Virus msn photos zip

Résolu
Lady Mara -  
jlpjlp Messages postés 52399 Statut Contributeur sécurité -
Bonjour,

Suite à l'astuce de votre site, je fais un copier/coller de mon rapport msnfix et highjackthis:

.. C:\WINDOWS\party_jpg.zip

************************ MSNCHK ***** /!\ beta test /!\

************************ Recherche les dossiers présents

... C:\Program Files\Fichiers communs\Carlson\
... C:\Temp\

************************ Suppression des fichiers

.. OK ... C:\DOCUME~1\ALLUSE~1\MENUDM~1\carlton
.. OK ... C:\Program Files\Fichiers communs\Carlson\carlton
/!\ ... C:\WINDOWS\mrofinu*.exe
.. OK ... C:\WINDOWS\mrofinu*.exe.tmp
.. OK ... C:\WINDOWS\system32\microsoft\backup.ftp
.. OK ... C:\WINDOWS\system32\microsoft\backup.tftp
.. OK ... C:\WINDOWS\party_jpg.zip

************************ Suppression des dossiers

.. OK ... C:\Program Files\Fichiers communs\Carlson\
.. OK ... C:\Temp\

************************ Nettoyage du registre

Les fichiers encore présents seront supprimés au prochain redémarrage

************************ Suppression des fichiers

.. OK ... C:\WINDOWS\mrofinu*.exe

************************ Fichiers suspects

/!\ ces fichiers nécessitent un avis expérimenté avant toute intervention

[C:\d8e9w3l6u1g1.exe] 7A3488519F139578B1C0910E48A4EFD5

[color=#FF0000][b]==>[/b][/color] SVP merci d'envoyer le fichier [b] C:\DOCUME~1\Anne\Bureau\Upload_Me.zip [/b] sur http://upload.changelog.fr

Les fichiers et clés de registre supprimés ont été sauvegardés dans le fichier 28112007_14243803.zip

------------------------------------------------------------------------
Auteur : !aur3n7 Contact: https://www.ionos.fr/
------------------------------------------------------------------------

--------------------------------------------- END ---------------------------------------------

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:31:32, on 28/11/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\TODDSrv.exe
C:\WINDOWS\system32\notepad.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
C:\WINDOWS\system32\ZoomingHook.exe
C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
C:\WINDOWS\system32\TCtrlIOHook.exe
C:\Program Files\TOSHIBA\Commandes TOSHIBA\TFncKy.exe
C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\WINDOWS\system32\TPSBattM.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\TOSHIBA\TOSHIBA Direct Disc Writer\ddwmon.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\ltmoh\Ltmoh.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\Microsoft Encarta\Microsoft Encarta 2007 - Collection\EDICT.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\iFrmewrk.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - C:\Program Files\Fichiers communs\Symantec Shared\coShared\Browser\1.0\NppBho.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO.dll
O2 - BHO: (no name) - {549B5CA7-4A86-11D7-A4DF-000874180BB3} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: Afficher Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Fichiers communs\Symantec Shared\coShared\Browser\1.0\UIBHO.dll
O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [PadTouch] C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
O4 - HKLM\..\Run: [CeEKEY] C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
O4 - HKLM\..\Run: [HWSetup] C:\Program Files\TOSHIBA\TOSHIBA Applet\HWSetup.exe hwSetUP
O4 - HKLM\..\Run: [SVPWUTIL] C:\Program Files\Toshiba\Windows Utilities\SVPWUTIL.exe SVPwUTIL
O4 - HKLM\..\Run: [TPNF] C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
O4 - HKLM\..\Run: [Zooming] ZoomingHook.exe
O4 - HKLM\..\Run: [SmoothView] C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
O4 - HKLM\..\Run: [TCtryIOHook] TCtrlIOHook.exe
O4 - HKLM\..\Run: [TFncKy] TFncKy.exe
O4 - HKLM\..\Run: [Tvs] C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [DDWMon] C:\Program Files\TOSHIBA\TOSHIBA Direct Disc Writer\\ddwmon.exe
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton Internet Security\osCheck.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [E07FDXRC_2581765] "C:\Program Files\Microsoft Encarta\Microsoft Encarta 2007 - Collection\EDICT.EXE" -m
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/menusearch.jhtml?p=ZJfox000
O8 - Extra context menu item: Download all links using BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Download all videos using BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: Download link using &BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\VAScanner\comHost.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\WINDOWS\system32\TODDSrv.exe

--
End of file - 12436 bytes
Configuration: Windows XP
Firefox 2.0.0.9

8 réponses

  1. jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 041
     
    slt
    analyse ce ficheir sur virus total: https://www.virustotal.com/gui/

    C:\d8e9w3l6u1g1.exe

    si infécté le supprimer en allant dans poste de travail puis C

    _____________________

    mets a jour java: DEMARRER puis PANNEAU DE OCNFIGURATION puis JAVA puis MISE A JOUR

    ____________________
    AVG antispyware

    https://www.01net.com/telecharger/

    Tuto :
    http://www.kachouri.com/tuto/tuto-161-avg-anti-spyware-75-pour-votre-securite.html

    ->Relance AVG AS -> "Analyse" ->"Paramètres"

    Sous la question "Comment réagir ?" :

    -> clique sur "Actions recommandées" et choisis "Quarantaines"
    -> Re-clique sur l'onglet "Analyse" puis réalise une "Analyse complète du système"

    Si un fichier est infecté en fin d'analyse

    ->Clique sur "Appliquer toutes les actions "

    ->Clique sur "Enregistrer le rapport" puis sur "Enregistrer le rapport sous".

    ->Enregistre ce fichier texte sur ton bureau ensuite colle le rapport ici

    _____________

    utilise pour supprimer tes traces

    CCLEANER: (lance un nettoyage et répare 3 fois les erreurs) sans installer la barre yahoo

    https://www.01net.com/telecharger/windows/Utilitaire/nettoyeurs_et_installeurs/fiches/32599.html
    ------------

    colle le rapport d'un scan en ligne
    avec un des suivants:

    bitdefender en ligne :
    http://www.bitdefender.fr/scan_fr/scan8/ie.html

    Panda en ligne :
    http://pandasoftware.fr

    ______________________

    recolle un rapport hijackthis et dis tes problèmes
    1
  2. Lady Mara
     
    ---------------------------------------------------------
    AVG Anti-Spyware - Rapport d'analyse
    ---------------------------------------------------------

    + Créé à: 17:31:09 28/11/2007

    + Résultat de l'analyse:

    HKLM\SOFTWARE\Classes\WR -> Adware.Generic : Ignoré.
    :mozilla.112:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.247realmedia : Ignoré.
    :mozilla.113:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.247realmedia : Ignoré.
    :mozilla.114:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.247realmedia : Ignoré.
    :mozilla.115:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.247realmedia : Ignoré.
    :mozilla.116:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.247realmedia : Ignoré.
    :mozilla.119:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.247realmedia : Ignoré.
    :mozilla.120:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.247realmedia : Ignoré.
    :mozilla.294:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
    :mozilla.326:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
    :mozilla.46:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
    :mozilla.483:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
    :mozilla.48:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
    :mozilla.49:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
    :mozilla.50:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
    :mozilla.51:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
    :mozilla.52:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
    :mozilla.53:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
    :mozilla.54:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
    :mozilla.55:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
    :mozilla.56:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
    :mozilla.732:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
    :mozilla.785:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
    C:\Documents and Settings\Anne\Cookies\anne@2o7[2].txt -> TrackingCookie.2o7 : Ignoré.
    C:\Documents and Settings\Anne\Cookies\anne@fnac.112.2o7[1].txt -> TrackingCookie.2o7 : Ignoré.
    C:\Documents and Settings\Anne\Cookies\anne@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Ignoré.
    C:\Documents and Settings\Anne\Cookies\anne@sfr.122.2o7[1].txt -> TrackingCookie.2o7 : Ignoré.
    :mozilla.799:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adbrite : Ignoré.
    :mozilla.800:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adbrite : Ignoré.
    :mozilla.140:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
    :mozilla.141:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
    :mozilla.142:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
    :mozilla.143:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
    :mozilla.144:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
    :mozilla.145:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
    :mozilla.146:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
    :mozilla.147:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
    :mozilla.148:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
    :mozilla.497:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adtech : Ignoré.
    :mozilla.498:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adtech : Ignoré.
    :mozilla.29:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
    :mozilla.30:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
    :mozilla.31:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
    :mozilla.32:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
    :mozilla.33:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
    :mozilla.546:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adviva : Ignoré.
    :mozilla.309:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Atdmt : Ignoré.
    C:\Documents and Settings\Anne\Cookies\anne@atdmt[2].txt -> TrackingCookie.Atdmt : Ignoré.
    :mozilla.63:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Bluestreak : Ignoré.
    C:\Documents and Settings\Anne\Cookies\anne@bluestreak[2].txt -> TrackingCookie.Bluestreak : Ignoré.
    :mozilla.10:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Ignoré.
    :mozilla.11:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Ignoré.
    :mozilla.12:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Ignoré.
    :mozilla.13:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Ignoré.
    :mozilla.14:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Ignoré.
    :mozilla.15:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Ignoré.
    :mozilla.16:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Ignoré.
    :mozilla.17:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Ignoré.
    :mozilla.18:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Ignoré.
    :mozilla.19:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Ignoré.
    :mozilla.8:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Ignoré.
    :mozilla.9:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Ignoré.
    :mozilla.255:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Comclick : Ignoré.
    :mozilla.256:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Comclick : Ignoré.
    :mozilla.257:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Comclick : Ignoré.
    C:\Documents and Settings\Anne\Cookies\anne@data.coremetrics[1].txt -> TrackingCookie.Coremetrics : Ignoré.
    :mozilla.372:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Counted : Ignoré.
    :mozilla.68:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Doubleclick : Ignoré.
    C:\Documents and Settings\Anne\Cookies\anne@doubleclick[1].txt -> TrackingCookie.Doubleclick : Ignoré.
    :mozilla.247:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Estat : Ignoré.
    C:\Documents and Settings\Anne\Cookies\anne@estat[1].txt -> TrackingCookie.Estat : Ignoré.
    :mozilla.381:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Euroclick : Ignoré.
    :mozilla.382:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Euroclick : Ignoré.
    :mozilla.383:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Euroclick : Ignoré.
    :mozilla.384:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Euroclick : Ignoré.
    :mozilla.121:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Fastclick : Ignoré.
    :mozilla.122:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Fastclick : Ignoré.
    :mozilla.123:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Fastclick : Ignoré.
    :mozilla.124:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Fastclick : Ignoré.
    :mozilla.125:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Fastclick : Ignoré.
    :mozilla.126:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Fastclick : Ignoré.
    :mozilla.491:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Googleadservices : Ignoré.
    :mozilla.635:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Googleadservices : Ignoré.
    :mozilla.671:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Googleadservices : Ignoré.
    :mozilla.267:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Hitbox : Ignoré.
    :mozilla.268:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Hitbox : Ignoré.
    :mozilla.269:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Hitbox : Ignoré.
    :mozilla.554:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Hitbox : Ignoré.
    :mozilla.696:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Hitbox : Ignoré.
    :mozilla.270:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Imrworldwide : Ignoré.
    :mozilla.271:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Imrworldwide : Ignoré.
    :mozilla.258:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Mediaplex : Ignoré.
    C:\Documents and Settings\Anne\Cookies\anne@mediaplex[1].txt -> TrackingCookie.Mediaplex : Ignoré.
    :mozilla.198:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Overture : Ignoré.
    :mozilla.199:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Overture : Ignoré.
    :mozilla.200:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Overture : Ignoré.
    :mozilla.233:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Planetactive : Ignoré.
    C:\Documents and Settings\Anne\Cookies\anne@ads.pointroll[1].txt -> TrackingCookie.Pointroll : Ignoré.
    :mozilla.337:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Questionmarket : Ignoré.
    :mozilla.338:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Questionmarket : Ignoré.
    :mozilla.906:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Real : Ignoré.
    :mozilla.907:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Real : Ignoré.
    :mozilla.908:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Real : Ignoré.
    :mozilla.910:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Real : Ignoré.
    :mozilla.643:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Realmedia : Ignoré.
    :mozilla.644:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Realmedia : Ignoré.
    :mozilla.645:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Realmedia : Ignoré.
    :mozilla.646:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Realmedia : Ignoré.
    :mozilla.653:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Revsci : Ignoré.
    :mozilla.654:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Revsci : Ignoré.
    :mozilla.655:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Revsci : Ignoré.
    :mozilla.656:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Revsci : Ignoré.
    :mozilla.657:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Revsci : Ignoré.
    :mozilla.658:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Revsci : Ignoré.
    :mozilla.659:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Revsci : Ignoré.
    :mozilla.69:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
    :mozilla.70:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
    :mozilla.71:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
    :mozilla.72:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
    :mozilla.73:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
    :mozilla.74:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
    :mozilla.75:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
    C:\Documents and Settings\Anne\Cookies\anne@bs.serving-sys[1].txt -> TrackingCookie.Serving-sys : Ignoré.
    C:\Documents and Settings\Anne\Cookies\anne@serving-sys[2].txt -> TrackingCookie.Serving-sys : Ignoré.
    :mozilla.631:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Sitestat : Ignoré.
    :mozilla.633:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Sitestat : Ignoré.
    :mozilla.961:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Sitestat : Ignoré.
    :mozilla.962:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Sitestat : Ignoré.
    :mozilla.171:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
    :mozilla.172:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
    :mozilla.64:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
    :mozilla.65:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
    :mozilla.66:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
    :mozilla.67:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
    C:\Documents and Settings\Anne\Cookies\anne@smartadserver[1].txt -> TrackingCookie.Smartadserver : Ignoré.
    C:\Documents and Settings\Anne\Cookies\anne@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Ignoré.
    :mozilla.722:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Statcounter : Ignoré.
    :mozilla.725:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Statcounter : Ignoré.
    :mozilla.726:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Statcounter : Ignoré.
    :mozilla.727:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Statcounter : Ignoré.
    :mozilla.728:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Statcounter : Ignoré.
    C:\Documents and Settings\Anne\Cookies\anne@statcounter[1].txt -> TrackingCookie.Statcounter : Ignoré.
    :mozilla.414:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Tradedoubler : Ignoré.
    :mozilla.415:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Tradedoubler : Ignoré.
    :mozilla.416:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Tradedoubler : Ignoré.
    C:\Documents and Settings\Anne\Cookies\anne@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Ignoré.
    :mozilla.595:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Tribalfusion : Ignoré.
    :mozilla.201:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
    :mozilla.202:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
    :mozilla.203:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
    C:\Documents and Settings\Anne\Cookies\anne@weborama[1].txt -> TrackingCookie.Weborama : Ignoré.
    :mozilla.128:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignoré.
    :mozilla.129:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignoré.
    :mozilla.130:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignoré.
    :mozilla.131:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignoré.
    :mozilla.132:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignoré.
    :mozilla.133:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignoré.
    :mozilla.134:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignoré.
    :mozilla.135:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignoré.
    :mozilla.139:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignoré.
    :mozilla.765:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Zedo : Ignoré.
    :mozilla.766:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Zedo : Ignoré.
    :mozilla.767:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Zedo : Ignoré.
    C:\Documents and Settings\Anne\Cookies\anne@zedo[2].txt -> TrackingCookie.Zedo : Ignoré.

    Fin du rapport

    >
    >

    ;***********************************************************************************************************************************************************************************
    ANALYSIS: 2007-11-28 17:42:34
    PROTECTIONS: 1
    MALWARE: 2
    SUSPECTS: 0
    ;***********************************************************************************************************************************************************************************
    PROTECTIONS
    Description Version Active Updated
    ;===================================================================================================================================================================================
    Norton Internet Security 2007 Yes Yes
    ;===================================================================================================================================================================================
    MALWARE
    Id Description Type Active Severity Disinfectable Disinfected Location
    ;===================================================================================================================================================================================
    00032731 application/mywebsearch HackTools No 0 Yes No HKEY_LOCAL_MACHINE\software\classes\CLSID\{147a976f-eee1-4377-8ea7-4716e4cdd239}
    00032731 application/mywebsearch HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00A6FAF1-072E-44cf-8957-5838F569A31D}
    00032731 application/mywebsearch HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\&Search\
    00032731 application/mywebsearch HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EAB-A523-4961-B6BB-170DE4475CCA}
    00032731 application/mywebsearch HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EA1-A523-4961-B6BB-170DE4475CCA}
    00032731 application/mywebsearch HackTools No 0 Yes No hkey_classes_root\clsid\{147a976f-eee1-4377-8ea7-4716e4cdd239}
    00096053 application/funweb HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8}
    00096053 application/funweb HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9FF05104-B030-46FC-94B8-81276E4E27DF}
    ;===================================================================================================================================================================================
    SUSPECTS
    Location
    ;===================================================================================================================================================================================
    ;===================================================================================================================================================================================

    >

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 17:44:36, on 28/11/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16544)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
    C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
    C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
    C:\WINDOWS\System32\FTRTSVC.exe
    C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
    C:\WINDOWS\system32\TODDSrv.exe
    C:\WINDOWS\system32\hkcmd.exe
    C:\WINDOWS\system32\igfxpers.exe
    C:\WINDOWS\RTHDCPL.EXE
    C:\Program Files\Apoint2K\Apoint.exe
    C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
    C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
    C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
    C:\WINDOWS\system32\ZoomingHook.exe
    C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
    C:\WINDOWS\system32\TCtrlIOHook.exe
    C:\Program Files\TOSHIBA\Commandes TOSHIBA\TFncKy.exe
    C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
    C:\Program Files\Apoint2K\Apntex.exe
    C:\WINDOWS\system32\TPSBattM.exe
    C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
    C:\Program Files\TOSHIBA\TOSHIBA Direct Disc Writer\ddwmon.exe
    C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
    C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
    C:\Program Files\ltmoh\Ltmoh.exe
    C:\WINDOWS\AGRSMMSG.exe
    C:\Program Files\QuickTime\qttask.exe
    C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
    C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
    C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe
    C:\Program Files\Microsoft Encarta\Microsoft Encarta 2007 - Collection\EDICT.EXE
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Intel\Wireless\Bin\iFrmewrk.exe
    C:\Program Files\MSN Messenger\msnmsgr.exe
    C:\Program Files\MSN Messenger\usnsvc.exe
    C:\Program Files\eMule\eMule.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCSVR.EXE
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
    O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - C:\Program Files\Fichiers communs\Symantec Shared\coShared\Browser\1.0\NppBho.dll
    O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO.dll
    O2 - BHO: (no name) - {549B5CA7-4A86-11D7-A4DF-000874180BB3} - (no file)
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
    O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
    O3 - Toolbar: Afficher Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Fichiers communs\Symantec Shared\coShared\Browser\1.0\UIBHO.dll
    O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
    O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
    O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
    O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
    O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
    O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
    O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
    O4 - HKLM\..\Run: [PadTouch] C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
    O4 - HKLM\..\Run: [CeEKEY] C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
    O4 - HKLM\..\Run: [HWSetup] C:\Program Files\TOSHIBA\TOSHIBA Applet\HWSetup.exe hwSetUP
    O4 - HKLM\..\Run: [SVPWUTIL] C:\Program Files\Toshiba\Windows Utilities\SVPWUTIL.exe SVPwUTIL
    O4 - HKLM\..\Run: [TPNF] C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
    O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
    O4 - HKLM\..\Run: [Zooming] ZoomingHook.exe
    O4 - HKLM\..\Run: [SmoothView] C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
    O4 - HKLM\..\Run: [TCtryIOHook] TCtrlIOHook.exe
    O4 - HKLM\..\Run: [TFncKy] TFncKy.exe
    O4 - HKLM\..\Run: [Tvs] C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
    O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
    O4 - HKLM\..\Run: [DDWMon] C:\Program Files\TOSHIBA\TOSHIBA Direct Disc Writer\\ddwmon.exe
    O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
    O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
    O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe
    O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
    O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
    O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton Internet Security\osCheck.exe"
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
    O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
    O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
    O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
    O4 - HKCU\..\Run: [E07FDXRC_2581765] "C:\Program Files\Microsoft Encarta\Microsoft Encarta 2007 - Collection\EDICT.EXE" -m
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
    O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/menusearch.jhtml?p=ZJfox000
    O8 - Extra context menu item: Download all links using BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
    O8 - Extra context menu item: Download all videos using BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
    O8 - Extra context menu item: Download link using &BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
    O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
    O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
    O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
    O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
    O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\VAScanner\comHost.exe
    O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
    O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\isPwdSvc.exe
    O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
    O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
    O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
    O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
    O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
    O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
    O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
    O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\WINDOWS\system32\TODDSrv.exe
    0
  3. jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 041
     
    slt,
    refais avg antispyware car tu as ignoré ce qui a ete trouvé et il faut tout supprimer

    ____________

    Ouvrez le poste de travail puis ouvrez le disque C et le dossier Program Files, supprimez les dossiers suivants : si presents
    FunWebProducts
    MyWebSearch

    ____________

    lance cwshredder (faire fix)
    https://www.trendmicro.com/en_us/forHome.html
    https://www.01net.com/actualites/
    https://www.01net.com/telecharger/windows/Securite/anti-spyware/fiches/27497.html

    _______________

    lance regcleaner et nettoie ton registre

    http://manuelsdaide.com/RegCleaner/RegCleaner.htm

    _________________

    recolle un rapport hijackthis
    0
  4. Lady Mara
     
    ---------------------------------------------------------
    AVG Anti-Spyware - Rapport d'analyse
    ---------------------------------------------------------

    + Créé à: 19:33:33 28/11/2007

    + Résultat de l'analyse:

    HKLM\SOFTWARE\Classes\WR -> Adware.Generic : Nettoyé et sauvegardé (mise en quarantaine).
    :mozilla.16:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.
    :mozilla.21:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.
    :mozilla.22:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.
    :mozilla.23:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.
    :mozilla.24:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.
    :mozilla.25:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.
    C:\Documents and Settings\Anne\Cookies\anne@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
    :mozilla.50:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
    C:\Documents and Settings\Anne\Cookies\anne@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé.
    :mozilla.28:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
    :mozilla.29:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
    :mozilla.30:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
    :mozilla.31:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
    :mozilla.32:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
    :mozilla.33:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
    :mozilla.34:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
    :mozilla.35:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
    :mozilla.36:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
    :mozilla.67:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Netflame : Nettoyé.
    :mozilla.44:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
    :mozilla.47:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
    :mozilla.48:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
    :mozilla.49:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
    :mozilla.51:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
    C:\Documents and Settings\Anne\Cookies\anne@weborama[1].txt -> TrackingCookie.Weborama : Nettoyé.
    :mozilla.10:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
    :mozilla.12:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
    :mozilla.13:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
    :mozilla.14:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
    :mozilla.15:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
    :mozilla.6:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
    :mozilla.7:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
    :mozilla.8:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
    :mozilla.9:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
    C:\Documents and Settings\Anne\Cookies\anne@zedo[1].txt -> TrackingCookie.Zedo : Nettoyé.

    Fin du rapport

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 19:50:27, on 28/11/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16544)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
    C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
    C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
    C:\WINDOWS\System32\FTRTSVC.exe
    C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
    C:\WINDOWS\system32\TODDSrv.exe
    C:\WINDOWS\system32\hkcmd.exe
    C:\WINDOWS\system32\igfxpers.exe
    C:\WINDOWS\RTHDCPL.EXE
    C:\Program Files\Apoint2K\Apoint.exe
    C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
    C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
    C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
    C:\WINDOWS\system32\ZoomingHook.exe
    C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
    C:\WINDOWS\system32\TCtrlIOHook.exe
    C:\Program Files\TOSHIBA\Commandes TOSHIBA\TFncKy.exe
    C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
    C:\Program Files\Apoint2K\Apntex.exe
    C:\WINDOWS\system32\TPSBattM.exe
    C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
    C:\Program Files\TOSHIBA\TOSHIBA Direct Disc Writer\ddwmon.exe
    C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
    C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
    C:\Program Files\ltmoh\Ltmoh.exe
    C:\WINDOWS\AGRSMMSG.exe
    C:\Program Files\QuickTime\qttask.exe
    C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
    C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
    C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe
    C:\Program Files\Microsoft Encarta\Microsoft Encarta 2007 - Collection\EDICT.EXE
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Intel\Wireless\Bin\iFrmewrk.exe
    C:\Program Files\MSN Messenger\msnmsgr.exe
    C:\Program Files\MSN Messenger\usnsvc.exe
    C:\Program Files\eMule\eMule.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
    C:\Program Files\iTunes\iTunes.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCSVR.EXE
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
    O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - C:\Program Files\Fichiers communs\Symantec Shared\coShared\Browser\1.0\NppBho.dll
    O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO.dll
    O2 - BHO: (no name) - {549B5CA7-4A86-11D7-A4DF-000874180BB3} - (no file)
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
    O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
    O3 - Toolbar: Afficher Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Fichiers communs\Symantec Shared\coShared\Browser\1.0\UIBHO.dll
    O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
    O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
    O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
    O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
    O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
    O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
    O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
    O4 - HKLM\..\Run: [PadTouch] C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
    O4 - HKLM\..\Run: [CeEKEY] C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
    O4 - HKLM\..\Run: [HWSetup] C:\Program Files\TOSHIBA\TOSHIBA Applet\HWSetup.exe hwSetUP
    O4 - HKLM\..\Run: [SVPWUTIL] C:\Program Files\Toshiba\Windows Utilities\SVPWUTIL.exe SVPwUTIL
    O4 - HKLM\..\Run: [TPNF] C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
    O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
    O4 - HKLM\..\Run: [Zooming] ZoomingHook.exe
    O4 - HKLM\..\Run: [SmoothView] C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
    O4 - HKLM\..\Run: [TCtryIOHook] TCtrlIOHook.exe
    O4 - HKLM\..\Run: [TFncKy] TFncKy.exe
    O4 - HKLM\..\Run: [Tvs] C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
    O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
    O4 - HKLM\..\Run: [DDWMon] C:\Program Files\TOSHIBA\TOSHIBA Direct Disc Writer\\ddwmon.exe
    O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
    O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe
    O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
    O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
    O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
    O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton Internet Security\osCheck.exe"
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
    O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
    O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
    O4 - HKCU\..\Run: [E07FDXRC_2581765] "C:\Program Files\Microsoft Encarta\Microsoft Encarta 2007 - Collection\EDICT.EXE" -m
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
    O8 - Extra context menu item: Download all links using BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
    O8 - Extra context menu item: Download all videos using BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
    O8 - Extra context menu item: Download link using &BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
    O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
    O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
    O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
    O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
    O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\VAScanner\comHost.exe
    O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
    O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\isPwdSvc.exe
    O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
    O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
    O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
    O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
    O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
    O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
    O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
    O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\WINDOWS\system32\TODDSrv.exe
    0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 041
     
    desinstalle via ton panneau de configuration bitcomet

    _____________

    Relance HijackThis, choisis "do a scan only" coche la case devant les lignes ci-dessous et clic en bas sur "fix checked".

    O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO.dll
    O2 - BHO: (no name) - {549B5CA7-4A86-11D7-A4DF-000874180BB3} - (no file)
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll

    O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)

    O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE

    O4 - HKLM\..\Run: [TPSMain] TPSMain.exe

    O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe

    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
    O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"

    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
    O8 - Extra context menu item: Download all links using BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
    O8 - Extra context menu item: Download all videos using BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
    O8 - Extra context menu item: Download link using &BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm

    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll

    O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)

    _____________________

    encore des problemes?

    si oui colle le rapport
    bitdefender en ligne :
    http://www.bitdefender.fr/scan_fr/scan8/ie.html
    0
  7. Lady Mara
     
    Non merci, plus aucun problème.
    Un grand merci pour l'aide et le temps consacré à cela.
    Bonne continuation!
    0
  8. SOSO
     
    bonjour tout le monde j'ai le meme probleme une photo ma été envoyer sur msn et j'ai cliker et je voudrai au plus vite le suprimer avant qu'il ne détruise tout je vous laisse le rapport de mon ativiruse :

    --- Search result list ---
    Win32.Small.azl: [SBI $02AFBE7E] Réglages Autorun (Valeur du registre, nothing done)
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\runner1

    Win32.Small.azl: [SBI $A95A5F26] Exécutable (Fichier, nothing done)
    C:\WINDOWS\mrofinu1423.exe

    Win32.Small.azl: [SBI $A95A5F26] Exécutable (Fichier, nothing done)
    C:\WINDOWS\mrofinu1423.exe.tmp

    Tradedoubler: Cookie traceur (Internet Explorer: saous) (Cookie, nothing done)

    DoubleClick: Cookie traceur (Internet Explorer: saous) (Cookie, nothing done)

    BlueStreak: Cookie traceur (Internet Explorer: saous) (Cookie, nothing done)

    Marketengines: Cookie traceur (Firefox: default) (Cookie, nothing done)

    --- Spybot - Search & Destroy version: 1.5 (build: 20070830) ---

    2007-08-31 blindman.exe (1.0.0.6)
    2007-08-31 SDMain.exe (1.0.0.4)
    2007-08-31 SDUpdate.exe (1.0.6.4)
    2007-08-31 SDWinSec.exe (1.0.0.8)
    2007-08-31 SpybotSD.exe (1.5.1.15)
    2007-08-31 TeaTimer.exe (1.5.0.9)
    2008-03-05 unins000.exe (51.46.0.0)
    2007-08-31 Update.exe (1.4.0.5)
    2007-08-31 advcheck.dll (1.5.3.0)
    2007-04-02 aports.dll (2.1.0.0)
    2007-04-02 DelZip179.dll (1.79.5.3)
    2007-08-31 SDHelper.dll (1.5.0.8)
    2007-08-31 Tools.dll (2.1.2.0)
    2008-03-05 Includes\Cookies.sbi (*)
    2007-12-26 Includes\Dialer.sbi (*)
    2008-03-05 Includes\DialerC.sbi (*)
    2008-03-05 Includes\HeavyDuty.sbi (*)
    2008-03-05 Includes\Hijackers.sbi (*)
    2008-03-05 Includes\HijackersC.sbi (*)
    2008-02-27 Includes\Keyloggers.sbi (*)
    2008-03-05 Includes\KeyloggersC.sbi (*)
    2004-11-29 Includes\LSP.sbi (*)
    2008-02-27 Includes\Malware.sbi (*)
    2008-03-05 Includes\MalwareC.sbi (*)
    2008-02-20 Includes\PUPS.sbi (*)
    2008-03-05 Includes\PUPSC.sbi (*)
    2008-03-05 Includes\Revision.sbi (*)
    2008-01-09 Includes\Security.sbi (*)
    2008-03-05 Includes\SecurityC.sbi (*)
    2008-02-20 Includes\Spybots.sbi (*)
    2008-03-05 Includes\SpybotsC.sbi (*)
    2007-11-06 Includes\Tracks.uti
    2008-02-27 Includes\Trojans.sbi (*)
    2008-03-05 Includes\TrojansC.sbi (*)
    2008-12-24 Plugins\TCPIPAddress.dll

    --- System information ---
    Windows XP (Build: 2600) Service Pack 2 (5.1.2600)
    / Internet Explorer 6 / SP1: Correctif Windows XP - KB912812
    / Internet Explorer 6 / SP1: Correctif Windows XP - KB918439
    / Internet Explorer 6 / SP1: Correctif Windows XP - KB918899
    / Internet Explorer 6 / SP1: Correctif Windows XP - KB925486
    / Microsoft .NET Framework 2.0: This Security Update is for Microsoft .NET Framework 2.0. \n
    If you later install a more recent service pack, this Security Update will be uninstalled automatically. \n
    For more information, visit https://support.microsoft.com/en-us/help/917283/ms06-033-a-vulnerability-in-asp-net-could-allow-information-disclosure
    / Microsoft .NET Framework 2.0: This Security Update is for Microsoft .NET Framework 2.0. \n
    If you later install a more recent service pack, this Security Update will be uninstalled automatically. \n
    For more information, visit https://support.microsoft.com/en-us/help/922770
    / MSXML4SP2: FIX: ASP stops responding when calling Response.Redirect to another server using msxml4 sp2
    / MSXML4SP2: Security update for MSXML4 SP2 (KB936181)
    / Outlook Express 6 / SP1: Correctif Windows XP - KB911567
    / Windows / SP1: Microsoft National Language Support Downlevel APIs
    / Windows Media Format 11 SDK: Hotfix for Windows Media Format 11 SDK (KB929399)
    / Windows Media Player 10: Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)
    / Windows Media Player 11: Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)
    / Windows Media Player 11: Correctif pour Lecteur Windows Media 11 (KB939683)
    / Windows Media Player 6.4: Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398)
    / Windows XP / SP10: Microsoft Compression Client Pack 1.0 for Windows XP
    / Windows XP / SP3: Windows Installer 3.1 (KB893803)
    / Windows XP / SP3: Hotfix for Windows XP (KB915865)
    / Windows XP / SP3: Hotfix for Windows XP (KB926239)

    --- Startup entries list ---
    Located: HK_LM:Run, Broadcom Wireless Manager UI
    command: C:\WINDOWS\System32\WLTRAY.exe
    file: C:\WINDOWS\System32\WLTRAY.exe
    size: 1347584
    MD5: 234C29A211817B5C69C2E4C4C4F71750

    Located: HK_LM:Run, Dell QuickSet
    command: C:\Program Files\Dell\QuickSet\quickset.exe
    file: C:\Program Files\Dell\QuickSet\quickset.exe
    size: 1032192
    MD5: 90753C9E5C84B3EC5C299B554E5A86E3

    Located: HK_LM:Run, Flash Media
    command: C:\DOCUME~1\saous\LOCALS~1\Temp\services.exe
    file: C:\DOCUME~1\saous\LOCALS~1\Temp\services.exe
    size: 0
    MD5: D41D8CD98F00B204E9800998ECF8427E
    Warning: if the file is actually larger than 0 bytes,
    the checksum could not be properly calculated!

    Located: HK_LM:Run, IMJPMIG8.1
    command: "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
    file: C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE
    size: 208952
    MD5: 7BBE4CF421AECC7F0226EDD75F12079F

    Located: HK_LM:Run, IntelWireless
    command: "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
    file: C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
    size: 385024
    MD5: 0D4E3D3495CCDC0232D9196E0D27B23D

    Located: HK_LM:Run, IntelZeroConfig
    command: "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
    file: C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
    size: 401408
    MD5: E73D807F803C538F73994ECB92A9C92B

    Located: HK_LM:Run, iTunesHelper
    command: "C:\Program Files\iTunes\iTunesHelper.exe"
    file: C:\Program Files\iTunes\iTunesHelper.exe
    size: 270648
    MD5: 018C1B1379D326ABFAA89EDA7E43F95A

    Located: HK_LM:Run, KernelFaultCheck
    command: %systemroot%\system32\dumprep 0 -k
    file: C:\WINDOWS\system32\dumprep.exe
    size: 10752
    MD5: BA510A646B02CB44137B8296DB2783D3

    Located: HK_LM:Run, MsmqIntCert
    command: regsvr32 /s mqrt.dll
    file: C:\WINDOWS\system32\reg.exe
    size: 53248
    MD5: 5BC49B61651EDBC0A80D2DE16D7F422C

    Located: HK_LM:Run, MSPY2002
    command: C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
    file: C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe
    size: 59392
    MD5: 1B17E09C1223F6D17336D2DD7A1AF4F4

    Located: HK_LM:Run, PCDAS
    command: C:\Program Files\Defenza\pcd-as.exe /10003
    file: C:\Program Files\Defenza\pcd-as.exe
    size: 1359872
    MD5: 5B42206B830E983E73E3C7EBE07EEA28

    Located: HK_LM:Run, PHIME2002A
    command: C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
    file: C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE
    size: 455168
    MD5: 024DC0F68DF5FD6AE9DD82DFBAF479D6

    Located: HK_LM:Run, PHIME2002ASync
    command: C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
    file: C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE
    size: 455168
    MD5: 024DC0F68DF5FD6AE9DD82DFBAF479D6

    Located: HK_LM:Run, QuickTime Task
    command: "C:\Program Files\QuickTime\qttask.exe" -atboottime
    file: C:\Program Files\QuickTime\qttask.exe
    size: 286720
    MD5: 49CCFBE5D5225B9D3CC78C09DEE147D0

    Located: HK_LM:Run, SunJavaUpdateSched
    command: "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
    file: C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
    size: 132496
    MD5: D4F0F7437327DBAA264338BAAFB5E5AF

    Located: HK_LM:Run, Synchronization Manager
    command: %SystemRoot%\system32\mobsync.exe /logon
    file: C:\WINDOWS\system32\mobsync.exe
    size: 144384
    MD5: E2EEDBC49584689B71DC38144E5FF9D0

    Located: HK_LM:Run, TkBellExe
    command: "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
    file: C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
    size: 185896
    MD5: 74BC945EB2584E90619A56EF5028AB0F

    Located: HK_LM:Run, UnlockerAssistant
    command: "C:\Program Files\Unlocker\UnlockerAssistant.exe" -H
    file: C:\Program Files\Unlocker\UnlockerAssistant.exe
    size: 15872
    MD5: 3FFE8752B77382C5050006C31781D05A

    Located: HK_CU:Run, CTFMON.EXE
    where: .DEFAULT...
    command: C:\WINDOWS\System32\CTFMON.EXE
    file: C:\WINDOWS\System32\CTFMON.EXE
    size: 15360
    MD5: 64E41E8FEE655B03E3F19DED21BA5118

    Located: HK_CU:Run, msnmsgr
    where: .DEFAULT...
    command: "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    file: C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    size: 5724184
    MD5: 97384875B6D03831B2D1820AB8952F67

    Located: HK_CU:Run, CTFMON.EXE
    where: S-1-5-19...
    command: C:\WINDOWS\System32\CTFMON.EXE
    file: C:\WINDOWS\System32\CTFMON.EXE
    size: 15360
    MD5: 64E41E8FEE655B03E3F19DED21BA5118

    Located: HK_CU:Run, CTFMON.EXE
    where: S-1-5-20...
    command: C:\WINDOWS\System32\CTFMON.EXE
    file: C:\WINDOWS\System32\CTFMON.EXE
    size: 15360
    MD5: 64E41E8FEE655B03E3F19DED21BA5118

    Located: HK_CU:Run, CTFMON.EXE
    where: S-1-5-21-842925246-839522115-682003330-1003...
    command: C:\WINDOWS\system32\ctfmon.exe
    file: C:\WINDOWS\system32\ctfmon.exe
    size: 15360
    MD5: 64E41E8FEE655B03E3F19DED21BA5118

    Located: HK_CU:Run, DellSupport
    where: S-1-5-21-842925246-839522115-682003330-1003...
    command: "C:\PROGRA~1\DELLSU~1\DSAgnt.exe" /startup
    file: C:\PROGRA~1\DELLSU~1\DSAgnt.exe
    size: 332800
    MD5: A40D952C0355C85867517AA529A06741

    Located: HK_CU:Run, MsnMsgr
    where: S-1-5-21-842925246-839522115-682003330-1003...
    command: "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
    file: C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
    size: 5724184
    MD5: 97384875B6D03831B2D1820AB8952F67

    Located: HK_CU:Run, SpybotSD TeaTimer
    where: S-1-5-21-842925246-839522115-682003330-1003...
    command: C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    file: C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    size: 1460560
    MD5: B7D4586BFC0DD6C3BE7DCCC252A3E97E

    Located: HK_CU:Run, CTFMON.EXE
    where: S-1-5-18...
    command: C:\WINDOWS\System32\CTFMON.EXE
    file: C:\WINDOWS\System32\CTFMON.EXE
    size: 15360
    MD5: 64E41E8FEE655B03E3F19DED21BA5118

    Located: HK_CU:Run, msnmsgr
    where: S-1-5-18...
    command: "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    file: C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    size: 5724184
    MD5: 97384875B6D03831B2D1820AB8952F67

    Located: WinLogon, AtiExtEvent
    command: Ati2evxx.dll
    file: Ati2evxx.dll
    size: 0
    MD5: D41D8CD98F00B204E9800998ECF8427E
    Warning: if the file is actually larger than 0 bytes,
    the checksum could not be properly calculated!

    Located: WinLogon, crypt32chain
    command: crypt32.dll
    file: crypt32.dll
    size: 0
    MD5: D41D8CD98F00B204E9800998ECF8427E
    Warning: if the file is actually larger than 0 bytes,
    the checksum could not be properly calculated!

    Located: WinLogon, cryptnet
    command: cryptnet.dll
    file: cryptnet.dll
    size: 0
    MD5: D41D8CD98F00B204E9800998ECF8427E
    Warning: if the file is actually larger than 0 bytes,
    the checksum could not be properly calculated!

    Located: WinLogon, cscdll
    command: cscdll.dll
    file: cscdll.dll
    size: 0
    MD5: D41D8CD98F00B204E9800998ECF8427E
    Warning: if the file is actually larger than 0 bytes,
    the checksum could not be properly calculated!

    Located: WinLogon, IntelWireless
    command: C:\Program Files\Intel\Wireless\Bin\LgNotify.dll
    file: C:\Program Files\Intel\Wireless\Bin\LgNotify.dll
    size: 0
    MD5: D41D8CD98F00B204E9800998ECF8427E
    Warning: if the file is actually larger than 0 bytes,
    the checksum could not be properly calculated!

    Located: WinLogon, ScCertProp
    command: wlnotify.dll
    file: wlnotify.dll
    size: 0
    MD5: D41D8CD98F00B204E9800998ECF8427E
    Warning: if the file is actually larger than 0 bytes,
    the checksum could not be properly calculated!

    Located: WinLogon, Schedule
    command: wlnotify.dll
    file: wlnotify.dll
    size: 0
    MD5: D41D8CD98F00B204E9800998ECF8427E
    Warning: if the file is actually larger than 0 bytes,
    the checksum could not be properly calculated!

    Located: WinLogon, sclgntfy
    command: sclgntfy.dll
    file: sclgntfy.dll
    size: 0
    MD5: D41D8CD98F00B204E9800998ECF8427E
    Warning: if the file is actually larger than 0 bytes,
    the checksum could not be properly calculated!

    Located: WinLogon, SensLogn
    command: WlNotify.dll
    file: WlNotify.dll
    size: 0
    MD5: D41D8CD98F00B204E9800998ECF8427E
    Warning: if the file is actually larger than 0 bytes,
    the checksum could not be properly calculated!

    Located: WinLogon, termsrv
    command: wlnotify.dll
    file: wlnotify.dll
    size: 0
    MD5: D41D8CD98F00B204E9800998ECF8427E
    Warning: if the file is actually larger than 0 bytes,
    the checksum could not be properly calculated!

    Located: WinLogon, WgaLogon
    command: WgaLogon.dll
    file: WgaLogon.dll
    size: 0
    MD5: D41D8CD98F00B204E9800998ECF8427E
    Warning: if the file is actually larger than 0 bytes,
    the checksum could not be properly calculated!

    Located: WinLogon, wlballoon
    command: wlnotify.dll
    file: wlnotify.dll
    size: 0
    MD5: D41D8CD98F00B204E9800998ECF8427E
    Warning: if the file is actually larger than 0 bytes,
    the checksum could not be properly calculated!

    Located: WinLogon, WRNotifier
    command: WRLogonNTF.dll
    file: WRLogonNTF.dll
    size: 0
    MD5: D41D8CD98F00B204E9800998ECF8427E
    Warning: if the file is actually larger than 0 bytes,
    the checksum could not be properly calculated!

    --- Browser helper object list ---
    {3049C3E9-B461-4BC5-8870-4C09146192CA} (RealPlayer Download and Record Plugin for Internet Explorer)
    location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
    BHO name:
    CLSID name: RealPlayer Download and Record Plugin for Internet Explorer
    Path: C:\Program Files\Real\RealPlayer\
    Long name: rpbrowserrecordplugin.dll
    Short name: RPBROW~1.DLL
    Date (created): 26/02/2008 15:38:46
    Date (last access): 05/03/2008 23:56:46
    Date (last write): 26/02/2008 15:38:46
    Filesize: 370296
    Attributes: archive
    MD5: 4D630E9EF94CF8814DFD0E5938230822
    CRC32: 02C3DBBF
    Version: 1.0.0.522

    {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class)
    location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
    BHO name:
    CLSID name: SSVHelper Class
    Path: C:\Program Files\Java\jre1.6.0_03\bin\
    Long name: ssv.dll
    Short name:
    Date (created): 27/02/2008 13:54:20
    Date (last access): 05/03/2008 23:19:22
    Date (last write): 25/09/2007 01:11:34
    Filesize: 501136
    Attributes: archive
    MD5: D787E3123FAD2BD58AB45B9A5C360ACD
    CRC32: DDC625C2
    Version: 6.0.30.5

    {7E853D72-626A-48EC-A868-BA8D5E23E045} ()
    location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
    BHO name:
    CLSID name:

    {9030D464-4C02-4ABF-8ECC-5164760863C6} (Programme d'aide de l'Assistant de connexion Windows Live)
    location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
    BHO name:
    CLSID name: Programme d'aide de l'Assistant de connexion Windows Live
    Path: C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\
    Long name: WindowsLiveLogin.dll
    Short name: WINDOW~1.DLL
    Date (created): 20/09/2007 10:30:18
    Date (last access): 05/03/2008 23:50:20
    Date (last write): 20/09/2007 10:30:18
    Filesize: 328752
    Attributes: archive
    MD5: 59CF5BF6684AFCF906CADAD39B4214DE
    CRC32: C363813C
    Version: 4.200.520.1

    {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} (Google Toolbar Notifier BHO)
    location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
    BHO name:
    CLSID name: Google Toolbar Notifier BHO
    Path: C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\
    Long name: swg.dll
    Short name:
    Date (created): 02/10/2007 19:54:30
    Date (last access): 05/03/2008 23:19:22
    Date (last write): 02/10/2007 19:54:30
    Filesize: 654832
    Attributes: archive
    MD5: B85A0FA95E24D9EA3B4181DAD716A27B
    CRC32: D4D52E25
    Version: 2.1.615.5858

    --- ActiveX list ---
    {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control)
    DPF name:
    CLSID name: Shockwave ActiveX Control
    Installer: C:\WINDOWS\Downloaded Program Files\erma.inf
    Codebase: http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
    description: Macromedia ShockWave Flash Player 7
    classification: Unknown
    known filename: SWDIR.DLL
    info link:
    info source: Patrick M. Kolla
    Path: C:\WINDOWS\system32\macromed\Director\
    Long name: SwDir.dll
    Short name:
    Date (created): 02/12/2006 23:20:00
    Date (last access): 05/03/2008 23:19:24
    Date (last write): 03/09/2006 23:10:30
    Filesize: 54960
    Attributes: archive
    MD5: EB271B21EA6104B7C6946EF32D558C91
    CRC32: CEC4E0C2
    Version: 10.1.4.20

    {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class)
    DPF name:
    CLSID name: Checkers Class
    Installer:
    Codebase: http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
    Path: C:\WINDOWS\Downloaded Program Files\
    Long name: msgrchkr.dll
    Short name:
    Date (created): 28/02/2007 13:21:04
    Date (last access): 05/03/2008 23:28:24
    Date (last write): 28/02/2007 13:21:04
    Filesize: 131472
    Attributes: archive
    MD5: 1E5CFDF9AEBDD84305A4C8154277A269
    CRC32: 73C871D0
    Version: 9.5.7087.1

    {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player)
    DPF name:
    CLSID name: Cult3D ActiveX Player
    Installer: C:\WINDOWS\Downloaded Program Files\Cult.inf
    Codebase: https://www.cult3d.com/
    Path: C:\WINDOWS\System32\Cult3D\
    Long name: IECult.dll
    Short name:
    Date (created): 07/01/2004 15:00:06
    Date (last access): 05/03/2008 23:19:24
    Date (last write): 07/01/2004 15:00:06
    Filesize: 1888256
    Attributes: archive
    MD5: 422FE2685963C2A83A8FF2139124FF9B
    CRC32: 25DD48C0
    Version: 5.3.0.228

    {3334504D-9980-0010-8000-00AA00389B71} ()
    DPF name:
    CLSID name:
    Installer: C:\WINDOWS\Downloaded Program Files\mp43dmo.inf
    Codebase: http://download.microsoft.com/download/0/C/8/0C8EDFAB-30BC-4792-898E-2DABE27B2C4D/mp43dmo.CAB

    {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class)
    DPF name:
    CLSID name: UnoCtrl Class
    Installer: C:\WINDOWS\Downloaded Program Files\GAME_UNO1.INF
    Codebase: http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
    Path: C:\WINDOWS\Downloaded Program Files\
    Long name: GAME_UNO1.dll
    Short name: GAME_U~1.DLL
    Date (created): 13/04/2007 01:14:52
    Date (last access): 05/03/2008 23:28:24
    Date (last write): 13/04/2007 01:14:52
    Filesize: 382344
    Attributes: archive
    MD5: A9F8AB66D9D05A13843623EE6B92D259
    CRC32: C9DFA641
    Version: 1.0.1201.1

    {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class)
    DPF name:
    CLSID name: WUWebControl Class
    Installer: C:\WINDOWS\Downloaded Program Files\wuweb.inf
    Codebase: http://www.update.microsoft.com/...
    Path: C:\WINDOWS\system32\
    Long name: wuweb.dll
    Short name:
    Date (created): 12/05/2006 09:21:16
    Date (last access): 05/03/2008 23:53:54
    Date (last write): 30/07/2007 19:19:46
    Filesize: 203096
    Attributes: archive
    MD5: FD984F9BFC9C62BD6546BD183CE5ADE7
    CRC32: 8092F837
    Version: 7.0.6000.381

    {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0)
    DPF name: Java Runtime Environment 1.6.0
    CLSID name: Java Plug-in 1.6.0_03
    Installer:
    Codebase: http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
    description: Sun Java
    classification: Legitimate
    known filename: %PROGRAM FILES%\JabaSoft\JRE\*\Bin\npjava131.dll
    info link:
    info source: Patrick M. Kolla
    Path: C:\Program Files\Java\jre1.6.0_03\bin\
    Long name: npjpi160_03.dll
    Short name: NPJPI1~1.DLL
    Date (created): 24/09/2007 23:31:44
    Date (last access): 05/03/2008 23:19:24
    Date (last write): 25/09/2007 01:11:34
    Filesize: 132496
    Attributes: archive
    MD5: D6A4682A6FF41832A3F1A7AB9AE08199
    CRC32: 9080B537
    Version: 6.0.30.5

    {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class)
    DPF name:
    CLSID name: MessengerStatsClient Class
    Installer:
    Codebase: http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
    Path: C:\WINDOWS\Downloaded Program Files\
    Long name: MessengerStatsPAClient.dll
    Short name: MESSEN~1.DLL
    Date (created): 22/02/2007 22:41:12
    Date (last access): 05/03/2008 23:28:24
    Date (last write): 22/02/2007 22:41:12
    Filesize: 304544
    Attributes: archive
    MD5: 8945CCA5FC4F25168E8B6F401EFAF51F
    CRC32: 0F12FD23
    Version: 9.5.6907.1

    {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0)
    DPF name: Java Runtime Environment 1.5.0
    CLSID name: Java Plug-in 1.5.0_11
    Installer:
    Codebase: http://java.sun.com/update/1.5.0/jinstall-1_5_0_11-windows-i586.cab
    Path: C:\Program Files\Java\jre1.5.0_11\bin\
    Long name: NPJPI150_11.dll
    Short name: NPJPI1~1.DLL
    Date (created): 15/12/2006 03:09:16
    Date (last access): 05/03/2008 23:19:24
    Date (last write): 15/12/2006 03:23:26
    Filesize: 75528
    Attributes: archive
    MD5: 3B3F6984DBF972DAFF1B7E9C44E2FE75
    CRC32: 4BDE2041
    Version: 5.0.110.3

    {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} (Java Runtime Environment 1.6.0)
    DPF name: Java Runtime Environment 1.6.0
    CLSID name: Java Plug-in 1.6.0_03
    Installer:
    Codebase: http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
    Path: C:\Program Files\Java\jre1.6.0_03\bin\
    Long name: npjpi160_03.dll
    Short name: NPJPI1~1.DLL
    Date (created): 24/09/2007 23:31:44
    Date (last access): 05/03/2008 23:19:24
    Date (last write): 25/09/2007 01:11:34
    Filesize: 132496
    Attributes: archive
    MD5: D6A4682A6FF41832A3F1A7AB9AE08199
    CRC32: 9080B537
    Version: 6.0.30.5

    {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} (Java Runtime Environment 1.6.0)
    DPF name: Java Runtime Environment 1.6.0
    CLSID name: Java Plug-in 1.6.0_03
    Installer:
    Codebase: http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
    Path: C:\Program Files\Java\jre1.6.0_03\bin\
    Long name: npjpi160_03.dll
    Short name: NPJPI1~1.DLL
    Date (created): 24/09/2007 23:31:44
    Date (last access): 05/03/2008 23:19:24
    Date (last write): 25/09/2007 01:11:34
    Filesize: 132496
    Attributes: archive
    MD5: D6A4682A6FF41832A3F1A7AB9AE08199
    CRC32: 9080B537
    Version: 6.0.30.5

    {D27CDB6E-0000-0000-0000-000000000000} ()
    DPF name:
    CLSID name:
    Installer: C:\WINDOWS\Downloaded Program Files\swflash.inf
    Codebase: http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

    {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object)
    DPF name:
    CLSID name: Shockwave Flash Object
    Installer: C:\WINDOWS\Downloaded Program Files\swflash.inf
    Codebase: http://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
    description: Macromedia Shockwave Flash Player
    classification: Legitimate
    known filename:
    info link:
    info source: Patrick M. Kolla
    Path: C:\WINDOWS\System32\Macromed\Flash\
    Long name: Flash9b.ocx
    Short name:
    Date (created): 09/11/2006 14:46:28
    Date (last access): 06/03/2008 00:08:34
    Date (last write): 09/11/2006 14:46:28
    Filesize: 2262648
    Attributes: readonly archive
    MD5: F3B3EE66CA76C94510555ABE9D00A353
    CRC32: A51F3CB4
    Version: 9.0.28.0

    {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class)
    DPF name:
    CLSID name: Minesweeper Flags Class
    Installer:
    Codebase: http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
    Path: C:\WINDOWS\Downloaded Program Files\
    Long name: MineSweeper.dll
    Short name: MINESW~1.DLL
    Date (created): 28/02/2007 13:21:04
    Date (last access): 05/03/2008 23:28:24
    Date (last write): 28/02/2007 13:21:04
    Filesize: 130472
    Attributes: archive
    MD5: E661E91B5929632665683222D509D271
    CRC32: 63A9B975
    Version: 9.5.6986.1

    --- Process list ---
    PID: 0 ( 0) [System]
    PID: 488 ( 0) \SystemRoot\System32\smss.exe
    size: 50688
    PID: 544 ( 0) \??\C:\WINDOWS\system32\csrss.exe
    size: 6144
    PID: 580 ( 0) \??\C:\WINDOWS\system32\winlogon.exe
    size: 506368
    PID: 624 ( 0) C:\WINDOWS\system32\services.exe
    size: 108544
    MD5: 63DCDE1A0D86EEB8924D6738FF616EAD
    PID: 636 ( 0) C:\WINDOWS\system32\lsass.exe
    size: 13312
    MD5: 259AF82A0932EEA4F316F92DB94707B6
    PID: 784 ( 0) C:\WINDOWS\System32\Ati2evxx.exe
    size: 380928
    MD5: ABC57A6F6070BAF9786C318F59F29F0B
    PID: 796 ( 0) C:\WINDOWS\system32\svchost.exe
    size: 14336
    MD5: 2979B03D5382A602623C0535B16AB9C0
    PID: 876 ( 0) C:\WINDOWS\system32\svchost.exe
    size: 14336
    MD5: 2979B03D5382A602623C0535B16AB9C0
    PID: 920 ( 0) C:\WINDOWS\System32\svchost.exe
    size: 14336
    MD5: 2979B03D5382A602623C0535B16AB9C0
    PID: 964 ( 0) C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
    size: 86016
    MD5: AA1D9C4A2F997FEA8A4FB0929212EDA2
    PID: 1160 ( 0) C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
    size: 372809
    MD5: A57B20BB52B7C504B7A9FB4C82B639BA
    PID: 1180 ( 0) C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
    size: 225353
    MD5: B4F72FDFADBD7B8353442B9B8A60CC8C
    PID: 1212 ( 0) C:\WINDOWS\system32\svchost.exe
    size: 14336
    MD5: 2979B03D5382A602623C0535B16AB9C0
    PID: 1324 ( 0) C:\WINDOWS\system32\svchost.exe
    size: 14336
    MD5: 2979B03D5382A602623C0535B16AB9C0
    PID: 1420 ( 0) C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe
    size: 401408
    MD5: E73D807F803C538F73994ECB92A9C92B
    PID: 1600 ( 0) C:\WINDOWS\system32\spoolsv.exe
    size: 57856
    MD5: DF9FC62AD51CB082B0AE371919A232CB
    PID: 1836 ( 0) C:\WINDOWS\system32\Ati2evxx.exe
    size: 380928
    MD5: ABC57A6F6070BAF9786C318F59F29F0B
    PID: 1952 ( 0) C:\WINDOWS\Explorer.EXE
    size: 1036288
    MD5: 2A7BD330924252A2FD80344FC949BB72
    PID: 196 ( 0) C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
    size: 385024
    MD5: 0D4E3D3495CCDC0232D9196E0D27B23D
    PID: 200 ( 0) C:\Program Files\Dell\QuickSet\quickset.exe
    size: 1032192
    MD5: 90753C9E5C84B3EC5C299B554E5A86E3
    PID: 208 ( 0) C:\WINDOWS\System32\WLTRAY.exe
    size: 1347584
    MD5: 234C29A211817B5C69C2E4C4C4F71750
    PID: 216 ( 0) C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
    size: 132496
    MD5: D4F0F7437327DBAA264338BAAFB5E5AF
    PID: 328 ( 0) C:\Program Files\iTunes\iTunesHelper.exe
    size: 270648
    MD5: 018C1B1379D326ABFAA89EDA7E43F95A
    PID: 348 ( 0) C:\Program Files\Unlocker\UnlockerAssistant.exe
    size: 15872
    MD5: 3FFE8752B77382C5050006C31781D05A
    PID: 416 ( 0) C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
    size: 185896
    MD5: 74BC945EB2584E90619A56EF5028AB0F
    PID: 600 ( 0) C:\Program Files\Defenza\pcd-as.exe
    size: 1359872
    MD5: 5B42206B830E983E73E3C7EBE07EEA28
    PID: 728 ( 0) C:\WINDOWS\system32\ctfmon.exe
    size: 15360
    MD5: 64E41E8FEE655B03E3F19DED21BA5118
    PID: 752 ( 0) C:\PROGRA~1\DELLSU~1\DSAgnt.exe
    size: 332800
    MD5: A40D952C0355C85867517AA529A06741
    PID: 848 ( 0) C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
    size: 5724184
    MD5: 97384875B6D03831B2D1820AB8952F67
    PID: 1316 ( 0) C:\WINDOWS\System32\msdtc.exe
    size: 6144
    MD5: 11CA338B8765DB8E2D1B459F2CFAD147
    PID: 1496 ( 0) C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    size: 106496
    MD5: 2ACFC9242BE81AE2356E14E5E05C02BB
    PID: 1516 ( 0) C:\WINDOWS\system32\cisvc.exe
    size: 5632
    MD5: ABFAC5D58218C0A655DFCAE2D8A535F3
    PID: 1560 ( 0) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    size: 138680
    MD5: D213C2B1CE0FAEAB59EC0C55B4493F94
    PID: 1688 ( 0) C:\WINDOWS\system32\inetsrv\inetinfo.exe
    size: 15872
    MD5: 3677FE8F78ED0A5A31360BDE2CF4671A
    PID: 1780 ( 0) C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
    size: 380928
    MD5: 11D8A00C7EFF1AAEC8E8464769C84A3D
    PID: 1908 ( 0) C:\WINDOWS\system32\pctspk.exe
    size: 86016
    MD5: 9946F9F9B359B010E879D6FF0155D9B7
    PID: 1828 ( 0) C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
    size: 139264
    MD5: E6CD560A4A16FEEE5503CB59A3E30A84
    PID: 2092 ( 0) C:\WINDOWS\system32\tcpsvcs.exe
    size: 19456
    MD5: 50F22575C0FB5D85A9D41EF963610C32
    PID: 2120 ( 0) C:\WINDOWS\System32\snmp.exe
    size: 32768
    MD5: F143B2E34BA845F3631D1FB623ED538A
    PID: 2156 ( 0) C:\WINDOWS\system32\svchost.exe
    size: 14336
    MD5: 2979B03D5382A602623C0535B16AB9C0
    PID: 2236 ( 0) C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
    size: 3567928
    MD5: 3A331CBEF1BFDAA1BB3EE2542637E464
    PID: 2732 ( 0) C:\WINDOWS\System32\WLTRYSVC.EXE
    size: 18944
    MD5: 8E12ADCD26A2AC8006E52B74463E9DD1
    PID: 2848 ( 0) C:\WINDOWS\System32\bcmwltry.exe
    size: 1200128
    MD5: 3118A7345A5C28E8D5C6BE7A90AEA0A6
    PID: 3004 ( 0) C:\WINDOWS\system32\mqsvc.exe
    size: 4608
    MD5: 0680E10014C9D9F181475B059E0F204E
    PID: 3532 ( 0) C:\WINDOWS\system32\mqtgsvc.exe
    size: 117248
    MD5: 3526350A3E76E2F33A4ADBE9DB0D43CC
    PID: 3672 ( 0) C:\Program Files\iPod\bin\iPodService.exe
    size: 501048
    MD5: 83CD5F746B260457DEF125AEB8783B46
    PID: 3800 ( 0) C:\WINDOWS\system32\wbem\wmiprvse.exe
    size: 218112
    MD5: 2FE6F76ADB634D4ED7EF9EAE726BC654
    PID: 456 ( 0) C:\WINDOWS\System32\alg.exe
    size: 44544
    MD5: B43CC0F07752D456038CD0268E4D84E9
    PID: 3776 ( 0) C:\WINDOWS\system32\wscntfy.exe
    size: 13824
    MD5: 8558905BA81F6EFAAF9667139BB117DD
    PID: 4088 ( 0) C:\WINDOWS\17PHolmes1423.exe
    PID: 3716 ( 0) C:\WINDOWS\system32\wuauclt.exe
    size: 53080
    MD5: F3E9065EB617A7E3A832A7976BFA021B
    PID: 2824 ( 0) C:\Program Files\Windows Live\Messenger\usnsvc.exe
    size: 98328
    MD5: 9D19B042A4FD5C02195071EA2FE0C821
    PID: 2516 ( 0) C:\WINDOWS\system32\cidaemon.exe
    size: 8192
    MD5: 72999AA48322DA948CE50C08B414A0EC
    PID: 2888 ( 0) C:\WINDOWS\system32\cidaemon.exe
    size: 8192
    MD5: 72999AA48322DA948CE50C08B414A0EC
    PID: 760 ( 0) C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
    size: 4943184
    MD5: C92780F50B8BB7A89E919585916494A9
    PID: 1892 ( 0) C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    size: 1460560
    MD5: B7D4586BFC0DD6C3BE7DCCC252A3E97E

    --- Browser start & search pages list ---
    Spybot - Search & Destroy browser pages report, 06/03/2008 00:11:00

    HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page
    C:\WINDOWS\system32\blank.htm
    HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page
    http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Bar
    http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page
    https://www.msn.com/fr-fr/?ocid=iehp
    HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\SearchAssistant
    https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm
    HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\CustomizeSearch
    https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchcust.htm
    HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl\@
    http://home.microsoft.com/access/autosearch.asp?p=%s
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Local Page
    %SystemRoot%\system32\blank.htm
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Page
    http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Bar
    https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page
    http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL
    http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL
    http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\SearchAssistant
    https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm
    HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\CustomizeSearch
    https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchcust.htm

    --- Winsock Layered Service Provider list ---
    Protocol 8: MSAFD Pgm (RDM)
    GUID: {03F511BF-30A0-4152-BDD7-C7B1BCA1BCCB}
    Filename: %SystemRoot%\system32\mswsock.dll

    Protocol 9: MSAFD Pgm (Stream)
    GUID: {03F511BF-30A0-4152-BDD7-C7B1BCA1BCCB}
    Filename: %SystemRoot%\system32\mswsock.dll

    Namespace Provider 3: Fournisseur d'espace de noms du nuage PNRP
    GUID: {03FE89CE-766D-4976-B9C1-BB9BC42C7B4D}
    Filename: C:\WINDOWS\system32\pnrpnsp.dll

    Namespace Provider 4: Fournisseur d'espace de noms du nom PNRP
    GUID: {03FE89CD-766D-4976-B9C1-BB9BC42C7B4D}
    Filename: C:\WINDOWS\system32\pnrpnsp.dll

    --- Uninstall list ---
    (AddressBook)

    Adobe Flash Player Plugin 9.0.115.0 (Adobe Flash Player Plugin)
    uninstall cmd: C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
    publisher: Adobe Systems Incorporated

    Adobe Shockwave Player 10.1.4.20 (Adobe Shockwave Player)
    uninstall cmd: C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
    publisher: Adobe Systems, Inc.
    help link: https://helpx.adobe.com/shockwave.html

    ATI Display Driver 8.162-050803a2-025823C-Dell (ATI Display Driver)
    uninstall cmd: rundll32 C:\WINDOWS\System32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean

    (Branding)

    Dell Wireless WLAN Card 4.10.47.3 (Broadcom 802.11b Network Adapter)
    uninstall cmd: "C:\Program Files\Dell\Dell Wireless WLAN Card\bcmwlu00.exe" verbose /rootkey="Software\Broadcom\802.11\UninstallInfo" /rootdir="C:\Program Files\Dell\Dell Wireless WLAN Card"
    publisher: Dell Inc.

    CCleaner (remove only) (CCleaner)
    uninstall cmd: "C:\Program Files\CCleaner\uninst.exe"

    CEP - Color Enable Package 6.0b (beta) (CEP - Colour Enable Packages_is1)
    install date: 20080214
    install location: C:\PROGRA~1\EAGAME~1\zCEP_Uninstaller\
    uninstall cmd: "C:\PROGRA~1\EAGAME~1\zCEP_Uninstaller\unins000.exe"
    publisher: Numenor, for ModTheSims2
    help link: https://modthesims.info/

    (Connection Manager)

    (DirectAnimation)

    (DirectDrawEx)

    (DXM_Runtime)

    Microsoft Excel 97 (Excel)
    uninstall cmd: C:\Program Files\Microsoft Office\Office\Install\AcmeXl.exe /w Excel97.stf

    (Fontcore)

    FTDI USB Serial Converter Drivers (FTDICOMM)
    uninstall cmd: C:\WINDOWS\System32\ftdiunin.exe C:\WINDOWS\System32\ftdiun2k.ini

    Outil de mise à jour Google 2.2.969.23408 (Google Updater)
    uninstall cmd: "C:\Program Files\Google\Google Updater\GoogleUpdater.exe" -uninstall
    publisher: Google Inc.
    help link: http://pack.google.com:80/pack-support?hl=fr&gl=fr

    (ICW)

    (IE40)

    (IE4Data)

    (IE5BAKEX)

    (IEData)

    (InstallShield Uninstall Information)

    (KB884016)

    (KB884267)

    (KB885353)

    (KB886612)

    (KB887078)

    (KB887626)

    (KB888656)

    (KB889858)

    (KB891122)

    Windows Genuine Advantage Validation Tool (KB892130) (KB892130)
    install date: 20080203
    publisher: Microsoft Corporation
    help link: https://www.microsoft.com/en-us/howtotell/default.aspx

    (KB892313)

    (KB893240)

    (KB893241)

    (KB893803)

    Windows Installer 3.1 (KB893803) 3.1 (KB893803v2)
    uninstall cmd: "C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/893803/windows-installer-3-1-v2-3-1-4000-2435-is-available

    (KB895181)

    (KB895316)

    (KB895572)

    (KB897586)

    (KB898549)

    (KB900399)

    (KB902344)

    (KB907658)

    (KB911565)

    (KB911854)

    Hotfix for Windows XP (KB915865) 10 (KB915865)
    install date: 20080305
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB915865$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/915865

    Security Update pour Microsoft .NET Framework 2.0 (KB917283) 1 (KB917283.T1_1ToU93_1)
    uninstall cmd: C:\WINDOWS\system32\msiexec.exe /promptrestart /uninstall {967B098A-042D-4367-BAC9-8BC11684174F} /package {7131646D-CD3C-40F4-97B9-CD9E4E6262EF}
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/917283/ms06-033-a-vulnerability-in-asp-net-could-allow-information-disclosure

    Security Update pour Microsoft .NET Framework 2.0 (KB922770) 1 (KB922770.T1_1ToU168_1)
    uninstall cmd: C:\WINDOWS\system32\msiexec.exe /promptrestart /uninstall {0E92DD42-76F5-4EF2-B381-F9C1D72BE23D} /package {7131646D-CD3C-40F4-97B9-CD9E4E6262EF}
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/922770

    Hotfix for Windows XP (KB926239) 2 (KB926239)
    install date: 20080302
    uninstall cmd: "C:\WINDOWS\$NtUninstallKB926239$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/926239

    Lucent Technologies Soft Modem AMR (Lucent Technologies Soft Modem)

    Microsoft .NET Framework 2.0 (Microsoft .NET Framework 2.0)
    install location: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\
    uninstall cmd: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/ph/8291

    Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA (Microsoft .NET Framework 2.0 Language Pack - FRA)
    install location: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\
    uninstall cmd: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - FRA\install.exe
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/ph/8291

    (Microsoft NetShow Player 2.0)

    (MobileOptionPack)

    Mozilla Firefox (2.0) 2.0 (fr) (Mozilla Firefox (2.0))
    install location: C:\Program Files\Mozilla Firefox
    uninstall cmd: C:\Program Files\Mozilla Firefox\uninstall\uninst.exe
    publisher: Mozilla
    comments: Mozilla Firefox

    (MPlayer2)

    Microsoft Compression Client Pack 1.0 for Windows XP 1 (MSCompPackV1)
    install date: 20080302
    uninstall cmd: "C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: https://www.microsoft.com/fr-fr/?ref=go

    (MSI30-Beta1)

    (MSI30-Beta2)

    (MSI30-KB884016)

    (MSI30-RC1)

    (MSI30-RC2)

    (MSI30a-KB884016)

    (MSI31-Beta)

    (MSI31-RC1)

    (NetMeeting)

    Microsoft National Language Support Downlevel APIs (NLSDownlevelMapping)
    install date: 20080305
    uninstall cmd: "C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation

    NVIDIA Drivers (NVIDIA Drivers)

    (OutlookExpress)

    (PCHealth)
    uninstall cmd: rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf

    Intel(R) PROSet/Wireless Software 9.02.1000 (ProInst)
    install location: C:\WINDOWS\Installer\iProInst.exe
    uninstall cmd: C:\WINDOWS\Installer\iProInst.exe
    publisher: Intel Corporation
    comments: Intel(R) PROSet/Wireless installation package
    contact: Dell Customer Support
    help link: http://support.dell.com

    (RealJukebox 1.0)
    uninstall cmd: C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0

    RealPlayer (RealPlayer 6.0)
    install location: C:\Program Files\Real\RealPlayer\realplay.exe
    uninstall cmd: C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
    publisher: RealNetworks
    comments: Diffusez, enregistrez et organisez votre musique et vos vidéos, gravez un CD ou emportez votre musique partout avec vous.
    contact: RealNetworks

    (SchedulingAgent)

    Shareaza 2.3.1.0 2.3.1.0 (Shareaza_is1)
    install date: 20080213
    install location: C:\Program Files\Shareaza\
    uninstall cmd: "C:\Program Files\Shareaza\Uninstall\unins000.exe"
    publisher: Shareaza Development Team
    comments: Shareaza Ultimate File Sharing
    help link: http://shareaza.sourceforge.net/?id=support

    (Shockwave)

    Adobe Flash Player 9 ActiveX 9 (ShockwaveFlash)
    uninstall cmd: C:\WINDOWS\System32\Macromed\Flash\FlashUtil9b.exe -uninstallDelete
    publisher: Adobe Systems
    help link: https://helpx.adobe.com/flash-player.html

    Unlocker 1.8.5 1.8.5 (Unlocker)
    uninstall cmd: C:\Program Files\Unlocker\uninst.exe
    publisher: Cedrick Collomb

    VideoLAN VLC media player 0.8.6c 0.8.6c (VLC media player)
    uninstall cmd: C:\Program Files\VideoLAN\VLC\uninstall.exe
    publisher: VideoLAN Team

    Windows Genuine Advantage Validation Tool (KB892130) 1.7.0059.1 (WGA)
    install date: 20061218
    publisher: Microsoft Corporation
    help link: https://www.microsoft.com/en-us/howtotell/default.aspx

    Windows Genuine Advantage Notifications (KB905474) 1.7.0018.5 (WgaNotify)
    install date: 20070428
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/905474

    Windows Media Format 11 runtime (Windows Media Format Runtime)
    uninstall cmd: "C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
    help link: https://support.microsoft.com/en-us

    Windows Media Player 11 (Windows Media Player)
    uninstall cmd: "C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall

    Archiveur WinRAR (WinRAR archiver)
    uninstall cmd: C:\Documents and Settings\saous\Mes documents\EA Games\Les Sims 2\Downloads\uninstall.exe

    (WMCSetup)

    Windows Media Format 11 runtime (WMFDist11)
    install date: 20070131
    uninstall cmd: "C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: http:

    Windows Media Player 11 (wmp11)
    install date: 20070131
    uninstall cmd: "C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
    publisher: Microsoft Corporation
    help link: http:

    Microsoft Word 97 (Word8.0)
    uninstall cmd: C:\Program Files\Microsoft Office\Office\Install\AcmeWord.exe /w Word97.stf

    Macromedia Flash Player 7.0.19.0 ({0456ebd7-5f67-4ab6-852e-63781e3f389c})
    version: 117440531
    version (major): 7
    estimated size: 1018
    install date: 20060526
    install source: C:\DOCUME~1\saous\LOCALS~1\Temp\{8DE06C1C-C936-4C3D-8FE0-BD0809D72D28}\{1E2F8AE3-3437-44E6-BB75-E95751D6B83F}\
    uninstall cmd: MsiExec.exe /X{0456ebd7-5f67-4ab6-852e-63781e3f389c}
    publisher: Macromedia, Inc.

    mSSO 1.31.0000 ({06BE8AFD-A8E2-4B63-BAE7-287016D16ACB})
    version: 18808832
    version (major): 1
    version (minor): 31
    estimated size: 272
    install date: 20060511
    install source: C:\WINDOWS\Installer\iprodata\
    uninstall cmd: MsiExec.exe /I{06BE8AFD-A8E2-4B63-BAE7-287016D16ACB}
    publisher: Intel Corporation
    comments: Your Comments
    contact: Customer Support Department
    help link: https://www.intel.com/content/www/us/en/support.html
    help telephone: +1 (800) 538-3373

    First Step Guide 1.08.000 ({0D917C5F-1CF9-42E0-899F-78AC10576405})
    version: 17301504
    install location: C:\Program Files\Sony Corporation\Picture Package\First Step Guide
    uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0D917C5F-1CF9-42E0-899F-78AC10576405}\setup.exe" -l0x40c UNINSTALL

    mLogView 1.31.0000 ({0E2B0B41-7E08-4F9F-B21F-41C4133F43B7})
    version: 18808832
    version (major): 1
    version (minor): 31
    estimated size: 540
    install date: 20060511
    install source: C:\WINDOWS\Installer\iprodata\
    uninstall cmd: MsiExec.exe /I{0E2B0B41-7E08-4F9F-B21F-41C4133F43B7}
    publisher: Intel Corporation
    comments: Your Comments
    contact: Customer Support Department
    help link: https://www.intel.com/content/www/us/en/support.html
    help telephone: +1 (800) 538-3373

    mProSafe 9.00.0000 ({23FB368F-1399-4EAC-817C-4B83ECBE3D83})
    version: 150994944
    version (major): 9
    install date: 20060511
    install source: C:\WINDOWS\Installer\iprodata\
    uninstall cmd: MsiExec.exe /I{23FB368F-1399-4EAC-817C-4B83ECBE3D83}
    publisher: Intel
    comments: Pseudo NCS Install
    contact: Customer Support Department
    help link: https://www.intel.fr/content/www/fr/fr/homepage.html
    help telephone: 1-555-555-4505

    mDriver 1.31.0000 ({28DA872A-0848-48CF-B749-19A198157A2A})
    version: 18808832
    version (major): 1
    version (minor): 31
    estimated size: 8612
    install date: 20060511
    install source: C:\WINDOWS\Installer\iprodata\
    uninstall cmd: MsiExec.exe /I{28DA872A-0848-48CF-B749-19A198157A2A}
    publisher: Intel
    comments: Intel Wireless Adapter driver installation
    contact: Customer Support Department
    help link: https://www.intel.fr/content/www/fr/fr/homepage.html
    help telephone: 1-555-555-4505

    3.0.20070525 ({2CCBABCB-6427-4A55-B091-49864623C43F})
    version: 20070525
    version (major): 3

    J2SE Runtime Environment 5.0 Update 11 1.5.0.110 ({3248F0A8-6813-11D6-A77B-00B0D0150110})
    version: 17104896
    version (major): 1
    version (minor): 5
    estimated size: 149554
    install date: 20070225
    install source: http://javadl.sun.com/webapps/download/GetFile/1.5.0_11-b03/windows-i586//
    uninstall cmd: MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150110}
    publisher: Sun Microsystems, Inc.
    contact: https://www.java.com/en/
    help link: https://www.java.com/en/
    readme: C:\Program Files\Java\jre1.5.0_11\README.txt

    Java(TM) 6 Update 3 1.6.0.30 ({3248F0A8-6813-11D6-A77B-00B0D0160030})
    version: 17170432
    version (major): 1
    version (minor): 6
    estimated size: 136430
    install date: 20080227
    install source: http://javadl.sun.com/webapps/download/GetFile/1.6.0_03-b05/windows-i586/
    uninstall cmd: MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
    publisher: Sun Microsystems, Inc.
    contact: https://www.java.com/en/
    help link: https://www.java.com/en/
    readme: C:\Program Files\Java\jre1.6.0_03\README.txt

    WebFldrs XP 9.50.6513 ({350C940c-3D7C-4EE8-BAA9-00BCB3D54227})
    version: 154278257
    version (major): 9
    version (minor): 50
    estimated size: 2652
    install date: 20060511
    install source: C:\WINDOWS\System32\
    publisher: Microsoft Corporation
    help link: https://www.microsoft.com/en-us/windows/

    MSXML 4.0 SP2 (KB927978) 4.20.9841.0 ({37477865-A3F1-4772-AD43-AAFC6BCFF99F})
    version: 68429425
    version (major): 4
    version (minor): 20
    estimated size: 2625
    install date: 20061219
    install source: c:\43d66b1429e14a6e8d0a1079\
    uninstall cmd: MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
    publisher: Microsoft Corporation
    help link: https://support.microsoft.com/en-us/help/927978/ms06-071-security-update-for-microsoft-xml-core-services-4-0

    mIWA 1.31.0000 ({3E9D596A-61D4-4239-BD19-2DB984D2A16F})
    version: 18808832
    version (major): 1
    version (minor): 31
    estimated size: 945
    install date: 20060511
    install source: C:\WINDOWS\Installer\iprodata\
    uninstall cmd: MsiExec.exe /I{3E9D596A-61D4-4239-BD19-2DB984D2A16F}
    publisher: Intel Corporation
    comments: Your Comments
    contact: Customer Support Department
    help link: https://www.intel.com/content/www/us/en/support.html
    help telephone: +1 (800) 538-3373

    Les Sims™ 2 Animaux & Cie ({4817189D-1785-4627-A33C-39FD90919300})
    uninstall cmd: C:\Program Files\EA GAMES\Les Sims 2 Animaux & Cie\EAUninstall.exe

    mHlpDell 1.23.0000 ({49D687E5-6784-431B-A0A2-2F23B8CC5A1B})
    version: 18284544
    version (major): 1
    version (minor): 23
    estimated size: 272
    install date: 20060511
    install source: C:\WINDOWS\Installer\iprodata\
    uninstall cmd: MsiExec.exe /I{49D687E5-6784-431B-A0A2-2F23B8CC5A1B}
    publisher: Intel
    comments: Help Files
    contact: Customer Support Department
    help link: https://www.intel.fr/content/www/fr/fr/homepage.html
    help telephone: 1-555-555-4505

    Dell Support 3.1 5.1.760 ({548EEA8E-8299-497F-8057-811D2D7097DC})
    version: 83952376
    version (major): 5
    version (minor): 1
    0
  9. jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 041
     
    cré ton propre post et on t'aidera
    0