Posez votre question Format imprimable Liste des forums Aidez-les Statistiques Rechercher Charte Forum Virus-Sécurité

[Virus] Win32.Perlovga.A (Copy.exe, Autorun)

Dernière réponse le 1 avr 2008 à 16:46:59 Stahn, le 22 nov 2006 à 18:19:09

Signaler ce message aux modérateurs

Salut tout le monde,
Mon PC est infecté par le virus "Win32Perlovga.A"
J'utilse BitDefender 8 Pro comme antivirus
Lors des analyses il a détecté le fichier Copy.exe sur presque toute les partitions
Or il se regénère à chaque fois que je veux accèder à un disque
Il y a aussi les fichiers "autorun.inf" qui se créent sur la racine
de toute les partitions aussi
A noter aussi la présence de deux processus "temp1" et "temp2" chargés
Comment je peux me débarasser de ce virus S'il Vous Plait.

Meilleures réponses pour « [Virus] Win32.Perlovga.A (Copy.exe, Autorun) » dans :

Virus win 32 (Résolu) Voir

Help ! Virus Win32.Beagle.FQ et mdelk.exe (Résolu) Voir

Suppression fichier \copy.exe Voir

Infecté par Trojan.Dropper et Win 32.Perlovga (Résolu) Voir

Rapport Hijackthis / Virus Worm Win 32 Voir

Virus trojan win 32 ou system Voir

Autorun - autorun.exe Voirautorun - autorun.exe Le processus autorun.exe (autorun) est un processus générique de Windows 98/NT/Me/2000/XP servant à exécuter automatiquement un programme lors de l'insertion d'un CD-ROM dans le lecteur. Le processus autorun n'est en aucun...

Posez votre question Répondre

Séb08, le 22 nov 2006 à 18:28:11

Slt,

Regarde bien et applique ce qui est indiqué en gras pour les 2 installations .

==================================

Télécharge et installe ce log :

ewido (gratuit même après la période d’essai)
Téléchargement :
ewido
Cliques sur « update » fais les mise à jour ensuite clique sur « scanner » puis sur « complete scan system ».
Tuto pour la version 4 d’Ewido :
http://www.malekal.com/tutorial_ewidoV4.html

Met le à jour comme indiqué, lance le « delete » (supprime) tout ce qu’il te trouve et copie/colle moi le rapport.

Puis :

télécharge HijackThis (version francaise) ici:
hijackthis

Dézippe le dans un dossier prévu à cet effet.

Par exemple C:\hijackthis < Enregistre le bien dans c : !

Démo (merci à Balltrap) :
instalation hijackthis
http://pageperso.aol.fr/balltrap34/Hijenr.gif

Lance le puis:
clique sur "faire un scan et sauvegarder le log" (cf démo)
faire un copier coller du log entier sur le forum

Démo : (merci à balltrap34 pour cette réalisation)
http://pageperso.aol.fr/balltrap34/demohijack.htm

Bon courage

a+ ***** Have a good day *****

Répondre à Séb08

Stahn, le 22 nov 2006 à 22:09:22

Voilà les 2 logfiles :

ewido anti-spyware - Scan Report
---------------------------------------------------------

+ Created at: 21:00:08 22/11/2006

+ Scan result:

C:\_RESTORE\TEMP\IPCCLI~1.0 -> Adware.Aureate : No action taken.
C:\_RESTORE\TEMP\MSIPCSV.0 -> Adware.Aureate : No action taken.
C:\WINDOWS\SYSTEM\cp.exe -> Adware.ComedyPlanet : No action taken.
C:\WINDOWS\Temporary Internet Files\Content.IE5\ORB3MWHL\c15[1].exe -> Adware.ComedyPlanet : No action taken.
C:\WINDOWS\SYSTEM\GoGo9CP.dll -> Adware.EZula : No action taken.
C:\Program Files\DivX\DivX Pro Codec\gain_trickler_3202.exe -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\CMEII\CMEIIAPI.dll -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\CMEII\CMESys.exe -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\CMEII\GAppMgr.dll -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\CMEII\GController.dll -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\CMEII\GDwldEng.dll -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\CMEII\GIocl.dll -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\CMEII\GIoclClient.dll -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\CMEII\GMTProxy.dll -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\CMEII\GObjs.dll -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\CMEII\GStore.dll -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\CMEII\GStoreServer.dll -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\CMEII\Gtools.dll -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\GMT\EGIEProcess.dll -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\GMT\EGNSEngine.dll -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\GMT\GMT.exe -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\GMT\GUninstaller.exe -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\GMT\GatorRes.dll -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\GMT\GatorStubSetup.exe -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\GMT\egIEEngine.dll -> Adware.Gator : No action taken.
C:\WINDOWS\SYSTEM\gogotoolsSILAWO9pi.exe -> Adware.GogoTools : No action taken.
C:\WINDOWS\HLInstaller3.exe -> Adware.MDH : No action taken.
C:\WINDOWS\SYSTEM\HyperLinker3.exe -> Adware.MDH : No action taken.
C:\WINDOWS\Temporary Internet Files\Content.IE5\EPRWDKZI\HyperLinker3[1].cab/HyperLinker3.exe -> Adware.MDH : No action taken.
C:\WINDOWS\SYSTEM\lmf32v.dll -> Adware.Suggestor : No action taken.
F:\WINDOWS\system32\temp2.exe -> Backdoor.Small.lo : No action taken.
C:\WINDOWS\SYSTEM\MegasearchBarSetup.exe -> Downloader.Agent.a : No action taken.
C:\WINDOWS\SYSTEM\CP22.exe -> Downloader.Small.ahx : No action taken.
C:\WINDOWS\SYSTEM\TVM_B5B27.EXE -> Downloader.Small.wk : No action taken.
J:\[Software] Utilitaires\Bitcomet 0.68 Crack.rar/crack.exe -> Dropper.Agent.anl : No action taken.
C:\WINDOWS\SYSTEM\in10b6.dll -> Dropper.Small.abe : No action taken.
C:\host.exe -> Dropper.Small.apl : No action taken.
D:\host.exe -> Dropper.Small.apl : No action taken.
E:\host.exe -> Dropper.Small.apl : No action taken.
F:\WINDOWS\svchost.exe -> Dropper.Small.apl : No action taken.
F:\host.exe -> Dropper.Small.apl : No action taken.
G:\host.exe -> Dropper.Small.apl : No action taken.
H:\host.exe -> Dropper.Small.apl : No action taken.
J:\host.exe -> Dropper.Small.apl : No action taken.
C:\WINDOWS\SYSTEM\a.exe -> Logger.Briss.c : No action taken.
C:\WINDOWS\SYSTEM\bridge.dll -> Logger.Briss.c : No action taken.
C:\Program Files\WinRAR\Patcher.exe -> Not-A-Virus.VirTool.Win32.AvSpoffer.a : No action taken.
J:\[Software] Utilitaires\Stream Video Audio Capture Pack\StreamBox.zip/fr_svcr1b31_crack.zip/fr_svcr1b31_crack.exe -> Not-A-Virus.VirTool.Win32.AvSpoffer.a : No action taken.
J:\[Software] Utilitaires\Stream Video Audio Capture Pack\StreamBox.zip/fr_svcr1b31_crack/fr_svcr1b31_crack.exe -> Not-A-Virus.VirTool.Win32.AvSpoffer.a : No action taken.
:mozilla.116:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.117:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.118:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.229:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.51:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.52:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.53:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.54:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.55:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.56:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.57:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.726:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.727:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.728:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.729:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.129:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.139:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.187:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.188:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.189:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.351:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.361:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.370:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.535:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.536:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.537:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.538:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.715:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.716:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
F:\Documents and Settings\Mahmoud\Cookies\mahmoud@2o7[1].txt -> TrackingCookie.2o7 : No action taken.
:mozilla.25:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.517:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.518:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.519:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.755:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.756:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.758:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.738:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Addcontrol : No action taken.
:mozilla.522:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Adrevolver : No action taken.
:mozilla.523:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Adrevolver : No action taken.
:mozilla.135:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Adserver : No action taken.
:mozilla.137:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Adserver : No action taken.
C:\WINDOWS\Cookies\anyuser@z1.adserver[1].txt -> TrackingCookie.Adserver : No action taken.
C:\WINDOWS\Cookies\anyuser@z1.adserver[3].txt -> TrackingCookie.Adserver : No action taken.
:mozilla.107:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Adtech : No action taken.
:mozilla.108:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Adtech : No action taken.
:mozilla.158:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Adtech : No action taken.
:mozilla.159:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Adtech : No action taken.
:mozilla.162:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Adtech : No action taken.
:mozilla.163:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Adtech : No action taken.
:mozilla.231:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Adtech : No action taken.
:mozilla.244:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Adtech : No action taken.
C:\WINDOWS\Cookies\anyuser@adtech[2].txt -> TrackingCookie.Adtech : No action taken.
:mozilla.116:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.117:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.118:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.119:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.120:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.121:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.144:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.145:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.146:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.147:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.150:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.151:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.152:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.153:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.154:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.155:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.156:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.157:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.158:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.434:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.436:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.437:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.438:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.439:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.440:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
C:\WINDOWS\Cookies\anyuser@advertising[2].txt -> TrackingCookie.Advertising : No action taken.
C:\WINDOWS\Cookies\anyuser@advertising[3].txt -> TrackingCookie.Advertising : No action taken.
C:\WINDOWS\Cookies\anyuser@servedby.advertising[1].txt -> TrackingCookie.Advertising : No action taken.
C:\WINDOWS\Cookies\anyuser@servedby.advertising[3].txt -> TrackingCookie.Advertising : No action taken.
F:\Documents and Settings\Mahmoud\Cookies\mahmoud@advertising[1].txt -> TrackingCookie.Advertising : No action taken.
:mozilla.112:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Atdmt : No action taken.
:mozilla.115:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Atdmt : No action taken.
:mozilla.54:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Atdmt : No action taken.
:mozilla.59:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Atdmt : No action taken.
C:\WINDOWS\Cookies\anyuser@atdmt[2].txt -> TrackingCookie.Atdmt : No action taken.
F:\Documents and Settings\Mahmoud\Cookies\mahmoud@atdmt[2].txt -> TrackingCookie.Atdmt : No action taken.
:mozilla.245:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Bfast : No action taken.
:mozilla.573:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Bfast : No action taken.
C:\WINDOWS\Cookies\anyuser@bfast[2].txt -> TrackingCookie.Bfast : No action taken.
:mozilla.12:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Bluestreak : No action taken.
:mozilla.148:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Bluestreak : No action taken.
:mozilla.181:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Bluestreak : No action taken.
:mozilla.73:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Bluestreak : No action taken.
C:\WINDOWS\Cookies\anyuser@bluestreak[1].txt -> TrackingCookie.Bluestreak : No action taken.
C:\WINDOWS\Cookies\anyuser@bluestreak[2].txt -> TrackingCookie.Bluestreak : No action taken.
F:\Documents and Settings\Mahmoud\Cookies\mahmoud@bluestreak[2].txt -> TrackingCookie.Bluestreak : No action taken.
:mozilla.261:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Burstnet : No action taken.
:mozilla.446:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Burstnet : No action taken.
:mozilla.447:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Burstnet : No action taken.
:mozilla.513:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Burstnet : No action taken.
:mozilla.514:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Burstnet : No action taken.
C:\WINDOWS\Cookies\anyuser@burstnet[2].txt -> TrackingCookie.Burstnet : No action taken.
:mozilla.367:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.368:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.369:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.370:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.373:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.374:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.375:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.81:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.82:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.83:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.84:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.95:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.96:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.97:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
C:\WINDOWS\Cookies\anyuser@casalemedia[2].txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.767:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Casinotropez : No action taken.
:mozilla.263:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Clickbank : No action taken.
:mozilla.143:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Com : No action taken.
:mozilla.144:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Com : No action taken.
:mozilla.218:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Com : No action taken.
:mozilla.95:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Com : No action taken.
C:\WINDOWS\Cookies\anyuser@com[2].txt -> TrackingCookie.Com : No action taken.
F:\Documents and Settings\Mahmoud\Cookies\mahmoud@com[1].txt -> TrackingCookie.Com : No action taken.
:mozilla.125:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.126:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.127:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.195:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.196:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.197:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.198:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.292:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.293:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.294:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Comclick : No action taken.
C:\WINDOWS\Cookies\anyuser@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : No action taken.
F:\Documents and Settings\Mahmoud\Cookies\mahmoud@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : No action taken.
:mozilla.18:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Doubleclick : No action taken.
:mozilla.20:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Doubleclick : No action taken.
:mozilla.43:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Doubleclick : No action taken.
:mozilla.52:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Doubleclick : No action taken.
C:\WINDOWS\Cookies\anyuser@doubleclick[2].txt -> TrackingCookie.Doubleclick : No action taken.
F:\Documents and Settings\Mahmoud\Cookies\mahmoud@doubleclick[1].txt -> TrackingCookie.Doubleclick : No action taken.
:mozilla.135:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Esomniture : No action taken.
:mozilla.128:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Estat : No action taken.
:mozilla.216:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Estat : No action taken.
:mozilla.36:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Estat : No action taken.
:mozilla.57:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Estat : No action taken.
C:\WINDOWS\Cookies\anyuser@estat[1].txt -> TrackingCookie.Estat : No action taken.
:mozilla.805:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Euroclick : No action taken.
:mozilla.175:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.176:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.177:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.178:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.179:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.180:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.210:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.252:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.253:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.254:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.255:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.256:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.257:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.307:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.308:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.309:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.310:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.401:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
C:\WINDOWS\Cookies\anyuser@as-us.falkag[2].txt -> TrackingCookie.Falkag : No action taken.
C:\WINDOWS\Cookies\anyuser@as1.falkag[1].txt -> TrackingCookie.Falkag : No action taken.
C:\WINDOWS\Cookies\anyuser@as1.falkag[2].txt -> TrackingCookie.Falkag : No action taken.
F:\Documents and Settings\Mahmoud\Cookies\mahmoud@as1.falkag[1].txt -> TrackingCookie.Falkag : No action taken.
:mozilla.136:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Fastclick : No action taken.
:mozilla.138:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Fastclick : No action taken.
:mozilla.19:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Fastclick : No action taken.
:mozilla.215:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Fastclick : No action taken.
:mozilla.216:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Fastclick : No action taken.
:mozilla.83:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Fastclick : No action taken.
:mozilla.84:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Fastclick : No action taken.
:mozilla.85:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Fastclick : No action taken.
:mozilla.86:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Fastclick : No action taken.
C:\WINDOWS\Cookies\anyuser@fastclick[1].txt -> TrackingCookie.Fastclick : No action taken.
C:\WINDOWS\Cookies\anyuser@fastclick[3].txt -> TrackingCookie.Fastclick : No action taken.
C:\WINDOWS\Cookies\anyuser@gator[1].txt -> TrackingCookie.Gator : No action taken.
C:\WINDOWS\Cookies\anyuser@gator[2].txt -> TrackingCookie.Gator : No action taken.
C:\WINDOWS\Cookies\anyuser@webpdp.gator[2].txt -> TrackingCookie.Gator : No action taken.
:mozilla.206:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Goclick : No action taken.
C:\WINDOWS\Cookies\anyuser@goclick[1].txt -> TrackingCookie.Goclick : No action taken.
:mozilla.218:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.212:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.213:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.214:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.608:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.609:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.646:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.726:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.727:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.728:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.729:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.835:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.930:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
C:\WINDOWS\Cookies\anyuser@ehg-dig.hitbox[1].txt -> TrackingCookie.Hitbox : No action taken.
C:\WINDOWS\Cookies\anyuser@hitbox[1].txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.130:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Hitslink : No action taken.
:mozilla.131:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Hitslink : No action taken.
:mozilla.132:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Hitslink : No action taken.
:mozilla.133:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Hitslink : No action taken.
:mozilla.125:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Hotlog : No action taken.
:mozilla.660:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Hotlog : No action taken.
:mozilla.90:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Hotlog : No action taken.
C:\WINDOWS\Cookies\anyuser@hotlog[1].txt -> TrackingCookie.Hotlog : No action taken.
:mozilla.572:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Ivwbox : No action taken.
C:\WINDOWS\Cookies\anyuser@ivwbox[2].txt -> TrackingCookie.Ivwbox : No action taken.
:mozilla.301:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Mediaplex : No action taken.
:mozilla.302:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Mediaplex : No action taken.
:mozilla.31:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Mediaplex : No action taken.
:mozilla.32:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Mediaplex : No action taken.
:mozilla.57:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Mediaplex : No action taken.
C:\WINDOWS\Cookies\anyuser@mediaplex[1].txt -> TrackingCookie.Mediaplex : No action taken.
F:\Documents and Settings\Mahmoud\Cookies\mahmoud@mediaplex[1].txt -> TrackingCookie.Mediaplex : No action taken.
:mozilla.561:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Onestat : No action taken.
:mozilla.562:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Onestat : No action taken.
:mozilla.563:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Onestat : No action taken.
:mozilla.101:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Overture : No action taken.
:mozilla.140:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Overture : No action taken.
:mozilla.141:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Overture : No action taken.
:mozilla.877:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Overture : No action taken.
C:\WINDOWS\Cookies\anyuser@www10.paypopup[1].txt -> TrackingCookie.Paypopup : No action taken.
C:\WINDOWS\Cookies\anyuser@www2.paypopup[1].txt -> TrackingCookie.Paypopup : No action taken.
C:\WINDOWS\Cookies\anyuser@www4.paypopup[2].txt -> TrackingCookie.Paypopup : No action taken.
C:\WINDOWS\Cookies\anyuser@www6.paypopup[1].txt -> TrackingCookie.Paypopup : No action taken.
C:\WINDOWS\Cookies\anyuser@www7.paypopup[1].txt -> TrackingCookie.Paypopup : No action taken.
:mozilla.222:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.223:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.224:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.225:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.731:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.732:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.733:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.734:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Pointroll : No action taken.
C:\WINDOWS\Cookies\anyuser@ads.pointroll[2].txt -> TrackingCookie.Pointroll : No action taken.
F:\Documents and Settings\Mahmoud\Cookies\mahmoud@ads.pointroll[2].txt -> TrackingCookie.Pointroll : No action taken.
C:\WINDOWS\Cookies\anyuser@ppms.popularix[1].txt -> TrackingCookie.Popularix : No action taken.
:mozilla.252:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Qksrv : No action taken.
:mozilla.254:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Qksrv : No action taken.
:mozilla.357:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Qksrv : No action taken.
:mozilla.358:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Qksrv : No action taken.
:mozilla.50:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Questionmarket : No action taken.
:mozilla.51:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Questionmarket : No action taken.
:mozilla.667:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Questionmarket : No action taken.
:mozilla.668:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Questionmarket : No action taken.
C:\WINDOWS\Cookies\anyuser@questionmarket[1].txt -> TrackingCookie.Questionmarket : No action taken.
C:\WINDOWS\Cookies\anyuser@ads.realcastmedia[1].txt -> TrackingCookie.Realcastmedia : No action taken.
C:\WINDOWS\Cookies\anyuser@www.realcastmedia[2].txt -> TrackingCookie.Realcastmedia : No action taken.
:mozilla.250:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Revenue : No action taken.
:mozilla.482:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Revenue : No action taken.
:mozilla.533:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Revenue : No action taken.
C:\WINDOWS\Cookies\anyuser@revenue[2].txt -> TrackingCookie.Revenue : No action taken.
C:\WINDOWS\Cookies\anyuser@revenue[3].txt -> TrackingCookie.Revenue : No action taken.
C:\WINDOWS\Cookies\anyuser@edge.ru4[2].txt -> TrackingCookie.Ru4 : No action taken.
:mozilla.331:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.332:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.333:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.334:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.335:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.336:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.380:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.381:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.382:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.383:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.43:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.44:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.45:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.46:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
C:\WINDOWS\Cookies\anyuser@serving-sys[1].txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.122:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Sitestat : No action taken.
:mozilla.123:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Sitestat : No action taken.
:mozilla.405:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Sitestat : No action taken.
:mozilla.507:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Sitestat : No action taken.
:mozilla.508:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Sitestat : No action taken.
:mozilla.531:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Sitestat : No action taken.
:mozilla.532:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Sitestat : No action taken.
:mozilla.938:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Sitestat : No action taken.
:mozilla.10:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.11:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.11:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.12:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.13:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.15:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.16:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.17:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.6:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.74:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.75:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.76:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Smartadserver : No action taken.
F:\Documents and Settings\Mahmoud\Cookies\mahmoud@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.160:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Spylog : No action taken.
C:\WINDOWS\Cookies\anyuser@spylog[1].txt -> TrackingCookie.Spylog : No action taken.
:mozilla.129:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.33:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.34:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.36:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.37:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.38:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.39:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.40:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.41:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.42:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.43:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.44:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.45:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.46:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.47:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.48:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.49:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.592:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.593:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.594:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.595:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.596:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.597:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.598:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.599:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.600:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.601:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.602:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.603:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.604:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.605:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.606:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.607:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.608:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.609:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.610:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.611:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.612:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.613:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.614:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.615:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.616:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.617:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.618:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
C:\WINDOWS\Cookies\anyuser@statcounter[1].txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.451:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Tacoda : No action taken.
:mozilla.452:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Tacoda : No action taken.
:mozilla.803:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Tacoda : No action taken.
:mozilla.804:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Tacoda : No action taken.
:mozilla.168:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Targetnet : No action taken.
:mozilla.417:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Targetnet : No action taken.
C:\WINDOWS\Cookies\anyuser@targetnet[1].txt -> TrackingCookie.Targetnet : No action taken.
F:\Documents and Settings\Mahmoud\Cookies\mahmoud@targetnet[1].txt -> TrackingCookie.Targetnet : No action taken.
C:\WINDOWS\Cookies\anyuser@tfag[2].txt -> TrackingCookie.Tfag : No action taken.
C:\WINDOWS\Cookies\anyuser@tracking.thunderdownloads[2].txt -> TrackingCookie.Thunderdownloads : No action taken.
:mozilla.226:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.227:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.228:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.229:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.230:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.231:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.232:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.233:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.234:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.235:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.245:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.246:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.247:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.248:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.249:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.28:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.29:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.30:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.31:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.58:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Tradedoubler : No action taken.
C:\WINDOWS\Cookies

Répondre à Stahn

Stahn, le 22 nov 2006 à 22:24:39

Alors, est-ce que je peux dire qu je m'en suis débarassé de ce Virus ??

Répondre à Stahn

Séb08, le 23 nov 2006 à 15:10:07

Tu as lu ce que j'ai indiqué en gras au post <1> ????

refais le scan Ewido car tu n'as rien supprimé du tout .

Le no action taken que tu peux voir signifie que tu n'as rien viré ...

Donc a refaire et supprime (delete) tout ce qu'il te trouve et colle le rapport.

a+ ***** Have a good day *****

Répondre à Séb08

Stahn, le 23 nov 2006 à 18:45:48

Merci Séb08,

Je peux accèder mnt aux partitions sans problèmes
Il n'y a plus de de trace de "autorun.inf" dans les racines
Pas de trace non plus de "temp1" ou "temp2" dans les processus
Le lecteur disquette arrête de lire de facon continue.

Merci beaucoup pour la solution, j'ai suivi toute les étapes
Merci encore.

Répondre à Stahn

Séb08, le 24 nov 2006 à 16:44:40

Ok bien :-)

Tu ne veux pas mettre un log Hijack ? ***** Have a good day *****

Répondre à Séb08

dii2ma, le 17 déc 2006 à 15:18:59

Logfile of HijackThis v1.99.1
Scan saved at 15:12:23, on 17/12/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\WINDOWS\VM_STI.EXE
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\Huawei Technologies\Huawei SmartAX MT810\dslmon.exe
C:\Program Files\ADSL Autoconnect\ADSL Autoconnect.exe
C:\PROGRA~1\MSN Messenger\msnmsgr.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\uTorrent\utorrent.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\wuauclt.exe
D:\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
F3 - REG:win.ini: load=C:\WINDOWS\svchost.exe
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [BigDogPath] C:\WINDOWS\VM_STI.EXE Vimicro USB PC Camera (VC0305)
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - Startup: Stardock ObjectDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
O4 - Startup: Y'z ToolBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.exe
O4 - Global Startup: DSLMON.lnk = ?
O8 - Extra context menu item: Download All Links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{FBC24D7C-76FA-4002-A828-537565F23B17}: NameServer = 193.251.169.165 80.88.0.131
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSN Messenger\msgrapp.dll" (file missing)
O20 - AppInit_DLLs: MsgPlusLoader.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: ADSLAutoconnect - Unknown owner - C:\Program Files\ADSL Autoconnect\ADSL Autoconnect.exe" -z (file missing)
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe

voila j'ai suivi toute les etape mais j'ai toujours le probleme

Répondre à dii2ma

abdou, le 18 déc 2006 à 18:18:40

Logfile of HijackThis v1.99.1
Scan saved at 17:10:40, on 17/12/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\vsnpstd.exe
C:\Program Files\DAP\DAP.EXE
C:\Program Files\BearShare\BearShare.exe
C:\Program Files\Hewlett-Packard\Toolbox2.0\Apache Tomcat 4.0\webapps\Toolbox\StatusClient\StatusClient.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\program files\Caffe\Server.exe
C:\Program Files\Hewlett-Packard\Toolbox2.0\Javasoft\JRE\1.3.1\bin\javaw.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\JetAudio\jetAudio.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\Nouveau dossier\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.fr/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://runonce.msn.com/?v=msgrv75
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [snpstd] C:\WINDOWS\vsnpstd.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [DownloadAccelerator] "C:\Program Files\DAP\DAP.EXE" /STARTUP
O4 - HKLM\..\Run: [BearShare] "C:\Program Files\BearShare\BearShare.exe" /pause
O4 - HKLM\..\Run: [StatusClient] C:\Program Files\Hewlett-Packard\Toolbox2.0\Apache Tomcat 4.0\webapps\Toolbox\StatusClient\StatusClient.exe /auto
O4 - HKLM\..\Run: [TomcatStartup] C:\Program Files\Hewlett-Packard\Toolbox2.0\hpbpsttp.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Caffe-Server] c:\program files\Caffe\Server.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\Microsoft Office\Office10\EXCEL.EXE/3000
O17 - HKLM\System\CCS\Services\Tcpip\..\{541E9397-5733-4841-B5D2-768DCC536D33}: NameServer = 212.217.0.1,212.217.0.12
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSN Messenger\msgrapp.dll" (file missing)
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe

Répondre à abdou

mohamed zaki, le 12 jan 2007 à 00:01:48

C'est simple
il vous suffit de suprimer autorun celui de copy.exe
apres avoire afficher les dossier cacher
et refait cet operation pour chaque partition de votre ordi memme pour le flash,mp3,....

Répondre à mohamed zaki

ilyas, le 12 jan 2007 à 12:32:16

Slt tout le monde j ai la meme chose voila

proLogfile of HijackThis v1.99.1
Scan saved at 11:24:08, on 12/01/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Fichiers communs\{107DEE91-02DA-1036-0921-000323200021}\Update.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\SuperCopier2\SuperCopier2.exe
C:\Program Files\Menara\dslmon.exe
C:\Program Files\Google\Web Accelerator\GoogleWebAccWarden.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\Java\jre1.5.0_07\bin\jucheck.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iPod\bin\iPodService.exe
D:\iTunes\iTunesHelper.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Google\Web Accelerator\googlewebaccclient.exe
C:\Program Files\DAP\DAP.EXE
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.menara.ma/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Menara
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://localhost:9100/proxy.pac
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
F2 - REG:system.ini: Shell=Explorer.exe "C:\WINDOWS\KesenjanganSosial.exe"
F3 - REG:win.ini: load=C:\WINDOWS\svchost.exe
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing)
O2 - BHO: Google Web Accelerator Helper - {69A87B7D-DE56-4136-9655-716BA50C19C7} - C:\Program Files\Google\Web Accelerator\GoogleWebAccToolbar.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: Google Web Accelerator - {DB87BFA2-A2E3-451E-8E5A-C89982D87CBF} - C:\Program Files\Google\Web Accelerator\GoogleWebAccToolbar.dll
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [KAVPersonal50] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kav.exe /minimize
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
O4 - HKLM\..\Run: [SunJavaUpdateScheduler] C:\WINDOWS\system32\EmpiresLegacy25.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [outlook] C:\Program Files\outlook\outlook.exe /auto
O4 - HKLM\..\Run: [StormCodec_Helper] "C:\Program Files\Ringz Studio\Storm Codec\StormSet.exe" /S /opti
O4 - HKLM\..\Run: [fzg] C:\Program Files\Config\svhost32.exe
O4 - HKLM\..\Run: [Bron-Spizaetus] "C:\WINDOWS\ShellNew\RakyatKelaparan.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "D:\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKLM\..\RunServices: [winlog] winlog.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [BitComet] "C:\Program Files\BitComet\BitComet.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [SuperCopier2.exe] C:\Program Files\SuperCopier2\SuperCopier2.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Tok-Cirrhatus-6117] "C:\Documents and Settings\ilyas.SILYAS.000\Local Settings\Application Data\br13257on.exe"
O4 - Global Startup: BlueSoleil.lnk = ?
O4 - Global Startup: DSLMON.lnk = C:\Program Files\Menara\dslmon.exe
O4 - Global Startup: Run Google Web Accelerator.lnk = C:\Program Files\Google\Web Accelerator\GoogleWebAccWarden.exe
O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1
O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {1754A1BA-A1DF-4F10-B199-AA55AA1A120F} (InstallerBehaviorFactory Class) - https://signup.msn.com/pages/MsnInstC.cab
O16 - DPF: {701DC9DC-ACD5-4E94-85E3-F3F1ED68611A} (CWebClientCtl Object) - http://download.paltalk.com/webclient_production/webclientctl.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{17A02D55-AA7E-4276-A7DB-973B2028A03C}: NameServer = 212.217.0.14 212.217.1.14
O17 - HKLM\System\CS1\Services\Tcpip\..\{17A02D55-AA7E-4276-A7DB-973B2028A03C}: NameServer = 212.217.0.14 212.217.1.14
O17 - HKLM\System\CS2\Services\Tcpip\..\{17A02D55-AA7E-4276-A7DB-973B2028A03C}: NameServer = 212.217.0.14 212.217.1.14
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: kavsvc - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kavsvc.exe

Répondre à ilyas

mannou, le 26 jan 2007 à 10:54:27

Bonjour
j'ai besoin d'aide a propos du verus autorun
j'ai scanner mon disque par l'avast! mais il n'a pas resolu mon probleme
est ce que je dois le faire avec un killer et le quel?

Répondre à mannou

Séb08, le 26 jan 2007 à 12:18:36

Slt mannou,

Il serait préférable que tu fasses ton message personnel, cela rendra les postes plus compréhensibles et la réponse à ton problème sera plus efficace
Procèdes comme ceci :
http://pageperso.aol.fr/balltrap34/demofairesontmessage.htm

a+ ***** Have a good day *****

Répondre à Séb08

benattou, le 27 jan 2007 à 11:52:37

HKLM\SOFTWARE\Microsoft\UPnP Device Host\Description\{EE486806-F1CF-43BA-990D-C17E84007916} -> Adware.CoolWebSearch : Cleaned.
C:\Program Files\Safety Bar -> Adware.Generic : Cleaned.
HKLM\SOFTWARE\Classes\CLSID\{5d4831e0-5a7c-4a46-afd5-a79ab8ce36c2} -> Adware.Generic : Cleaned.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{5d4831e0-5a7c-4a46-afd5-a79ab8ce36c2} -> Adware.Generic : Cleaned.
HKU\S-1-5-21-1606980848-842925246-854245398-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1A1DDC19-5893-43AB-A73F-F41A0F34D115} -> Adware.Generic : Cleaned.
HKU\S-1-5-21-1606980848-842925246-854245398-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5D4831E0-5A7C-4A46-AFD5-A79AB8CE36C2} -> Adware.Generic : Cleaned.
HKU\S-1-5-21-1606980848-842925246-854245398-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C3703265-4671-4858-92A4-CBA6A7B3BB45} -> Adware.Generic : Cleaned.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Public Messenger ver 2.03 -> Adware.IntCodec : Cleaned.
:mozilla.20:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.22:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.23:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.24:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.128:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.139:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.140:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.48:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.49:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.50:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.21:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.55:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.69:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Coremetrics : Cleaned.
:mozilla.51:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.142:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.47:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.105:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.106:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.107:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.108:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.109:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.110:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.14:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.15:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.16:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.141:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.12:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Weborama : Cleaned.
:mozilla.13:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Weborama : Cleaned.

::Report end

Répondre à benattou

zmba, le 2 fév 2007 à 21:08:14

---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 21:06:40 02/02/2007

+ Résultat de l'analyse:

C:\Documents and Settings\Compaq_Propriétaire\Bureau\zmba\Nouveau dossier\Alcatel_VLE5_without_test_Point.zip/Alcatel_VLE5_without_test_Point/Alcatel VLE Unlock.exe -> Backdoor.SdBot.xd : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\Compaq_Propriétaire\Bureau\zmba\Nouveau dossier\Alcatel_VLE5_without_test_Point\Alcatel_VLE5_without_test_Point\Alcatel VLE Unlock.exe -> Backdoor.SdBot.xd : Nettoyé et sauvegardé (mise en quarantaine).
D:\INCOMING\Kaspersky Antivirus 2006 + key\Kaspersky.Antivirus.Personal.5.0.372.(español).-.rar/Kaspersky Antivirus Personal 5.0.372 (espa¤ol)\Keys\key???@ttdown.com.exe -> Dropper.Agent.xk : Nettoyé et sauvegardé (mise en quarantaine).
:mozilla.21:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.24:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.25:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@247realmedia[1].txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.115:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.92:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.93:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.94:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.95:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.96:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@adtech[2].txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.80:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.81:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.82:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@advertising[2].txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.77:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Adviva : Nettoyé.
:mozilla.78:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Adviva : Nettoyé.
:mozilla.26:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
:mozilla.66:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyé.
:mozilla.39:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.40:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.41:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.42:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.43:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.44:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@casalemedia[1].txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.20:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.
:mozilla.119:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Estat : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@estat[1].txt -> TrackingCookie.Estat : Nettoyé.
:mozilla.83:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.84:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.85:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.86:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.75:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.131:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.116:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Liveperson : Nettoyé.
:mozilla.117:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Liveperson : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@server.iad.liveperson[1].txt -> TrackingCookie.Liveperson : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyé.
:mozilla.91:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Realmedia : Nettoyé.
:mozilla.55:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.56:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.57:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.126:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@weborama[2].txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@statse.webtrendslive[1].txt -> TrackingCookie.Webtrendslive : Nettoyé.
:mozilla.45:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.46:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@zedo[1].txt -> TrackingCookie.Zedo : Nettoyé.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP117\A0033444.exe -> Trojan.Copyself : Nettoyé et sauvegardé (mise en quarantaine).

Fin du rapport

Répondre à zmba

zmba, le 2 fév 2007 à 21:16:03

Logfile of HijackThis v1.99.1
Scan saved at 21:15:13, on 02/02/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Fichiers communs\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\CyberLink\PowerCinema\PCMService.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\PROGRA~1\MI3AA1~1\wcescomm.exe
C:\Program Files\HP\Digital Imaging\bin\hpobnz08.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\HP\Digital Imaging\bin\hpotdd01.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\Program Files\HP\Digital Imaging\bin\hpoevm08.exe
C:\Program Files\HP\Digital Imaging\Bin\hpoSTS08.exe
C:\HP\KBD\KBD.EXE
c:\windows\system\hpsysdrv.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\WINDOWS\explorer.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\PROGRA~1\FICHIE~1\PCSuite\DATALA~1\DATALA~1.EXE
C:\PROGRA~1\Nokia\NOKIAP~1\pcsync2.exe
C:\PROGRA~1\FICHIE~1\Nokia\MPAPI\MPAPI3s.exe
C:\Program Files\Nokia\Nokia PC Suite 6\SeUpdateDb.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/...
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/...
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\CyberLink\PowerCinema\PCMService.exe"
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [HPBootOp] "C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run
O4 - HKLM\..\Run: [Reminder] "C:\Windows\Creator\Remind_XP.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe" -startup
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE -startup
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Steam] C:\Program Files\Steam\Steam.exe -silent
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\PROGRA~1\MI3AA1~1\wcescomm.exe"
O4 - HKCU\..\Run: [PcSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog
O4 - HKCU\..\RunOnce: [Delete temporary setup file] cmd /Q /D /C del "C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\{0C8FF1E8-3948-4696-8260-A9B609D4C8C9}\{6536688C-24C5-4023-B404-BEE850ED4312}\setup.exe"
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: Xfire.lnk = C:\Program Files\Xfire\xfire.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: hp psc 2000 Series.lnk = C:\Program Files\HP\Digital Imaging\bin\hpobnz08.exe
O4 - Global Startup: hpoddt01.exe.lnk = ?
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Ralink Wireless Utility.lnk = C:\Program Files\RALINK\RT2500 Wireless LAN Card\Installer\WINXP\RaConfig2500.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6ABE4BC3-7253-418E-85E8-F334A73154D3} (CSmartClient Object) - http://www.smart-clip.com/activex/SmartClip.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\FICHIE~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Sentinel Protection Server (SentinelProtectionServer) - SafeNet, Inc - C:\Program Files\Fichiers communs\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe

Répondre à zmba

alsalafy, le 8 fév 2007 à 00:04:17

Virus] Win32.Perlovga.A (Copy.exe, Autorun

Répondre à alsalafy

azn, le 9 fév 2007 à 19:16:20

Logfile of HijackThis v1.99.1
Scan saved at 19:11:37, on 09/02/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\Explorer.EXE
C:\WINNT\system32\spoolsv.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINNT\system32\ctfmon.exe
C:\Program Files\Xfire\xfire.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINNT\System32\nvsvc32.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINNT\system32\wscntfy.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Teamspeak2_RC2\TeamSpeak.exe
C:\WINNT\System32\svchost.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Alain\Bureau\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
F3 - REG:win.ini: load=C:\WINNT\svchost.exe
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {0CAC2122-C610-A93F-3486-356C466A8F10} - C:\DOCUME~1\Alain\APPLIC~1\ACTIVE~1\Play Internet.exe (file missing)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINNT\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINNT\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINNT\system32\NeroCheck.exe
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [Globalfreelocksdefy] C:\Documents and Settings\All Users\Application Data\LOUD INTER GLOBAL FREE\hold license.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINNT\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Error Window] C:\DOCUME~1\Alain\APPLIC~1\BLUETR~1\safe mess mags.exe
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
O4 - Startup: Xfire.lnk = C:\Program Files\Xfire\xfire.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: WlanUtility.lnk = ?
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?14425dc254b64202bd6bce188f29e275
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?14425dc254b64202bd6bce188f29e275
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINNT\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: WinFast(R) Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINNT\System32\nvsvc32.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe

Répondre à azn

azn, le 9 fév 2007 à 19:19:20

J'ai tjr le mem pb aidez moi svp merci

Répondre à azn

mido, le 12 fév 2007 à 03:55:41

Essayé avec Norton !!

nn??

Répondre à mido

nora-jsk, le 18 fév 2007 à 14:32:25

Utiliser avast antivirus il est tres bien

Répondre à nora-jsk

nsimou, le 19 fév 2007 à 11:01:29

Bonjour tt le monde
si vous avez une copie
de "copy.exe" , "host.exe" ,"temp1.exe", "temp2.exe" (perlovga.A,perlovga.b)
vous pouvez me l'envoyer et je vous ferai un eradicateur
mail: nsimou_at_gmail.com

nb: les fichiers doivent etre .rar /.zip avec password

Répondre à nsimou

Inquisitours, le 19 fév 2007 à 22:06:04

Voilà une technique assez simple :

- afficher les fichiers cachés et décocher l'onglet " masquer les fichiers protégés du système d'exploitation " dans Outils -> option des dossiers
- télécharger process explorer : lien via Google
- lancer process explorer
- terminer (kill) les applications temp1.exe et temp2.exe
- supprimer à la racine de chaque disque dur les fichiers autorun.inf copy.exe et host.exe en ouvrant les disques via la commande clic droit -> ouvrir PAS DE DOUBLE-CLIC sur le disque : le fichier autorun.inf commande à Windows d'ouvrir le fichier copy.exe infecté en exécution automatique.

attention, si vous avez branché un disque dur externe ou une mémoire flash (clé USB, carte SD...) pendant que vous étiez infecté, le virus se trouve aussi sur celle-ci! checkez bien tous vos supports amovibles en même temps!

Répondre à Inquisitours

nsimou, le 20 fév 2007 à 00:00:21

Il y a des clees de base de registre qu'il faut supprimer, et je soupçonne ces clee de contenir du code binaire du virus (perlovga.B)
mais vanat d'etre sur je dois chercher une copie du virus pour l'analyser....

Répondre à nsimou

aliouate, le 2 mar 2007 à 13:39:07

Bonjour tout le monde
moi aussi je suis emmerdé par le virus win32.perglovga(copy.exe,autorun)...
J'ai essayé toutes les solutions proposées mais sans resultat..
si Inquisitours veux bien expliciter un peut plus sa methode pour que les novices comme moi puissent suivre , j' en serais soulagé..car je suis bloqué a ce niveau.:
- terminer (kill) les applications temp1.exe et temp2.exe
- supprimer à la racine de chaque disque dur les fichiers autorun.inf copy.exe et host.exe en ouvrant les disques via la commande clic droit -> ouvrir PAS DE DOUBLE-CLIC sur le disque : le fichier autorun.inf commande à Windows d'ouvrir le fichier copy.exe infecté en exécution automatique.
Merci pour vos conseils et surtout votre patience..
Aliouate

Répondre à aliouate

zaki the king, le 2 mar 2007 à 16:50:25

Slt
telecharger kaspersky internet security et activer la version d'evaluation de 30jours
puis il faut faire un scan complet de l'ordinateur et soyer sure que kaspersky a supprimé les viruses redemarer votre micro
aller sur poste de travail outil..options des dossiers ...afficher les dossier cache ...et decocher masquer les fichier protegés du systeme d'exploitation..ok
et faire ceci
aller sur chaque partition disque et supprimer autorun ..redemarer l'ordinateur c fini
:) enjoy
et poste moi votre reponse

Répondre à zaki the king

aliouate, le 2 mar 2007 à 17:49:11

Awaaaaaaaaaaa zaki khouya
Moi je ne suis pas fortiche en informatique et je ne sais comment aller sur les partitions des disques pour supprimer autorun....
Guide moi STP ..en attendant je vais faire ce que tu m'as demande au sujet de kaspersky....
En tout cas merci pour ta diligence...
Aliouate

Répondre à aliouate

zaki the king, le 2 mar 2007 à 20:08:45

Ok aa aliouat
les partition de disque sont les lecteurs de disque c,d..flash mp3
clic bouton droit -->ouvrire -->et supprimmer apres avoir afficher les dossiers caches et les dossiers proteges par le systeme d'exploitation et n'oublie pas de redemarrer
et repond moi
w dima hot fi belek **sel lemjareb w matselech tbib**

Répondre à zaki the king

aliouate, le 2 mar 2007 à 21:42:10

AAAAAAAAAA ZAKIIIIII..
Pour moi tu es et " lemjerreb" et " tbib "...
Peut etre que je ne me fais pas bien comprendre...
Ecoute moi bien ..Dis moi exactement et en details comment je dois proceder pour aller vers les partitions de disque...en partant du bureau,par quoi dois je commencer a sahbi ....Je suis nul en informatique,et c'est pourquoi je ne comprends pas ce que tu me dis de faire meme si ca te parait simple pour toi...Alors prends patience et donne moi un peu de ton temps car je suis vraiment emmerdé la...
Maintenent pour ouvrir chaque disque ,je dois cliquer avec le bouton doit de la sourie et selectionner ouvrir au lieu de double cliquer directement sur l'icone du disque...Et quand je le fais j'ai un message d'alerte qui m'annonce que mon disque est virussé....
Est ce que la tu me comprends ..je pense que et tu as aussi bien saisis ma demande d'aide precise...
J'ATTENDS TES LUMIERES ...si tu le veux bien et MEEEEEEEEEERCI
Et n'oubli pas, explique moi comment faire a partir du bureau etape par etape....

Répondre à aliouate

zaki the king, le 3 mar 2007 à 12:31:48

Apres avoir installer kaspersky il faut faire un scan complet de l'ordinateur , redemare et faire ceci :aller sur poste de travail, ouvrer le c , en haut cliquer sur outils options des dossiers ,affichage et choisisser afficher les dossiers cache ,
puis decocher la case masquer les fichers proteges par le systeme d'exploitation puis clic sur ok
et supprime le fichier autorun dans le c,d,e,mp3,mp4 ...
et redemare
repond moi !!!
ciao

Répondre à zaki the king

ALIOUATE, le 3 mar 2007 à 16:27:49

ZAKIIIIIIIIIIII? You are a real KING...
Ouuuuuuuuuuf, enfin ca s'est arangé et tout est rentré dans l'ordre..
Reste a savoir si maintenant il faut recocher la case des fichiers cachés ou la laisser decochée ..!!!!!
En tous les cas merci bp Zaki..Tu m'as sauvé la vie...hahaha...

Répondre à ALIOUATE

zaki the king, le 3 mar 2007 à 19:54:07

Felicitations aliouat
ah oui il faut recocher la case et ne pas afficher les dossiers caches
et je vous conseil d'utiliser kaspersky et il faut installer un anti spywere et activer le parfeu
et si vous avez aucun probleme je suis la contact moi sur mon e-mail zakimohamed2589@yahoo.fr ou sur skype mohamedzaki7
bye bye **sel lemjareb w ma tselech etbibe**
:-) good bye

Répondre à zaki the king

elannab, le 21 mar 2007 à 22:22:43

Problème du virus copy.exe .comment l'éliminer svp

Répondre à elannab

Scott, le 23 mar 2007 à 14:08:55

Installer un Anitivirus, par Exemple AVG 7.5, aprés l'analyse il va les mettre en quarantaine puis vous les supprimez, ce virus se cache dans les dossiers de votre session, alors aprés avoir supprimer le virus, vous devez créer une autre session Windows. et supprimer l'ancienne, et le probleme est résolu.

Répondre à Scott

49 réponses 12 Suivant

Posez votre question Répondre