s1 /belgacom/skynet/
    [600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat be.sitestat.com s1 /belgacom/kidcity/
    [600000263] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat mediaplex.com svid /
    [600000179] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat atdmt.com AA002 /
    [600000052] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat trafficmp.com u /
    [600000052] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat trafficmp.com ctime /
    [600000052] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat trafficmp.com TMPFreqCap /
    [600000052] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat trafficmp.com TMPCrByAS /
    [600000052] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat trafficmp.com TMPPOByAS /
    [600000052] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat trafficmp.com fc /
    [600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat estat.com e /
    [600000171] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat bs.serving-sys.com eyeblaster /
    [600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat be.sitestat.com s1 /thomascook/neckermann/
    [600000086] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat qsrch.com cuid /
    [600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat be.sitestat.com c1 /thomascook/
    [600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat be.sitestat.com c1 /belgacom/
    [600000190] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat www.googleadservices.com Conversion /pagead/conversion/1065167406/
    [600000083] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat real.com RNsites /
    [600000083] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat real.com Edition /
    [600000177] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat beweb.com GUID /
    [600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat z1.adserver.com xon /
    [600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat z1.adserver.com z17 /
    [600000579] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat creativeby.viewpoint.com VWCUK180 /
    [600000182] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat as1.falkag.de TRG /
    [600000182] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat as1.falkag.de BSUID /
    [600000182] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat as1.falkag.de KIDYMD /
    [600000182] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat as1.falkag.de WIDYMD /
    [600000182] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat as1.falkag.de IIDYMD /
    [600000083] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat 247realmedia.com RMID /
    [600000083] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat 247realmedia.com targetbw /
    [600000083] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat 247realmedia.com RM_BPS /
    [600000083] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat 247realmedia.com RM_CNX /
    [600000190] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat www.googleadservices.com Conversion /pagead/conversion/1071592576/
    [600000095] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat perf.overture.com SYSTEM_USER_ID /
    [600000164] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat centrport.net CPID /
    [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat msnlivefavorites.112.2o7.net s_vi /
    [600000409] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat server.iad.liveperson.net HumanClickKEY /hc/18766632
    [600000095] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat data2.perf.overture.com NSC_ebub2_hspvq /
    [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat boonty.122.2o7.net s_vi /
    [600000190] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat www.googleadservices.com Conversion /pagead/conversion/1069762219/
    [600000225] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat weborama.fr AFFICHE_W /
    [600000225] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat weborama.fr aimfarcapping /
    [600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat be.sitestat.com s1 /belgacom/arena51/
    [600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat be.sitestat.com s1 /hallmark/hallmark/
    [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat microsofteup.112.2o7.net s_vi /
    [600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat www5.addfreestats.com NC1U /cgi-bin
    [600000488] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat indextools.com itvisitorid1000477487863 /
    [600000488] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat indextools.com itsessionid1000477487863 /
    [600000488] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat indextools.com itvs /
    [600000190] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat www.googleadservices.com Conversion /pagead/conversion/1068662616/
    [600000464] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat valueclick.com ksa /
    [600000295] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat adtech.de CfP /
    [600000295] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat adtech.de JEB2 /
    [600000068] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat statse.webtrendslive.com wtl147011 /S147011
    [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat msnportal.112.2o7.net s_vi /
    [600000190] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat www.googleadservices.com Conversion /pagead/conversion/1070767430/
    [600000190] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat www.googleadservices.com Conversion /pagead/conversion/1071835059/
    [600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat stat.onestat.com 231659 /
    [600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat stat.onestat.com ONESTAT /
    [600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat stat.onestat.com 274690 /
    [600000101] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat overture.com UserData /
    [600000101] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat overture.com ConvData /
    [600000101] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat overture.com CMUserData /
    [600000190] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat adserving.cpxinteractive.com rmCookiesChecked /
    [600000190] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat adserving.cpxinteractive.com flashInstalled /
    [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat aolfr.122.2o7.net s_vi /
    [600000234] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat tradedoubler.com TD_UNIQUE_IMP /
    [600000234] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat tradedoubler.com TradeDoublerGUID /
    [600000234] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat tradedoubler.com TD_EH_0 /
    [600000201] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat media.adrevolver.com adrevid /adrevolver/
    [600000201] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat media.adrevolver.com freq /adrevolver/
    [600000201] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat media.adrevolver.com gai /adrevolver/
    [600000201] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat media.adrevolver.com uid /adrevolver/
    [600000065] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat targetnet.com tn_pid /
    [600000065] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat targetnet.com fcap0 /
    [600000201] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat adrevolver.com prefs /
    [600000476] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat statcounter.com session_1042065 /
    [600000476] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat statcounter.com session_414235 /
    [600000460] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ad.yieldmanager.com testbounce /
    [600000460] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ad.yieldmanager.com ih /
    [600000460] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ad.yieldmanager.com uid /
    [600000460] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ad.yieldmanager.com vuday1 /
    [600000460] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ad.yieldmanager.com pv1 /
    [600000460] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ad.yieldmanager.com fl_inst /
    [600000190] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat www.googleadservices.com Conversion /pagead/conversion/1071971038/
    [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat premiumtv.122.2o7.net s_vi /
    [600000190] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat www.googleadservices.com Conversion /pagead/conversion/1067816105/
    [600000138] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat fastclick.net pluto /
    [600000138] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat fastclick.net m6 /
    [600000138] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat fastclick.net m1 /
    [600000138] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat fastclick.net pjw /
    [600000138] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat fastclick.net adv_ic /
    [600000461] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ad.uk.tangozebra.com TZID /a
    [600000068] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat statse.webtrendslive.com ACOOKIE /
    [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat fnac.112.2o7.net s_vi /
    [600000050] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat tribalfusion.com ANON_ID /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM5103083LCAV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM510528CENMV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM510528MBFCV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM5103154GMWV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM5103120MSFV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM510612FMNSV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM51030813MRV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM5106126NRNV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM510612D8CWV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM510824IDDVV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM510315GDENV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM510824KMFVV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM510308OCSAV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM510308L7AVV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM541109D6SFV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM5701245LRAV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM550623G6NNV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM5105285HSEV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM520514JJMAV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM5510259AVAV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM510612JEBAV6 /
    [600000093] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ads.pointroll.com PRID /
    [600000093] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ads.pointroll.com PRimp /
    [600000093] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ads.pointroll.com PRpb /
    [600000093] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ads.pointroll.com PRaf /
    [600000093] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ads.pointroll.com PRca /
    [600000093] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ads.pointroll.com PRcp /
    [600000093] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ads.pointroll.com PRpl /
    [600000093] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ads.pointroll.com PRcr /
    [600000093] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ads.pointroll.com PRpc /
    [600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat smartadserver.com pid /
    [600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat smartadserver.com pbwmaj /
    [600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat smartadserver.com pbw /
    [600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat www7.addfreestats.com NC1U /cgi-bin
    [600000187] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat advertising.com ACID /
    [600000187] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat advertising.com BASE /
    [600000187] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat advertising.com ROLL /
    [600000187] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat advertising.com C2 /
    [600000187] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat advertising.com F1 /
    [600000457] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat adopt.euroclick.com LO /
    [600000457] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat adopt.euroclick.com UI /
    [600000457] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat adopt.euroclick.com NSC_mc-bepqu.fvspdmjdl.dpn-iuuq /
    [600000083] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat realmedia.com RMID /
    [600000083] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat realmedia.com RMFM /
    [600000083] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat realmedia.com NXCLICK2 /
    [600000190] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat www.googleadservices.com Conversion /pagead/conversion/1071467813/
    [600000408] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat serving-sys.com A2 /
    [600000408] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat serving-sys.com B2 /
    [600000408] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat serving-sys.com C3 /
    [600000408] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat serving-sys.com D3 /
    [600000408] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat serving-sys.com E2 /
    [600000031] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat www.cibleclick.com CIDENT_ID /
    [600000031] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat www.cibleclick.com CIBLE_CLICK_BAN /
    [600000434] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat casalemedia.com CMID /
    [600000434] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat casalemedia.com CMPH /
    [600000434] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat casalemedia.com CMFP /
    [600000434] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat casalemedia.com CMX1 /
    [600000434] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat casalemedia.com CMS /
    [600000434] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat casalemedia.com CMX3 /
    [600000434] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat casalemedia.com CMCLICK3 /
    [600000409] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat server.iad.liveperson.net HumanClickID /
    [600000409] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat server.iad.liveperson.net HumanClickACTIVE /
    [600000262] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat metriweb.be MetriWeb /
    [600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat adserver.aol.fr CfP /
    [600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat adserver.aol.fr JEB2 /
    [600000085] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat questionmarket.com ES /
    [600000085] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat questionmarket.com CS1 /
    [600000122] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat instadia.net UID /
    [600000363] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat fl01.ct2.comclick.com comTrackIdSurfeur /
    [600000363] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat fl01.ct2.comclick.com CKA /
    [600000363] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat fl01.ct2.comclick.com CKA_SIZE /
    [600000363] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat fl01.ct2.comclick.com CLK /
    [600000363] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat fl01.ct2.comclick.com CLK_SIZE /
    [600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat www8.addfreestats.com NC1U /cgi-bin
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-warnerbrothers.hitbox.com DM550408NMSDV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-warnerbrothers.hitbox.com DM55021471CAV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat hitbox.com CTG /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat hitbox.com WSS_GW /
    [600000173] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat bluestreak.com id /
    [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat 2o7.net s_vi_atamox7Ecaihem /
    [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat 2o7.net s_vi_zgpx7Bgfak /
    [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat 2o7.net s_vi_x7Frubx7Fx7Ewqx7Dux7Euhdvb /
    [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat 2o7.net s_vi_x60tndsur /
    [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat 2o7.net s_vi_gxxppuuxxrexxx7Fvvpx7Ctb /
    [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat 2o7.net s_vi_x7Dbjendx7Bnx7Fxx9 /
    [600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\Tiffany\Cookies\index.dat be.sitestat.com s1 /belgacom/skynet/
    [600000262] Browser: Internet Explorer Cookie: C:\Documents and Settings\Tiffany\Cookies\index.dat metriweb.be MetriWeb /
    [600000179] Browser: Internet Explorer Cookie: C:\Documents and Settings\Tiffany\Cookies\index.dat atdmt.com AA002 /
    [600000225] Browser: Internet Explorer Cookie: C:\Documents and Settings\Tiffany\Cookies\index.dat weborama.fr AFFICHE_W /
    [600000144] Browser: Internet Explorer Cookie: C:\Documents and Settings\Tiffany\Cookies\index.dat doubleclick.net id /
    [600000263] Browser: Internet Explorer Cookie: C:\Documents and Settings\Tiffany\Cookies\index.dat mediaplex.com svid /
    [600000173] Browser: Internet Explorer Cookie: C:\Documents and Settings\Tiffany\Cookies\index.dat bluestreak.com id /

    9999 MRU Object MRU Object 0
    [1] MRU Path: C:\Documents and Settings\Jean Claude\Recent Count: 11
    [3] MRU Registry Key: S-1-5-21-504491946-92588270-3581130662-1008\Software\Microsoft\Internet Explorer\TypedURLs Count: 25

    Quarantined Objects
    Family Id Name Category TAI
    1040 Win32.Trojandownloader.Zlob Malware 10
    [300034790] Root: HKLM Path: software\microsoft\windows\currentversion\explorer\browser helper objects\{cfe15135-c591-4000-a55e-a50e5f9f82bc}
    [300035566] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\internet explorer\toolbar\webbrowser Value: {23ed2206-856d-461a-bbcf-1c2466ac5ae3}
    [300027615] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\domains\contraviruspro.com
    [300027617] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\domains\freerealitympegs.com
    [300027621] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\domains\hollywoodfiles.tv
    [300027623] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\domains\net-codec.com
    [300027627] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\domains\plus-codec.com
    [300027632] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\escdomains\contraviruspro.com
    [300027634] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\escdomains\freerealitympegs.com
    [300027637] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\escdomains\gomyron.com
    [300027638] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\escdomains\hollywoodfiles.tv
    [300027639] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\escdomains\inc-codec.com
    [300027640] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\escdomains\net-codec.com
    [300027641] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\escdomains\nmextensions.com
    [300027644] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\escdomains\plus-codec.com

    Removed Objects
    Family Id Name Category TAI
    1040 Win32.Trojandownloader.Zlob Malware 10
    [300034790] Root: HKLM Path: software\microsoft\windows\currentversion\explorer\browser helper objects\{cfe15135-c591-4000-a55e-a50e5f9f82bc}
    [300035566] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\internet explorer\toolbar\webbrowser Value: {23ed2206-856d-461a-bbcf-1c2466ac5ae3}
    [300027615] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\domains\contraviruspro.com
    [300027617] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\domains\freerealitympegs.com
    [300027621] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\domains\hollywoodfiles.tv
    [300027623] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\domains\net-codec.com
    [300027627] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\domains\plus-codec.com
    [300027632] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\escdomains\contraviruspro.com
    [300027634] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\escdomains\freerealitympegs.com
    [300027637] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\escdomains\gomyron.com
    [300027638] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\escdomains\hollywoodfiles.tv
    [300027639] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\escdomains\inc-codec.com
    [300027640] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\escdomains\net-codec.com
    [300027641] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\escdomains\nmextensions.com
    [300027644] Root: HKU Path: S-1-5-21-504491946-92588270-3581130662-1008\software\microsoft\windows\currentversion\internet settings\zonemap\escdomains\plus-codec.com

    725 Tracking Cookie DataMiner 3
    [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Jean Claude\Cookies\index.dat msnportal.112.2o7.net s_vi /
    [600000262] Browser: Internet Explorer Cookie: C:\Documents and Settings\Jean Claude\Cookies\index.dat metriweb.be MetriWeb /
    [600000179] Browser: Internet Explorer Cookie: C:\Documents and Settings\Jean Claude\Cookies\index.dat atdmt.com AA002 /
    [600000144] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat doubleclick.net id /
    [600000179] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat atdmt.com AA002 /
    [600000171] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat bs.serving-sys.com eyeblaster /
    [600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat be.sitestat.com c1 /belgacom/
    [600000190] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat www.googleadservices.com Conversion /pagead/conversion/1065167406/
    [600000579] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat creativeby.viewpoint.com VWCUK180 /
    [600000190] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat www.googleadservices.com Conversion /pagead/conversion/1071592576/
    [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat msnlivefavorites.112.2o7.net s_vi /
    [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat boonty.122.2o7.net s_vi /
    [600000225] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat weborama.fr AFFICHE_W /
    [600000225] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat weborama.fr aimfarcapping /
    [600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat www5.addfreestats.com NC1U /cgi-bin
    [600000190] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat www.googleadservices.com Conversion /pagead/conversion/1068662616/
    [600000068] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat statse.webtrendslive.com wtl147011 /S147011
    [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat msnportal.112.2o7.net s_vi /
    [600000190] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat www.googleadservices.com Conversion /pagead/conversion/1070767430/
    [600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat stat.onestat.com 231659 /
    [600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat stat.onestat.com ONESTAT /
    [600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat stat.onestat.com 274690 /
    [600000101] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat overture.com UserData /
    [600000101] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat overture.com ConvData /
    [600000101] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat overture.com CMUserData /
    [600000201] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat media.adrevolver.com adrevid /adrevolver/
    [600000201] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat media.adrevolver.com freq /adrevolver/
    [600000201] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat media.adrevolver.com gai /adrevolver/
    [600000201] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat media.adrevolver.com uid /adrevolver/
    [600000460] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ad.yieldmanager.com testbounce /
    [600000460] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ad.yieldmanager.com ih /
    [600000460] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ad.yieldmanager.com uid /
    [600000460] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ad.yieldmanager.com vuday1 /
    [600000460] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ad.yieldmanager.com pv1 /
    [600000460] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ad.yieldmanager.com fl_inst /
    [600000190] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat www.googleadservices.com Conversion /pagead/conversion/1067816105/
    [600000461] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ad.uk.tangozebra.com TZID /a
    [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat fnac.112.2o7.net s_vi /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM5103083LCAV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM510528CENMV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM510528MBFCV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM5103154GMWV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM5103120MSFV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM510612FMNSV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM51030813MRV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM5106126NRNV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM510612D8CWV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM510824IDDVV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM510315GDENV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM510824KMFVV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM510308OCSAV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM510308L7AVV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM541109D6SFV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM5701245LRAV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM550623G6NNV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM5105285HSEV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM520514JJMAV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM5510259AVAV6 /
    [600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat ehg-dig.hitbox.com DM510612JEBAV6 /
    [600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat smartadserver.com pid /
    [600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat smartadserver.com pbwmaj /
    [600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat smartadserver.com pbw /
    [600000457] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat adopt.euroclick.com LO /
    [600000457] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat adopt.euroclick.com UI /
    [600000457] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat adopt.euroclick.com NSC_mc-bepqu.fvspdmjdl.dpn-iuuq /
    [600000408] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat serving-sys.com A2 /
    [600000408] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat serving-sys.com B2 /
    [600000408] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat serving-sys.com C3 /
    [600000408] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat serving-sys.com D3 /
    [600000408] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat serving-sys.com E2 /
    [600000409] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat server.iad.liveperson.net HumanClickID /
    [600000409] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat server.iad.liveperson.net HumanClickACTIVE /
    [600000085] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat questionmarket.com ES /
    [600000085] Browser: Internet Explorer Cookie: C:\Documents and Settings\Anaïs\Cookies\index.dat questionmarket.com CS1 /
    [600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\Tiffany\Cookies\index.dat be.sitestat.com s1 /belgacom/skynet/
    [600000262] Browser: Internet Explorer Cookie: C:\Documents and Settings\Tiffany\Cookies\index.dat metriweb.be MetriWeb /
    [600000179] Browser: Internet Explorer Cookie: C:\Documents and Settings\Tiffany\Cookies\index.dat atdmt.com AA002 /
    [600000225] Browser: Internet Explorer Cookie: C:\Documents and Settings\Tiffany\Cookies\index.dat weborama.fr AFFICHE_W /
    [600000144] Browser: Internet Explorer Cookie: C:\Documents and Settings\Tiffany\Cookies\index.dat doubleclick.net id /
    [600000263] Browser: Internet Explorer Cookie: C:\Documents and Settings\Tiffany\Cookies\index.dat mediaplex.com svid /
    [600000173] Browser: Internet Explorer Cookie: C:\Documents and Settings\Tiffany\Cookies\index.dat bluestreak.com id /

    9999 MRU Object MRU Object 0
    [1] MRU Path: C:\Documents and Settings\Jean Claude\Recent Count: 11
    [3] MRU Registry Key: S-1-5-21-504491946-92588270-3581130662-1008\Software\Microsoft\Internet Explorer\TypedURLs Count: 25

    [to top]
    Listing of Running Processes
    C:\WINDOWS\SYSTEM32\SMSS.EXE
    c:\windows\system32\smss.exe
    c:\windows\system32\ntdll.dll
    C:\WINDOWS\SYSTEM32\CSRSS.EXE
    c:\windows\system32\csrss.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\csrsrv.dll
    c:\windows\system32\basesrv.dll
    c:\windows\system32\winsrv.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\lpk.dll
    c:\windows\system32\usp10.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\sxs.dll
    C:\WINDOWS\SYSTEM32\WINLOGON.EXE
    c:\windows\system32\winlogon.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\authz.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\crypt32.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\msasn1.dll
    c:\windows\system32\nddeapi.dll
    c:\windows\system32\profmap.dll
    c:\windows\system32\netapi32.dll
    c:\windows\system32\userenv.dll
    c:\windows\system32\psapi.dll
    c:\windows\system32\regapi.dll
    c:\windows\system32\secur32.dll
    c:\windows\system32\setupapi.dll
    c:\windows\system32\version.dll
    c:\windows\system32\winsta.dll
    c:\windows\system32\wintrust.dll
    c:\windows\system32\imagehlp.dll
    c:\windows\system32\ws2_32.dll
    c:\windows\system32\ws2help.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\lpk.dll
    c:\windows\system32\usp10.dll
    c:\windows\system32\msgina.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\comctl32.dll
    c:\windows\system32\odbc32.dll
    c:\windows\system32\comdlg32.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
    c:\windows\system32\odbcint.dll
    c:\windows\system32\shsvcs.dll
    c:\windows\system32\sfc.dll
    c:\windows\system32\sfc_os.dll
    c:\windows\system32\ole32.dll
    c:\windows\system32\apphelp.dll
    c:\windows\system32\msctfime.ime
    c:\windows\system32\winscard.dll
    c:\windows\system32\wtsapi32.dll
    c:\windows\system32\sxs.dll
    c:\windows\system32\uxtheme.dll
    c:\windows\system32\winmm.dll
    c:\windows\system32\cscdll.dll
    c:\windows\system32\wlnotify.dll
    c:\windows\system32\winspool.drv
    c:\windows\system32\mpr.dll
    c:\windows\system32\rsaenh.dll
    c:\windows\system32\wgalogon.dll
    c:\windows\system32\oleaut32.dll
    c:\windows\system32\ntmarta.dll
    c:\windows\system32\wldap32.dll
    c:\windows\system32\samlib.dll
    c:\windows\system32\clbcatq.dll
    c:\windows\system32\comres.dll
    c:\windows\system32\msv1_0.dll
    c:\windows\system32\iphlpapi.dll
    c:\windows\system32\rasapi32.dll
    c:\windows\system32\rasman.dll
    c:\windows\system32\tapi32.dll
    c:\windows\system32\rtutils.dll
    c:\windows\system32\cscui.dll
    c:\windows\system32\mprapi.dll
    c:\windows\system32\activeds.dll
    c:\windows\system32\adsldpc.dll
    c:\windows\system32\atl.dll
    c:\windows\system32\wdmaud.drv
    c:\windows\system32\msacm32.drv
    c:\windows\system32\msacm32.dll
    c:\windows\system32\midimap.dll
    c:\windows\system32\xpsp2res.dll
    C:\WINDOWS\SYSTEM32\SERVICES.EXE
    c:\windows\system32\services.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\userenv.dll
    c:\windows\system32\scesrv.dll
    c:\windows\system32\authz.dll
    c:\windows\system32\umpnpmgr.dll
    c:\windows\system32\winsta.dll
    c:\windows\system32\netapi32.dll
    c:\windows\system32\ncobjapi.dll
    c:\windows\system32\msvcp60.dll
    c:\windows\system32\shimeng.dll
    c:\windows\apppatch\acadproc.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\lpk.dll
    c:\windows\system32\usp10.dll
    c:\windows\system32\secur32.dll
    c:\windows\system32\apphelp.dll
    c:\windows\system32\version.dll
    c:\windows\system32\eventlog.dll
    c:\windows\system32\ws2_32.dll
    c:\windows\system32\ws2help.dll
    c:\windows\system32\psapi.dll
    c:\windows\system32\wtsapi32.dll
    C:\WINDOWS\SYSTEM32\LSASS.EXE
    c:\windows\system32\lsass.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\lsasrv.dll
    c:\windows\system32\mpr.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\msasn1.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\netapi32.dll
    c:\windows\system32\ntdsapi.dll
    c:\windows\system32\dnsapi.dll
    c:\windows\system32\ws2_32.dll
    c:\windows\system32\ws2help.dll
    c:\windows\system32\wldap32.dll
    c:\windows\system32\secur32.dll
    c:\windows\system32\samlib.dll
    c:\windows\system32\samsrv.dll
    c:\windows\system32\cryptdll.dll
    c:\windows\system32\shimeng.dll
    c:\windows\apppatch\acgenral.dll
    c:\windows\system32\winmm.dll
    c:\windows\system32\ole32.dll
    c:\windows\system32\oleaut32.dll
    c:\windows\system32\msacm32.dll
    c:\windows\system32\version.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\userenv.dll
    c:\windows\system32\uxtheme.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\lpk.dll
    c:\windows\system32\usp10.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
    c:\windows\system32\comctl32.dll
    c:\windows\system32\msprivs.dll
    c:\windows\system32\kerberos.dll
    c:\windows\system32\msv1_0.dll
    c:\windows\system32\iphlpapi.dll
    c:\windows\system32\netlogon.dll
    c:\windows\system32\w32time.dll
    c:\windows\system32\msvcp60.dll
    c:\windows\system32\schannel.dll
    c:\windows\system32\crypt32.dll
    c:\windows\system32\wdigest.dll
    c:\windows\system32\rsaenh.dll
    c:\windows\system32\scecli.dll
    c:\windows\system32\setupapi.dll
    c:\windows\system32\ipsecsvc.dll
    c:\windows\system32\authz.dll
    c:\windows\system32\oakley.dll
    c:\windows\system32\winipsec.dll
    c:\windows\system32\pstorsvc.dll
    c:\windows\system32\psbase.dll
    c:\windows\system32\mswsock.dll
    c:\windows\system32\hnetcfg.dll
    c:\windows\system32\wshtcpip.dll
    c:\windows\system32\dssenh.dll
    C:\WINDOWS\SYSTEM32\SVCHOST.EXE
    c:\windows\system32\svchost.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\shimeng.dll
    c:\windows\apppatch\acgenral.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\winmm.dll
    c:\windows\system32\ole32.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\oleaut32.dll
    c:\windows\system32\msacm32.dll
    c:\windows\system32\version.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\userenv.dll
    c:\windows\system32\uxtheme.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\lpk.dll
    c:\windows\system32\usp10.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
    c:\windows\system32\comctl32.dll
    c:\windows\system32\ntmarta.dll
    c:\windows\system32\wldap32.dll
    c:\windows\system32\samlib.dll
    c:\windows\system32\rpcss.dll
    c:\windows\system32\secur32.dll
    c:\windows\system32\ws2_32.dll
    c:\windows\system32\ws2help.dll
    c:\windows\system32\xpsp2res.dll
    c:\windows\system32\clbcatq.dll
    c:\windows\system32\comres.dll
    c:\windows\system32\termsrv.dll
    c:\windows\system32\icaapi.dll
    c:\windows\system32\setupapi.dll
    c:\windows\system32\wintrust.dll
    c:\windows\system32\crypt32.dll
    c:\windows\system32\msasn1.dll
    c:\windows\system32\imagehlp.dll
    c:\windows\system32\authz.dll
    c:\windows\system32\mstlsapi.dll
    c:\windows\system32\activeds.dll
    c:\windows\system32\adsldpc.dll
    c:\windows\system32\netapi32.dll
    c:\windows\system32\atl.dll
    c:\windows\system32\regapi.dll
    c:\windows\system32\rsaenh.dll
    c:\windows\system32\apphelp.dll
    c:\windows\system32\wtsapi32.dll
    c:\windows\system32\winsta.dll
    c:\windows\system32\msv1_0.dll
    c:\windows\system32\iphlpapi.dll
    c:\windows\system32\svchost.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\shimeng.dll
    c:\windows\apppatch\acgenral.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\winmm.dll
    c:\windows\system32\ole32.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\oleaut32.dll
    c:\windows\system32\msacm32.dll
    c:\windows\system32\version.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\userenv.dll
    c:\windows\system32\uxtheme.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\lpk.dll
    c:\windows\system32\usp10.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
    c:\windows\system32\comctl32.dll
    c:\windows\system32\rpcss.dll
    c:\windows\system32\secur32.dll
    c:\windows\system32\ws2_32.dll
    c:\windows\system32\ws2help.dll
    c:\windows\system32\xpsp2res.dll
    c:\windows\system32\rsaenh.dll
    c:\windows\system32\mswsock.dll
    c:\windows\system32\hnetcfg.dll
    c:\windows\system32\wshtcpip.dll
    c:\windows\system32\wshisn.dll
    c:\windows\system32\wsock32.dll
    c:\windows\system32\dnsapi.dll
    c:\windows\system32\iphlpapi.dll
    c:\windows\system32\winrnr.dll
    c:\windows\system32\wldap32.dll
    c:\windows\system32\rasadhlp.dll
    c:\windows\system32\clbcatq.dll
    c:\windows\system32\comres.dll
    c:\windows\system32\svchost.exe
    c:\windows\system32\ntdll.dll
    c:\windows\system32\kernel32.dll
    c:\windows\system32\advapi32.dll
    c:\windows\system32\rpcrt4.dll
    c:\windows\system32\shimeng.dll
    c:\windows\apppatch\acgenral.dll
    c:\windows\system32\user32.dll
    c:\windows\system32\gdi32.dll
    c:\windows\system32\winmm.dll
    c:\windows\system32\ole32.dll
    c:\windows\system32\msvcrt.dll
    c:\windows\system32\oleaut32.dll
    c:\windows\system32\msacm32.dll
    c:\windows\system32\version.dll
    c:\windows\system32\shell32.dll
    c:\windows\system32\shlwapi.dll
    c:\windows\system32\userenv.dll
    c:\windows\system32\uxtheme.dll
    c:\windows\system32\imm32.dll
    c:\windows\system32\lpk.dll
    c:\windows\system32\usp10.dll
    c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
    c:\windows\system32\comctl32.dll
    c:\windows\system32\ntmarta.dll
    c:\windows\system32\wldap32.dll
    c:\windows\system32\samlib.dll
    c:\windows\system32\xpsp2res.dll
    c:\windows\system32\shsvcs.dll
    c:\windows\system32\winsta.dll
    c:\windows\system32\netapi32.dll
    c:\windows\system32\dhcpcsvc.dll
    c:\windows\system32\dnsapi.dll
    c:\windows\system32\ws2_32.dll
    c:\windows\system32\ws2help.dll
    c:\windows\system32\iphlpapi.dll
    c:\windows\system32\secur32.dll
    c:\windows\system32\rsaenh.dll
    c:\windows\system32\mswsock.dll
    c:\windows\system32\hnetcfg.dll
    c:\windows\system32\wshtcpip.dll
    c:\windows\system32\wzcsvc.dll
    c:\windows\system32\rtutils.dll
    c:\windows\system32\wmi.dll
    c:\windows\system32\crypt32.dll
    c:\windows\system32\msasn1.dll
    c:\windows\system32\wtsapi32.dll
    c:\windows\system32\esent.dll
    c:\windows\system32\atl.dll
    c:\windows\system32\setupapi.dll
    c:\windows\system32\rastls.dll
    c:\windows\system32\cryptui.dll
    c:\windows\system32\wintrust.dll
    c:\windows\system32\imagehlp.dll
    c:\windows\system32\wininet.dll
    c:\windows\system32\normaliz.dll
    c:\windows\system32\iertutil.dll
    c:\windows\system32\mprapi.dll
    c:\windows\system32\activeds.dll
    c:\windows\system32\adsldpc.dll
    c:\windows\system32\rasapi32.dll
    c:\windows\system32\rasman.dll
    c:\windows\system32\tapi32.dll
    c:\windows\system32\schannel.dll
    c:\windows\system32\winscard.dll
    c:\windows\system32\raschap.dll
    c:\windows\system32\msv1_0.dll
    c:\windows\system32\clbcatq.dll
    c:\windows\system32\comres.dll
    c:\windows\system32\schedsvc.dll
    c:\windows\system32\ntdsapi.dll
    c:\windows\system32\msidle.dll
    c:\windows\system32\audiosrv.dll
    c:\windows\system32\wkssvc.dll
    c:\windows\system32\cryptsvc.dll
    c:\windows\system32\certcli.dll
    c:\windows\system32\ersvc.dll
    c:\windows\system32\es.dll
    c:\windows\pchealth\helpctr\binaries\pchsvc.dll
    c:\windows\system32\hidserv.dll
    c:\windows\system32\hid.dll
    c:\windows\system32\srvsvc.dll
    c:\windows\system32\sens.dll
    c:\windows\system32\seclogon.dll
    c:\windows\system32\mprdim.dll
    c:\windows\system32\ipxsap.dll
    c:\windows\system32\rtm.dll
    c:\windows\system32\wsock32.dll
    c:\windows\system32\adptif.dll
    c:\windows\system32\netman.dll
    c:\windows\system32\netshell.dll
    c:\windows\system32\credui.dll
    c:\windows\system32\wzcsapi.dll
    c:\windows\system32\iprtrmgr.dll
    c:\windows\system32\iprtprio.dll
    c:\windows\system32\winspool.drv
    c:\windows\system32\srsvc.dll
    c:\windows\system32\powrprof.dll
    c:\windows\system32\tapisrv.dll
    c:\windows\system32\psapi.dll
    c:\windows\system32\ipxrtmgr.dll
    c:\windows\system32\wuauserv.dll
    c:\windows\system32\wbem\wmisvc.dll
    c:\windows\system32\vssapi.dll
    c:\windows\system32\w32time.dll
    c:\windows\system32\msvcp60.dll
    c:\windows\system32\trkwks.dll
    c:\windows\system32\wuaueng.dll
    c:\windows\system32\winhttp.dll
    c:\windows\system32\cabinet.dll
    c:\windows\system32\mspatcha.dll
    c:\windows\system32\rasppp.dll
    c:\windows\system32\ntlsapi.dll
    c:\windows\system32\ipxwan.dll
    c:\windows\system32\sxs.dll
    c:\windows\system32\comsvcs.dll
    c:\windows\system32\colbact.dll
    c:\windows\system32\mtxclu.dll
    c:\windows\system32\clusapi.dll
    c:\windows\system32\resutils.dll
    c:\windows\system32\wscsvc.dll
    c:\windows\system32\msi.dll
    c:\windows\system32\ipnathlp.dll
    c:\windows\system32\authz.dll
    c:\windows\system32\wbem\wbemcomn.dll
    c:\windows\system32\wbem\wbemcore.dll
    c:\windows\system32\wbem\esscli.dll
    c:\windows\system32\wbem\fastprox.dll
    c:\windows\system32\wbem\wbemsvc.dll
    c:\windows\system32\wbem\wmiutils.dll
    c:\windows\system32\wbem\repdrvfs.dll
    c:\windows\system32\winrnr.dll
    c:\windows\system32\sfc.dll
    c:\windows\system32\sfc_os.dll
    c:\windows\system32\wbem\wmiprvsd.dll
    c:\windows\system32\ncobjapi.dll
    c:\windows\system32\wbem\wbemess.dll
    c:\windows\system32\wbem\ncprov.dll
    c:\windows\system32\browser.dll
    c:\windows\system32\rasmans.dll
    c:\windows\system32\winipsec.dll
    c:\windows\system32\netcfgx.dll
    c:\windows\system32\ipxrip.dll
    c:\windows\system32\mprddm.dll
    c:\windows\system32\iashlpr.dll
    c:\windows\system32\iasrad.dll
    c:\windows\system32\iaspolcy.dll
    c:\windows\system32\iassvcs.dll
    c:\windows\system32\rastapi.dll
    c:\windows\system32\rasadhlp.dll
    c:\windows\system32\unimdm.tsp
    c:\windows\system32\uniplat.dll
    c:\windows\system32\unimdmat.dll
    c:\windows\system32\modemui.dll
    c:\windows\system32\kmddsp.tsp
    c:\windows\system32\ndptsp.tsp
    c:\windows\system32\ipconf.tsp
    c:\windows\system32\h323.tsp
    c:\windows\system32\hidphone.tsp
    c:\windows\system32\kerberos.dll
    c:\windows\system32\cryptdll.dll
    c:\windows\system32\iassdo.dll
    c:\program files\fichiers communs\system\ole db\oledb32.dll
    c:\windows\system32\msdart.dll
    c:\windows\system32\comdlg32.dll
    c:\program files\fichiers communs\system\ole db\oledb32r.dll
    c:\windows\system32\vbajet32.dll
    c:\windows\system32\iasnap.dll
    c:\windows\system32\iassam.dll
    c:\windows\system32\iasacct.dll
    c:\windows\system32\msxml3.dll
    c:\windows\system32\apphelp.dll
    c:\windows\system32\wups2.dll
    c:\windows\system32\advpack.dll
    c:\windows\system32\upnp.dll
    c:\windows\syste
    0
  17. Utilisateur anonyme
     
    Bonsoir
    c'est une liste qui bloque certaines bestioles très connues
    maintenant fait ceci
    Télécharge:
    http://www.grisoft.cz/filedir/inst/avgas-setup-7.5.1.43.exe AVG-AntiSpyware
    = Installer
    = Le lancer
    = Clic : Mise à jour
    ------
    = Redémarre en mode Sans Échec (le démarrage peut prendre plusieurs minutes)
    Attention, pas d’accès à internet dans ce mode. Enregistre ou imprime les consignes.

    Relance le Pc et tapote la touche F8 ( ou F5 pour certains) , jusqu’à l’apparition des inscriptions avec choix de démarrage
    Avec les touches « flèches », sélectionne Mode sans échec ==> entrée ==>nom utilisateur habituel
    -------
    = Dans ANALYSE ( en forme de loupe )
    ==> Paramètres ==> sous COMMENT REAGIR==>clic sur Actions recommandées ==>Quarantaine
    ==> Clic : Analyse complète du système
    En fin de scan ( qui est assez long)
    ==> Clic Appliquer toutes les actions <== ceci Très important
    ==> Clic Sauvegarder rapport puis Enregistrer sous et choisir bureau
    -------
    En mode normal
    colle le rapport
    @+
    0
  18. maxim1180
     
    Bonjour,
    Désolé de répondre si tard mais j'étais over booker hier. Voici le rapport, bonne réception.

    ---------------------------------------------------------
    AVG Anti-Spyware - Rapport d'analyse
    ---------------------------------------------------------

    + Créé à: 12:10:20 25/10/2007

    + Résultat de l'analyse:

    C:\Documents and Settings\Anaïs\Cookies\anaïs@247realmedia[2].txt -> TrackingCookie.247realmedia : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@247realmedia[1].txt -> TrackingCookie.247realmedia : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@aolfr.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@microsofteup.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@premiumtv.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean claude@112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean claude@aolfr.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean claude@boonty.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean claude@highbeam.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean claude@microsofteup.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean claude@microsoftwlmessengermkt.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean claude@msninvite.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean claude@msnuk.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean claude@redcats.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@eurostar.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@microsoftwga.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@msnportal.112.2o7[2].txt -> TrackingCookie.2o7 : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@msnservices.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@opodo.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@adbrite[2].txt -> TrackingCookie.Adbrite : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@www.adobe[2].txt -> TrackingCookie.Adobe : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@adrevolver[2].txt -> TrackingCookie.Adrevolver : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@z1.adserver[1].txt -> TrackingCookie.Adserver : Nettoyé.
    C:\Documents and Settings\Anaïs\Local Settings\Temp\Cookies\anaïs@z1.adserver[1].txt -> TrackingCookie.Adserver : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@adtech[1].txt -> TrackingCookie.Adtech : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@adtech[2].txt -> TrackingCookie.Adtech : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean claude@adtech[2].txt -> TrackingCookie.Adtech : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@advertising[2].txt -> TrackingCookie.Advertising : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@advertising[1].txt -> TrackingCookie.Advertising : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean claude@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@atdmt[1].txt -> TrackingCookie.Atdmt : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@casalemedia[1].txt -> TrackingCookie.Casalemedia : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean claude@promo.casinotropez[1].txt -> TrackingCookie.Casinotropez : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@centrport[1].txt -> TrackingCookie.Centrport : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@ads.cnn[1].txt -> TrackingCookie.Cnn : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean claude@com[2].txt -> TrackingCookie.Com : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@connextra[1].txt -> TrackingCookie.Connextra : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@bilbo.counted[2].txt -> TrackingCookie.Counted : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@www.epilot[1].txt -> TrackingCookie.Epilot : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean claude@e-2dj6wfkiqoazsaq.stats.esomniture[2].txt -> TrackingCookie.Esomniture : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean claude@e-2dj6wfl4ooc5oeo.stats.esomniture[2].txt -> TrackingCookie.Esomniture : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean claude@e-2dj6wflysgajogp.stats.esomniture[2].txt -> TrackingCookie.Esomniture : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean claude@e-2dj6wgmycpczsdp.stats.esomniture[2].txt -> TrackingCookie.Esomniture : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean claude@e-2dj6wjl4qpczgep.stats.esomniture[2].txt -> TrackingCookie.Esomniture : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@estat[1].txt -> TrackingCookie.Estat : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@estat[3].txt -> TrackingCookie.Estat : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean claude@estat[1].txt -> TrackingCookie.Estat : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@as1.falkag[1].txt -> TrackingCookie.Falkag : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@fastclick[2].txt -> TrackingCookie.Fastclick : Nettoyé.
    C:\Documents and Settings\Anaïs\Local Settings\Temp\Cookies\anaïs@fastclick[2].txt -> TrackingCookie.Fastclick : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean claude@findwhat[1].txt -> TrackingCookie.Findwhat : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@ehg-warnerbrothers.hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@hitbox[3].txt -> TrackingCookie.Hitbox : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean claude@hotlog[2].txt -> TrackingCookie.Hotlog : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@searchportal.information[2].txt -> TrackingCookie.Information : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean claude@intelli-direct[1].txt -> TrackingCookie.Intelli-direct : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@search.live[1].txt -> TrackingCookie.Live : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@image.masterstats[1].txt -> TrackingCookie.Masterstats : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@search.msn[4].txt -> TrackingCookie.Msn : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean claude@ssl-hints.netflame[2].txt -> TrackingCookie.Netflame : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@stat.onestat[1].txt -> TrackingCookie.Onestat : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@data2.perf.overture[1].txt -> TrackingCookie.Overture : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@perf.overture[1].txt -> TrackingCookie.Overture : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean claude@perf.overture[1].txt -> TrackingCookie.Overture : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@overture[1].txt -> TrackingCookie.Overture : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@paycounter[2].txt -> TrackingCookie.Paycounter : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean claude@www.paypal[1].txt -> TrackingCookie.Paypal : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@ads.planetactive[1].txt -> TrackingCookie.Planetactive : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@ads.pointroll[1].txt -> TrackingCookie.Pointroll : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@ads.pointroll[1].txt -> TrackingCookie.Pointroll : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@www.pstats[1].txt -> TrackingCookie.Pstats : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean claude@qksrv[2].txt -> TrackingCookie.Qksrv : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@questionmarket[2].txt -> TrackingCookie.Questionmarket : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@real[1].txt -> TrackingCookie.Real : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@france.realsearch.real[2].txt -> TrackingCookie.Real : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@real[1].txt -> TrackingCookie.Real : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@realmedia[1].txt -> TrackingCookie.Realmedia : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@realmedia[2].txt -> TrackingCookie.Realmedia : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@revenue[2].txt -> TrackingCookie.Revenue : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@revsci[2].txt -> TrackingCookie.Revsci : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@edge.ru4[1].txt -> TrackingCookie.Ru4 : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@bs.serving-sys[1].txt -> TrackingCookie.Serving-sys : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@bs.serving-sys[3].txt -> TrackingCookie.Serving-sys : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@serving-sys[1].txt -> TrackingCookie.Serving-sys : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@serving-sys[3].txt -> TrackingCookie.Serving-sys : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@cs.sexcounter[2].txt -> TrackingCookie.Sexcounter : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@statcounter[2].txt -> TrackingCookie.Statcounter : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean claude@statistik-gallup[1].txt -> TrackingCookie.Statistik-gallup : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@tacoda[1].txt -> TrackingCookie.Tacoda : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@targetnet[2].txt -> TrackingCookie.Targetnet : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@trafficmp[1].txt -> TrackingCookie.Trafficmp : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@tribalfusion[2].txt -> TrackingCookie.Tribalfusion : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@tribalfusion[1].txt -> TrackingCookie.Tribalfusion : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@valueclick[1].txt -> TrackingCookie.Valueclick : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean claude@valueclick[1].txt -> TrackingCookie.Valueclick : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@web-stat[1].txt -> TrackingCookie.Web-stat : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@webstat[2].txt -> TrackingCookie.Web-stat : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@weborama[2].txt -> TrackingCookie.Weborama : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@m.webtrends[2].txt -> TrackingCookie.Webtrends : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@m.webtrends[1].txt -> TrackingCookie.Webtrends : Nettoyé.
    C:\Documents and Settings\Tiffany\Cookies\tiffany@m.webtrends[1].txt -> TrackingCookie.Webtrends : Nettoyé.
    C:\Documents and Settings\Anaïs\Cookies\anaïs@statse.webtrendslive[2].txt -> TrackingCookie.Webtrendslive : Nettoyé.
    C:\Documents and Settings\Jean Claude\Cookies\jean_claude@xxxcounter[2].txt -> TrackingCookie.Xxxcounter : Nettoyé.

    Fin du rapport
    0
  19. Utilisateur anonyme
     
    Bonsoir maxim1180

    As tu utilisé CCleaner et Spybot?
    ou en sont tes soucis
    @+
    0
  20. maxim1180
     
    Bonjour ep,

    Oui, j'ai fait cleaner et spybot tout au début de nos contacts. Je peux les refaire si tu veux. Pour l'instant je n'ai plus de soucis mais je trouve l'ordi un peu lent. @+
    0
  21. Utilisateur anonyme
     
    Salut maxim1180

    refais un rapport hijack
    @+
    0
  • 1
  • 2