Sujet Précédent Sujet Suivant

Virus msn photos zip

Résolu/Fermé
Lady Mara - 27 nov. 2007 à 14:36
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 - 7 mars 2008 à 12:21
Bonjour,

Suite à l'astuce de votre site, je fais un copier/coller de mon rapport msnfix et highjackthis:

.. C:\WINDOWS\party_jpg.zip

************************ MSNCHK ***** /!\ beta test /!\



************************ Recherche les dossiers présents

... C:\Program Files\Fichiers communs\Carlson\
... C:\Temp\




************************ Suppression des fichiers

.. OK ... C:\DOCUME~1\ALLUSE~1\MENUDM~1\carlton
.. OK ... C:\Program Files\Fichiers communs\Carlson\carlton
/!\ ... C:\WINDOWS\mrofinu*.exe
.. OK ... C:\WINDOWS\mrofinu*.exe.tmp
.. OK ... C:\WINDOWS\system32\microsoft\backup.ftp
.. OK ... C:\WINDOWS\system32\microsoft\backup.tftp
.. OK ... C:\WINDOWS\party_jpg.zip


************************ Suppression des dossiers

.. OK ... C:\Program Files\Fichiers communs\Carlson\
.. OK ... C:\Temp\


************************ Nettoyage du registre



Les fichiers encore présents seront supprimés au prochain redémarrage


************************ Suppression des fichiers

.. OK ... C:\WINDOWS\mrofinu*.exe



************************ Fichiers suspects

/!\ ces fichiers nécessitent un avis expérimenté avant toute intervention

[C:\d8e9w3l6u1g1.exe] 7A3488519F139578B1C0910E48A4EFD5

[color=#FF0000][b]==>[/b][/color] SVP merci d'envoyer le fichier [b] C:\DOCUME~1\Anne\Bureau\Upload_Me.zip [/b] sur http://upload.changelog.fr



Les fichiers et clés de registre supprimés ont été sauvegardés dans le fichier 28112007_14243803.zip


------------------------------------------------------------------------
Auteur : !aur3n7 Contact: https://www.ionos.fr/
------------------------------------------------------------------------

--------------------------------------------- END ---------------------------------------------






Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:31:32, on 28/11/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\TODDSrv.exe
C:\WINDOWS\system32\notepad.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
C:\WINDOWS\system32\ZoomingHook.exe
C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
C:\WINDOWS\system32\TCtrlIOHook.exe
C:\Program Files\TOSHIBA\Commandes TOSHIBA\TFncKy.exe
C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\WINDOWS\system32\TPSBattM.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\TOSHIBA\TOSHIBA Direct Disc Writer\ddwmon.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\ltmoh\Ltmoh.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\Microsoft Encarta\Microsoft Encarta 2007 - Collection\EDICT.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\iFrmewrk.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - C:\Program Files\Fichiers communs\Symantec Shared\coShared\Browser\1.0\NppBho.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO.dll
O2 - BHO: (no name) - {549B5CA7-4A86-11D7-A4DF-000874180BB3} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: Afficher Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Fichiers communs\Symantec Shared\coShared\Browser\1.0\UIBHO.dll
O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [PadTouch] C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
O4 - HKLM\..\Run: [CeEKEY] C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
O4 - HKLM\..\Run: [HWSetup] C:\Program Files\TOSHIBA\TOSHIBA Applet\HWSetup.exe hwSetUP
O4 - HKLM\..\Run: [SVPWUTIL] C:\Program Files\Toshiba\Windows Utilities\SVPWUTIL.exe SVPwUTIL
O4 - HKLM\..\Run: [TPNF] C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
O4 - HKLM\..\Run: [Zooming] ZoomingHook.exe
O4 - HKLM\..\Run: [SmoothView] C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
O4 - HKLM\..\Run: [TCtryIOHook] TCtrlIOHook.exe
O4 - HKLM\..\Run: [TFncKy] TFncKy.exe
O4 - HKLM\..\Run: [Tvs] C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [DDWMon] C:\Program Files\TOSHIBA\TOSHIBA Direct Disc Writer\\ddwmon.exe
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton Internet Security\osCheck.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [E07FDXRC_2581765] "C:\Program Files\Microsoft Encarta\Microsoft Encarta 2007 - Collection\EDICT.EXE" -m
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/menusearch.jhtml?p=ZJfox000
O8 - Extra context menu item: Download all links using BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Download all videos using BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: Download link using &BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\VAScanner\comHost.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\WINDOWS\system32\TODDSrv.exe
A voir également:

8 réponses

Réponse 1 / 8
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
27 nov. 2007 à 14:47
slt
analyse ce ficheir sur virus total: https://www.virustotal.com/gui/

C:\d8e9w3l6u1g1.exe


si infécté le supprimer en allant dans poste de travail puis C


_____________________

mets a jour java: DEMARRER puis PANNEAU DE OCNFIGURATION puis JAVA puis MISE A JOUR

____________________
AVG antispyware

https://www.01net.com/telecharger/

Tuto :
http://www.kachouri.com/tuto/tuto-161-avg-anti-spyware-75-pour-votre-securite.html

->Relance AVG AS -> "Analyse" ->"Paramètres"

Sous la question "Comment réagir ?" :

-> clique sur "Actions recommandées" et choisis "Quarantaines"
-> Re-clique sur l'onglet "Analyse" puis réalise une "Analyse complète du système"

Si un fichier est infecté en fin d'analyse

->Clique sur "Appliquer toutes les actions "

->Clique sur "Enregistrer le rapport" puis sur "Enregistrer le rapport sous".

->Enregistre ce fichier texte sur ton bureau ensuite colle le rapport ici

_____________

utilise pour supprimer tes traces

CCLEANER: (lance un nettoyage et répare 3 fois les erreurs) sans installer la barre yahoo

https://www.01net.com/telecharger/windows/Utilitaire/nettoyeurs_et_installeurs/fiches/32599.html
------------

colle le rapport d'un scan en ligne
avec un des suivants:


bitdefender en ligne :
http://www.bitdefender.fr/scan_fr/scan8/ie.html

Panda en ligne :
http://pandasoftware.fr

______________________

recolle un rapport hijackthis et dis tes problèmes
1
Réponse 2 / 8
Lady Mara
27 nov. 2007 à 17:50
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 17:31:09 28/11/2007

+ Résultat de l'analyse:



HKLM\SOFTWARE\Classes\WR -> Adware.Generic : Ignoré.
:mozilla.112:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.247realmedia : Ignoré.
:mozilla.113:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.247realmedia : Ignoré.
:mozilla.114:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.247realmedia : Ignoré.
:mozilla.115:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.247realmedia : Ignoré.
:mozilla.116:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.247realmedia : Ignoré.
:mozilla.119:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.247realmedia : Ignoré.
:mozilla.120:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.247realmedia : Ignoré.
:mozilla.294:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.326:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.46:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.483:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.48:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.49:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.50:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.51:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.52:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.53:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.54:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.55:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.56:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.732:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.785:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\Anne\Cookies\anne@2o7[2].txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\Anne\Cookies\anne@fnac.112.2o7[1].txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\Anne\Cookies\anne@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\Anne\Cookies\anne@sfr.122.2o7[1].txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.799:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adbrite : Ignoré.
:mozilla.800:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adbrite : Ignoré.
:mozilla.140:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
:mozilla.141:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
:mozilla.142:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
:mozilla.143:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
:mozilla.144:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
:mozilla.145:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
:mozilla.146:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
:mozilla.147:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
:mozilla.148:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adrevolver : Ignoré.
:mozilla.497:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adtech : Ignoré.
:mozilla.498:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adtech : Ignoré.
:mozilla.29:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.30:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.31:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.32:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.33:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Advertising : Ignoré.
:mozilla.546:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adviva : Ignoré.
:mozilla.309:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Atdmt : Ignoré.
C:\Documents and Settings\Anne\Cookies\anne@atdmt[2].txt -> TrackingCookie.Atdmt : Ignoré.
:mozilla.63:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Bluestreak : Ignoré.
C:\Documents and Settings\Anne\Cookies\anne@bluestreak[2].txt -> TrackingCookie.Bluestreak : Ignoré.
:mozilla.10:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Ignoré.
:mozilla.11:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Ignoré.
:mozilla.12:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Ignoré.
:mozilla.13:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Ignoré.
:mozilla.14:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Ignoré.
:mozilla.15:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Ignoré.
:mozilla.16:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Ignoré.
:mozilla.17:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Ignoré.
:mozilla.18:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Ignoré.
:mozilla.19:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Ignoré.
:mozilla.8:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Ignoré.
:mozilla.9:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Ignoré.
:mozilla.255:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Comclick : Ignoré.
:mozilla.256:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Comclick : Ignoré.
:mozilla.257:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Comclick : Ignoré.
C:\Documents and Settings\Anne\Cookies\anne@data.coremetrics[1].txt -> TrackingCookie.Coremetrics : Ignoré.
:mozilla.372:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Counted : Ignoré.
:mozilla.68:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Doubleclick : Ignoré.
C:\Documents and Settings\Anne\Cookies\anne@doubleclick[1].txt -> TrackingCookie.Doubleclick : Ignoré.
:mozilla.247:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Estat : Ignoré.
C:\Documents and Settings\Anne\Cookies\anne@estat[1].txt -> TrackingCookie.Estat : Ignoré.
:mozilla.381:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Euroclick : Ignoré.
:mozilla.382:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Euroclick : Ignoré.
:mozilla.383:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Euroclick : Ignoré.
:mozilla.384:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Euroclick : Ignoré.
:mozilla.121:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Fastclick : Ignoré.
:mozilla.122:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Fastclick : Ignoré.
:mozilla.123:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Fastclick : Ignoré.
:mozilla.124:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Fastclick : Ignoré.
:mozilla.125:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Fastclick : Ignoré.
:mozilla.126:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Fastclick : Ignoré.
:mozilla.491:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Googleadservices : Ignoré.
:mozilla.635:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Googleadservices : Ignoré.
:mozilla.671:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Googleadservices : Ignoré.
:mozilla.267:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Hitbox : Ignoré.
:mozilla.268:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Hitbox : Ignoré.
:mozilla.269:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Hitbox : Ignoré.
:mozilla.554:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Hitbox : Ignoré.
:mozilla.696:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Hitbox : Ignoré.
:mozilla.270:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Imrworldwide : Ignoré.
:mozilla.271:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Imrworldwide : Ignoré.
:mozilla.258:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Mediaplex : Ignoré.
C:\Documents and Settings\Anne\Cookies\anne@mediaplex[1].txt -> TrackingCookie.Mediaplex : Ignoré.
:mozilla.198:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Overture : Ignoré.
:mozilla.199:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Overture : Ignoré.
:mozilla.200:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Overture : Ignoré.
:mozilla.233:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Planetactive : Ignoré.
C:\Documents and Settings\Anne\Cookies\anne@ads.pointroll[1].txt -> TrackingCookie.Pointroll : Ignoré.
:mozilla.337:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Questionmarket : Ignoré.
:mozilla.338:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Questionmarket : Ignoré.
:mozilla.906:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Real : Ignoré.
:mozilla.907:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Real : Ignoré.
:mozilla.908:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Real : Ignoré.
:mozilla.910:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Real : Ignoré.
:mozilla.643:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Realmedia : Ignoré.
:mozilla.644:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Realmedia : Ignoré.
:mozilla.645:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Realmedia : Ignoré.
:mozilla.646:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Realmedia : Ignoré.
:mozilla.653:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Revsci : Ignoré.
:mozilla.654:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Revsci : Ignoré.
:mozilla.655:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Revsci : Ignoré.
:mozilla.656:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Revsci : Ignoré.
:mozilla.657:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Revsci : Ignoré.
:mozilla.658:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Revsci : Ignoré.
:mozilla.659:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Revsci : Ignoré.
:mozilla.69:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.70:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.71:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.72:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.73:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.74:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.75:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Serving-sys : Ignoré.
C:\Documents and Settings\Anne\Cookies\anne@bs.serving-sys[1].txt -> TrackingCookie.Serving-sys : Ignoré.
C:\Documents and Settings\Anne\Cookies\anne@serving-sys[2].txt -> TrackingCookie.Serving-sys : Ignoré.
:mozilla.631:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Sitestat : Ignoré.
:mozilla.633:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Sitestat : Ignoré.
:mozilla.961:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Sitestat : Ignoré.
:mozilla.962:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Sitestat : Ignoré.
:mozilla.171:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.172:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.64:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.65:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.66:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.67:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
C:\Documents and Settings\Anne\Cookies\anne@smartadserver[1].txt -> TrackingCookie.Smartadserver : Ignoré.
C:\Documents and Settings\Anne\Cookies\anne@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.722:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Statcounter : Ignoré.
:mozilla.725:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Statcounter : Ignoré.
:mozilla.726:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Statcounter : Ignoré.
:mozilla.727:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Statcounter : Ignoré.
:mozilla.728:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Statcounter : Ignoré.
C:\Documents and Settings\Anne\Cookies\anne@statcounter[1].txt -> TrackingCookie.Statcounter : Ignoré.
:mozilla.414:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Tradedoubler : Ignoré.
:mozilla.415:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Tradedoubler : Ignoré.
:mozilla.416:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Tradedoubler : Ignoré.
C:\Documents and Settings\Anne\Cookies\anne@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Ignoré.
:mozilla.595:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Tribalfusion : Ignoré.
:mozilla.201:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.202:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.203:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
C:\Documents and Settings\Anne\Cookies\anne@weborama[1].txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.128:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignoré.
:mozilla.129:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignoré.
:mozilla.130:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignoré.
:mozilla.131:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignoré.
:mozilla.132:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignoré.
:mozilla.133:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignoré.
:mozilla.134:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignoré.
:mozilla.135:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignoré.
:mozilla.139:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignoré.
:mozilla.765:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Zedo : Ignoré.
:mozilla.766:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Zedo : Ignoré.
:mozilla.767:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Zedo : Ignoré.
C:\Documents and Settings\Anne\Cookies\anne@zedo[2].txt -> TrackingCookie.Zedo : Ignoré.


Fin du rapport




>
>



;***********************************************************************************************************************************************************************************
ANALYSIS: 2007-11-28 17:42:34
PROTECTIONS: 1
MALWARE: 2
SUSPECTS: 0
;***********************************************************************************************************************************************************************************
PROTECTIONS
Description Version Active Updated
;===================================================================================================================================================================================
Norton Internet Security 2007 Yes Yes
;===================================================================================================================================================================================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;===================================================================================================================================================================================
00032731 application/mywebsearch HackTools No 0 Yes No HKEY_LOCAL_MACHINE\software\classes\CLSID\{147a976f-eee1-4377-8ea7-4716e4cdd239}
00032731 application/mywebsearch HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00A6FAF1-072E-44cf-8957-5838F569A31D}
00032731 application/mywebsearch HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\&Search\
00032731 application/mywebsearch HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EAB-A523-4961-B6BB-170DE4475CCA}
00032731 application/mywebsearch HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EA1-A523-4961-B6BB-170DE4475CCA}
00032731 application/mywebsearch HackTools No 0 Yes No hkey_classes_root\clsid\{147a976f-eee1-4377-8ea7-4716e4cdd239}
00096053 application/funweb HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8}
00096053 application/funweb HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9FF05104-B030-46FC-94B8-81276E4E27DF}
;===================================================================================================================================================================================
SUSPECTS
Location
;===================================================================================================================================================================================
;===================================================================================================================================================================================



>










Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:44:36, on 28/11/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\TODDSrv.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
C:\WINDOWS\system32\ZoomingHook.exe
C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
C:\WINDOWS\system32\TCtrlIOHook.exe
C:\Program Files\TOSHIBA\Commandes TOSHIBA\TFncKy.exe
C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\WINDOWS\system32\TPSBattM.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\TOSHIBA\TOSHIBA Direct Disc Writer\ddwmon.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\ltmoh\Ltmoh.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\Microsoft Encarta\Microsoft Encarta 2007 - Collection\EDICT.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\iFrmewrk.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\eMule\eMule.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCSVR.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - C:\Program Files\Fichiers communs\Symantec Shared\coShared\Browser\1.0\NppBho.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO.dll
O2 - BHO: (no name) - {549B5CA7-4A86-11D7-A4DF-000874180BB3} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: Afficher Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Fichiers communs\Symantec Shared\coShared\Browser\1.0\UIBHO.dll
O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [PadTouch] C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
O4 - HKLM\..\Run: [CeEKEY] C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
O4 - HKLM\..\Run: [HWSetup] C:\Program Files\TOSHIBA\TOSHIBA Applet\HWSetup.exe hwSetUP
O4 - HKLM\..\Run: [SVPWUTIL] C:\Program Files\Toshiba\Windows Utilities\SVPWUTIL.exe SVPwUTIL
O4 - HKLM\..\Run: [TPNF] C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
O4 - HKLM\..\Run: [Zooming] ZoomingHook.exe
O4 - HKLM\..\Run: [SmoothView] C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
O4 - HKLM\..\Run: [TCtryIOHook] TCtrlIOHook.exe
O4 - HKLM\..\Run: [TFncKy] TFncKy.exe
O4 - HKLM\..\Run: [Tvs] C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [DDWMon] C:\Program Files\TOSHIBA\TOSHIBA Direct Disc Writer\\ddwmon.exe
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton Internet Security\osCheck.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [E07FDXRC_2581765] "C:\Program Files\Microsoft Encarta\Microsoft Encarta 2007 - Collection\EDICT.EXE" -m
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/menusearch.jhtml?p=ZJfox000
O8 - Extra context menu item: Download all links using BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Download all videos using BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: Download link using &BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\VAScanner\comHost.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\WINDOWS\system32\TODDSrv.exe
0
Réponse 3 / 8
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
27 nov. 2007 à 18:41
slt,
refais avg antispyware car tu as ignoré ce qui a ete trouvé et il faut tout supprimer

____________

Ouvrez le poste de travail puis ouvrez le disque C et le dossier Program Files, supprimez les dossiers suivants : si presents
FunWebProducts
MyWebSearch

____________


lance cwshredder (faire fix)
https://www.trendmicro.com/en_us/forHome.html
https://www.01net.com/actualites/
https://www.01net.com/telecharger/windows/Securite/anti-spyware/fiches/27497.html

_______________

lance regcleaner et nettoie ton registre

http://manuelsdaide.com/RegCleaner/RegCleaner.htm

_________________

recolle un rapport hijackthis
0
Réponse 4 / 8
Lady Mara
27 nov. 2007 à 19:51
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 19:33:33 28/11/2007

+ Résultat de l'analyse:



HKLM\SOFTWARE\Classes\WR -> Adware.Generic : Nettoyé et sauvegardé (mise en quarantaine).
:mozilla.16:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.
:mozilla.21:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.
:mozilla.22:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.
:mozilla.23:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.
:mozilla.24:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.
:mozilla.25:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.
C:\Documents and Settings\Anne\Cookies\anne@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
:mozilla.50:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\Anne\Cookies\anne@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé.
:mozilla.28:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.29:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.30:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.31:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.32:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.33:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.34:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.35:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.36:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.67:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Netflame : Nettoyé.
:mozilla.44:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.47:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.48:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.49:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.51:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
C:\Documents and Settings\Anne\Cookies\anne@weborama[1].txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.10:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.12:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.13:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.14:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.15:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.6:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.7:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.8:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.9:C:\Documents and Settings\Anne\Application Data\Mozilla\Firefox\Profiles\5zssu66w.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
C:\Documents and Settings\Anne\Cookies\anne@zedo[1].txt -> TrackingCookie.Zedo : Nettoyé.


Fin du rapport




Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:50:27, on 28/11/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\TODDSrv.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
C:\WINDOWS\system32\ZoomingHook.exe
C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
C:\WINDOWS\system32\TCtrlIOHook.exe
C:\Program Files\TOSHIBA\Commandes TOSHIBA\TFncKy.exe
C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\WINDOWS\system32\TPSBattM.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\TOSHIBA\TOSHIBA Direct Disc Writer\ddwmon.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\ltmoh\Ltmoh.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\Microsoft Encarta\Microsoft Encarta 2007 - Collection\EDICT.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\iFrmewrk.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\eMule\eMule.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\iTunes\iTunes.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCSVR.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - C:\Program Files\Fichiers communs\Symantec Shared\coShared\Browser\1.0\NppBho.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO.dll
O2 - BHO: (no name) - {549B5CA7-4A86-11D7-A4DF-000874180BB3} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: Afficher Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Fichiers communs\Symantec Shared\coShared\Browser\1.0\UIBHO.dll
O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [PadTouch] C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
O4 - HKLM\..\Run: [CeEKEY] C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
O4 - HKLM\..\Run: [HWSetup] C:\Program Files\TOSHIBA\TOSHIBA Applet\HWSetup.exe hwSetUP
O4 - HKLM\..\Run: [SVPWUTIL] C:\Program Files\Toshiba\Windows Utilities\SVPWUTIL.exe SVPwUTIL
O4 - HKLM\..\Run: [TPNF] C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
O4 - HKLM\..\Run: [Zooming] ZoomingHook.exe
O4 - HKLM\..\Run: [SmoothView] C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
O4 - HKLM\..\Run: [TCtryIOHook] TCtrlIOHook.exe
O4 - HKLM\..\Run: [TFncKy] TFncKy.exe
O4 - HKLM\..\Run: [Tvs] C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [DDWMon] C:\Program Files\TOSHIBA\TOSHIBA Direct Disc Writer\\ddwmon.exe
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton Internet Security\osCheck.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [E07FDXRC_2581765] "C:\Program Files\Microsoft Encarta\Microsoft Encarta 2007 - Collection\EDICT.EXE" -m
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: Download all links using BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Download all videos using BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: Download link using &BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\VAScanner\comHost.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\WINDOWS\system32\TODDSrv.exe
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 8
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
27 nov. 2007 à 20:34
desinstalle via ton panneau de configuration bitcomet

_____________


Relance HijackThis, choisis "do a scan only" coche la case devant les lignes ci-dessous et clic en bas sur "fix checked".


O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO.dll
O2 - BHO: (no name) - {549B5CA7-4A86-11D7-A4DF-000874180BB3} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll

O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)

O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE

O4 - HKLM\..\Run: [TPSMain] TPSMain.exe


O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"

O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: Download all links using BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Download all videos using BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: Download link using &BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll

O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)

_____________________



encore des problemes?

si oui colle le rapport
bitdefender en ligne :
http://www.bitdefender.fr/scan_fr/scan8/ie.html
0
Réponse 6 / 8
Lady Mara
27 nov. 2007 à 20:46
Non merci, plus aucun problème.
Un grand merci pour l'aide et le temps consacré à cela.
Bonne continuation!
0
Réponse 7 / 8
SOSO
6 mars 2008 à 22:36
bonjour tout le monde j'ai le meme probleme une photo ma été envoyer sur msn et j'ai cliker et je voudrai au plus vite le suprimer avant qu'il ne détruise tout je vous laisse le rapport de mon ativiruse :

--- Search result list ---
Win32.Small.azl: [SBI $02AFBE7E] Réglages Autorun (Valeur du registre, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\runner1

Win32.Small.azl: [SBI $A95A5F26] Exécutable (Fichier, nothing done)
C:\WINDOWS\mrofinu1423.exe

Win32.Small.azl: [SBI $A95A5F26] Exécutable (Fichier, nothing done)
C:\WINDOWS\mrofinu1423.exe.tmp

Tradedoubler: Cookie traceur (Internet Explorer: saous) (Cookie, nothing done)


DoubleClick: Cookie traceur (Internet Explorer: saous) (Cookie, nothing done)


BlueStreak: Cookie traceur (Internet Explorer: saous) (Cookie, nothing done)


Marketengines: Cookie traceur (Firefox: default) (Cookie, nothing done)



--- Spybot - Search & Destroy version: 1.5 (build: 20070830) ---

2007-08-31 blindman.exe (1.0.0.6)
2007-08-31 SDMain.exe (1.0.0.4)
2007-08-31 SDUpdate.exe (1.0.6.4)
2007-08-31 SDWinSec.exe (1.0.0.8)
2007-08-31 SpybotSD.exe (1.5.1.15)
2007-08-31 TeaTimer.exe (1.5.0.9)
2008-03-05 unins000.exe (51.46.0.0)
2007-08-31 Update.exe (1.4.0.5)
2007-08-31 advcheck.dll (1.5.3.0)
2007-04-02 aports.dll (2.1.0.0)
2007-04-02 DelZip179.dll (1.79.5.3)
2007-08-31 SDHelper.dll (1.5.0.8)
2007-08-31 Tools.dll (2.1.2.0)
2008-03-05 Includes\Cookies.sbi (*)
2007-12-26 Includes\Dialer.sbi (*)
2008-03-05 Includes\DialerC.sbi (*)
2008-03-05 Includes\HeavyDuty.sbi (*)
2008-03-05 Includes\Hijackers.sbi (*)
2008-03-05 Includes\HijackersC.sbi (*)
2008-02-27 Includes\Keyloggers.sbi (*)
2008-03-05 Includes\KeyloggersC.sbi (*)
2004-11-29 Includes\LSP.sbi (*)
2008-02-27 Includes\Malware.sbi (*)
2008-03-05 Includes\MalwareC.sbi (*)
2008-02-20 Includes\PUPS.sbi (*)
2008-03-05 Includes\PUPSC.sbi (*)
2008-03-05 Includes\Revision.sbi (*)
2008-01-09 Includes\Security.sbi (*)
2008-03-05 Includes\SecurityC.sbi (*)
2008-02-20 Includes\Spybots.sbi (*)
2008-03-05 Includes\SpybotsC.sbi (*)
2007-11-06 Includes\Tracks.uti
2008-02-27 Includes\Trojans.sbi (*)
2008-03-05 Includes\TrojansC.sbi (*)
2008-12-24 Plugins\TCPIPAddress.dll



--- System information ---
Windows XP (Build: 2600) Service Pack 2 (5.1.2600)
/ Internet Explorer 6 / SP1: Correctif Windows XP - KB912812
/ Internet Explorer 6 / SP1: Correctif Windows XP - KB918439
/ Internet Explorer 6 / SP1: Correctif Windows XP - KB918899
/ Internet Explorer 6 / SP1: Correctif Windows XP - KB925486
/ Microsoft .NET Framework 2.0: This Security Update is for Microsoft .NET Framework 2.0. \n
If you later install a more recent service pack, this Security Update will be uninstalled automatically. \n
For more information, visit https://support.microsoft.com/en-us/help/917283/ms06-033-a-vulnerability-in-asp-net-could-allow-information-disclosure
/ Microsoft .NET Framework 2.0: This Security Update is for Microsoft .NET Framework 2.0. \n
If you later install a more recent service pack, this Security Update will be uninstalled automatically. \n
For more information, visit https://support.microsoft.com/en-us/help/922770
/ MSXML4SP2: FIX: ASP stops responding when calling Response.Redirect to another server using msxml4 sp2
/ MSXML4SP2: Security update for MSXML4 SP2 (KB936181)
/ Outlook Express 6 / SP1: Correctif Windows XP - KB911567
/ Windows / SP1: Microsoft National Language Support Downlevel APIs
/ Windows Media Format 11 SDK: Hotfix for Windows Media Format 11 SDK (KB929399)
/ Windows Media Player 10: Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)
/ Windows Media Player 11: Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)
/ Windows Media Player 11: Correctif pour Lecteur Windows Media 11 (KB939683)
/ Windows Media Player 6.4: Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398)
/ Windows XP / SP10: Microsoft Compression Client Pack 1.0 for Windows XP
/ Windows XP / SP3: Windows Installer 3.1 (KB893803)
/ Windows XP / SP3: Hotfix for Windows XP (KB915865)
/ Windows XP / SP3: Hotfix for Windows XP (KB926239)


--- Startup entries list ---
Located: HK_LM:Run, Broadcom Wireless Manager UI
command: C:\WINDOWS\System32\WLTRAY.exe
file: C:\WINDOWS\System32\WLTRAY.exe
size: 1347584
MD5: 234C29A211817B5C69C2E4C4C4F71750

Located: HK_LM:Run, Dell QuickSet
command: C:\Program Files\Dell\QuickSet\quickset.exe
file: C:\Program Files\Dell\QuickSet\quickset.exe
size: 1032192
MD5: 90753C9E5C84B3EC5C299B554E5A86E3

Located: HK_LM:Run, Flash Media
command: C:\DOCUME~1\saous\LOCALS~1\Temp\services.exe
file: C:\DOCUME~1\saous\LOCALS~1\Temp\services.exe
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: HK_LM:Run, IMJPMIG8.1
command: "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
file: C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE
size: 208952
MD5: 7BBE4CF421AECC7F0226EDD75F12079F

Located: HK_LM:Run, IntelWireless
command: "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
file: C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
size: 385024
MD5: 0D4E3D3495CCDC0232D9196E0D27B23D

Located: HK_LM:Run, IntelZeroConfig
command: "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
file: C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
size: 401408
MD5: E73D807F803C538F73994ECB92A9C92B

Located: HK_LM:Run, iTunesHelper
command: "C:\Program Files\iTunes\iTunesHelper.exe"
file: C:\Program Files\iTunes\iTunesHelper.exe
size: 270648
MD5: 018C1B1379D326ABFAA89EDA7E43F95A

Located: HK_LM:Run, KernelFaultCheck
command: %systemroot%\system32\dumprep 0 -k
file: C:\WINDOWS\system32\dumprep.exe
size: 10752
MD5: BA510A646B02CB44137B8296DB2783D3

Located: HK_LM:Run, MsmqIntCert
command: regsvr32 /s mqrt.dll
file: C:\WINDOWS\system32\reg.exe
size: 53248
MD5: 5BC49B61651EDBC0A80D2DE16D7F422C

Located: HK_LM:Run, MSPY2002
command: C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
file: C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe
size: 59392
MD5: 1B17E09C1223F6D17336D2DD7A1AF4F4

Located: HK_LM:Run, PCDAS
command: C:\Program Files\Defenza\pcd-as.exe /10003
file: C:\Program Files\Defenza\pcd-as.exe
size: 1359872
MD5: 5B42206B830E983E73E3C7EBE07EEA28

Located: HK_LM:Run, PHIME2002A
command: C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
file: C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE
size: 455168
MD5: 024DC0F68DF5FD6AE9DD82DFBAF479D6

Located: HK_LM:Run, PHIME2002ASync
command: C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
file: C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE
size: 455168
MD5: 024DC0F68DF5FD6AE9DD82DFBAF479D6

Located: HK_LM:Run, QuickTime Task
command: "C:\Program Files\QuickTime\qttask.exe" -atboottime
file: C:\Program Files\QuickTime\qttask.exe
size: 286720
MD5: 49CCFBE5D5225B9D3CC78C09DEE147D0

Located: HK_LM:Run, SunJavaUpdateSched
command: "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
file: C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
size: 132496
MD5: D4F0F7437327DBAA264338BAAFB5E5AF

Located: HK_LM:Run, Synchronization Manager
command: %SystemRoot%\system32\mobsync.exe /logon
file: C:\WINDOWS\system32\mobsync.exe
size: 144384
MD5: E2EEDBC49584689B71DC38144E5FF9D0

Located: HK_LM:Run, TkBellExe
command: "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
file: C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
size: 185896
MD5: 74BC945EB2584E90619A56EF5028AB0F

Located: HK_LM:Run, UnlockerAssistant
command: "C:\Program Files\Unlocker\UnlockerAssistant.exe" -H
file: C:\Program Files\Unlocker\UnlockerAssistant.exe
size: 15872
MD5: 3FFE8752B77382C5050006C31781D05A

Located: HK_CU:Run, CTFMON.EXE
where: .DEFAULT...
command: C:\WINDOWS\System32\CTFMON.EXE
file: C:\WINDOWS\System32\CTFMON.EXE
size: 15360
MD5: 64E41E8FEE655B03E3F19DED21BA5118

Located: HK_CU:Run, msnmsgr
where: .DEFAULT...
command: "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
file: C:\Program Files\Windows Live\Messenger\msnmsgr.exe
size: 5724184
MD5: 97384875B6D03831B2D1820AB8952F67

Located: HK_CU:Run, CTFMON.EXE
where: S-1-5-19...
command: C:\WINDOWS\System32\CTFMON.EXE
file: C:\WINDOWS\System32\CTFMON.EXE
size: 15360
MD5: 64E41E8FEE655B03E3F19DED21BA5118

Located: HK_CU:Run, CTFMON.EXE
where: S-1-5-20...
command: C:\WINDOWS\System32\CTFMON.EXE
file: C:\WINDOWS\System32\CTFMON.EXE
size: 15360
MD5: 64E41E8FEE655B03E3F19DED21BA5118

Located: HK_CU:Run, CTFMON.EXE
where: S-1-5-21-842925246-839522115-682003330-1003...
command: C:\WINDOWS\system32\ctfmon.exe
file: C:\WINDOWS\system32\ctfmon.exe
size: 15360
MD5: 64E41E8FEE655B03E3F19DED21BA5118

Located: HK_CU:Run, DellSupport
where: S-1-5-21-842925246-839522115-682003330-1003...
command: "C:\PROGRA~1\DELLSU~1\DSAgnt.exe" /startup
file: C:\PROGRA~1\DELLSU~1\DSAgnt.exe
size: 332800
MD5: A40D952C0355C85867517AA529A06741

Located: HK_CU:Run, MsnMsgr
where: S-1-5-21-842925246-839522115-682003330-1003...
command: "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
file: C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
size: 5724184
MD5: 97384875B6D03831B2D1820AB8952F67

Located: HK_CU:Run, SpybotSD TeaTimer
where: S-1-5-21-842925246-839522115-682003330-1003...
command: C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
file: C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
size: 1460560
MD5: B7D4586BFC0DD6C3BE7DCCC252A3E97E

Located: HK_CU:Run, CTFMON.EXE
where: S-1-5-18...
command: C:\WINDOWS\System32\CTFMON.EXE
file: C:\WINDOWS\System32\CTFMON.EXE
size: 15360
MD5: 64E41E8FEE655B03E3F19DED21BA5118

Located: HK_CU:Run, msnmsgr
where: S-1-5-18...
command: "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
file: C:\Program Files\Windows Live\Messenger\msnmsgr.exe
size: 5724184
MD5: 97384875B6D03831B2D1820AB8952F67

Located: WinLogon, AtiExtEvent
command: Ati2evxx.dll
file: Ati2evxx.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, crypt32chain
command: crypt32.dll
file: crypt32.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, cryptnet
command: cryptnet.dll
file: cryptnet.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, cscdll
command: cscdll.dll
file: cscdll.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, IntelWireless
command: C:\Program Files\Intel\Wireless\Bin\LgNotify.dll
file: C:\Program Files\Intel\Wireless\Bin\LgNotify.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, ScCertProp
command: wlnotify.dll
file: wlnotify.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, Schedule
command: wlnotify.dll
file: wlnotify.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, sclgntfy
command: sclgntfy.dll
file: sclgntfy.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, SensLogn
command: WlNotify.dll
file: WlNotify.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, termsrv
command: wlnotify.dll
file: wlnotify.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, WgaLogon
command: WgaLogon.dll
file: WgaLogon.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, wlballoon
command: wlnotify.dll
file: wlnotify.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, WRNotifier
command: WRLogonNTF.dll
file: WRLogonNTF.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!



--- Browser helper object list ---
{3049C3E9-B461-4BC5-8870-4C09146192CA} (RealPlayer Download and Record Plugin for Internet Explorer)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name:
CLSID name: RealPlayer Download and Record Plugin for Internet Explorer
Path: C:\Program Files\Real\RealPlayer\
Long name: rpbrowserrecordplugin.dll
Short name: RPBROW~1.DLL
Date (created): 26/02/2008 15:38:46
Date (last access): 05/03/2008 23:56:46
Date (last write): 26/02/2008 15:38:46
Filesize: 370296
Attributes: archive
MD5: 4D630E9EF94CF8814DFD0E5938230822
CRC32: 02C3DBBF
Version: 1.0.0.522

{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name:
CLSID name: SSVHelper Class
Path: C:\Program Files\Java\jre1.6.0_03\bin\
Long name: ssv.dll
Short name:
Date (created): 27/02/2008 13:54:20
Date (last access): 05/03/2008 23:19:22
Date (last write): 25/09/2007 01:11:34
Filesize: 501136
Attributes: archive
MD5: D787E3123FAD2BD58AB45B9A5C360ACD
CRC32: DDC625C2
Version: 6.0.30.5

{7E853D72-626A-48EC-A868-BA8D5E23E045} ()
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name:
CLSID name:

{9030D464-4C02-4ABF-8ECC-5164760863C6} (Programme d'aide de l'Assistant de connexion Windows Live)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name:
CLSID name: Programme d'aide de l'Assistant de connexion Windows Live
Path: C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\
Long name: WindowsLiveLogin.dll
Short name: WINDOW~1.DLL
Date (created): 20/09/2007 10:30:18
Date (last access): 05/03/2008 23:50:20
Date (last write): 20/09/2007 10:30:18
Filesize: 328752
Attributes: archive
MD5: 59CF5BF6684AFCF906CADAD39B4214DE
CRC32: C363813C
Version: 4.200.520.1

{AF69DE43-7D58-4638-B6FA-CE66B5AD205D} (Google Toolbar Notifier BHO)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name:
CLSID name: Google Toolbar Notifier BHO
Path: C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\
Long name: swg.dll
Short name:
Date (created): 02/10/2007 19:54:30
Date (last access): 05/03/2008 23:19:22
Date (last write): 02/10/2007 19:54:30
Filesize: 654832
Attributes: archive
MD5: B85A0FA95E24D9EA3B4181DAD716A27B
CRC32: D4D52E25
Version: 2.1.615.5858



--- ActiveX list ---
{166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control)
DPF name:
CLSID name: Shockwave ActiveX Control
Installer: C:\WINDOWS\Downloaded Program Files\erma.inf
Codebase: http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
description: Macromedia ShockWave Flash Player 7
classification: Unknown
known filename: SWDIR.DLL
info link:
info source: Patrick M. Kolla
Path: C:\WINDOWS\system32\macromed\Director\
Long name: SwDir.dll
Short name:
Date (created): 02/12/2006 23:20:00
Date (last access): 05/03/2008 23:19:24
Date (last write): 03/09/2006 23:10:30
Filesize: 54960
Attributes: archive
MD5: EB271B21EA6104B7C6946EF32D558C91
CRC32: CEC4E0C2
Version: 10.1.4.20

{20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class)
DPF name:
CLSID name: Checkers Class
Installer:
Codebase: http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
Path: C:\WINDOWS\Downloaded Program Files\
Long name: msgrchkr.dll
Short name:
Date (created): 28/02/2007 13:21:04
Date (last access): 05/03/2008 23:28:24
Date (last write): 28/02/2007 13:21:04
Filesize: 131472
Attributes: archive
MD5: 1E5CFDF9AEBDD84305A4C8154277A269
CRC32: 73C871D0
Version: 9.5.7087.1

{31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player)
DPF name:
CLSID name: Cult3D ActiveX Player
Installer: C:\WINDOWS\Downloaded Program Files\Cult.inf
Codebase: https://www.cult3d.com/
Path: C:\WINDOWS\System32\Cult3D\
Long name: IECult.dll
Short name:
Date (created): 07/01/2004 15:00:06
Date (last access): 05/03/2008 23:19:24
Date (last write): 07/01/2004 15:00:06
Filesize: 1888256
Attributes: archive
MD5: 422FE2685963C2A83A8FF2139124FF9B
CRC32: 25DD48C0
Version: 5.3.0.228

{3334504D-9980-0010-8000-00AA00389B71} ()
DPF name:
CLSID name:
Installer: C:\WINDOWS\Downloaded Program Files\mp43dmo.inf
Codebase: http://download.microsoft.com/download/0/C/8/0C8EDFAB-30BC-4792-898E-2DABE27B2C4D/mp43dmo.CAB

{5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class)
DPF name:
CLSID name: UnoCtrl Class
Installer: C:\WINDOWS\Downloaded Program Files\GAME_UNO1.INF
Codebase: http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
Path: C:\WINDOWS\Downloaded Program Files\
Long name: GAME_UNO1.dll
Short name: GAME_U~1.DLL
Date (created): 13/04/2007 01:14:52
Date (last access): 05/03/2008 23:28:24
Date (last write): 13/04/2007 01:14:52
Filesize: 382344
Attributes: archive
MD5: A9F8AB66D9D05A13843623EE6B92D259
CRC32: C9DFA641
Version: 1.0.1201.1

{6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class)
DPF name:
CLSID name: WUWebControl Class
Installer: C:\WINDOWS\Downloaded Program Files\wuweb.inf
Codebase: http://www.update.microsoft.com/...
Path: C:\WINDOWS\system32\
Long name: wuweb.dll
Short name:
Date (created): 12/05/2006 09:21:16
Date (last access): 05/03/2008 23:53:54
Date (last write): 30/07/2007 19:19:46
Filesize: 203096
Attributes: archive
MD5: FD984F9BFC9C62BD6546BD183CE5ADE7
CRC32: 8092F837
Version: 7.0.6000.381

{8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0)
DPF name: Java Runtime Environment 1.6.0
CLSID name: Java Plug-in 1.6.0_03
Installer:
Codebase: http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
description: Sun Java
classification: Legitimate
known filename: %PROGRAM FILES%\JabaSoft\JRE\*\Bin\npjava131.dll
info link:
info source: Patrick M. Kolla
Path: C:\Program Files\Java\jre1.6.0_03\bin\
Long name: npjpi160_03.dll
Short name: NPJPI1~1.DLL
Date (created): 24/09/2007 23:31:44
Date (last access): 05/03/2008 23:19:24
Date (last write): 25/09/2007 01:11:34
Filesize: 132496
Attributes: archive
MD5: D6A4682A6FF41832A3F1A7AB9AE08199
CRC32: 9080B537
Version: 6.0.30.5

{C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class)
DPF name:
CLSID name: MessengerStatsClient Class
Installer:
Codebase: http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
Path: C:\WINDOWS\Downloaded Program Files\
Long name: MessengerStatsPAClient.dll
Short name: MESSEN~1.DLL
Date (created): 22/02/2007 22:41:12
Date (last access): 05/03/2008 23:28:24
Date (last write): 22/02/2007 22:41:12
Filesize: 304544
Attributes: archive
MD5: 8945CCA5FC4F25168E8B6F401EFAF51F
CRC32: 0F12FD23
Version: 9.5.6907.1

{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0)
DPF name: Java Runtime Environment 1.5.0
CLSID name: Java Plug-in 1.5.0_11
Installer:
Codebase: http://java.sun.com/update/1.5.0/jinstall-1_5_0_11-windows-i586.cab
Path: C:\Program Files\Java\jre1.5.0_11\bin\
Long name: NPJPI150_11.dll
Short name: NPJPI1~1.DLL
Date (created): 15/12/2006 03:09:16
Date (last access): 05/03/2008 23:19:24
Date (last write): 15/12/2006 03:23:26
Filesize: 75528
Attributes: archive
MD5: 3B3F6984DBF972DAFF1B7E9C44E2FE75
CRC32: 4BDE2041
Version: 5.0.110.3

{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} (Java Runtime Environment 1.6.0)
DPF name: Java Runtime Environment 1.6.0
CLSID name: Java Plug-in 1.6.0_03
Installer:
Codebase: http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
Path: C:\Program Files\Java\jre1.6.0_03\bin\
Long name: npjpi160_03.dll
Short name: NPJPI1~1.DLL
Date (created): 24/09/2007 23:31:44
Date (last access): 05/03/2008 23:19:24
Date (last write): 25/09/2007 01:11:34
Filesize: 132496
Attributes: archive
MD5: D6A4682A6FF41832A3F1A7AB9AE08199
CRC32: 9080B537
Version: 6.0.30.5

{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} (Java Runtime Environment 1.6.0)
DPF name: Java Runtime Environment 1.6.0
CLSID name: Java Plug-in 1.6.0_03
Installer:
Codebase: http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
Path: C:\Program Files\Java\jre1.6.0_03\bin\
Long name: npjpi160_03.dll
Short name: NPJPI1~1.DLL
Date (created): 24/09/2007 23:31:44
Date (last access): 05/03/2008 23:19:24
Date (last write): 25/09/2007 01:11:34
Filesize: 132496
Attributes: archive
MD5: D6A4682A6FF41832A3F1A7AB9AE08199
CRC32: 9080B537
Version: 6.0.30.5

{D27CDB6E-0000-0000-0000-000000000000} ()
DPF name:
CLSID name:
Installer: C:\WINDOWS\Downloaded Program Files\swflash.inf
Codebase: http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

{D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object)
DPF name:
CLSID name: Shockwave Flash Object
Installer: C:\WINDOWS\Downloaded Program Files\swflash.inf
Codebase: http://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
description: Macromedia Shockwave Flash Player
classification: Legitimate
known filename:
info link:
info source: Patrick M. Kolla
Path: C:\WINDOWS\System32\Macromed\Flash\
Long name: Flash9b.ocx
Short name:
Date (created): 09/11/2006 14:46:28
Date (last access): 06/03/2008 00:08:34
Date (last write): 09/11/2006 14:46:28
Filesize: 2262648
Attributes: readonly archive
MD5: F3B3EE66CA76C94510555ABE9D00A353
CRC32: A51F3CB4
Version: 9.0.28.0

{F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class)
DPF name:
CLSID name: Minesweeper Flags Class
Installer:
Codebase: http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
Path: C:\WINDOWS\Downloaded Program Files\
Long name: MineSweeper.dll
Short name: MINESW~1.DLL
Date (created): 28/02/2007 13:21:04
Date (last access): 05/03/2008 23:28:24
Date (last write): 28/02/2007 13:21:04
Filesize: 130472
Attributes: archive
MD5: E661E91B5929632665683222D509D271
CRC32: 63A9B975
Version: 9.5.6986.1



--- Process list ---
PID: 0 ( 0) [System]
PID: 488 ( 0) \SystemRoot\System32\smss.exe
size: 50688
PID: 544 ( 0) \??\C:\WINDOWS\system32\csrss.exe
size: 6144
PID: 580 ( 0) \??\C:\WINDOWS\system32\winlogon.exe
size: 506368
PID: 624 ( 0) C:\WINDOWS\system32\services.exe
size: 108544
MD5: 63DCDE1A0D86EEB8924D6738FF616EAD
PID: 636 ( 0) C:\WINDOWS\system32\lsass.exe
size: 13312
MD5: 259AF82A0932EEA4F316F92DB94707B6
PID: 784 ( 0) C:\WINDOWS\System32\Ati2evxx.exe
size: 380928
MD5: ABC57A6F6070BAF9786C318F59F29F0B
PID: 796 ( 0) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 2979B03D5382A602623C0535B16AB9C0
PID: 876 ( 0) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 2979B03D5382A602623C0535B16AB9C0
PID: 920 ( 0) C:\WINDOWS\System32\svchost.exe
size: 14336
MD5: 2979B03D5382A602623C0535B16AB9C0
PID: 964 ( 0) C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
size: 86016
MD5: AA1D9C4A2F997FEA8A4FB0929212EDA2
PID: 1160 ( 0) C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
size: 372809
MD5: A57B20BB52B7C504B7A9FB4C82B639BA
PID: 1180 ( 0) C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
size: 225353
MD5: B4F72FDFADBD7B8353442B9B8A60CC8C
PID: 1212 ( 0) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 2979B03D5382A602623C0535B16AB9C0
PID: 1324 ( 0) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 2979B03D5382A602623C0535B16AB9C0
PID: 1420 ( 0) C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe
size: 401408
MD5: E73D807F803C538F73994ECB92A9C92B
PID: 1600 ( 0) C:\WINDOWS\system32\spoolsv.exe
size: 57856
MD5: DF9FC62AD51CB082B0AE371919A232CB
PID: 1836 ( 0) C:\WINDOWS\system32\Ati2evxx.exe
size: 380928
MD5: ABC57A6F6070BAF9786C318F59F29F0B
PID: 1952 ( 0) C:\WINDOWS\Explorer.EXE
size: 1036288
MD5: 2A7BD330924252A2FD80344FC949BB72
PID: 196 ( 0) C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
size: 385024
MD5: 0D4E3D3495CCDC0232D9196E0D27B23D
PID: 200 ( 0) C:\Program Files\Dell\QuickSet\quickset.exe
size: 1032192
MD5: 90753C9E5C84B3EC5C299B554E5A86E3
PID: 208 ( 0) C:\WINDOWS\System32\WLTRAY.exe
size: 1347584
MD5: 234C29A211817B5C69C2E4C4C4F71750
PID: 216 ( 0) C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
size: 132496
MD5: D4F0F7437327DBAA264338BAAFB5E5AF
PID: 328 ( 0) C:\Program Files\iTunes\iTunesHelper.exe
size: 270648
MD5: 018C1B1379D326ABFAA89EDA7E43F95A
PID: 348 ( 0) C:\Program Files\Unlocker\UnlockerAssistant.exe
size: 15872
MD5: 3FFE8752B77382C5050006C31781D05A
PID: 416 ( 0) C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
size: 185896
MD5: 74BC945EB2584E90619A56EF5028AB0F
PID: 600 ( 0) C:\Program Files\Defenza\pcd-as.exe
size: 1359872
MD5: 5B42206B830E983E73E3C7EBE07EEA28
PID: 728 ( 0) C:\WINDOWS\system32\ctfmon.exe
size: 15360
MD5: 64E41E8FEE655B03E3F19DED21BA5118
PID: 752 ( 0) C:\PROGRA~1\DELLSU~1\DSAgnt.exe
size: 332800
MD5: A40D952C0355C85867517AA529A06741
PID: 848 ( 0) C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
size: 5724184
MD5: 97384875B6D03831B2D1820AB8952F67
PID: 1316 ( 0) C:\WINDOWS\System32\msdtc.exe
size: 6144
MD5: 11CA338B8765DB8E2D1B459F2CFAD147
PID: 1496 ( 0) C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
size: 106496
MD5: 2ACFC9242BE81AE2356E14E5E05C02BB
PID: 1516 ( 0) C:\WINDOWS\system32\cisvc.exe
size: 5632
MD5: ABFAC5D58218C0A655DFCAE2D8A535F3
PID: 1560 ( 0) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
size: 138680
MD5: D213C2B1CE0FAEAB59EC0C55B4493F94
PID: 1688 ( 0) C:\WINDOWS\system32\inetsrv\inetinfo.exe
size: 15872
MD5: 3677FE8F78ED0A5A31360BDE2CF4671A
PID: 1780 ( 0) C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
size: 380928
MD5: 11D8A00C7EFF1AAEC8E8464769C84A3D
PID: 1908 ( 0) C:\WINDOWS\system32\pctspk.exe
size: 86016
MD5: 9946F9F9B359B010E879D6FF0155D9B7
PID: 1828 ( 0) C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
size: 139264
MD5: E6CD560A4A16FEEE5503CB59A3E30A84
PID: 2092 ( 0) C:\WINDOWS\system32\tcpsvcs.exe
size: 19456
MD5: 50F22575C0FB5D85A9D41EF963610C32
PID: 2120 ( 0) C:\WINDOWS\System32\snmp.exe
size: 32768
MD5: F143B2E34BA845F3631D1FB623ED538A
PID: 2156 ( 0) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 2979B03D5382A602623C0535B16AB9C0
PID: 2236 ( 0) C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
size: 3567928
MD5: 3A331CBEF1BFDAA1BB3EE2542637E464
PID: 2732 ( 0) C:\WINDOWS\System32\WLTRYSVC.EXE
size: 18944
MD5: 8E12ADCD26A2AC8006E52B74463E9DD1
PID: 2848 ( 0) C:\WINDOWS\System32\bcmwltry.exe
size: 1200128
MD5: 3118A7345A5C28E8D5C6BE7A90AEA0A6
PID: 3004 ( 0) C:\WINDOWS\system32\mqsvc.exe
size: 4608
MD5: 0680E10014C9D9F181475B059E0F204E
PID: 3532 ( 0) C:\WINDOWS\system32\mqtgsvc.exe
size: 117248
MD5: 3526350A3E76E2F33A4ADBE9DB0D43CC
PID: 3672 ( 0) C:\Program Files\iPod\bin\iPodService.exe
size: 501048
MD5: 83CD5F746B260457DEF125AEB8783B46
PID: 3800 ( 0) C:\WINDOWS\system32\wbem\wmiprvse.exe
size: 218112
MD5: 2FE6F76ADB634D4ED7EF9EAE726BC654
PID: 456 ( 0) C:\WINDOWS\System32\alg.exe
size: 44544
MD5: B43CC0F07752D456038CD0268E4D84E9
PID: 3776 ( 0) C:\WINDOWS\system32\wscntfy.exe
size: 13824
MD5: 8558905BA81F6EFAAF9667139BB117DD
PID: 4088 ( 0) C:\WINDOWS\17PHolmes1423.exe
PID: 3716 ( 0) C:\WINDOWS\system32\wuauclt.exe
size: 53080
MD5: F3E9065EB617A7E3A832A7976BFA021B
PID: 2824 ( 0) C:\Program Files\Windows Live\Messenger\usnsvc.exe
size: 98328
MD5: 9D19B042A4FD5C02195071EA2FE0C821
PID: 2516 ( 0) C:\WINDOWS\system32\cidaemon.exe
size: 8192
MD5: 72999AA48322DA948CE50C08B414A0EC
PID: 2888 ( 0) C:\WINDOWS\system32\cidaemon.exe
size: 8192
MD5: 72999AA48322DA948CE50C08B414A0EC
PID: 760 ( 0) C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
size: 4943184
MD5: C92780F50B8BB7A89E919585916494A9
PID: 1892 ( 0) C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
size: 1460560
MD5: B7D4586BFC0DD6C3BE7DCCC252A3E97E


--- Browser start & search pages list ---
Spybot - Search & Destroy browser pages report, 06/03/2008 00:11:00

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page
C:\WINDOWS\system32\blank.htm
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Bar
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page
https://www.msn.com/fr-fr/?ocid=iehp
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\SearchAssistant
https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\CustomizeSearch
https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchcust.htm
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl\@
http://home.microsoft.com/access/autosearch.asp?p=%s
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Local Page
%SystemRoot%\system32\blank.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Page
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Bar
https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page
http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL
http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\SearchAssistant
https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\CustomizeSearch
https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchcust.htm


--- Winsock Layered Service Provider list ---
Protocol 8: MSAFD Pgm (RDM)
GUID: {03F511BF-30A0-4152-BDD7-C7B1BCA1BCCB}
Filename: %SystemRoot%\system32\mswsock.dll

Protocol 9: MSAFD Pgm (Stream)
GUID: {03F511BF-30A0-4152-BDD7-C7B1BCA1BCCB}
Filename: %SystemRoot%\system32\mswsock.dll

Namespace Provider 3: Fournisseur d'espace de noms du nuage PNRP
GUID: {03FE89CE-766D-4976-B9C1-BB9BC42C7B4D}
Filename: C:\WINDOWS\system32\pnrpnsp.dll

Namespace Provider 4: Fournisseur d'espace de noms du nom PNRP
GUID: {03FE89CD-766D-4976-B9C1-BB9BC42C7B4D}
Filename: C:\WINDOWS\system32\pnrpnsp.dll



--- Uninstall list ---
(AddressBook)

Adobe Flash Player Plugin 9.0.115.0 (Adobe Flash Player Plugin)
uninstall cmd: C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
publisher: Adobe Systems Incorporated

Adobe Shockwave Player 10.1.4.20 (Adobe Shockwave Player)
uninstall cmd: C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
publisher: Adobe Systems, Inc.
help link: https://helpx.adobe.com/shockwave.html

ATI Display Driver 8.162-050803a2-025823C-Dell (ATI Display Driver)
uninstall cmd: rundll32 C:\WINDOWS\System32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean

(Branding)

Dell Wireless WLAN Card 4.10.47.3 (Broadcom 802.11b Network Adapter)
uninstall cmd: "C:\Program Files\Dell\Dell Wireless WLAN Card\bcmwlu00.exe" verbose /rootkey="Software\Broadcom\802.11\UninstallInfo" /rootdir="C:\Program Files\Dell\Dell Wireless WLAN Card"
publisher: Dell Inc.

CCleaner (remove only) (CCleaner)
uninstall cmd: "C:\Program Files\CCleaner\uninst.exe"

CEP - Color Enable Package 6.0b (beta) (CEP - Colour Enable Packages_is1)
install date: 20080214
install location: C:\PROGRA~1\EAGAME~1\zCEP_Uninstaller\
uninstall cmd: "C:\PROGRA~1\EAGAME~1\zCEP_Uninstaller\unins000.exe"
publisher: Numenor, for ModTheSims2
help link: https://modthesims.info/

(Connection Manager)

(DirectAnimation)

(DirectDrawEx)

(DXM_Runtime)

Microsoft Excel 97 (Excel)
uninstall cmd: C:\Program Files\Microsoft Office\Office\Install\AcmeXl.exe /w Excel97.stf

(Fontcore)

FTDI USB Serial Converter Drivers (FTDICOMM)
uninstall cmd: C:\WINDOWS\System32\ftdiunin.exe C:\WINDOWS\System32\ftdiun2k.ini

Outil de mise à jour Google 2.2.969.23408 (Google Updater)
uninstall cmd: "C:\Program Files\Google\Google Updater\GoogleUpdater.exe" -uninstall
publisher: Google Inc.
help link: http://pack.google.com:80/pack-support?hl=fr&gl=fr

(ICW)

(IE40)

(IE4Data)

(IE5BAKEX)

(IEData)

(InstallShield Uninstall Information)

(KB884016)

(KB884267)

(KB885353)

(KB886612)

(KB887078)

(KB887626)

(KB888656)

(KB889858)

(KB891122)

Windows Genuine Advantage Validation Tool (KB892130) (KB892130)
install date: 20080203
publisher: Microsoft Corporation
help link: https://www.microsoft.com/en-us/howtotell/default.aspx

(KB892313)

(KB893240)

(KB893241)

(KB893803)

Windows Installer 3.1 (KB893803) 3.1 (KB893803v2)
uninstall cmd: "C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/893803/windows-installer-3-1-v2-3-1-4000-2435-is-available

(KB895181)

(KB895316)

(KB895572)

(KB897586)

(KB898549)

(KB900399)

(KB902344)

(KB907658)

(KB911565)

(KB911854)

Hotfix for Windows XP (KB915865) 10 (KB915865)
install date: 20080305
uninstall cmd: "C:\WINDOWS\$NtUninstallKB915865$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/915865

Security Update pour Microsoft .NET Framework 2.0 (KB917283) 1 (KB917283.T1_1ToU93_1)
uninstall cmd: C:\WINDOWS\system32\msiexec.exe /promptrestart /uninstall {967B098A-042D-4367-BAC9-8BC11684174F} /package {7131646D-CD3C-40F4-97B9-CD9E4E6262EF}
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/917283/ms06-033-a-vulnerability-in-asp-net-could-allow-information-disclosure

Security Update pour Microsoft .NET Framework 2.0 (KB922770) 1 (KB922770.T1_1ToU168_1)
uninstall cmd: C:\WINDOWS\system32\msiexec.exe /promptrestart /uninstall {0E92DD42-76F5-4EF2-B381-F9C1D72BE23D} /package {7131646D-CD3C-40F4-97B9-CD9E4E6262EF}
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/922770

Hotfix for Windows XP (KB926239) 2 (KB926239)
install date: 20080302
uninstall cmd: "C:\WINDOWS\$NtUninstallKB926239$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/926239

Lucent Technologies Soft Modem AMR (Lucent Technologies Soft Modem)

Microsoft .NET Framework 2.0 (Microsoft .NET Framework 2.0)
install location: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\
uninstall cmd: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/ph/8291

Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA (Microsoft .NET Framework 2.0 Language Pack - FRA)
install location: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\
uninstall cmd: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - FRA\install.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com/ph/8291

(Microsoft NetShow Player 2.0)

(MobileOptionPack)

Mozilla Firefox (2.0) 2.0 (fr) (Mozilla Firefox (2.0))
install location: C:\Program Files\Mozilla Firefox
uninstall cmd: C:\Program Files\Mozilla Firefox\uninstall\uninst.exe
publisher: Mozilla
comments: Mozilla Firefox

(MPlayer2)

Microsoft Compression Client Pack 1.0 for Windows XP 1 (MSCompPackV1)
install date: 20080302
uninstall cmd: "C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://www.microsoft.com/fr-fr/?ref=go

(MSI30-Beta1)

(MSI30-Beta2)

(MSI30-KB884016)

(MSI30-RC1)

(MSI30-RC2)

(MSI30a-KB884016)

(MSI31-Beta)

(MSI31-RC1)

(NetMeeting)

Microsoft National Language Support Downlevel APIs (NLSDownlevelMapping)
install date: 20080305
uninstall cmd: "C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
publisher: Microsoft Corporation

NVIDIA Drivers (NVIDIA Drivers)

(OutlookExpress)

(PCHealth)
uninstall cmd: rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf

Intel(R) PROSet/Wireless Software 9.02.1000 (ProInst)
install location: C:\WINDOWS\Installer\iProInst.exe
uninstall cmd: C:\WINDOWS\Installer\iProInst.exe
publisher: Intel Corporation
comments: Intel(R) PROSet/Wireless installation package
contact: Dell Customer Support
help link: http://support.dell.com

(RealJukebox 1.0)
uninstall cmd: C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0

RealPlayer (RealPlayer 6.0)
install location: C:\Program Files\Real\RealPlayer\realplay.exe
uninstall cmd: C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
publisher: RealNetworks
comments: Diffusez, enregistrez et organisez votre musique et vos vidéos, gravez un CD ou emportez votre musique partout avec vous.
contact: RealNetworks

(SchedulingAgent)

Shareaza 2.3.1.0 2.3.1.0 (Shareaza_is1)
install date: 20080213
install location: C:\Program Files\Shareaza\
uninstall cmd: "C:\Program Files\Shareaza\Uninstall\unins000.exe"
publisher: Shareaza Development Team
comments: Shareaza Ultimate File Sharing
help link: http://shareaza.sourceforge.net/?id=support

(Shockwave)

Adobe Flash Player 9 ActiveX 9 (ShockwaveFlash)
uninstall cmd: C:\WINDOWS\System32\Macromed\Flash\FlashUtil9b.exe -uninstallDelete
publisher: Adobe Systems
help link: https://helpx.adobe.com/flash-player.html

Unlocker 1.8.5 1.8.5 (Unlocker)
uninstall cmd: C:\Program Files\Unlocker\uninst.exe
publisher: Cedrick Collomb

VideoLAN VLC media player 0.8.6c 0.8.6c (VLC media player)
uninstall cmd: C:\Program Files\VideoLAN\VLC\uninstall.exe
publisher: VideoLAN Team

Windows Genuine Advantage Validation Tool (KB892130) 1.7.0059.1 (WGA)
install date: 20061218
publisher: Microsoft Corporation
help link: https://www.microsoft.com/en-us/howtotell/default.aspx

Windows Genuine Advantage Notifications (KB905474) 1.7.0018.5 (WgaNotify)
install date: 20070428
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/905474

Windows Media Format 11 runtime (Windows Media Format Runtime)
uninstall cmd: "C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
help link: https://support.microsoft.com/en-us

Windows Media Player 11 (Windows Media Player)
uninstall cmd: "C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall

Archiveur WinRAR (WinRAR archiver)
uninstall cmd: C:\Documents and Settings\saous\Mes documents\EA Games\Les Sims 2\Downloads\uninstall.exe

(WMCSetup)

Windows Media Format 11 runtime (WMFDist11)
install date: 20070131
uninstall cmd: "C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http:

Windows Media Player 11 (wmp11)
install date: 20070131
uninstall cmd: "C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http:

Microsoft Word 97 (Word8.0)
uninstall cmd: C:\Program Files\Microsoft Office\Office\Install\AcmeWord.exe /w Word97.stf

Macromedia Flash Player 7.0.19.0 ({0456ebd7-5f67-4ab6-852e-63781e3f389c})
version: 117440531
version (major): 7
estimated size: 1018
install date: 20060526
install source: C:\DOCUME~1\saous\LOCALS~1\Temp\{8DE06C1C-C936-4C3D-8FE0-BD0809D72D28}\{1E2F8AE3-3437-44E6-BB75-E95751D6B83F}\
uninstall cmd: MsiExec.exe /X{0456ebd7-5f67-4ab6-852e-63781e3f389c}
publisher: Macromedia, Inc.

mSSO 1.31.0000 ({06BE8AFD-A8E2-4B63-BAE7-287016D16ACB})
version: 18808832
version (major): 1
version (minor): 31
estimated size: 272
install date: 20060511
install source: C:\WINDOWS\Installer\iprodata\
uninstall cmd: MsiExec.exe /I{06BE8AFD-A8E2-4B63-BAE7-287016D16ACB}
publisher: Intel Corporation
comments: Your Comments
contact: Customer Support Department
help link: https://www.intel.com/content/www/us/en/support.html
help telephone: +1 (800) 538-3373

First Step Guide 1.08.000 ({0D917C5F-1CF9-42E0-899F-78AC10576405})
version: 17301504
install location: C:\Program Files\Sony Corporation\Picture Package\First Step Guide
uninstall cmd: RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0D917C5F-1CF9-42E0-899F-78AC10576405}\setup.exe" -l0x40c UNINSTALL

mLogView 1.31.0000 ({0E2B0B41-7E08-4F9F-B21F-41C4133F43B7})
version: 18808832
version (major): 1
version (minor): 31
estimated size: 540
install date: 20060511
install source: C:\WINDOWS\Installer\iprodata\
uninstall cmd: MsiExec.exe /I{0E2B0B41-7E08-4F9F-B21F-41C4133F43B7}
publisher: Intel Corporation
comments: Your Comments
contact: Customer Support Department
help link: https://www.intel.com/content/www/us/en/support.html
help telephone: +1 (800) 538-3373

mProSafe 9.00.0000 ({23FB368F-1399-4EAC-817C-4B83ECBE3D83})
version: 150994944
version (major): 9
install date: 20060511
install source: C:\WINDOWS\Installer\iprodata\
uninstall cmd: MsiExec.exe /I{23FB368F-1399-4EAC-817C-4B83ECBE3D83}
publisher: Intel
comments: Pseudo NCS Install
contact: Customer Support Department
help link: https://www.intel.fr/content/www/fr/fr/homepage.html
help telephone: 1-555-555-4505

mDriver 1.31.0000 ({28DA872A-0848-48CF-B749-19A198157A2A})
version: 18808832
version (major): 1
version (minor): 31
estimated size: 8612
install date: 20060511
install source: C:\WINDOWS\Installer\iprodata\
uninstall cmd: MsiExec.exe /I{28DA872A-0848-48CF-B749-19A198157A2A}
publisher: Intel
comments: Intel Wireless Adapter driver installation
contact: Customer Support Department
help link: https://www.intel.fr/content/www/fr/fr/homepage.html
help telephone: 1-555-555-4505

3.0.20070525 ({2CCBABCB-6427-4A55-B091-49864623C43F})
version: 20070525
version (major): 3

J2SE Runtime Environment 5.0 Update 11 1.5.0.110 ({3248F0A8-6813-11D6-A77B-00B0D0150110})
version: 17104896
version (major): 1
version (minor): 5
estimated size: 149554
install date: 20070225
install source: http://javadl.sun.com/webapps/download/GetFile/1.5.0_11-b03/windows-i586//
uninstall cmd: MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150110}
publisher: Sun Microsystems, Inc.
contact: https://www.java.com/en/
help link: https://www.java.com/en/
readme: C:\Program Files\Java\jre1.5.0_11\README.txt

Java(TM) 6 Update 3 1.6.0.30 ({3248F0A8-6813-11D6-A77B-00B0D0160030})
version: 17170432
version (major): 1
version (minor): 6
estimated size: 136430
install date: 20080227
install source: http://javadl.sun.com/webapps/download/GetFile/1.6.0_03-b05/windows-i586/
uninstall cmd: MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
publisher: Sun Microsystems, Inc.
contact: https://www.java.com/en/
help link: https://www.java.com/en/
readme: C:\Program Files\Java\jre1.6.0_03\README.txt

WebFldrs XP 9.50.6513 ({350C940c-3D7C-4EE8-BAA9-00BCB3D54227})
version: 154278257
version (major): 9
version (minor): 50
estimated size: 2652
install date: 20060511
install source: C:\WINDOWS\System32\
publisher: Microsoft Corporation
help link: https://www.microsoft.com/en-us/windows/

MSXML 4.0 SP2 (KB927978) 4.20.9841.0 ({37477865-A3F1-4772-AD43-AAFC6BCFF99F})
version: 68429425
version (major): 4
version (minor): 20
estimated size: 2625
install date: 20061219
install source: c:\43d66b1429e14a6e8d0a1079\
uninstall cmd: MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
publisher: Microsoft Corporation
help link: https://support.microsoft.com/en-us/help/927978/ms06-071-security-update-for-microsoft-xml-core-services-4-0

mIWA 1.31.0000 ({3E9D596A-61D4-4239-BD19-2DB984D2A16F})
version: 18808832
version (major): 1
version (minor): 31
estimated size: 945
install date: 20060511
install source: C:\WINDOWS\Installer\iprodata\
uninstall cmd: MsiExec.exe /I{3E9D596A-61D4-4239-BD19-2DB984D2A16F}
publisher: Intel Corporation
comments: Your Comments
contact: Customer Support Department
help link: https://www.intel.com/content/www/us/en/support.html
help telephone: +1 (800) 538-3373

Les Sims™ 2 Animaux & Cie ({4817189D-1785-4627-A33C-39FD90919300})
uninstall cmd: C:\Program Files\EA GAMES\Les Sims 2 Animaux & Cie\EAUninstall.exe

mHlpDell 1.23.0000 ({49D687E5-6784-431B-A0A2-2F23B8CC5A1B})
version: 18284544
version (major): 1
version (minor): 23
estimated size: 272
install date: 20060511
install source: C:\WINDOWS\Installer\iprodata\
uninstall cmd: MsiExec.exe /I{49D687E5-6784-431B-A0A2-2F23B8CC5A1B}
publisher: Intel
comments: Help Files
contact: Customer Support Department
help link: https://www.intel.fr/content/www/fr/fr/homepage.html
help telephone: 1-555-555-4505

Dell Support 3.1 5.1.760 ({548EEA8E-8299-497F-8057-811D2D7097DC})
version: 83952376
version (major): 5
version (minor): 1
0
Réponse 8 / 8
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
7 mars 2008 à 12:21
cré ton propre post et on t'aidera
0

Discussions similaires

Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
4 virus en raison d’un porno ????
valou -
Bello040420 -

9 réponses