infecté par de nombreux virusRésolu/Fermé

Question

bonjour a tous,
alors j'ai de trés trés gros problémes avec mon pc:

j'ai prété mon pc à un ami et je viens de le récuperer avec de nouveau amis:win32: adware- gen , win32: trojan-gen, win32: spyware-gen, win32: dialer-gen, win32: tratBHO et win 32: trajano-g

D'aprés mon ami en question mon antivirus n'étais plus en fonction, je veux bien le croire quand je vois le résultat!!!!

Autre chose je suis novice dans l'informatique et j'ai bien essayé de chercher des info sur la toile mais en vain je n'ai pas trouvé de cas similaire au mien, j'ai bien pensé à formater mon ordinateur mais à l'époque ou je l'ai acheté je me taté encore à ce niveau la et je n'ai pas fais de copie du logiciel windows xp donc je ne pourrais pas le réinstaller !!!! he oui c'est moche!!!!
 
Alors y aurait il quelqu'un qui pourrait me sortir de se cafoullis????

merci a tous ceux qui auront pris le temps de me lire , voir de me conseiller

Utilisateur anonyme · Answer

bonjour fait ceci

Télécharge Navilog1 depuis-ce lien :

http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe

Enregistrer la cible (du lien) sous... et enregistre-le sur ton bureau.
Ensuite double clique sur navilog1.exe pour lancer l'installation.
Une fois l'installation terminée, Fais un Clic-droit sur le raccourci Navilog1 présent sur ton Bureau .

Au menu principal, Fais le choix 1
Laisse toi guider et patiente.
Patiente jusqu'au message :
*** Analyse Termine le ..... ***
Appuies sur une touche le bloc note va s'ouvrir.

--> Copie-colle l'intégralité du rapport dans une réponse.

Referme le bloc note.

kaori · Answer

merci a toi de te pencher sur mon cas
 alors j'avais deja fait un rapport hijackthis qui ma donné se resultat
Logfile of HijackThis v1.99.1
Scan saved at 14:47:26, on 23/01/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\YmliaWNoZQ\command.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Network Monitor
etmon.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Point Facture\mysql\bin\mysqld-nt.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Larousse\Encyclopédie Universelle Larousse\bin\hyperappel.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\WINDOWS\VPro500.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\WINDOWS\system32\msiexec.exe
C:\WINDOWS\system32\MsiExec.exe
C:\PROGRA~1\MOZILL~2\FIREFOX.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\WinRAR\WinRAR.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\bibiche\Bureau\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.oneup.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
F3 - REG:win.ini: load=C:\WINDOWS\system32\sstts.exe
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_3_18_0.dll
O2 - BHO: (no name) - {03EED9F0-BA9B-4801-8BBC-263BC069B782} - C:\Program Files\Messenger\hopecem83122.dll (file missing)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {0F418D28-165C-44EB-BF7C-165A2E15C2F2} - C:\WINDOWS\system32\sstts.dll
O2 - BHO: MySidesearch Search Assistant - {1648E328-3E5A-4EA5-A9C6-E5F09EE272DA} - C:\WINDOWS\system32\mysidesearch_sidebar.dll
O2 - BHO: (no name) - {2761B423-825B-43FF-9F96-8CD3C3B9C4C0} - C:\Program Files\Messenger\hopecem4444.dll (file missing)
O2 - BHO: (no name) - {6029593A-89B8-A959-9B37-5CCD95C9D289} - C:\DOCUME~1\bibiche\APPLIC~1\KEEPFI~1\Htm Bind.exe (file missing)
O2 - BHO: dcads - {6FC3C36D-7635-4D43-BA62-0D9D2F2CD06E} - C:\WINDOWS\system32
sw28.dll
O2 - BHO: (no name) - {743C451F-7380-43DD-9B06-019BEE395F75} - C:\WINDOWS\system32
nnlkjj.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: browser optimizer superiorads - {8E015787-B1E3-404a-95DE-3E71E1FA0305} - C:\WINDOWS\system32\spads.dll (file missing)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: BrowsingAdvisor - {F1E96EDC-E0C8-BE98-1F15-C29DBED83B53} - C:\Program Files\BrowsingAdvisor\BrowsingAdvisor-2.dll
O2 - BHO: 0 - {FC47B7F7-9D27-4203-CBB1-1551DE3E9513} - C:\Program Files\MSN\labuvunif89.dll (file missing)
O3 - Toolbar: Yahoo! Compagnon - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_3_18_0.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ClickMe] C:\apps\ClickMe\ClickMe.exe
O4 - HKLM\..\Run: [EmailChecker] C:\APPS\EmailChecker\ech.exe
O4 - HKLM\..\Run: [PCMService] "c:\Apps\Powercinema\PCMService.exe"
O4 - HKLM\..\Run: [BDSwitchAgent] C:\Program Files\Softwin\BitDefender Professional Edition\bdswitch.exe
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [comp admin once find] C:\Documents and Settings\All Users\Application Data\Third Eq Comp Admin\burnbend.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [spa_start] C:\WINDOWS\System32\Rundll32.exe "C:\WINDOWS\system32\spads.dll" DllVerify
O4 - HKLM\..\Run: [runner1] C:\WINDOWS\mrofinu1000137.exe 61A847B5BBF72813329B385771FE01F0B3E35B6638993F4661AA4EBD86D67C56389B284534F310F3D1DC7E4638E8323A15806F97BDE4417E6FD967002BA754E2C2832213319C26033AAC
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [surfshow] C:\DOCUME~1\bibiche\APPLIC~1\MPEGIN~1\LongSect.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Hyperappel de l'Encyclopédie Universelle Larousse.lnk = ?
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Readereader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\microsoft office\office10\OSA.EXE
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O4 - Global Startup: VPro500.lnk = C:\WINDOWS\VPro500.exe
O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?22008820f008495bbd922db29ad77ea
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?22008820f008495bbd922db29ad77ea
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/yinst/yinst_current.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://kaori64.spaces.live.com/PhotoUpload/MsnPUpld.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{31BDDD12-A6C7-4592-9EF8-1C35E7D4F9B8}: NameServer = 192.168.1.1
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: nnnlkjj - nnnlkjj.dll (file missing)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - Unknown owner - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe (file missing)
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: Command Service (cmdService) - Unknown owner - C:\WINDOWS\YmliaWNoZQ\command.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Port Resolver - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: MysqlInventime - Unknown owner - c:\mysql\bin\mysqld-nt.exe
O23 - Service: Network Monitor - Unknown owner - C:\Program Files\Network Monitor
etmon.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PointFacture - Unknown owner - C:\Program Files\Point Facture\mysql\bin\mysqld-nt.exe" "--defaults-file=C:\Program Files\Point Facture\mysql\bin\PointFacture.ini" PointFacture (file missing)
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
O23 - Service: SmartLinkService (SLService) -   - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe

et ensuite j'ai telecharger avast et mis en quarantaine les dossier infacté ne sachant pas quoi faire

kaori · Answer

je fais quand meme ta manip pour voir ce que ca donne c'est en cours....

Utilisateur anonyme · Answer

j'ai fait a peu pres le tours de ton hijackthis tu as infection vundo , infection msn , ...

as tu instaler le sponsor de msn plus ? 

si , oui , rend toi dans le panneau de config / ajout suppression de programmes / cherche et desinstal  CID

kaori · Answer

voila le rapport :
Search Navipromo version 3.4.2 commencé le 28/01/2008 à 10:51:06,40

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!

Outil exécuté depuis C:\Program Files
avilog1
Mise à jour le 27.01.2008 à 17h00 par IL-MAFIOSO


Microsoft Windows XP [version 5.1.2600]
Internet Explorer : 6.0.2900.2180 
Système de fichiers : NTFS

Executé en mode normal

*** Recherche Programmes installés ***




*** Recherche dossiers dans C:\WINDOWS ***



*** Recherche dossiers dans C:\Program Files ***



*** Recherche dossiers dans C:\DOCUME~1\ALLUSE~1\APPLIC~1 ***




*** Recherche dossiers dans "C:\Documents and Settings\bibiche\application data" *** 



*** Recherche dossiers dans "C:\Documents and Settings\bibiche\local settings\application data" *** 



*** Recherche dossiers dans "C:\Documents and Settings\bibiche\MENUDM~1\PROGRA~1" *** 


*** Recherche dossiers dans C:\DOCUME~1\ALLUSE~1\MENUD?~1\PROGRA~1 ***


*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d'infos : http://www.gmer.net

Aucun Fichier trouvé



*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!

* Recherche dans C:\WINDOWS\system32 *

* Recherche dans "C:\Documents and Settings\bibiche\local settings\application data" * 



*** Recherche fichiers *** 




*** Recherche clés spécifiques dans le Registre ***


*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Recherche nouveaux fichiers Instant Access :


2)Recherche Heuristique :

* Dans C:\WINDOWS\system32 :


* Dans "C:\Documents and Settings\bibiche\local settings\application data" : 


3)Recherche Certificats :

Certificat Egroup absent !

4)Recherche fichiers connus :

C:\WINDOWS\system32\sttss.ini2 trouvé ! infection Vundo possible non traitée par cet outil !


*** Analyse terminée le 28/01/2008 à 11:02:55,54 ***

Utilisateur anonyme · Answer

navilog montre juste l'infection vundo , desinstal navilog on va commencer par le virus msn , on se chargeras de vundo apres !

Télécharge MSNFix.zip (de !aur3n7 et Regis59) sur le bureau :
http://sosvirus.changelog.fr/MSNFix.zip
Tuto
https://www.malekal.com/supprimer-virus-desinfecter-pc/ expliquation en images

Conseil : Toujours télécharger avant utilisation pour profiter des dernières mises à jour.
Remarque: Il est possible que l'antivirus détécte un virus au téléchargement, il s'agit de Process.exe qui est un faux positif.

Décompresse-le (clic droit : Extraire ici).
A la racine du système, déplace le dossier décompressé, comme suit :
C:\MSNFix.
Ouvre-le et double clique sur le fichier MSNFix.bat
.
- Exécutez l'option R.
- Si l'infection est détectée, un message l'indiquera et il suffira de presser une touche pour lancer le nettoyage.
- Sauvegarde ce rapport puis fais-en un copier/coller sur le forum, ainsi qu'un scan HijackThis fait en mode normal.
- Le rapport sera enregistré dans le même dossier que MSNFix sous forme date_heure.txt
Poste-le dans une réponse.
Note :
Si une erreur de suppression est détectée un message s'affichera demandant de redémarrer l'ordinateur afin de terminer les opérations.
Dans ce cas il suffit de redémarrer l'ordinateur en mode normal
Sauvegarder et fermer le rapport pour que Windows termine de se lancer normalement.

Recommande à tes contacts d'appliquer la même procédure pour freiner la propagation et indique si l'éradication est réussie.

kaori · Answer

le raport aprés nettoyage est celui ci:
MSNFix 1.645  
 
C:\Documents and Settings\bibiche\Bureau\MSNFix 
Fix exécuté le 28/01/2008 - 11:27:33,87 By bibiche 
mode normal    
    
************************ Recherche les fichiers présents      
    
... C:\DOCUME~1\bibiche\LOCALS~1\Temp\*.dmp 
... C:\DOCUME~1\bibiche\LOCALS~1\Tempemovalfile.bat 
... C:\DOCUME~1\bibiche\LOCALS~1\Temp\un.bat 
 
************************ Recherche les dossiers présents       
 
... C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft\Network\Downloader\ 
... C:\Program Files\Dot1XCfg\ 
... C:\Program Files\Temporary\ 
... C:\Temp\ 
 
 
 
 
************************ Suppression des fichiers       
    
.. OK ... C:\DOCUME~1\bibiche\LOCALS~1\Temp\*.dmp  
.. OK ... C:\DOCUME~1\bibiche\LOCALS~1\Tempemovalfile.bat  
.. OK ... C:\DOCUME~1\bibiche\LOCALS~1\Temp\un.bat  
 
 
************************ Suppression des dossiers       
 
/!\ ...  C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft\Network\Downloader\   
.. OK ... C:\Program Files\Dot1XCfg\   
.. OK ... C:\Program Files\Temporary\   
/!\ ...  C:\Temp\   
 
 
************************ Nettoyage du registre 
 
 
 
************************ Fichiers suspects 
 
Aucun Fichier trouvé 
 
  
Les fichiers et clés de registre supprimés ont été sauvegardés dans le fichier 28012008_11295121.zip
 
 
------------------------------------------------------------------------  
Auteur : !aur3n7                     Contact: https://www.ionos.fr/     
------------------------------------------------------------------------   
 
---------------------------------------------   END   --------------------------------------------- 
 
et le raport hijackthis est celui ci
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:32:15, on 28/01/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Point Facture\mysql\bin\mysqld-nt.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Larousse\Encyclopédie Universelle Larousse\bin\hyperappel.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\WINDOWS\VPro500.exe
C:\Program Files\eMule\emule.exe
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\MOZILL~2\FIREFOX.EXE
C:\Program Files\Alwil Software\Avast4\ashChest.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32
otepad.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Documents and Settings\bibiche\Bureau\HijackThis.exe

O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: MysqlInventime - Unknown owner - c:\mysql\bin\mysqld-nt.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PointFacture - Unknown owner - C:\Program Files\Point Facture\mysql\bin\mysqld-nt.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
O23 - Service: SmartLinkService (SLService) -   - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe

Utilisateur anonyme · Answer

bon il dois rester des traces du virus msn mais pour l'instant ca iras !

voici la suite !


Télécharger Vundofix.exe (par Atribune) sur votre Bureau : http://www.atribune.org/ccount/click.php?id=4

pour effectuer les fix deconnect toi et ferme toutes tes applications !!

* Double-cliquer sur VundoFix.exe afin de le lancer.
* Cliquer sur le bouton Scan for Vundo.
* Lorsque le scan est complété, cliquer sur le bouton Remove Vundo.
* Une invite de commande demandera si l’on souhaite supprimer les fichiers, cliquer sur YES
* Après avoir cliqué "YES", le Bureau disparaîtra un moment lors de la suppression des fichiers.
* Une nouvelle invite de commande annoncera que le PC devra s'éteindre ("shutdown"). Cliquer sur OK , puis laisser le redémarrer.
* Le contenu du rapport est situé dans C:\vundofix.txt, poste le stp



Télécharge sur le bureau
http://secured2k.home.comcast.net/tools/VirtumundoBeGone.exe
=> Double clic sur VirtumundoBeGone.exe
=> Clic Continue ==> clic Start
=> Clic Oui
=> A la fin si Vundo est présent , le PC s’éteint et redémarre
- Si Ecran bleu et message : Erreur fatale .. pas de problème
=> Poster le rapport VBG.TXT qui est sur le bureau

copie moi les rapport de :

vundofix 
virtumondobegone

Utilisateur anonyme · Answer

bonjour ^^marie^^ .

Kaori , peu tu relancer hijackthis / do a scan system and save logfile / copie et colle le apport dans ta prochaine reponse !
As tu effectue d'autres manips que celle citees dans ce poste ?

kaori · Answer

le rapport vundofix


VundoFix V6.5.4

Checking Java version...

Java version is 1.4.2.4
Old versions of java are exploitable and should be removed.

Java version is 1.5.0.2
Old versions of java are exploitable and should be removed.

Java version is 1.5.0.10

Scan started at 15:35:34 23/01/2008

Listing files found while scanning....

No infected files were found.


Beginning removal...

VundoFix V6.7.7

Checking Java version...

Java version is 1.4.2.4
Old versions of java are exploitable and should be removed.

Java version is 1.5.0.2
Old versions of java are exploitable and should be removed.

Java version is 1.5.0.10

Scan started at 11:42:51 28/01/2008

Listing files found while scanning....

No infected files were found.


Beginning removal...

VundoFix V6.7.7

Checking Java version...

Java version is 1.4.2.4
Old versions of java are exploitable and should be removed.

Java version is 1.5.0.2
Old versions of java are exploitable and should be removed.

Java version is 1.5.0.10

Scan started at 12:14:01 28/01/2008

Listing files found while scanning....


VundoFix V6.7.7

Checking Java version...

Java version is 1.4.2.4
Old versions of java are exploitable and should be removed.

Java version is 1.5.0.2
Old versions of java are exploitable and should be removed.

Java version is 1.5.0.10

Scan started at 12:21:42 28/01/2008

Listing files found while scanning....

No infected files were found.


Beginning removal...
et le rapport virtumondu:

[01/28/2008, 12:15:44] - VirtumundoBeGone v1.5 ( "C:\Documents and Settings\bibiche\Bureau\VirtumundoBeGone.exe" )
[01/28/2008, 12:15:53] - Detected System Information:
[01/28/2008, 12:15:53] -  Windows Version: 5.1.2600, Service Pack 2
[01/28/2008, 12:15:53] -  Current Username: bibiche (Admin)
[01/28/2008, 12:15:53] -  Windows is in NORMAL mode.
[01/28/2008, 12:15:53] - Searching for Browser Helper Objects:
[01/28/2008, 12:15:53] -  BHO 1: {02478D38-C3F9-4efb-9B51-7695ECA05670} (Yahoo! Companion BHO)
[01/28/2008, 12:15:53] -  BHO 2: {03EED9F0-BA9B-4801-8BBC-263BC069B782} ()
[01/28/2008, 12:15:53] - WARNING: BHO has no default name. Checking for Winlogon reference.
[01/28/2008, 12:15:53] -  Checking for HKLM\...\Winlogon\Notify\hopecem83122
[01/28/2008, 12:15:53] -  Key not found: HKLM\...\Winlogon\Notify\hopecem83122, continuing.
[01/28/2008, 12:15:53] -  BHO 3: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (Adobe PDF Reader Link Helper)
[01/28/2008, 12:15:53] -  BHO 4: {1648E328-3E5A-4EA5-A9C6-E5F09EE272DA} (MySidesearch Search Assistant)
[01/28/2008, 12:15:53] -  BHO 5: {1D8282E6-BC4F-469B-AAED-7E4FF077AD93} (BrowserCmp)
[01/28/2008, 12:15:53] -  BHO 6: {2761B423-825B-43FF-9F96-8CD3C3B9C4C0} ()
[01/28/2008, 12:15:53] - WARNING: BHO has no default name. Checking for Winlogon reference.
[01/28/2008, 12:15:53] -  Checking for HKLM\...\Winlogon\Notify\hopecem4444
[01/28/2008, 12:15:53] -  Key not found: HKLM\...\Winlogon\Notify\hopecem4444, continuing.
[01/28/2008, 12:15:53] -  BHO 7: {6029593A-89B8-A959-9B37-5CCD95C9D289} ()
[01/28/2008, 12:15:53] - WARNING: BHO has no default name. Checking for Winlogon reference.
[01/28/2008, 12:15:53] -  Checking for HKLM\...\Winlogon\Notify\Htm Bind
[01/28/2008, 12:15:53] -  Key not found: HKLM\...\Winlogon\Notify\Htm Bind, continuing.
[01/28/2008, 12:15:53] -  BHO 8: {6FC3C36D-7635-4D43-BA62-0D9D2F2CD06E} (dcads)
[01/28/2008, 12:15:53] -  BHO 9: {743C451F-7380-43DD-9B06-019BEE395F75} ()
[01/28/2008, 12:15:53] - WARNING: BHO has no default name. Checking for Winlogon reference.
[01/28/2008, 12:15:53] -  Checking for HKLM\...\Winlogon\Notify
nnlkjj
[01/28/2008, 12:15:53] -  Found: HKLM\...\Winlogon\Notify
nnlkjj - This is probably Virtumundo.
[01/28/2008, 12:15:53] -  Assigning {743C451F-7380-43DD-9B06-019BEE395F75} MSEvents Object
[01/28/2008, 12:15:53] - BHO list has been changed! Starting over...
[01/28/2008, 12:15:53] -  BHO 1: {02478D38-C3F9-4efb-9B51-7695ECA05670} (Yahoo! Companion BHO)
[01/28/2008, 12:15:53] -  BHO 2: {03EED9F0-BA9B-4801-8BBC-263BC069B782} ()
[01/28/2008, 12:15:53] - WARNING: BHO has no default name. Checking for Winlogon reference.
[01/28/2008, 12:15:53] -  Checking for HKLM\...\Winlogon\Notify\hopecem83122
[01/28/2008, 12:15:53] -  Key not found: HKLM\...\Winlogon\Notify\hopecem83122, continuing.
[01/28/2008, 12:15:53] -  BHO 3: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (Adobe PDF Reader Link Helper)
[01/28/2008, 12:15:53] -  BHO 4: {1648E328-3E5A-4EA5-A9C6-E5F09EE272DA} (MySidesearch Search Assistant)
[01/28/2008, 12:15:53] -  BHO 5: {1D8282E6-BC4F-469B-AAED-7E4FF077AD93} (BrowserCmp)
[01/28/2008, 12:15:53] -  BHO 6: {2761B423-825B-43FF-9F96-8CD3C3B9C4C0} ()
[01/28/2008, 12:15:53] - WARNING: BHO has no default name. Checking for Winlogon reference.
[01/28/2008, 12:15:53] -  Checking for HKLM\...\Winlogon\Notify\hopecem4444
[01/28/2008, 12:15:53] -  Key not found: HKLM\...\Winlogon\Notify\hopecem4444, continuing.
[01/28/2008, 12:15:53] -  BHO 7: {6029593A-89B8-A959-9B37-5CCD95C9D289} ()
[01/28/2008, 12:15:53] - WARNING: BHO has no default name. Checking for Winlogon reference.
[01/28/2008, 12:15:53] -  Checking for HKLM\...\Winlogon\Notify\Htm Bind
[01/28/2008, 12:15:53] -  Key not found: HKLM\...\Winlogon\Notify\Htm Bind, continuing.
[01/28/2008, 12:15:53] -  BHO 8: {6FC3C36D-7635-4D43-BA62-0D9D2F2CD06E} (dcads)
[01/28/2008, 12:15:53] -  BHO 9: {743C451F-7380-43DD-9B06-019BEE395F75} (MSEvents Object)
[01/28/2008, 12:15:53] - ALERT: Found MSEvents Object!
[01/28/2008, 12:15:53] -  BHO 10: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class)
[01/28/2008, 12:15:53] -  BHO 11: {8E015787-B1E3-404a-95DE-3E71E1FA0305} (browser optimizer superiorads)
[01/28/2008, 12:15:54] -  BHO 12: {9030D464-4C02-4ABF-8ECC-5164760863C6} (Windows Live Sign-in Helper)
[01/28/2008, 12:15:54] -  BHO 13: {AA58ED58-01DD-4d91-8333-CF10577473F7} (Google Toolbar Helper)
[01/28/2008, 12:15:54] -  BHO 14: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} (Google Toolbar Notifier BHO)
[01/28/2008, 12:15:54] -  BHO 15: {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} (Windows Live Toolbar Helper)
[01/28/2008, 12:15:54] -  BHO 16: {F1E96EDC-E0C8-BE98-1F15-C29DBED83B53} (BrowsingAdvisor)
[01/28/2008, 12:15:54] -  BHO 17: {FC47B7F7-9D27-4203-CBB1-1551DE3E9513} ()
[01/28/2008, 12:15:54] - WARNING: BHO has no default name. Checking for Winlogon reference.
[01/28/2008, 12:15:54] -  Checking for HKLM\...\Winlogon\Notify\labuvunif89
[01/28/2008, 12:15:54] -  Key not found: HKLM\...\Winlogon\Notify\labuvunif89, continuing.
[01/28/2008, 12:15:54] - Finished Searching Browser Helper Objects
[01/28/2008, 12:15:54] - *** Detected MSEvents Object
[01/28/2008, 12:15:54] - Trying to remove MSEvents Object...
[01/28/2008, 12:15:55] -    Terminating Process: IEXPLORE.EXE
[01/28/2008, 12:15:55] -    Terminating Process: RUNDLL32.EXE
[01/28/2008, 12:15:56] -    Disabling Automatic Shell Restart
[01/28/2008, 12:15:56] -    Terminating Process: EXPLORER.EXE
[01/28/2008, 12:15:56] -    Suspending the NT Session Manager System Service
[01/28/2008, 12:15:56] -    Terminating Windows NT Logon/Logoff Manager
[01/28/2008, 12:15:57] -    Re-enabling Automatic Shell Restart
[01/28/2008, 12:15:57] -   File to disable: C:\WINDOWS\system32
nnlkjj.dll
[01/28/2008, 12:15:57] -   Removing HKLM\...\Browser Helper Objects\{743C451F-7380-43DD-9B06-019BEE395F75}
[01/28/2008, 12:15:57] -   Removing HKCR\CLSID\{743C451F-7380-43DD-9B06-019BEE395F75}
[01/28/2008, 12:15:57] -   Adding Kill Bit for ActiveX for GUID: {743C451F-7380-43DD-9B06-019BEE395F75}
[01/28/2008, 12:15:57] -   Deleting ATLEvents/MSEvents Registry entries
[01/28/2008, 12:15:57] -   Removing HKLM\...\Winlogon\Notify
nnlkjj
[01/28/2008, 12:15:57] - Searching for Browser Helper Objects:
[01/28/2008, 12:15:57] -  BHO 1: {02478D38-C3F9-4efb-9B51-7695ECA05670} (Yahoo! Companion BHO)
[01/28/2008, 12:15:57] -  BHO 2: {03EED9F0-BA9B-4801-8BBC-263BC069B782} ()
[01/28/2008, 12:15:57] - WARNING: BHO has no default name. Checking for Winlogon reference.
[01/28/2008, 12:15:57] -  Checking for HKLM\...\Winlogon\Notify\hopecem83122
[01/28/2008, 12:15:57] -  Key not found: HKLM\...\Winlogon\Notify\hopecem83122, continuing.
[01/28/2008, 12:15:57] -  BHO 3: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (Adobe PDF Reader Link Helper)
[01/28/2008, 12:15:57] -  BHO 4: {1648E328-3E5A-4EA5-A9C6-E5F09EE272DA} (MySidesearch Search Assistant)
[01/28/2008, 12:15:57] -  BHO 5: {1D8282E6-BC4F-469B-AAED-7E4FF077AD93} (BrowserCmp)
[01/28/2008, 12:15:57] -  BHO 6: {2761B423-825B-43FF-9F96-8CD3C3B9C4C0} ()
[01/28/2008, 12:15:57] - WARNING: BHO has no default name. Checking for Winlogon reference.
[01/28/2008, 12:15:57] -  Checking for HKLM\...\Winlogon\Notify\hopecem4444
[01/28/2008, 12:15:57] -  Key not found: HKLM\...\Winlogon\Notify\hopecem4444, continuing.
[01/28/2008, 12:15:57] -  BHO 7: {6029593A-89B8-A959-9B37-5CCD95C9D289} ()
[01/28/2008, 12:15:57] - WARNING: BHO has no default name. Checking for Winlogon reference.
[01/28/2008, 12:15:57] -  Checking for HKLM\...\Winlogon\Notify\Htm Bind
[01/28/2008, 12:15:57] -  Key not found: HKLM\...\Winlogon\Notify\Htm Bind, continuing.
[01/28/2008, 12:15:57] -  BHO 8: {6FC3C36D-7635-4D43-BA62-0D9D2F2CD06E} (dcads)
[01/28/2008, 12:15:57] -  BHO 9: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class)
[01/28/2008, 12:15:58] -  BHO 10: {8E015787-B1E3-404a-95DE-3E71E1FA0305} (browser optimizer superiorads)
[01/28/2008, 12:15:58] -  BHO 11: {9030D464-4C02-4ABF-8ECC-5164760863C6} (Windows Live Sign-in Helper)
[01/28/2008, 12:15:58] -  BHO 12: {AA58ED58-01DD-4d91-8333-CF10577473F7} (Google Toolbar Helper)
[01/28/2008, 12:15:58] -  BHO 13: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} (Google Toolbar Notifier BHO)
[01/28/2008, 12:15:58] -  BHO 14: {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} (Windows Live Toolbar Helper)
[01/28/2008, 12:15:58] -  BHO 15: {F1E96EDC-E0C8-BE98-1F15-C29DBED83B53} (BrowsingAdvisor)
[01/28/2008, 12:15:58] -  BHO 16: {FC47B7F7-9D27-4203-CBB1-1551DE3E9513} ()
[01/28/2008, 12:15:58] - WARNING: BHO has no default name. Checking for Winlogon reference.
[01/28/2008, 12:15:58] -  Checking for HKLM\...\Winlogon\Notify\labuvunif89
[01/28/2008, 12:15:58] -  Key not found: HKLM\...\Winlogon\Notify\labuvunif89, continuing.
[01/28/2008, 12:15:58] - Finished Searching Browser Helper Objects
[01/28/2008, 12:15:58] - Finishing up...
[01/28/2008, 12:15:58] - A restart is needed.
[01/28/2008, 12:16:23] - Attempting to Restart via STOP error (Blue Screen!)

[01/28/2008, 12:20:38] - VirtumundoBeGone v1.5 ( "C:\Documents and Settings\bibiche\Bureau\VirtumundoBeGone.exe" )
[01/28/2008, 12:20:41] - Detected System Information:
[01/28/2008, 12:20:41] -  Windows Version: 5.1.2600, Service Pack 2
[01/28/2008, 12:20:42] -  Current Username: bibiche (Admin)
[01/28/2008, 12:20:42] -  Windows is in NORMAL mode.
[01/28/2008, 12:20:42] - Searching for Browser Helper Objects:
[01/28/2008, 12:20:42] -  BHO 1: {02478D38-C3F9-4efb-9B51-7695ECA05670} (Yahoo! Companion BHO)
[01/28/2008, 12:20:42] -  BHO 2: {03EED9F0-BA9B-4801-8BBC-263BC069B782} ()
[01/28/2008, 12:20:42] - WARNING: BHO has no default name. Checking for Winlogon reference.
[01/28/2008, 12:20:42] -  Checking for HKLM\...\Winlogon\Notify\hopecem83122
[01/28/2008, 12:20:42] -  Key not found: HKLM\...\Winlogon\Notify\hopecem83122, continuing.
[01/28/2008, 12:20:42] -  BHO 3: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (Adobe PDF Reader Link Helper)
[01/28/2008, 12:20:42] -  BHO 4: {1648E328-3E5A-4EA5-A9C6-E5F09EE272DA} (MySidesearch Search Assistant)
[01/28/2008, 12:20:42] -  BHO 5: {1D8282E6-BC4F-469B-AAED-7E4FF077AD93} (BrowserCmp)
[01/28/2008, 12:20:42] -  BHO 6: {2761B423-825B-43FF-9F96-8CD3C3B9C4C0} ()
[01/28/2008, 12:20:42] - WARNING: BHO has no default name. Checking for Winlogon reference.
[01/28/2008, 12:20:42] -  Checking for HKLM\...\Winlogon\Notify\hopecem4444
[01/28/2008, 12:20:42] -  Key not found: HKLM\...\Winlogon\Notify\hopecem4444, continuing.
[01/28/2008, 12:20:42] -  BHO 7: {6029593A-89B8-A959-9B37-5CCD95C9D289} ()
[01/28/2008, 12:20:42] - WARNING: BHO has no default name. Checking for Winlogon reference.
[01/28/2008, 12:20:42] -  Checking for HKLM\...\Winlogon\Notify\Htm Bind
[01/28/2008, 12:20:42] -  Key not found: HKLM\...\Winlogon\Notify\Htm Bind, continuing.
[01/28/2008, 12:20:42] -  BHO 8: {6FC3C36D-7635-4D43-BA62-0D9D2F2CD06E} (dcads)
[01/28/2008, 12:20:42] -  BHO 9: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class)
[01/28/2008, 12:20:42] -  BHO 10: {8E015787-B1E3-404a-95DE-3E71E1FA0305} (browser optimizer superiorads)
[01/28/2008, 12:20:42] -  BHO 11: {9030D464-4C02-4ABF-8ECC-5164760863C6} (Windows Live Sign-in Helper)
[01/28/2008, 12:20:42] -  BHO 12: {AA58ED58-01DD-4d91-8333-CF10577473F7} (Google Toolbar Helper)
[01/28/2008, 12:20:42] -  BHO 13: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} (Google Toolbar Notifier BHO)
[01/28/2008, 12:20:42] -  BHO 14: {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} (Windows Live Toolbar Helper)
[01/28/2008, 12:20:42] -  BHO 15: {F1E96EDC-E0C8-BE98-1F15-C29DBED83B53} (BrowsingAdvisor)
[01/28/2008, 12:20:42] -  BHO 16: {FC47B7F7-9D27-4203-CBB1-1551DE3E9513} ()
[01/28/2008, 12:20:42] - WARNING: BHO has no default name. Checking for Winlogon reference.
[01/28/2008, 12:20:42] -  Checking for HKLM\...\Winlogon\Notify\labuvunif89
[01/28/2008, 12:20:42] -  Key not found: HKLM\...\Winlogon\Notify\labuvunif89, continuing.
[01/28/2008, 12:20:42] - Finished Searching Browser Helper Objects
[01/28/2008, 12:20:42] - Finishing up...
[01/28/2008, 12:20:42] - Nothing found! Exiting...

[01/28/2008, 12:52:45] - VirtumundoBeGone v1.5 ( "C:\Documents and Settings\bibiche\Bureau\VirtumundoBeGone.exe" )
[01/28/2008, 12:52:47] - Detected System Information:
[01/28/2008, 12:52:47] -  Windows Version: 5.1.2600, Service Pack 2
[01/28/2008, 12:52:47] -  Current Username: bibiche (Admin)
[01/28/2008, 12:52:47] -  Windows is in NORMAL mode.
[01/28/2008, 12:52:47] - Searching for Browser Helper Objects:
[01/28/2008, 12:52:47] -  BHO 1: {02478D38-C3F9-4efb-9B51-7695ECA05670} (Yahoo! Companion BHO)
[01/28/2008, 12:52:47] -  BHO 2: {03EED9F0-BA9B-4801-8BBC-263BC069B782} ()
[01/28/2008, 12:52:47] - WARNING: BHO has no default name. Checking for Winlogon reference.
[01/28/2008, 12:52:47] -  Checking for HKLM\...\Winlogon\Notify\hopecem83122
[01/28/2008, 12:52:47] -  Key not found: HKLM\...\Winlogon\Notify\hopecem83122, continuing.
[01/28/2008, 12:52:47] -  BHO 3: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (Adobe PDF Reader Link Helper)
[01/28/2008, 12:52:47] -  BHO 4: {1648E328-3E5A-4EA5-A9C6-E5F09EE272DA} (MySidesearch Search Assistant)
[01/28/2008, 12:52:47] -  BHO 5: {1D8282E6-BC4F-469B-AAED-7E4FF077AD93} (BrowserCmp)
[01/28/2008, 12:52:47] -  BHO 6: {2761B423-825B-43FF-9F96-8CD3C3B9C4C0} ()
[01/28/2008, 12:52:47] - WARNING: BHO has no default name. Checking for Winlogon reference.
[01/28/2008, 12:52:47] -  Checking for HKLM\...\Winlogon\Notify\hopecem4444
[01/28/2008, 12:52:47] -  Key not found: HKLM\...\Winlogon\Notify\hopecem4444, continuing.
[01/28/2008, 12:52:47] -  BHO 7: {6029593A-89B8-A959-9B37-5CCD95C9D289} ()
[01/28/2008, 12:52:47] - WARNING: BHO has no default name. Checking for Winlogon reference.
[01/28/2008, 12:52:47] -  Checking for HKLM\...\Winlogon\Notify\Htm Bind
[01/28/2008, 12:52:47] -  Key not found: HKLM\...\Winlogon\Notify\Htm Bind, continuing.
[01/28/2008, 12:52:47] -  BHO 8: {6FC3C36D-7635-4D43-BA62-0D9D2F2CD06E} (dcads)
[01/28/2008, 12:52:47] -  BHO 9: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class)
[01/28/2008, 12:52:47] -  BHO 10: {8E015787-B1E3-404a-95DE-3E71E1FA0305} (browser optimizer superiorads)
[01/28/2008, 12:52:47] -  BHO 11: {9030D464-4C02-4ABF-8ECC-5164760863C6} (Windows Live Sign-in Helper)
[01/28/2008, 12:52:47] -  BHO 12: {AA58ED58-01DD-4d91-8333-CF10577473F7} (Google Toolbar Helper)
[01/28/2008, 12:52:47] -  BHO 13: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} (Google Toolbar Notifier BHO)
[01/28/2008, 12:52:47] -  BHO 14: {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} (Windows Live Toolbar Helper)
[01/28/2008, 12:52:47] -  BHO 15: {F1E96EDC-E0C8-BE98-1F15-C29DBED83B53} (BrowsingAdvisor)
[01/28/2008, 12:52:47] -  BHO 16: {FC47B7F7-9D27-4203-CBB1-1551DE3E9513} ()
[01/28/2008, 12:52:47] - WARNING: BHO has no default name. Checking for Winlogon reference.
[01/28/2008, 12:52:47] -  Checking for HKLM\...\Winlogon\Notify\labuvunif89
[01/28/2008, 12:52:47] -  Key not found: HKLM\...\Winlogon\Notify\labuvunif89, continuing.
[01/28/2008, 12:52:47] - Finished Searching Browser Helper Objects
[01/28/2008, 12:52:47] - Finishing up...
[01/28/2008, 12:52:47] - Nothing found! Exiting...

kaori · Answer

voila j'ai relancer hijackthis et le rapport qui en resulte est celui ci:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:54:43, on 28/01/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Point Facture\mysql\bin\mysqld-nt.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Larousse\Encyclopédie Universelle Larousse\bin\hyperappel.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\WINDOWS\VPro500.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\PROGRA~1\MOZILL~2\FIREFOX.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.oneup.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_3_18_0.dll
O2 - BHO: (no name) - {03EED9F0-BA9B-4801-8BBC-263BC069B782} - C:\Program Files\Messenger\hopecem83122.dll (file missing)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: MySidesearch Search Assistant - {1648E328-3E5A-4EA5-A9C6-E5F09EE272DA} - C:\WINDOWS\system32\mysidesearch_sidebar.dll
O2 - BHO: BrowserCmp - {1D8282E6-BC4F-469B-AAED-7E4FF077AD93} - C:\WINDOWS\system32\iebrowserc.dll
O2 - BHO: (no name) - {2761B423-825B-43FF-9F96-8CD3C3B9C4C0} - C:\Program Files\Messenger\hopecem4444.dll (file missing)
O2 - BHO: (no name) - {6029593A-89B8-A959-9B37-5CCD95C9D289} - C:\DOCUME~1\bibiche\APPLIC~1\KEEPFI~1\Htm Bind.exe (file missing)
O2 - BHO: dcads - {6FC3C36D-7635-4D43-BA62-0D9D2F2CD06E} - C:\WINDOWS\system32
sw28.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: browser optimizer superiorads - {8E015787-B1E3-404a-95DE-3E71E1FA0305} - C:\WINDOWS\system32\spads.dll (file missing)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: BrowsingAdvisor - {F1E96EDC-E0C8-BE98-1F15-C29DBED83B53} - C:\Program Files\BrowsingAdvisor\BrowsingAdvisor-2.dll
O2 - BHO: 0 - {FC47B7F7-9D27-4203-CBB1-1551DE3E9513} - C:\Program Files\MSN\labuvunif89.dll (file missing)
O3 - Toolbar: Yahoo! Compagnon - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_3_18_0.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ClickMe] C:\apps\ClickMe\ClickMe.exe
O4 - HKLM\..\Run: [EmailChecker] C:\APPS\EmailChecker\ech.exe
O4 - HKLM\..\Run: [PCMService] "c:\Apps\Powercinema\PCMService.exe"
O4 - HKLM\..\Run: [BDSwitchAgent] C:\Program Files\Softwin\BitDefender Professional Edition\bdswitch.exe
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [comp admin once find] C:\Documents and Settings\All Users\Application Data\Third Eq Comp Admin\burnbend.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [spa_start] C:\WINDOWS\System32\Rundll32.exe "C:\WINDOWS\system32\spads.dll" DllVerify
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [surfshow] C:\DOCUME~1\bibiche\APPLIC~1\MPEGIN~1\LongSect.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Hyperappel de l'Encyclopédie Universelle Larousse.lnk = ?
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Readereader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\microsoft office\office10\OSA.EXE
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O4 - Global Startup: VPro500.lnk = C:\WINDOWS\VPro500.exe
O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?22008820f008495bbd922db29ad77ea
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?22008820f008495bbd922db29ad77ea
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/yinst/yinst_current.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://kaori64.spaces.live.com/PhotoUpload/MsnPUpld.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{31BDDD12-A6C7-4592-9EF8-1C35E7D4F9B8}: NameServer = 192.168.1.1
O23 - Service: AOL Connectivity Service (AOL ACS) - Unknown owner - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Port Resolver - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: MysqlInventime - Unknown owner - c:\mysql\bin\mysqld-nt.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PointFacture - Unknown owner - C:\Program Files\Point Facture\mysql\bin\mysqld-nt.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
O23 - Service: SmartLinkService (SLService) -   - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe

kaori · Answer

c'est mauvais signe????

Utilisateur anonyme · Answer

l'autre rapport etait incomplet je regarde celui ci et t'en fait part  !

Utilisateur anonyme · Answer

Fais un clic droit sur ce lien :
http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe
Enregistrer la cible (du lien) sous... et enregistre-le sur ton bureau.
Ensuite double clique sur navilog1.exe pour lancer l'installation.
Une fois l'installation terminée, le fix s'exécutera automatiquement.
(Si ce n'est pas le cas, double-clique sur le raccourci Navilog1 présent sur le bureau).

Laisse-toi guider. Au menu principal, choisis 1 et valides.
(ne fais pas le choix 2,3 ou 4 sans notre avis/accord)

Patiente jusqu'au message :
*** Analyse Termine le ..... ***
Appuie sur une touche comme demandé, le blocnote va s'ouvrir.
Copie-colle l'intégralité dans une réponse. Referme le blocnote.
Le rapport est en outre sauvegardé à la racine du disque (fixnavi.txt)

laytyboop · Answer

Search Navipromo version 3.4.2 commencé le 28/01/2008 à 13:28:03,40

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!

Outil exécuté depuis C:\Program Files
avilog1
Mise à jour le 27.01.2008 à 17h00 par IL-MAFIOSO


Microsoft Windows XP [version 5.1.2600]
Internet Explorer : 6.0.2900.2180 
Système de fichiers : NTFS

Executé en mode normal

*** Recherche Programmes installés ***




*** Recherche dossiers dans C:\WINDOWS ***



*** Recherche dossiers dans C:\Program Files ***

C:\Program Files\MessengerSkinner trouvé !


*** Recherche dossiers dans C:\DOCUME~1\ALLUSE~1\APPLIC~1 ***




*** Recherche dossiers dans "C:\Documents and Settings\Administrateur\application data" *** 

...\MessengerSkinner trouvé !


*** Recherche dossiers dans "C:\Documents and Settings\Administrateur\local settings\application data" *** 



*** Recherche dossiers dans "C:\Documents and Settings\Administrateur\MENUDM~1\PROGRA~1" *** 


*** Recherche dossiers dans C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1 ***


*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d'infos : http://www.gmer.net

Aucun Fichier trouvé



*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!

* Recherche dans C:\WINDOWS\system32 *

* Recherche dans "C:\Documents and Settings\Administrateur\local settings\application data" * 

Fichiers trouvés :

wyhmiup.exe trouvé ! 



*** Recherche fichiers *** 


C:\WINDOWS\system32
vs2.inf trouvé !


*** Recherche clés spécifiques dans le Registre ***

HKEY_CURRENT_USER\Software\Lanconfig trouvé ! 

*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Recherche nouveaux fichiers Instant Access :


2)Recherche Heuristique :

* Dans C:\WINDOWS\system32 :


* Dans "C:\Documents and Settings\Administrateur\local settings\application data" : 

wyhmiup.dat trouvé !

3)Recherche Certificats :

Certificat Egroup trouvé !

4)Recherche fichiers connus :



*** Analyse terminée le 28/01/2008 à 13:30:01,57 ***

kaori · Answer

Search Navipromo version 3.4.2 commencé le 28/01/2008 à 13:30:58,34

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!

Outil exécuté depuis C:\Program Files
avilog1
Mise à jour le 27.01.2008 à 17h00 par IL-MAFIOSO


Microsoft Windows XP [version 5.1.2600]
Internet Explorer : 6.0.2900.2180 
Système de fichiers : NTFS

Executé en mode normal

*** Recherche Programmes installés ***




*** Recherche dossiers dans C:\WINDOWS ***



*** Recherche dossiers dans C:\Program Files ***



*** Recherche dossiers dans C:\DOCUME~1\ALLUSE~1\APPLIC~1 ***




*** Recherche dossiers dans "C:\Documents and Settings\bibiche\application data" *** 



*** Recherche dossiers dans "C:\Documents and Settings\bibiche\local settings\application data" *** 



*** Recherche dossiers dans "C:\Documents and Settings\bibiche\MENUDM~1\PROGRA~1" *** 


*** Recherche dossiers dans C:\DOCUME~1\ALLUSE~1\MENUD?~1\PROGRA~1 ***


*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d'infos : http://www.gmer.net

Aucun Fichier trouvé



*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!

* Recherche dans C:\WINDOWS\system32 *

* Recherche dans "C:\Documents and Settings\bibiche\local settings\application data" * 



*** Recherche fichiers *** 




*** Recherche clés spécifiques dans le Registre ***


*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Recherche nouveaux fichiers Instant Access :


2)Recherche Heuristique :

* Dans C:\WINDOWS\system32 :


* Dans "C:\Documents and Settings\bibiche\local settings\application data" : 


3)Recherche Certificats :

Certificat Egroup absent !

4)Recherche fichiers connus :

C:\WINDOWS\system32\sttss.ini2 trouvé ! infection Vundo possible non traitée par cet outil !


*** Analyse terminée le 28/01/2008 à 13:38:21,40 ***

Utilisateur anonyme · Answer

oups kaori je suis navre navilog ne t'etait pas destine , pardon je viens de voire cela ! 

Télécharge SDFix (créé par AndyManchesta) et sauvegarde le sur ton Bureau.
http://downloads.andymanchesta.com/RemovalTools/SDFix.exe
Double clique sur SDFix.exe et choisis Install pour l'extraire dans un dossier dédié sur le Bureau. Redémarre ton ordinateur en mode sans échec en suivant la procédure que voici :
• Redémarre ton ordinateur
• Après avoir entendu l'ordinateur biper lors du démarrage, mais avant que l'icône Windows apparaisse, tapote la touche F8 (une pression par seconde).
• A la place du chargement normal de Windows, un menu avec différentes options devrait apparaître.
• Choisis la première option, pour exécuter Windows en mode sans échec, puis appuie sur "Entrée".
• Choisis ton compte.
Déroule la liste des instructions ci-dessous :
• Ouvre le dossier SDFix qui vient d'être créé dans le répertoire C:\ et double clique sur RunThis.bat pour lancer le script.
• Appuie sur Y pour commencer le processus de nettoyage.
• Il va supprimer les services et les entrées du Registre de certains trojans trouvés puis te demandera d'appuyer sur une touche pour redémarrer.
• Appuie sur une touche pour redémarrer le PC.
• Ton système sera plus long pour redémarrer qu'à l'accoutumée car l'outil va continuer à s'exécuter et supprimer des fichiers.
• Après le chargement du Bureau, l'outil terminera son travail et affichera Finished.
• Appuie sur une touche pour finir l'exécution du script et charger les icônes de ton Bureau.
• Les icônes du Bureau affichées, le rapport SDFix s'ouvrira à l'écran et s'enregistrera aussi dans le dossier SDFix sous le nom Report.txt.
• Enfin, copie/colle le contenu du fichier Report.txt dans ta prochaine réponse sur le forum

kaori · Answer

SDFix: Version 1.131

Run by bibiche on 28/01/2008 at 14:18

Microsoft Windows XP [version 5.1.2600]

Running From: C:\DOCUME~1\bibiche\Bureau\SDFix

Safe Mode:
Checking Services: 


Restoring Windows Registry Values
Restoring Windows Default Hosts File

Rebooting...


Normal Mode:
Checking Files: 

Trojan Files Found:

C:\WINDOWS\SYSTEM32\TASKKILL.EXE - Deleted
C:\PROGRA~1\MSN\PROKYK~1.HTM - Deleted
C:\PROGRA~1\MSN\LABUVU~1 - Deleted
C:\Temp\1cb\syscheck.log - Deleted
C:\WINDOWS\17PHolmes1000106.exe - Deleted
C:\Program Files\A.ico  - Deleted
C:\Program Files\B.ico  - Deleted
C:\WINDOWS\system32\atmtd.dll  - Deleted
C:\WINDOWS\system32\atmtd.dll._  - Deleted
C:\WINDOWS\system32\pac.txt  - Deleted
C:\WINDOWS\system32\WINLOGO.EXE  - Deleted
C:\WINDOWS\TTC-4444.exe  - Deleted
C:\WINDOWS\uninstall_nmon.vbs  - Deleted



Folder C:\Program Files\Network Monitor - Removed
Folder C:\Temp\1cb - Removed


Removing Temp Files...

ADS Check:

C:\WINDOWS
No streams found. 

C:\WINDOWS\explorer.exe
No streams found.
 
C:\WINDOWS\system32
No streams found. 

C:\WINDOWS\system32\svchost.exe
No streams found.
 
C:\WINDOWS\system32
toskrnl.exe
No streams found.
 


                                 Final Check:

catchme 0.3.1344.2 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-01-28 14:28:59
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden services & system hive ...

scanning hidden registry entries ...

scanning hidden files ...

scan completed successfully
hidden processes: 0
hidden services: 0
hidden files: 0


Remaining Services:
------------------



Authorized Application Key Export:

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Program Files\eChanblard\emule.exe"="C:\Program Files\eChanblard\emule.exe:*:Enabled:eMule"
"C:\Program Files\MSN Messenger\msncall.exe"="C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
"C:\WINDOWS\system32\sessmgr.exe"="C:\WINDOWS\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\system32\LEXPPS.EXE"="C:\WINDOWS\system32\LEXPPS.EXE:*:Enabled:LEXPPS.EXE"
"C:\Program Files\Real\RealPlayer\realplay.exe"="C:\Program Files\Real\RealPlayer\realplay.exe:*:Enabled:RealOne Player"
"C:\Documents and Settings\bibiche\Local Settings\Temporary Internet Files\Content.IE5\81Q7016J\installer-38284-17-Open-Office-complet-en-francais-French[1].exe"="C:\Documents and Settings\bibiche\Local Settings\Temporary Internet Files\Content.IE5\81Q7016J\installer-38284-17-Open-Office-complet-en-francais-French[1].exe:*:Enabled:installer-38284-17-Open-Office-complet-en-francais-French[1]"
"C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer"
"C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"
"C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\MSN Messenger\msnmsgr .exe"="C:\Program Files\MSN Messenger\msnmsgr .exe:*:Enabled:Messenger"
"C:\Program Files\Skype\Phone\Skype .exe"="C:\Program Files\Skype\Phone\Skype .exe:*:Enabled:Skype"
"C:\Program Files\Grisoft\AVG7\avginet.exe"="C:\Program Files\Grisoft\AVG7\avginet.exe:*:Enabled:avginet.exe"
"C:\Program Files\Grisoft\AVG7\avgamsvr.exe"="C:\Program Files\Grisoft\AVG7\avgamsvr.exe:*:Enabled:avgamsvr.exe"
"C:\Program Files\Grisoft\AVG7\avgcc.exe"="C:\Program Files\Grisoft\AVG7\avgcc.exe:*:Enabled:avgcc.exe"
"C:\Program Files\Grisoft\AVG7\avgemc.exe"="C:\Program Files\Grisoft\AVG7\avgemc.exe:*:Enabled:avgemc.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe"="C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe"
"C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe"="C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe:*:Enabled:hpqphunl.exe"
"C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe"="C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe:*:Enabled:hpqdia.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe:*:Enabled:hpqnrs08.exe"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\MSN Messenger\msncall.exe"="C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

Remaining Files:
---------------

File Backups: - C:\DOCUME~1\bibiche\Bureau\SDFix\backups\backups.zip

Files with Hidden Attributes:

Thu  9 Sep 2004           193 A.SHR --- "C:\BOOT.BAK"
Wed  2 Feb 2005         4,348 A.SH. --- "C:\Documents and Settings\All Users\DRM\DRMv1.bak"
Fri 17 Nov 2006             0 A.SH. --- "C:\Documents and Settings\All Users\DRM\Cache\Indiv02.tmp"
Mon 26 Mar 2007        28,672 ...H. --- "C:\Documents and Settings\bibiche\Bureau\document\~WRL0003.tmp"
Fri  4 Mar 2005         3,958 A..H. --- "C:\Documents and Settings\bibiche\Application Data\Microsoft\Office\Shortcut Bar\Off215.tmp"

Finished!

kaori · Answer

que dois je faire a present?

pikachu53 · Answer

télécharge spyware terminator c super et gratuit

kaori · Answer

si c'est possible j'aimerais avoir une reponse via le travail fait jusqu'a present au mieu ml king qui jusqu'a present est explicite et me parait efficace

^^Marie^^ · Answer

Peut-être que M.L king, bosse aussi


Pour avancer

Télécharges ComboFix à partir d'un de ces liens : 

http://download.bleepingcomputer.com/sUBs/ComboFix.exe 
https://forospyware.com 
http://www.geekstogo.com/forum/files/file/197-combofix-by-subs/ 

Et important, enregistre le sur le bureau. 

Avant d'utiliser ComboFix : 

&#9658; Déconnecte toi d'internet et referme les fenêtres de tous les programmes en cours. 

&#9658; Désactive provisoirement et seulement le temps de l'utilisation de ComboFix, la protection en temps réel de ton Antivirus et de tes Antispywares, qui peuvent gêner fortement la procédure de recherche et de nettoyage de l'outil. 


Une fois fait, sur ton bureau double-clic sur Combofix.exe. 

- Répond oui au message d'avertissement, pour que le programme commence à procéder à l'analyse du pc. 

/!\ Pendant la durée de cette étape, ne te sert pas du pc et n'ouvre aucun programmes. /!\

- En fin de scan il est possible que ComboFix ait besoin de redémarrer le pc pour finaliser la désinfection\recherche, laisses-le faire. 

- Un rapport s'ouvrira ensuite dans le bloc notes, ce fichier rapport Combofix.txt, est automatiquement sauvegardé et rangé à C:\Combofix.txt) 

&#9658; Réactive la protection en temps réel de ton Antivirus et de tes Antispywares, avant de te reconnecter à internet. 

&#9658; Reviens sur le forum, et copie et colle la totalité du contenu de C:\Combofix.txt dans ton prochain message.

kaori · Answer

merci marie voila le rapport ComboFix 08-01-28.2 - bibiche 2008-01-28 16:24:26.1 - NTFSx86 Microsoft Windows XP Édition familiale 5.1.2600.2.1252.1.1036.18.159 [GMT 1:00] ˆÌÐÐÎ»ÖÃ: C:\Documents and Settings\bibiche\Bureau\ComboFix.exe * ÒÑ½¨Á¢ÐÂµÄß€Ôüc . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . C:\Documents and Settings\LocalService\Application Data\NetMon C:\Documents and Settings\LocalService\Application Data\NetMon\domains.txt C:\Documents and Settings\LocalService\Application Data\NetMon\log.txt C:\WINDOWS\system32\app.exe C:\WINDOWS\system32 sw28.dll C:\WINDOWS\system32\q1 C:\WINDOWS\system32\sttss.ini C:\WINDOWS\system32\sttss.ini2 . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\LEGACY_CMDSERVICE -------\LEGACY_NETWORK_MONITOR ((((((((((((((((((((((((((((( Fichiers cr‚‚s 2007-12-28 to 2008-01-28 )))))))))))))))))))))))))))))))))))) . 2008-01-28 14:16 . 2008-01-28 14:17 d-------- C:\WINDOWS\ERUNT 2008-01-28 14:08 . 2008-01-24 09:02 d-------- C:\Documents and Settings\bibiche\SDFix 2008-01-28 10:35 . 2008-01-28 13:39 d-------- C:\Program Files\Navilog1 2008-01-28 09:59 . 2008-01-28 09:59 46,300 --a------ C:\WINDOWS\system32\DcadsSocial-uninstall.exe 2008-01-25 12:02 . 2008-01-25 12:02 1,409 --a------ C:\WINDOWS\QTFont.for 2008-01-23 16:08 . 2007-12-04 15:51 42,912 --a------ C:\WINDOWS\system32\drivers\aswTdi.sys 2008-01-23 16:08 . 2007-12-04 15:49 26,624 --a------ C:\WINDOWS\system32\drivers\aavmker4.sys 2008-01-23 16:08 . 2007-12-04 15:53 23,152 --a------ C:\WINDOWS\system32\drivers\aswRdr.sys 2008-01-23 16:07 . 2007-12-04 14:04 837,496 --a------ C:\WINDOWS\system32\aswBoot.exe 2008-01-23 16:07 . 2004-01-09 10:13 380,928 --a------ C:\WINDOWS\system32\actskin4.ocx 2008-01-23 16:07 . 2007-12-04 13:54 95,608 --a------ C:\WINDOWS\system32\AvastSS.scr 2008-01-23 16:07 . 2007-12-04 15:55 94,544 --a------ C:\WINDOWS\system32\drivers\aswmon2.sys 2008-01-23 16:07 . 2007-12-04 15:56 93,264 --a------ C:\WINDOWS\system32\drivers\aswmon.sys 2008-01-23 16:00 . 2008-01-23 16:00 d-------- C:\Program Files\Panda Security 2008-01-23 16:00 . 2008-01-23 16:00 1,655 --a------ C:\WINDOWS\mozver.dat 2008-01-23 15:35 . 2008-01-23 15:35 d-------- C:\VundoFix Backups 2008-01-23 14:52 . 2008-01-23 14:53 d-------- C:\hijackthis 2008-01-23 12:31 . 2008-01-23 12:29 102,664 --a------ C:\WINDOWS\system32\drivers mcomm.sys 2008-01-23 12:29 . 2008-01-23 12:31 d-------- C:\Documents and Settings\bibiche\.housecall6.6 2008-01-23 12:24 . 2008-01-17 09:36 3,584 --a------ C:\WINDOWS\system32\sstts.exe 2008-01-23 09:00 . 2008-01-23 09:01 d-------- C:\Program Files\Point Facture 2008-01-22 18:04 . 2008-01-22 18:05 d-------- C:\Documents and Settings\bibiche\BeDesk4 2008-01-22 18:02 . 2008-01-22 18:21 d-------- C:\Program Files\BeDesk Express Facturation 4 2008-01-22 17:13 . 2008-01-22 17:58 d-------- C:\Program Files\APDevis 6 2008-01-20 19:52 . 2008-01-25 12:02 54,156 --ah----- C:\WINDOWS\QTFont.qfn 2008-01-19 17:26 . 2008-01-19 17:26 327,680 --a------ C:\WINDOWS\system32\mysidesearch_sidebar.dll 2008-01-18 11:06 . 2008-01-18 11:06 294,912 --a------ C:\WINDOWS\system32\iebrowserc.dll 2008-01-17 22:10 . 2008-01-22 12:08 84,729 --a------ C:\WINDOWS\system32\mysidesearch_sidebar_uninstall.exe 2008-01-17 13:33 . 2008-01-17 13:44 d-------- C:\Documents and Settings\bibiche\Application Data\HP 2008-01-17 13:32 . 2008-01-17 13:32 d-------- C:\Documents and Settings\All Users\Application Data\HP 2008-01-17 13:29 . 2008-01-17 13:29 d-------- C:\Documents and Settings\All Users\Application Data\Sonic 2008-01-17 13:23 . 2008-01-17 13:23 d-------- C:\Program Files\Fichiers communs\Hewlett-Packard 2008-01-17 13:22 . 2006-04-13 01:04 49,664 -ra------ C:\WINDOWS\system32\drivers\HPZid412.sys 2008-01-17 13:22 . 2006-04-13 01:04 16,496 -ra------ C:\WINDOWS\system32\drivers\HPZipr12.sys 2008-01-17 13:21 . 2006-01-04 10:12 77,824 -ra------ C:\WINDOWS\system32\HPZIDS01.dll 2008-01-17 13:21 . 2006-04-10 14:03 38,400 --a------ C:\WINDOWS\system32\hpz3l054.dll 2008-01-17 13:20 . 2006-03-03 21:03 282,680 --a------ C:\WINDOWS\system32\HPZidr12.dll 2008-01-17 13:20 . 2006-03-03 21:02 204,800 --a------ C:\WINDOWS\system32\HPZipr12.dll 2008-01-17 13:20 . 2006-03-03 21:02 94,208 --a------ C:\WINDOWS\system32\HPZipt12.dll 2008-01-17 13:20 . 2006-03-03 21:03 69,632 --a------ C:\WINDOWS\system32\HPZipm12.exe 2008-01-17 13:20 . 2006-03-03 21:03 65,536 --a------ C:\WINDOWS\system32\HPZinw12.exe 2008-01-17 13:20 . 2006-03-03 21:02 57,344 --a------ C:\WINDOWS\system32\HPZisn12.dll 2008-01-17 13:19 . 2008-01-24 17:02 d-------- C:\Program Files\HP 2008-01-16 11:53 . 2008-01-16 11:53 d-------- C:\Program Files\Trend Micro 2008-01-15 17:23 . 2008-01-15 17:23 d-------- C:\Documents and Settings\LocalService\Application Data\AVG7 2008-01-15 17:23 . 2008-01-16 12:03 d-------- C:\Documents and Settings\bibiche\Application Data\AVG7 2008-01-15 17:22 . 2008-01-15 17:22 d-------- C:\Documents and Settings\All Users\Application Data\Grisoft 2008-01-15 17:22 . 2008-01-16 12:03 d-------- C:\Documents and Settings\All Users\Application Data\avg7 2008-01-14 20:37 . 2008-01-14 20:37 15,360 --a------ C:\WINDOWS\system32\ctfmon .exe 2008-01-14 20:36 . 2008-01-15 09:08 155,648 --a------ C:\WINDOWS\system32\NeroCheck .exe 2008-01-14 19:28 . 2008-01-28 11:31 d--hs---- C:\WINDOWS\YmliaWNoZQ 2008-01-14 19:28 . 2008-01-14 19:28 d-------- C:\WINDOWS\system32\wc9 2008-01-14 19:28 . 2008-01-16 13:02 d-------- C:\WINDOWS\system32\us3 2008-01-14 19:28 . 2008-01-14 19:28 249 --a------ C:\WINDOWS\system32\5854.bat 2008-01-14 19:27 . 2008-01-16 13:02 d-------- C:\WINDOWS\system32\edcA07 2008-01-14 19:27 . 2008-01-14 19:28 d-------- C:\Temp\Ryuan1 2008-01-14 19:27 . 2008-01-28 14:28 d-------- C:\Temp 2008-01-14 19:26 . 2008-01-14 19:26 147,456 --a------ C:\WINDOWS\system32\vbzip10.dll 2008-01-14 19:09 . 2008-01-14 19:10 80,097 --a------ C:\WINDOWS\system32\dcads-remove.exe 2008-01-14 19:09 . 2008-01-14 19:10 77,360 --a------ C:\WINDOWS\system32\dcads_sidebar_uninstall.exe 2008-01-14 19:09 . 2008-01-14 19:09 40,731 --a------ C:\WINDOWS\system32\superiorads-uninst.exe 2008-01-14 19:08 . 2008-01-28 15:33 d-------- C:\Program Files\BrowsingAdvisor . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-01-28 15:06 --------- d-----w C:\Program Files\eMule 2008-01-27 20:35 --------- d-----w C:\Documents and Settings\All Users\Application Data\Google Updater 2008-01-24 16:24 --------- d-----w C:\Program Files\MSN Messenger 2008-01-22 17:04 --------- d-----w C:\Program Files\Java 2008-01-16 12:00 --------- d-----w C:\Program Files\QuickTime 2008-01-16 11:59 --------- d-----w C:\Program Files\Winamp 2008-01-16 11:59 --------- d-----w C:\Program Files\Wanadoo 2008-01-16 11:59 --------- d-----w C:\Program Files\Lexmark Fax Solutions 2008-01-16 11:59 --------- d-----w C:\Program Files\Lexmark 2200 Series 2008-01-14 19:57 --------- d-----w C:\Program Files\Fichiers communs\PCSuite 2008-01-14 18:11 --------- d-----w C:\Documents and Settings\bibiche\Application Data\LimeWire 2008-01-08 08:59 --------- d-----w C:\Documents and Settings\bibiche\Application Data\Skype 2007-12-14 07:03 --------- d-----w C:\Documents and Settings\bibiche\Application Data\Viewpoint 2007-12-14 07:03 --------- d-----w C:\Documents and Settings\All Users\Application Data\Viewpoint 2007-12-13 19:18 --------- d-----w C:\Program Files\LimeWire 2007-12-11 11:32 --------- d-----w C:\Documents and Settings\All Users\Application Data\Downloaded Installations 2007-12-05 18:30 --------- d-----w C:\Program Files\Everest Poker 2007-12-03 02:01 --------- d-----w C:\Program Files\Windows Live Toolbar 2007-12-03 02:01 --------- d-----w C:\Program Files\Windows Live Favorites 2007-11-29 19:53 --------- d-----w C:\Program Files\Google 2005-03-06 18:19 108,992 ----a-w C:\Documents and Settings\bibiche\Application Data\GDIPFONTCACHEV1.DAT 2005-07-29 15:24 472 --sha-r C:\WINDOWS\YmliaWNoZQ\sA52uqhCtk.vbs . [code]

----a-w           335,872 2008-01-15 08:08:13  C:\ATI Technologies\ATI Control Panel\atiptaxx .exe
----a-w           313,472 2008-01-14 19:37:46  C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager .exe
----a-w            57,344 2008-01-15 08:08:30  C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy .exe
----a-w           151,597 2008-01-15 08:08:20  C:\Program Files\Fichiers communs\Real\Update_OB
ealsched .exe
----a-w            68,856 2008-01-15 08:09:00  C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier .exe
----a-w            83,608 2008-01-15 08:08:35  C:\Program Files\Java\jre1.6.0_01\bin\jusched .exe
----a-w            57,344 2008-01-15 08:08:11  C:\Program Files\Lexmark 2200 Series\lxbvbmgr .exe
----a-w           294,912 2008-01-15 08:08:16  C:\Program Files\Lexmark Fax Solutions\fm3032 .exe
----a-w         1,694,208 2008-01-15 08:09:09  C:\Program Files\Messenger\msmsgs .exe
----a-w         5,674,352 2008-01-15 08:09:32  C:\Program Files\MSN Messenger\msnmsgr .exe
----a-w         5,562,368 2008-01-15 08:09:34  C:\Program Files\MySpace\IM\MySpaceIM .exe
----a-w        20,058,152 2008-01-15 08:10:18  C:\Program Files\Skype\Phone\Skype .exe
----a-w            32,768 2008-01-15 08:09:54  C:\Program Files\Wanadoo\GestMaj .exe
----a-w           122,880 2008-01-15 08:10:19  C:\Program Files\Wanadoo\Shell .exe
----a-w            20,480 2008-01-15 08:10:46  C:\Program Files\Wanadoo\Watch .exe
----a-w            33,792 2008-01-15 08:08:23  C:\Program Files\Winamp\winampa .exe
----a-w            15,360 2008-01-14 19:37:27  C:\WINDOWS\system32\ctfmon .exe
----a-w           155,648 2008-01-15 08:08:18  C:\WINDOWS\system32\NeroCheck .exe

/code ((((((((((((((((((((((((((((((((( Point de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))) . . REGEDIT4 *Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{03EED9F0-BA9B-4801-8BBC-263BC069B782}] C:\Program Files\Messenger\hopecem83122.dll [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1648E328-3E5A-4EA5-A9C6-E5F09EE272DA}] 2008-01-19 17:26 327680 --a------ C:\WINDOWS\system32\mysidesearch_sidebar.dll [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1D8282E6-BC4F-469B-AAED-7E4FF077AD93}] 2008-01-18 11:06 294912 --a------ C:\WINDOWS\system32\iebrowserc.dll [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2761B423-825B-43FF-9F96-8CD3C3B9C4C0}] C:\Program Files\Messenger\hopecem4444.dll [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6029593A-89B8-A959-9B37-5CCD95C9D289}] C:\DOCUME~1\bibiche\APPLIC~1\KEEPFI~1\Htm Bind.exe [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8E015787-B1E3-404a-95DE-3E71E1FA0305}] C:\WINDOWS\system32\spads.dll [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F1E96EDC-E0C8-BE98-1F15-C29DBED83B53}] 2007-12-30 21:49 1019904 --a------ C:\Program Files\BrowsingAdvisor\BrowsingAdvisor-2.dll [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FC47B7F7-9D27-4203-CBB1-1551DE3E9513}] C:\Program Files\MSN\labuvunif89.dll [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-20 00:09 15360] "surfshow"="C:\DOCUME~1\bibiche\APPLIC~1\MPEGIN~1\LongSect.exe" [ ] "MessengerPlus3"="C:\Program Files\MessengerPlus! 3\MsgPlus.exe" [ ] "MoneyAgent"="C:\Program Files\Microsoft Money\System\mnyexpr.exe" [ ] "WOOKIT"="C:\PROGRA~1\Wanadoo\Shell.exe" [ ] "Skype"="C:\Program Files\Skype\Phone\Skype.exe" [ ] "msnmsgr"="C:\Program Files\MSN Messenger\msnmsgr.exe" [2007-01-19 12:55 5674352] "swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [ ] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SoundMan"="SOUNDMAN.EXE" [2004-02-26 15:53 65024 C:\WINDOWS\SOUNDMAN.EXE] "ATIModeChange"="Ati2mdxx.exe" [2001-09-04 14:24 28672 C:\WINDOWS\system32\Ati2mdxx.exe] "ATIPTA"="C:\ATI Technologies\ATI Control Panel\atiptaxx.exe" [ ] "ClickMe"="C:\apps\ClickMe\ClickMe.exe" [ ] "EmailChecker"="C:\APPS\EmailChecker\ech.exe" [ ] "PCMService"="c:\Apps\Powercinema\PCMService.exe" [ ] "BDSwitchAgent"="C:\Program Files\Softwin\BitDefender Professional Edition\bdswitch.exe" [ ] "UserFaultCheck"="C:\WINDOWS\system32\dumprep 0 -u" [ ] "WOOTASKBARICON"="C:\PROGRA~1\Wanadoo\GestMaj.exe" [ ] "comp admin once find"="C:\Documents and Settings\All Users\Application Data\Third Eq Comp Admin\burnbend.exe" [ ] "SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2008-01-23 15:54 473600] "Adobe Photo Downloader"="C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe" [ ] "AVG7_CC"="C:\PROGRA~1\Grisoft\AVG7\avgcc.exe" [ ] "avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-12-04 14:00 79224] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\System32\CTFMON.EXE" [2004-08-20 00:09 15360] "AVG7_Run"="C:\PROGRA~1\Grisoft\AVG7\avgw.exe" [2008-01-15 17:22 219136] R2 PointFacture;PointFacture;"C:\Program Files\Point Facture\mysql\bin\mysqld-nt.exe" "--defaults-file=C:\Program Files\Point Facture\mysql\bin\PointFacture.ini" PointFacture [] S3 DivioUSBDCam;PC-USB CCD-A Camera;C:\WINDOWS\system32\DRIVERS\pcam.sys [2000-01-10 16:34] S3 SPC610NC;Philips SPC500NC Webcam;C:\WINDOWS\system32\DRIVERS\SPC610NC.SYS [2005-10-13 15:41] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{514d5ed7-b207-11dc-939b-00038a000015}] \Shell\AutoRun\command - J:\InstallTomTomHOME.exe [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a249165d-0c59-11dc-9338-00038a000015}] \Shell\AutoRun\command - I:\LaunchU3.exe -a . Contenu du dossier 'Scheduled Tasks/Tƒches planifi‚es' "2008-01-28 15:00:00 C:\WINDOWS\Tasks\A82E5EA69181D562.job" - c:\docume~1\bibiche\applic~1\mpegin~1\download up default.exe "2008-01-28 14:43:01 C:\WINDOWS\Tasks\Vérifier les mises à jour de Windows Live Toolbar.job"

kaori · Answer

?

kaori · Answer

oula marie je te trouve trés agressive ....
je ne sais pas comment ce forum marche mais je ne sollicite pas qu'une personne ! je demande de l'aide uniquement et je suis paumé en informatique et tous ce que ca comporte .....si c'est pour etre agressé a chaque fois je prefere que tu me le dise de suite et j'arrete ici, j'irais cherché ailleur

kaori · Answer

ok excuse moi alors j'ai mal interprété.....
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:54, on 2008-01-28
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Point Facture\mysql\bin\mysqld-nt.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Larousse\Encyclopédie Universelle Larousse\bin\hyperappel.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\WINDOWS\VPro500.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\eMule\emule.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.oneup.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_3_18_0.dll
O2 - BHO: (no name) - {03EED9F0-BA9B-4801-8BBC-263BC069B782} - C:\Program Files\Messenger\hopecem83122.dll (file missing)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: MySidesearch Search Assistant - {1648E328-3E5A-4EA5-A9C6-E5F09EE272DA} - C:\WINDOWS\system32\mysidesearch_sidebar.dll
O2 - BHO: BrowserCmp - {1D8282E6-BC4F-469B-AAED-7E4FF077AD93} - C:\WINDOWS\system32\iebrowserc.dll
O2 - BHO: (no name) - {2761B423-825B-43FF-9F96-8CD3C3B9C4C0} - C:\Program Files\Messenger\hopecem4444.dll (file missing)
O2 - BHO: (no name) - {6029593A-89B8-A959-9B37-5CCD95C9D289} - C:\DOCUME~1\bibiche\APPLIC~1\KEEPFI~1\Htm Bind.exe (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: browser optimizer superiorads - {8E015787-B1E3-404a-95DE-3E71E1FA0305} - C:\WINDOWS\system32\spads.dll (file missing)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: BrowsingAdvisor - {F1E96EDC-E0C8-BE98-1F15-C29DBED83B53} - C:\Program Files\BrowsingAdvisor\BrowsingAdvisor-2.dll
O2 - BHO: 0 - {FC47B7F7-9D27-4203-CBB1-1551DE3E9513} - C:\Program Files\MSN\labuvunif89.dll (file missing)
O3 - Toolbar: Yahoo! Compagnon - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_3_18_0.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ClickMe] C:\apps\ClickMe\ClickMe.exe
O4 - HKLM\..\Run: [EmailChecker] C:\APPS\EmailChecker\ech.exe
O4 - HKLM\..\Run: [PCMService] "c:\Apps\Powercinema\PCMService.exe"
O4 - HKLM\..\Run: [BDSwitchAgent] C:\Program Files\Softwin\BitDefender Professional Edition\bdswitch.exe
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [comp admin once find] C:\Documents and Settings\All Users\Application Data\Third Eq Comp Admin\burnbend.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [surfshow] C:\DOCUME~1\bibiche\APPLIC~1\MPEGIN~1\LongSect.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Hyperappel de l'Encyclopédie Universelle Larousse.lnk = ?
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\microsoft office\office10\OSA.EXE
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O4 - Global Startup: VPro500.lnk = C:\WINDOWS\VPro500.exe
O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?22008820f008495bbd922db29ad77ea
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?22008820f008495bbd922db29ad77ea
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/yinst/yinst_current.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://kaori64.spaces.live.com/PhotoUpload/MsnPUpld.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{31BDDD12-A6C7-4592-9EF8-1C35E7D4F9B8}: NameServer = 192.168.1.1
O23 - Service: AOL Connectivity Service (AOL ACS) - Unknown owner - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Port Resolver - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: MysqlInventime - Unknown owner - c:\mysql\bin\mysqld-nt.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PointFacture - Unknown owner - C:\Program Files\Point Facture\mysql\bin\mysqld-nt.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
O23 - Service: SmartLinkService (SLService) -   - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe

Utilisateur anonyme · Answer

Bonsoir a vous deux , pardonnez moi j'ai eu beaucoup de travail ! et la vie de famille avant tout ! merci de ton aide ^^marie^^
kaori tu as une belle cochonnerie dans ton pc !




Rends toi sur ce site :

https://www.virustotal.com/gui/

Clique sur parcourir et cherche ces fichiers :

C:\WINDOWS\system32\edcA07
C:\WINDOWS\system32\5854.bat 
C:\WINDOWS\YmliaWNoZQ 



Clique sur Send File.

Un rapport va s'élaborer ligne à ligne.

Attends la fin. Il doit comprendre la taille du fichier envoyé.

Sauvegarde le rapport avec le bloc-note.

Copie le dans ta réponse.

kaori · Answer

Fichier 5854.bat reçu le 2008.01.28 19:41:14 (CET)Antivirus Version Dernière mise à jour Résultat 
AhnLab-V3 2008.1.28.10 2008.01.28 - 
AntiVir 7.6.0.56 2008.01.28 - 
Authentium 4.93.8 2008.01.26 - 
Avast 4.7.1098.0 2008.01.27 - 
AVG 7.5.0.516 2008.01.28 - 
BitDefender 7.2 2008.01.28 - 
CAT-QuickHeal 9.00 2008.01.25 - 
ClamAV 0.91.2 2008.01.28 - 
DrWeb 4.44.0.09170 2008.01.28 - 
eSafe 7.0.15.0 2008.01.16 - 
eTrust-Vet 31.3.5486 2008.01.26 - 
Ewido 4.0 2008.01.27 - 
FileAdvisor 1 2008.01.28 - 
Fortinet 3.14.0.0 2008.01.28 - 
F-Prot 4.4.2.54 2008.01.27 - 
F-Secure 6.70.13260.0 2008.01.28 - 
Ikarus T3.1.1.20 2008.01.28 - 
Kaspersky 7.0.0.125 2008.01.28 - 
McAfee 5216 2008.01.26 - 
Microsoft 1.3109 2008.01.28 - 
NOD32v2 2828 2008.01.28 - 
Norman 5.80.02 2008.01.28 - 
Panda 9.0.0.4 2008.01.28 - 
Prevx1 V2 2008.01.28 - 
Rising 20.29.01.00 2008.01.28 - 
Sophos 4.25.0 2008.01.28 - 
Sunbelt 2.2.907.0 2008.01.25 - 
Symantec 10 2008.01.28 - 
TheHacker 6.2.9.200 2008.01.28 - 
VBA32 3.12.2.5 2008.01.21 - 
VirusBuster 4.3.26:9 2008.01.28 - 
Webwasher-Gateway 6.6.2 2008.01.28 - 
 
Information additionnelle 
File size: 249 bytes 
MD5: f868e729968214bab667ad295dd8181b 
SHA1: c78bee9b7a42521680235ed28e65b94fa177f308 
PEiD: - 


asappsrv.dll 

AhnLab-V3 2008.1.28.10 2008.01.28 Win-Trojan/Proxy.187904 
AntiVir 7.6.0.56 2008.01.28 ADSPY/CommAd.A 
Authentium 4.93.8 2008.01.26 W32/Backdoor.AJHB 
Avast 4.7.1098.0 2008.01.27 Win32:Trojan-gen {Other} 
AVG 7.5.0.516 2008.01.28 Adware Generic.GMD 
BitDefender 7.2 2008.01.28 Adware.CommAd.A 
CAT-QuickHeal 9.00 2008.01.25 AdWare.CommAd.a (Not a Virus) 
ClamAV 0.91.2 2008.01.28 Adware.CommAd-2 
DrWeb 4.44.0.09170 2008.01.28 Trojan.Proxy.493 
eSafe 7.0.15.0 2008.01.16 Spyware.Gen 
eTrust-Vet 31.3.5486 2008.01.26 - 
Ewido 4.0 2008.01.27 Adware.CommAd 
FileAdvisor 1 2008.01.28 Low threat detected 
Fortinet 3.14.0.0 2008.01.28 Adware/Isearch 
F-Prot 4.4.2.54 2008.01.27 W32/CommAd.A 
F-Secure 6.70.13260.0 2008.01.28 - 
Ikarus T3.1.1.20 2008.01.28 not-a-virus:AdWare.Win32.CommAd.a 
Kaspersky 7.0.0.125 2008.01.28 not-a-virus:AdWare.Win32.CommAd.a 
McAfee 5216 2008.01.26 potentially unwanted program Adware-Isearch 
Microsoft 1.3109 2008.01.28 Adware:Win32/CMDService 
NOD32v2 2828 2008.01.28 Win32/Adware.CommAd 
Norman 5.80.02 2008.01.28 W32/CommAd.B 
Panda 9.0.0.4 2008.01.28 Adware/CommAd 
Prevx1 V2 2008.01.28 Generic.Malware 
Rising 20.29.01.00 2008.01.28 Backdoor.BlackHole.ax 
Sophos 4.25.0 2008.01.28 CommAd 
Sunbelt 2.2.907.0 2008.01.25 Command Service 
Symantec 10 2008.01.28 Spyware.ISearch 
TheHacker 6.2.9.200 2008.01.28 Adware/CommAd.a 
VBA32 3.12.2.5 2008.01.21 AdWare.Win32.CommAd.a 
VirusBuster 4.3.26:9 2008.01.28 Adware.CommAd.A 
Webwasher-Gateway 6.6.2 2008.01.28 Ad-Spyware.CommAd.A 
Information additionnelle 
File size: 187904 bytes 
MD5: 0f8deb5a57d8310b2d7ef90b84480f13 
SHA1: 77402adf982a0eaadbbb10fb32202bfc3b9cef1d 
PEiD: - 
packers: UPX 
Bit9 info: http://fileadvisor.bit9.com/services/extinfo.aspx?md5=0f8deb5a57d8310b2d7ef90b84480f13 
packers: UPX 
Prevx info: http://info.prevx.com/aboutprogramtext.asp?PX5=E94A09E000C1885ADECE02998FE6BA00F25511F9 


je n'ai pu faire que c'est deux fichier le C:\WINDOWS\system32\edcA07  est vide je n'arrive pas a le selectionner

Utilisateur anonyme · Answer

C:\WINDOWS\system32\edcA07
C:\WINDOWS\system32\5854.bat 
C:\WINDOWS\YmliaWNoZQ 
 


télécharges et installes :
KillBox de Option^Explicit
Aide Killbox

sélectionne entièrement la liste ci-dessous :



C:\WINDOWS\system32\mysidesearch_sidebar.dll 
C:\WINDOWS\system32\mysidesearch_sidebar_uninstall.exe
C:\WINDOWS\system32\dcads-remove.exe 
C:\WINDOWS\system32\dcads_sidebar_uninstall.exe 
C:\Temp\Ryuan1 
C:\Temp 
C:\WINDOWS\system32\vbzip10.dll
C:\WINDOWS\system32\superiorads-uninst.exe 
C:\Program Files\BrowsingAdvisor 
C:\WINDOWS\YmliaWNoZQ





---> et tu fais clic droit / copier

Ouvres killbox
- Sélectionne "delete on reboot"
- Clique sur le menu "File" -> "Past from clip board"
- Clique sur All Files
- Clique sur la croix rouge et et blanche
- Répond yes et laisse redémarrer ton pc.
N'hésite pas à consulter l'Aide killbox

NOTE: Si tu reçois le message "PendingFileRenameOperations Registry Data has been removed by external process!" et que l'ordinateur ne redémarre pas, redémarre le manuellement ---> Menu Démarrer / arreter / redémarrer l'ordinateur

Après redémarrage, relance Killbox puis clic sur le menu fichier -> Log -> Actions History Log
Poste le rapport ici

kaori · Answer

Pocket Killbox version 
Running on Windows XP as bibiche(Administrator)
was started @ lundi, janvier 28, 2008, 8:53 PM
 
# 1 [Delete on Reboot]
Path = C:\WINDOWS\system32\mysidesearch_sidebar.dll

 
# 2 [Delete on Reboot]
Path = C:\WINDOWS\system32\mysidesearch_sidebar_uninstall.exe

 
# 3 [Delete on Reboot]
Path = C:\WINDOWS\system32\dcads-remove.exe

 
# 4 [Delete on Reboot]
Path = C:\WINDOWS\system32\dcads_sidebar_uninstall.exe

 
# 5 [Delete on Reboot]
Path = C:\Temp\Ryuan1

 
# 6 [Delete on Reboot]
Path = C:\Temp

 
# 7 [Delete on Reboot]
Path = C:\WINDOWS\system32\vbzip10.dll

 
# 8 [Delete on Reboot]
Path = C:\WINDOWS\system32\superiorads-uninst.exe

 
# 9 [Delete on Reboot]
Path = C:\Program Files\BrowsingAdvisor

 
# 10 [Delete on Reboot]
Path = C:\WINDOWS\YmliaWNoZQ

 
I Rebooted @ 8:57:19 PM
Killbox Closed(Exit) @ 8:57:57 PM
__________________________________________________
 
Pocket Killbox version 2.0.0.881
Running on Windows XP as bibiche(Administrator)
was started @ lundi, janvier 28, 2008, 9:08 PM
 
# 1 [Delete on Reboot]
Path = C:\Temp\Ryuan1

 
# 2 [Delete on Reboot]
Path = C:\Temp

 
# 3 [Delete on Reboot]
Path = C:\Program Files\BrowsingAdvisor

 
# 4 [Delete on Reboot]
Path = C:\WINDOWS\YmliaWNoZQ

 
I Rebooted @ 9:09:43 PM
Killbox Closed(Exit) @ 9:09:46 PM
__________________________________________________
 
Pocket Killbox version 2.0.0.881
Running on Windows XP as bibiche(Administrator)
was started @ lundi, janvier 28, 2008, 9:16 PM

Utilisateur anonyme · Answer

relance hijackthis et poste nous le nouveau rapport hijackthis  .

kaori · Answer

Logfile of HijackThis v1.99.1
Scan saved at 21:40, on 2008-01-28
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Point Facture\mysql\bin\mysqld-nt.exe
C:\WINDOWS\system32\slserv.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Larousse\Encyclopédie Universelle Larousse\bin\hyperappel.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\WINDOWS\VPro500.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\bibiche\Bureau\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.oneup.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_3_18_0.dll
O2 - BHO: (no name) - {03EED9F0-BA9B-4801-8BBC-263BC069B782} - C:\Program Files\Messenger\hopecem83122.dll (file missing)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: MySidesearch Search Assistant - {1648E328-3E5A-4EA5-A9C6-E5F09EE272DA} - C:\WINDOWS\system32\mysidesearch_sidebar.dll (file missing)
O2 - BHO: BrowserCmp - {1D8282E6-BC4F-469B-AAED-7E4FF077AD93} - C:\WINDOWS\system32\iebrowserc.dll
O2 - BHO: (no name) - {2761B423-825B-43FF-9F96-8CD3C3B9C4C0} - C:\Program Files\Messenger\hopecem4444.dll (file missing)
O2 - BHO: (no name) - {6029593A-89B8-A959-9B37-5CCD95C9D289} - C:\DOCUME~1\bibiche\APPLIC~1\KEEPFI~1\Htm Bind.exe (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: browser optimizer superiorads - {8E015787-B1E3-404a-95DE-3E71E1FA0305} - C:\WINDOWS\system32\spads.dll (file missing)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: BrowsingAdvisor - {F1E96EDC-E0C8-BE98-1F15-C29DBED83B53} - C:\Program Files\BrowsingAdvisor\BrowsingAdvisor-2.dll
O2 - BHO: 0 - {FC47B7F7-9D27-4203-CBB1-1551DE3E9513} - C:\Program Files\MSN\labuvunif89.dll (file missing)
O3 - Toolbar: Yahoo! Compagnon - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_3_18_0.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ClickMe] C:\apps\ClickMe\ClickMe.exe
O4 - HKLM\..\Run: [EmailChecker] C:\APPS\EmailChecker\ech.exe
O4 - HKLM\..\Run: [PCMService] "c:\Apps\Powercinema\PCMService.exe"
O4 - HKLM\..\Run: [BDSwitchAgent] C:\Program Files\Softwin\BitDefender Professional Edition\bdswitch.exe
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [comp admin once find] C:\Documents and Settings\All Users\Application Data\Third Eq Comp Admin\burnbend.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [surfshow] C:\DOCUME~1\bibiche\APPLIC~1\MPEGIN~1\LongSect.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - Global Startup: Hyperappel de l'Encyclopédie Universelle Larousse.lnk = ?
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\microsoft office\office10\OSA.EXE
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O4 - Global Startup: VPro500.lnk = C:\WINDOWS\VPro500.exe
O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?22008820f008495bbd922db29ad77ea
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?22008820f008495bbd922db29ad77ea
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/yinst/yinst_current.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://kaori64.spaces.live.com/PhotoUpload/MsnPUpld.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{31BDDD12-A6C7-4592-9EF8-1C35E7D4F9B8}: NameServer = 192.168.1.1
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - Unknown owner - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Port Resolver - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: MysqlInventime - Unknown owner - c:\mysql\bin\mysqld-nt.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PointFacture - Unknown owner - C:\Program Files\Point Facture\mysql\bin\mysqld-nt.exe" "--defaults-file=C:\Program Files\Point Facture\mysql\bin\PointFacture.ini" PointFacture (file missing)
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
O23 - Service: SmartLinkService (SLService) -   - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe

kaori · Answer

bonjour a tous est ce que quelqu'un peut me dire d'apres le dernier rapport kijackthis ce que je dois faire???

Utilisateur anonyme · Answer

Bonjour kaori . 

nouvelle citation pour killbox :

C:\Program Files\BrowsingAdvisor\BrowsingAdvisor-2.dll 
C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html 



ensuite va dans panneau de config ajout suppression de programmes et desinstal toutes tes toolbar sauf la google toolbar !

kaori · Answer

ca y est j'ai fais ce que tu m'a dis....j'ai aussi une autre question mais j'ai mis en quarantaine une dizaine de fichier infecté par des virus que dois je en faire??? merci encore de ton aide tré precieuse....


Logfile of HijackThis v1.99.1
Scan saved at 13:58, on 2008-01-29
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Larousse\Encyclopédie Universelle Larousse\bin\hyperappel.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\WINDOWS\VPro500.exe
C:\Program Files\Point Facture\mysql\bin\mysqld-nt.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\bibiche\Bureau\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.oneup.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_3_18_0.dll
O2 - BHO: (no name) - {03EED9F0-BA9B-4801-8BBC-263BC069B782} - C:\Program Files\Messenger\hopecem83122.dll (file missing)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: MySidesearch Search Assistant - {1648E328-3E5A-4EA5-A9C6-E5F09EE272DA} - C:\WINDOWS\system32\mysidesearch_sidebar.dll (file missing)
O2 - BHO: BrowserCmp - {1D8282E6-BC4F-469B-AAED-7E4FF077AD93} - C:\WINDOWS\system32\iebrowserc.dll
O2 - BHO: (no name) - {2761B423-825B-43FF-9F96-8CD3C3B9C4C0} - C:\Program Files\Messenger\hopecem4444.dll (file missing)
O2 - BHO: (no name) - {6029593A-89B8-A959-9B37-5CCD95C9D289} - C:\DOCUME~1\bibiche\APPLIC~1\KEEPFI~1\Htm Bind.exe (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: browser optimizer superiorads - {8E015787-B1E3-404a-95DE-3E71E1FA0305} - C:\WINDOWS\system32\spads.dll (file missing)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O2 - BHO: BrowsingAdvisor - {F1E96EDC-E0C8-BE98-1F15-C29DBED83B53} - C:\Program Files\BrowsingAdvisor\BrowsingAdvisor-2.dll (file missing)
O2 - BHO: 0 - {FC47B7F7-9D27-4203-CBB1-1551DE3E9513} - C:\Program Files\MSN\labuvunif89.dll (file missing)
O3 - Toolbar: Yahoo! Compagnon - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_3_18_0.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ClickMe] C:\apps\ClickMe\ClickMe.exe
O4 - HKLM\..\Run: [EmailChecker] C:\APPS\EmailChecker\ech.exe
O4 - HKLM\..\Run: [PCMService] "c:\Apps\Powercinema\PCMService.exe"
O4 - HKLM\..\Run: [BDSwitchAgent] C:\Program Files\Softwin\BitDefender Professional Edition\bdswitch.exe
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [comp admin once find] C:\Documents and Settings\All Users\Application Data\Third Eq Comp Admin\burnbend.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [surfshow] C:\DOCUME~1\bibiche\APPLIC~1\MPEGIN~1\LongSect.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - Global Startup: Hyperappel de l'Encyclopédie Universelle Larousse.lnk = ?
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\microsoft office\office10\OSA.EXE
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O4 - Global Startup: VPro500.lnk = C:\WINDOWS\VPro500.exe
O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/yinst/yinst_current.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://kaori64.spaces.live.com/PhotoUpload/MsnPUpld.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{31BDDD12-A6C7-4592-9EF8-1C35E7D4F9B8}: NameServer = 192.168.1.1
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - Unknown owner - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Port Resolver - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: MysqlInventime - Unknown owner - c:\mysql\bin\mysqld-nt.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PointFacture - Unknown owner - C:\Program Files\Point Facture\mysql\bin\mysqld-nt.exe" "--defaults-file=C:\Program Files\Point Facture\mysql\bin\PointFacture.ini" PointFacture (file missing)
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
O23 - Service: SmartLinkService (SLService) -   - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe

Utilisateur anonyme · Answer

il me semble que tu as deux antivirus ???? desinstal avast stp  car il y a un risque de conlit !


desinstal ta version de hijackthis stp car elle est mal placee et si je fait une erreure je n'aurais pas de savegarde pour corriger !


ensuite prend celle ci 
Télécharge sur le bureau"hijackthis"
ftp://ftp.commentcamarche.com/download/HJTInstall.exe
double Clic sur Hijackthis
clic droit sur Hijackthis ==> renommer ==> écrire : eden.exe ( à la place de hijackthis.exe) <== Important
Double-clic dessus
Clic Do a system scan and save the log
coller le rapport
si problème voir l'aide
http://perso.orange.fr/rginformatique/section%20virus/demohijack.htm

kaori · Answer

non je n'ai qu'avast enfin il me semble....

Utilisateur anonyme · Answer

tu a avg , sauf erreur de ma part il semble que se sois avg anti virus !!

O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe

kaori · Answer

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:30, on 2008-01-29
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Larousse\Encyclopédie Universelle Larousse\bin\hyperappel.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\WINDOWS\VPro500.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.oneup.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_3_18_0.dll
O2 - BHO: (no name) - {03EED9F0-BA9B-4801-8BBC-263BC069B782} - C:\Program Files\Messenger\hopecem83122.dll (file missing)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: MySidesearch Search Assistant - {1648E328-3E5A-4EA5-A9C6-E5F09EE272DA} - C:\WINDOWS\system32\mysidesearch_sidebar.dll (file missing)
O2 - BHO: BrowserCmp - {1D8282E6-BC4F-469B-AAED-7E4FF077AD93} - C:\WINDOWS\system32\iebrowserc.dll
O2 - BHO: (no name) - {2761B423-825B-43FF-9F96-8CD3C3B9C4C0} - C:\Program Files\Messenger\hopecem4444.dll (file missing)
O2 - BHO: (no name) - {6029593A-89B8-A959-9B37-5CCD95C9D289} - C:\DOCUME~1\bibiche\APPLIC~1\KEEPFI~1\Htm Bind.exe (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: browser optimizer superiorads - {8E015787-B1E3-404a-95DE-3E71E1FA0305} - C:\WINDOWS\system32\spads.dll (file missing)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O2 - BHO: BrowsingAdvisor - {F1E96EDC-E0C8-BE98-1F15-C29DBED83B53} - C:\Program Files\BrowsingAdvisor\BrowsingAdvisor-2.dll (file missing)
O2 - BHO: 0 - {FC47B7F7-9D27-4203-CBB1-1551DE3E9513} - C:\Program Files\MSN\labuvunif89.dll (file missing)
O3 - Toolbar: Yahoo! Compagnon - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_3_18_0.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ClickMe] C:\apps\ClickMe\ClickMe.exe
O4 - HKLM\..\Run: [EmailChecker] C:\APPS\EmailChecker\ech.exe
O4 - HKLM\..\Run: [PCMService] "c:\Apps\Powercinema\PCMService.exe"
O4 - HKLM\..\Run: [BDSwitchAgent] C:\Program Files\Softwin\BitDefender Professional Edition\bdswitch.exe
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [comp admin once find] C:\Documents and Settings\All Users\Application Data\Third Eq Comp Admin\burnbend.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [surfshow] C:\DOCUME~1\bibiche\APPLIC~1\MPEGIN~1\LongSect.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Hyperappel de l'Encyclopédie Universelle Larousse.lnk = ?
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\microsoft office\office10\OSA.EXE
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O4 - Global Startup: VPro500.lnk = C:\WINDOWS\VPro500.exe
O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/yinst/yinst_current.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://kaori64.spaces.live.com/PhotoUpload/MsnPUpld.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{31BDDD12-A6C7-4592-9EF8-1C35E7D4F9B8}: NameServer = 192.168.1.1
O23 - Service: AOL Connectivity Service (AOL ACS) - Unknown owner - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Port Resolver - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: MysqlInventime - Unknown owner - c:\mysql\bin\mysqld-nt.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
O23 - Service: SmartLinkService (SLService) -   - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe

Utilisateur anonyme · Answer

deconnecte toi et fermes toutes tes applications  ! 
relance hijackthis / do ascan systeme only / coche la case devant ces lignes / clic sur fix chequed 



R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.oneup.com/
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_3_18_0.dll
O2 - BHO: (no name) - {03EED9F0-BA9B-4801-8BBC-263BC069B782} - C:\Program Files\Messenger\hopecem83122.dll (file missing)
O2 - BHO: MySidesearch Search Assistant - {1648E328-3E5A-4EA5-A9C6-E5F09EE272DA} - C:\WINDOWS\system32\mysidesearch_sidebar.dll (file missing)
O2 - BHO: BrowserCmp - {1D8282E6-BC4F-469B-AAED-7E4FF077AD93} - C:\WINDOWS\system32\iebrowserc.dll
O2 - BHO: (no name) - {2761B423-825B-43FF-9F96-8CD3C3B9C4C0} - C:\Program Files\Messenger\hopecem4444.dll (file missing)
O2 - BHO: (no name) - {6029593A-89B8-A959-9B37-5CCD95C9D289} - C:\DOCUME~1\bibiche\APPLIC~1\KEEPFI~1\Htm Bind.exe (file missing)
O2 - BHO: browser optimizer superiorads - {8E015787-B1E3-404a-95DE-3E71E1FA0305} - C:\WINDOWS\system32\spads.dll (file missing)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: BrowsingAdvisor - {F1E96EDC-E0C8-BE98-1F15-C29DBED83B53} - C:\Program Files\BrowsingAdvisor\BrowsingAdvisor-2.dll (file missing)
O2 - BHO: 0 - {FC47B7F7-9D27-4203-CBB1-1551DE3E9513} - C:\Program Files\MSN\labuvunif89.dll (file missing)
O3 - Toolbar: Yahoo! Compagnon - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_3_18_0.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKCU\..\Run: [surfshow] C:\DOCUME~1\bibiche\APPLIC~1\MPEGIN~1\LongSect.exe
O4 - Global Startup: VPro500.lnk = C:\WINDOWS\VPro500.exe
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - Global Startup: Hyperappel de l'Encyclopédie Universelle Larousse.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\microsoft office\office10\OSA.EXE
O23 - Service: PointFacture - Unknown owner - C:\Program Files\Point Facture\mysql\bin\mysqld-nt.exe" "--defaults-file=C:\Program Files\Point Facture\mysql\bin\PointFacture.ini" PointFacture (file missing)


desinstale pour l'instant un des deux antivirus ! ( je peu t'en proposer un plus performant et gratuit ainsi qu'un pare feu car celui de window equivaut a zero en protection ! )

kaori · Answer

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:59, on 2008-01-29
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched .exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Larousse\Encyclopédie Universelle Larousse\bin\hyperappel.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\WINDOWS\VPro500.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\MSN Messenger\msnmsgr .exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.oneup.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
F3 - REG:win.ini: load=C:\WINDOWS\system32\sstts.exe
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ClickMe] C:\apps\ClickMe\ClickMe.exe
O4 - HKLM\..\Run: [EmailChecker] C:\APPS\EmailChecker\ech.exe
O4 - HKLM\..\Run: [PCMService] "c:\Apps\Powercinema\PCMService.exe"
O4 - HKLM\..\Run: [BDSwitchAgent] C:\Program Files\Softwin\BitDefender Professional Edition\bdswitch.exe
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [comp admin once find] C:\Documents and Settings\All Users\Application Data\Third Eq Comp Admin\burnbend.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [surfshow] C:\DOCUME~1\bibiche\APPLIC~1\MPEGIN~1\LongSect.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Hyperappel de l'Encyclopédie Universelle Larousse.lnk = ?
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\microsoft office\office10\OSA.EXE
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O4 - Global Startup: VPro500.lnk = C:\WINDOWS\VPro500.exe
O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/yinst/yinst_current.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://kaori64.spaces.live.com/PhotoUpload/MsnPUpld.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{31BDDD12-A6C7-4592-9EF8-1C35E7D4F9B8}: NameServer = 192.168.1.1
O23 - Service: AOL Connectivity Service (AOL ACS) - Unknown owner - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Port Resolver - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: MysqlInventime - Unknown owner - c:\mysql\bin\mysqld-nt.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
O23 - Service: SmartLinkService (SLService) -   - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe

kaori · Answer

alors oui j'ai supprimer des logilciels qui ne me servait plus c'est pour ca!!!
voila j'ai fais ce que tu m'as dis et je veux bien que tu me conseille sur un antivirus ca m'évitera de t'embeter a nouveau lorsque mon pc ne va pas bien

^^Marie^^ · Answer

Slt

Télécharge SmitfraudFix
Utilitaire de S!Ri: Moe et balltrap34
http://siri.urz.free.fr/Fix/SmitfraudFix.php 
et télécharge SmitfraudFix.exe.

Regarde le tuto

Exécute le en choisissant l’option 1,
il va générer un rapport
Copie/colle le sur le poste stp.

Bon courage

kaori · Answer

bonjour marie voila le rapport SmitfraudFix.exe. 




SmitFraudFix v2.277

Rapport fait à  8:50:26.42, 2008-01-30
Executé à partir de C:\Documents and Settings\bibiche\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode normal

»»»»»»»»»»»»»»»»»»»»»»»» Process

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\WINDOWS\VPro500.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\cmd.exe

»»»»»»»»»»»»»»»»»»»»»»»» hosts


»»»»»»»»»»»»»»»»»»»»»»»» C:\


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles


»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\bibiche


»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\bibiche\Application Data


»»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer


»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\bibiche\Favoris


»»»»»»»»»»»»»»»»»»»»»»»» Bureau


»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files 


»»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues


»»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau
 
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="Ma page d'accueil"
 

»»»»»»»»»»»»»»»»»»»»»»»» IEDFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

IEDFix.exe by S!Ri


»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll


»»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=""


»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""


»»»»»»»»»»»»»»»»»»»»»»»» Rustock



»»»»»»»»»»»»»»»»»»»»»»»» DNS

Description: VIA Rhine II Fast Ethernet Adapter - Miniport d'ordonnancement de paquets
DNS Server Search Order: 192.168.1.1

HKLM\SYSTEM\CCS\Services\Tcpip\..\{31BDDD12-A6C7-4592-9EF8-1C35E7D4F9B8}: NameServer=192.168.1.1
HKLM\SYSTEM\CS1\Services\Tcpip\..\{31BDDD12-A6C7-4592-9EF8-1C35E7D4F9B8}: NameServer=192.168.1.1
HKLM\SYSTEM\CS2\Services\Tcpip\..\{31BDDD12-A6C7-4592-9EF8-1C35E7D4F9B8}: NameServer=192.168.1.1


»»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll


»»»»»»»»»»»»»»»»»»»»»»»» Fin

^^Marie^^ · Answer

Re

Je m'y attendais pour le résultat

Refais un log Hijackthis

Quels sont les symptômes de ton PC ??

kaori · Answer

je crois que j'ai fais une betise en plus j'ai retelecharger windows live messenger et depuis une fenetre que je n'avais plus est revenue, je suis vraiment un boulet de l'informatique et les symptome sont des fenetres s'ouvre au demarrage de l'ordi msn s'allume quand ca lui chante et pour l'instant je n'ai pas constater d'autre probleme....j'ai telecharger msn a nouveau car window ne l'ouvrait plus 



Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 09:41, on 2008-01-30
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\WINDOWS\VPro500.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS
otepad.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
F3 - REG:win.ini: load=C:\WINDOWS\system32\sstts.exe
O2 - BHO: (no name) - {03EED9F0-BA9B-4801-8BBC-263BC069B782} - C:\Program Files\Messenger\hopecem83122.dll (file missing)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: MySidesearch Search Assistant - {1648E328-3E5A-4EA5-A9C6-E5F09EE272DA} - C:\WINDOWS\system32\mysidesearch_sidebar.dll (file missing)
O2 - BHO: BrowserCmp - {1D8282E6-BC4F-469B-AAED-7E4FF077AD93} - C:\WINDOWS\system32\iebrowserc.dll
O2 - BHO: (no name) - {2761B423-825B-43FF-9F96-8CD3C3B9C4C0} - C:\Program Files\Messenger\hopecem4444.dll (file missing)
O2 - BHO: (no name) - {6029593A-89B8-A959-9B37-5CCD95C9D289} - C:\DOCUME~1\bibiche\APPLIC~1\KEEPFI~1\Htm Bind.exe (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: browser optimizer superiorads - {8E015787-B1E3-404a-95DE-3E71E1FA0305} - C:\WINDOWS\system32\spads.dll (file missing)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O2 - BHO: (no name) - {CA1547A4-2F0E-4CDB-9B91-C1232ADA7628} - C:\WINDOWS\system32\sstts.dll
O2 - BHO: BrowsingAdvisor - {F1E96EDC-E0C8-BE98-1F15-C29DBED83B53} - C:\Program Files\BrowsingAdvisor\BrowsingAdvisor-2.dll (file missing)
O2 - BHO: 0 - {FC47B7F7-9D27-4203-CBB1-1551DE3E9513} - C:\Program Files\MSN\labuvunif89.dll (file missing)
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ClickMe] C:\apps\ClickMe\ClickMe.exe
O4 - HKLM\..\Run: [EmailChecker] C:\APPS\EmailChecker\ech.exe
O4 - HKLM\..\Run: [PCMService] "c:\Apps\Powercinema\PCMService.exe"
O4 - HKLM\..\Run: [BDSwitchAgent] C:\Program Files\Softwin\BitDefender Professional Edition\bdswitch.exe
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [comp admin once find] C:\Documents and Settings\All Users\Application Data\Third Eq Comp Admin\burnbend.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [surfshow] C:\DOCUME~1\bibiche\APPLIC~1\MPEGIN~1\LongSect.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Readereader_sl.exe
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O4 - Global Startup: VPro500.lnk = C:\WINDOWS\VPro500.exe
O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/yinst/yinst_current.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://kaori64.spaces.live.com/PhotoUpload/MsnPUpld.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{31BDDD12-A6C7-4592-9EF8-1C35E7D4F9B8}: NameServer = 192.168.1.1
O23 - Service: AOL Connectivity Service (AOL ACS) - Unknown owner - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Port Resolver - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: MysqlInventime - Unknown owner - c:\mysql\bin\mysqld-nt.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
O23 - Service: SmartLinkService (SLService) -   - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe

^^Marie^^ · Answer

Salut

C'est parce que tu as installé les ""sponsors" d'MSN+
Dans ajout/supp des programmes, tu vas sur MSN°, tu le supprimes
 et tu le réinstalles SANS LES SPONSORS &#9658; merdouille d'enfer avec des pubs de M*** ;;;))

Tu referas un log hijacthis dans la foulée


A++

kaori · Answer

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:31, on 2008-01-30
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\WINDOWS\VPro500.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS
otepad.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Windows Live\installer\WLSetupSvc.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
F3 - REG:win.ini: load=C:\WINDOWS\system32\sstts.exe
O2 - BHO: (no name) - {03EED9F0-BA9B-4801-8BBC-263BC069B782} - C:\Program Files\Messenger\hopecem83122.dll (file missing)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: MySidesearch Search Assistant - {1648E328-3E5A-4EA5-A9C6-E5F09EE272DA} - C:\WINDOWS\system32\mysidesearch_sidebar.dll (file missing)
O2 - BHO: BrowserCmp - {1D8282E6-BC4F-469B-AAED-7E4FF077AD93} - C:\WINDOWS\system32\iebrowserc.dll
O2 - BHO: (no name) - {2761B423-825B-43FF-9F96-8CD3C3B9C4C0} - C:\Program Files\Messenger\hopecem4444.dll (file missing)
O2 - BHO: (no name) - {6029593A-89B8-A959-9B37-5CCD95C9D289} - C:\DOCUME~1\bibiche\APPLIC~1\KEEPFI~1\Htm Bind.exe (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: browser optimizer superiorads - {8E015787-B1E3-404a-95DE-3E71E1FA0305} - C:\WINDOWS\system32\spads.dll (file missing)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O2 - BHO: (no name) - {CA1547A4-2F0E-4CDB-9B91-C1232ADA7628} - C:\WINDOWS\system32\sstts.dll
O2 - BHO: BrowsingAdvisor - {F1E96EDC-E0C8-BE98-1F15-C29DBED83B53} - C:\Program Files\BrowsingAdvisor\BrowsingAdvisor-2.dll (file missing)
O2 - BHO: 0 - {FC47B7F7-9D27-4203-CBB1-1551DE3E9513} - C:\Program Files\MSN\labuvunif89.dll (file missing)
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ClickMe] C:\apps\ClickMe\ClickMe.exe
O4 - HKLM\..\Run: [EmailChecker] C:\APPS\EmailChecker\ech.exe
O4 - HKLM\..\Run: [PCMService] "c:\Apps\Powercinema\PCMService.exe"
O4 - HKLM\..\Run: [BDSwitchAgent] C:\Program Files\Softwin\BitDefender Professional Edition\bdswitch.exe
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [comp admin once find] C:\Documents and Settings\All Users\Application Data\Third Eq Comp Admin\burnbend.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [surfshow] C:\DOCUME~1\bibiche\APPLIC~1\MPEGIN~1\LongSect.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Readereader_sl.exe
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O4 - Global Startup: VPro500.lnk = C:\WINDOWS\VPro500.exe
O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/yinst/yinst_current.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://kaori64.spaces.live.com/PhotoUpload/MsnPUpld.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{31BDDD12-A6C7-4592-9EF8-1C35E7D4F9B8}: NameServer = 192.168.1.1
O23 - Service: AOL Connectivity Service (AOL ACS) - Unknown owner - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Port Resolver - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: MysqlInventime - Unknown owner - c:\mysql\bin\mysqld-nt.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
O23 - Service: SmartLinkService (SLService) -   - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe

Utilisateur anonyme · Answer

Bonjour ^^marie , bonjour kaori , ca a bien avance ! mais il reste du taf si je ne me trompe pas , il y a aussi une infection vundo , vundofix va confirmer celas .


Télécharger Vundofix.exe (par Atribune) sur votre Bureau : http://www.atribune.org/ccount/click.php?id=4

pour effectuer les fix deconnect toi et ferme toutes tes applications !!

* Double-cliquer sur VundoFix.exe afin de le lancer.
* Cliquer sur le bouton Scan for Vundo.
* Lorsque le scan est complété, cliquer sur le bouton Remove Vundo.
* Une invite de commande demandera si l’on souhaite supprimer les fichiers, cliquer sur YES
* Après avoir cliqué "YES", le Bureau disparaîtra un moment lors de la suppression des fichiers.
* Une nouvelle invite de commande annoncera que le PC devra s'éteindre ("shutdown"). Cliquer sur OK , puis laisser le redémarrer.
* Le contenu du rapport est situé dans C:\vundofix.txt, poste le stp




n'execute pas virtumondobegone sans notre feu vert , on controle le rapport vundo et on t'en informe !


Télécharge sur le bureau
http://secured2k.home.comcast.net/tools/VirtumundoBeGone.exe
=> Double clic sur VirtumundoBeGone.exe
=> Clic Continue ==> clic Start
=> Clic Oui
=> A la fin si Vundo est présent , le PC s’éteint et redémarre
- Si Ecran bleu et message : Erreur fatale .. pas de problème
=> Poster le rapport VBG.TXT qui est sur le bureau

kaori · Answer

le rapport vundo ne ma pas demandé ca : Une invite de commande demandera si l’on souhaite supprimer les fichiers, cliquer sur YES 
* Après avoir cliqué "YES", le Bureau disparaîtra un moment lors de la suppression des fichiers. 
* Une nouvelle invite de commande annoncera que le PC devra s'éteindre ("shutdown"). Cliquer sur OK , puis laisser le redémarre


VundoFix V6.5.4

Checking Java version...

Java version is 1.4.2.4
Old versions of java are exploitable and should be removed.

Java version is 1.5.0.2
Old versions of java are exploitable and should be removed.

Java version is 1.5.0.10

Scan started at 15:35:34 23/01/2008

Listing files found while scanning....

No infected files were found.


Beginning removal...

VundoFix V6.7.7

Checking Java version...

Java version is 1.4.2.4
Old versions of java are exploitable and should be removed.

Java version is 1.5.0.2
Old versions of java are exploitable and should be removed.

Java version is 1.5.0.10

Scan started at 11:42:51 28/01/2008

Listing files found while scanning....

No infected files were found.


Beginning removal...

VundoFix V6.7.7

Checking Java version...

Java version is 1.4.2.4
Old versions of java are exploitable and should be removed.

Java version is 1.5.0.2
Old versions of java are exploitable and should be removed.

Java version is 1.5.0.10

Scan started at 12:14:01 28/01/2008

Listing files found while scanning....


VundoFix V6.7.7

Checking Java version...

Java version is 1.4.2.4
Old versions of java are exploitable and should be removed.

Java version is 1.5.0.2
Old versions of java are exploitable and should be removed.

Java version is 1.5.0.10

Scan started at 12:21:42 28/01/2008

Listing files found while scanning....

No infected files were found.


Beginning removal...

VundoFix V6.7.7

Checking Java version...

Java version is 1.4.2.4
Old versions of java are exploitable and should be removed.

Java version is 1.5.0.2
Old versions of java are exploitable and should be removed.

Java version is 1.5.0.10

Scan started at 11:42:20 2008-01-30

Listing files found while scanning....

No infected files were found.


Beginning removal...

Utilisateur anonyme · Answer

J'ai fait une erreur desoles on a perdu un peu de temps ! tu peu desinstaler vundofix . je replonge dans ton rapport hijackthis .

kaori · Answer

ok pas de probleme

Utilisateur anonyme · Answer

ouvre ton bloc note , copie les lignes suivantes dedans , deconnecte toi et ferme tes applications  ! relance  hijackthis / do a scan systeme only / coche la case qui se trouve devant ces lignes / puis clic sur fix chequed




F3 - REG:win.ini: load=C:\WINDOWS\system32\sstts.exe
O2 - BHO: (no name) - {03EED9F0-BA9B-4801-8BBC-263BC069B782} - C:\Program Files\Messenger\hopecem83122.dll (file missing)
O2 - BHO: MySidesearch Search Assistant - {1648E328-3E5A-4EA5-A9C6-E5F09EE272DA} - C:\WINDOWS\system32\mysidesearch_sidebar.dll (file missing)
O2 - BHO: BrowserCmp - {1D8282E6-BC4F-469B-AAED-7E4FF077AD93} - C:\WINDOWS\system32\iebrowserc.dll
O2 - BHO: (no name) - {2761B423-825B-43FF-9F96-8CD3C3B9C4C0} - C:\Program Files\Messenger\hopecem4444.dll (file missing)
O2 - BHO: (no name) - {6029593A-89B8-A959-9B37-5CCD95C9D289} - C:\DOCUME~1\bibiche\APPLIC~1\KEEPFI~1\Htm Bind.exe (file missing)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: browser optimizer superiorads - {8E015787-B1E3-404a-95DE-3E71E1FA0305} - C:\WINDOWS\system32\spads.dll (file missing)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {CA1547A4-2F0E-4CDB-9B91-C1232ADA7628} - C:\WINDOWS\system32\sstts.dll
O2 - BHO: BrowsingAdvisor - {F1E96EDC-E0C8-BE98-1F15-C29DBED83B53} - C:\Program Files\BrowsingAdvisor\BrowsingAdvisor-2.dll (file missing)
O2 - BHO: 0 - {FC47B7F7-9D27-4203-CBB1-1551DE3E9513} - C:\Program Files\MSN\labuvunif89.dll (file missing)
O4 - HKLM\..\Run: [comp admin once find] C:\Documents and Settings\All Users\Application Data\Third Eq Comp Admin\burnbend.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKCU\..\Run: [surfshow] C:\DOCUME~1\bibiche\APPLIC~1\MPEGIN~1\LongSect.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - Global Startup: VPro500.lnk = C:\WINDOWS\VPro500.exe
O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/yinst/yinst_current.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://kaori64.spaces.live.com/PhotoUpload/MsnPUpld.cab



redemarre ton pc puis relance hijackthis poste nous le nouveau rapport .

kaori · Answer

alors j'ai fais ce que tu m'a dis en revanche j'e n'ai plus windows live messenger enfin j'ai toujour l'icone sur le bureu qui me permet de l'installer mais je sais pas si je peux ou pas puisque apperement il est porteur de virus peux tu me dire ce que je dois faire pour installer windows live messenger sans virus













Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:34, on 2008-01-30
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Lexmark 2200 Series\lxbvbmgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\Lexmark 2200 Series\lxbvbmon.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ClickMe] C:\apps\ClickMe\ClickMe.exe
O4 - HKLM\..\Run: [EmailChecker] C:\APPS\EmailChecker\ech.exe
O4 - HKLM\..\Run: [PCMService] "c:\Apps\Powercinema\PCMService.exe"
O4 - HKLM\..\Run: [BDSwitchAgent] C:\Program Files\Softwin\BitDefender Professional Edition\bdswitch.exe
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Lexmark 2200 Series] "C:\Program Files\Lexmark 2200 Series\lxbvbmgr.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{31BDDD12-A6C7-4592-9EF8-1C35E7D4F9B8}: NameServer = 192.168.1.1
O23 - Service: AOL Connectivity Service (AOL ACS) - Unknown owner - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Port Resolver - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: MysqlInventime - Unknown owner - c:\mysql\bin\mysqld-nt.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
O23 - Service: SmartLinkService (SLService) -   - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe

Utilisateur anonyme · Answer

ca m'as l'air propre on attend la confirmation de ^^marie^^ car j'ai un petit doute , donc .....
pour msn desinstal ta version pour ne prendre aucun risque , il est dispo ici sur CCm ainsi que plein d'autres logiciel ,  http://www.commentcamarche.net/telecharger/telechargement 152 msn 8  et pour avoir window live il me semble qu'il faut effectuer une mises a jours .

comment se porte ton pc ? il reste un grand netoyage a faire , mais je prefere attendre l'avis de ^^marie^^, pour te donner l'etape finale .

kaori · Answer

il m'as l'air calme!!!lol peux tu me conseiller aussi pour un antivirus et un pare feu s'il te plait, il reste un grand nettoyage à faire? c'est pas fini? merci en tous les cas a toi et a marie

^^Marie^^ · Answer

Coucou
C bon

Pour anti virus &#9658; Antivir
pare feu &#9658; Kerio

A++

Utilisateur anonyme · Answer

bonjour ^^marie^^ , comment va tu ?

kaori voici de quoi faire du bien a ton pc , avg va nettoyer quelques restes et des coockies traceurs .....et ccleaner va debarrasser ton pc de tes vieux fichiers temporaires et il va aussi reparer des erreurs de registres .



1) telecharge avg anti spyware et ccleaner


Telecharge AVG anti spywares

http://www.grisoft.com/doc/downloads-products/ww/crp/0?prd=triasw
Installe le puis...Lancer AVG Anti-Spyware.
Clique sur le menu Mise à jour.
Dans le paragraphe Mise à jour manuelle, cliquer sur le bouton Commencer la mise à jour.
Attends la fin de cette mise à jour puis ferme le programme.
Ne pas lancer d'analyse maintenant



Telecharge

-- CCleaner
https://www.ccleaner.com/ccleaner/download
Choisi de préférence la version SLIM-No Toolbar.
Installe-le en prenant soin de décocher les diverses options dont la barre Yahoo et la mise à jour.
Lance CCleaner puis Clique sur "Options", "Avancé" et décoche la case "Effacer uniquement les fichiers, du dossier Temp de Windows, plus vieux que 48 heures".
Pour les autres paramètres, laisse-le avec ses réglages par défaut.
Ferme le programme pour l’instant.



2) Redémarre en mode sans échec

Regarde ici avant : http://pageperso.aol.fr/loraline60/mode_sans_echec.htm
Au redémarrage de l'ordinateur, une fois le chargement du BIOS terminé, il y a un écran noir qui apparaît rapidement, appuie sur la touche [F8] (ou [F5] sur certains pc) jusqu'à l'affichage du menu des options avancées de Windows.
Sélectionner "Mode sans échec" et appuie sur [Entrée]
Il faudra choisir ta session habituelle, pas le compte "Administrateur" ou une autre.



Ouvre le fichier texte sauvegardé sur le Bureau afin de suivre les instructions comme il faut.

3) Lance AVG Anti-Spyware 7.5

--Réglages

Clique sur le menu Analyse (de la barre d'outils).
Clique sur l'onglet Paramètres.
Dans Comment réagir? clique sur Actions recommandées et choisir Quarantaine.
Dans Comment faire l'analyse ? et dans Programmes potentiellement dangereux, vérifier que toutes les cases soient cochées.
Dans Rapports cocher "générer un rapport après chaque analyse"

-- Scan
Dans l'onglet Analyse
Clique sur Analyse complète du système.
Important : Ne pas ouvrir de fenêtre, ne pas lancer de programme pendant l'exécution de AVG Anti-Spyware, car cela pourrait interférer avec le processus de recherche.
Cliquer sur "Enregistrer le rapport". Ceci génère un rapport en fichier texte qui se trouve dans le dossier Reports du dossier d'AVG Anti-Spyware.(C:\Programfiles\AVG Antispyware 7.5\Reports)
Ensuite
Très important : A la fin de l'analyse, clique sur " Appliquer toutes les actions"

Puis ferme AVG Anti-Spyware.

4) Suppression de fichiers inutiles avec CCleaner

Lance CCleaner en double-cliquant sur son raccourci sur le bureau.
Puis dans le menu Nettoyeur
Clique sur Analyse (laisser travailler cela peut durer longtemps la 1ere fois)
Clique sur le bouton Lancer le nettoyage.
Clique une seconde fois sur le bouton Lancer le nettoyage
clique sur registre cherche et repare les erreurs effectue trois fois la manipe pour que se sois efficace !

5) Rapports

Fais redémarrer le PC en mode normal puis poste en réponse :

* Le rapport d AVG antispyware 7.5 situé ici C:\Programfiles\AVG Antispyware 7.5\Reports

kaori · Answer

y a moyen de reduire les fenetre en mode sans echec parce que je n'ai pas la totalité de la fenetre se qui rend les manip impossible

Utilisateur anonyme · Answer

quel manip tu narrive pas a executer ?

kaori · Answer

---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

 + Créé à:	20:24 2008-01-30

 + Résultat de l'analyse:	



HKU\S-1-5-21-1910013712-902997221-3515541208-1008\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{4E7BD74F-2B8D-469E-A0E8-ED6AB685FA7D} -> Adware.2020Search : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0109046.dll -> Adware.CommAd : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0110036.dll -> Adware.CommAd : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0110037.exe -> Adware.CommAd : Aucune action entreprise.
C:\WINDOWS\YmliaWNoZQ\asappsrv.dll -> Adware.CommAd : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104712.exe -> Adware.ZQuest : Aucune action entreprise.
C:\Documents and Settings\bibiche\Local Settings\Temporary Internet Files\Content.IE5\R8G8HPZY\gamadril20071203[1] -> Backdoor.Agent.dbm : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104702.exe -> Downloader.Adload.pr : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104710.exe -> Downloader.Agent.erf : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104711.exe -> Downloader.Agent.fjn : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104714.exe -> Downloader.Small.buy : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104715.exe -> Downloader.Small.hqc : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104713.exe -> Downloader.VB.ceh : Aucune action entreprise.
C:\Documents and Settings\All Users\Documents\Mes vidéos\01 Track 1.wma -> Downloader.Wimad.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Documents\Mes vidéos\02 Track 2.wma -> Downloader.Wimad.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Documents\Mes vidéos\03 Track 3.wma -> Downloader.Wimad.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Documents\Mes vidéos\06 Track 6.wma -> Downloader.Wimad.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Documents\Mes vidéos\Top of Charts - 2004.wma -> Downloader.Wimad.l : Aucune action entreprise.
C:\Documents and Settings\bibiche\Local Settings\Temp\RCXB.tmp -> Dropper.Agent.dgo : Aucune action entreprise.
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104707.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104708.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104751.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP742\A0104773.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP744\A0104894.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP745\A0104930.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP746\A0104939.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP746\A0104951.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP746\A0104963.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP747\A0104975.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0105999.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0106027.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0106038.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0107038.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0108039.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0109038.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP763\A0113816.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP763\A0113817.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP764\A0113949.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP764\A0113950.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP764\A0113954.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP765\A0114970.rbf -> Dropper.Agent.dgo : Aucune action entreprise.
C:\WINDOWS\system32\RCXD.tmp -> Dropper.Agent.dgo : Aucune action entreprise.
C:\WINDOWS\system32\ctfmon.exe.tmp -> Dropper.Agent.dgo : Aucune action entreprise.
C:\WINDOWS\system32\sstts.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\Documents and Settings\bibiche\Bureau\SDFix\backups\backups.zip/backups/prokykohdyd.html -> Hijacker.IFrame.dn : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104704.dll -> Hijacker.StartPage : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104705.dll -> Hijacker.StartPage : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104706.dll -> Hijacker.StartPage : Aucune action entreprise.
C:\Documents and Settings\All Users\Documents\Mes vidéos\aire ahizpak(1).zip/Setup.exe -> Not-A-Virus.Adware.Agent : Aucune action entreprise.
C:\Documents and Settings\All Users\Documents\Mes vidéos\aire ahizpak.zip/Setup.exe -> Not-A-Virus.Adware.Agent : Aucune action entreprise.
C:\QooBox\Quarantine\C\WINDOWS\system32
sw28.dll.vir -> Not-A-Virus.Adware.Agent : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP740\A0104653.exe -> Not-A-Virus.Adware.Agent : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP759\A0113317.dll -> Not-A-Virus.Adware.Agent : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP764\A0113969.exe -> Not-A-Virus.Adware.Agent : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP764\A0113970.exe -> Not-A-Virus.Adware.Agent : Aucune action entreprise.
C:\Documents and Settings\bibiche\Bureau\SDFix\backups\backups.zip/backups/TTC-4444.exe -> Not-A-Virus.Adware.TTC : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP735\A0103467.exe -> Not-A-Virus.Adware.TTC : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP736\A0103534.exe -> Not-A-Virus.Adware.TTC : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104703.dll -> Not-A-Virus.Adware.TTC : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP758\A0113270.exe -> Not-A-Virus.Adware.TTC : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP758\A0113284.exe -> Not-A-Virus.Adware.TTC : Aucune action entreprise.
C:\WINDOWS\system32\wc9	ycodllz83122.exe -> Not-A-Virus.Adware.TTC : Aucune action entreprise.
C:\Documents and Settings\bibiche\Bureau\MSNFix\28012008_11295121.zip/backup/removalfile.bat -> Not-A-Virus.Adware.Virtumonde : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0109045.exe -> Not-A-Virus.Monitor.Win32.NetMon.a : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0110033.exe -> Not-A-Virus.Monitor.Win32.NetMon.a : Aucune action entreprise.
:mozilla.162:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.247realmedia : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@247realmedia[1].txt -> TrackingCookie.247realmedia : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@network-ca.247realmedia[1].txt -> TrackingCookie.247realmedia : Aucune action entreprise.
:mozilla.354:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.355:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.356:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.357:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.358:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.359:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.379:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.404:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.460:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.493:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.504:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.525:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.531:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.532:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.534:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.539:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.552:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.574:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.676:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.682:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@2o7[2].txt -> TrackingCookie.2o7 : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.568:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.66.220.17.154 : Aucune action entreprise.
:mozilla.598:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Adbrite : Aucune action entreprise.
:mozilla.645:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Adbrite : Aucune action entreprise.
:mozilla.646:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Adbrite : Aucune action entreprise.
:mozilla.143:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Adobe : Aucune action entreprise.
:mozilla.464:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Adobe : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@media.adrevolver[1].txt -> TrackingCookie.Adrevolver : Aucune action entreprise.
:mozilla.121:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Adtech : Aucune action entreprise.
:mozilla.122:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Adtech : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@adtech[1].txt -> TrackingCookie.Adtech : Aucune action entreprise.
:mozilla.10:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.11:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.8:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.9:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Advertising : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@advertising[1].txt -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.384:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Adviva : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@adviva[1].txt -> TrackingCookie.Adviva : Aucune action entreprise.
:mozilla.34:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Atdmt : Aucune action entreprise.
:mozilla.742:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Atdmt : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@atdmt[2].txt -> TrackingCookie.Atdmt : Aucune action entreprise.
:mozilla.35:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
:mozilla.433:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
:mozilla.591:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@bluestreak[2].txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
:mozilla.530:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Casalemedia : Aucune action entreprise.
:mozilla.548:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Casalemedia : Aucune action entreprise.
:mozilla.549:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Casalemedia : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@casalemedia[1].txt -> TrackingCookie.Casalemedia : Aucune action entreprise.
:mozilla.258:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.259:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.260:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.261:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.262:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.263:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.784:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.785:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.788:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.36:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Doubleclick : Aucune action entreprise.
:mozilla.675:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Doubleclick : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@doubleclick[1].txt -> TrackingCookie.Doubleclick : Aucune action entreprise.
:mozilla.172:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Estat : Aucune action entreprise.
:mozilla.522:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Estat : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@estat[1].txt -> TrackingCookie.Estat : Aucune action entreprise.
:mozilla.477:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Euroclick : Aucune action entreprise.
:mozilla.500:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Euroclick : Aucune action entreprise.
:mozilla.501:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Euroclick : Aucune action entreprise.
:mozilla.847:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Euroclick : Aucune action entreprise.
:mozilla.90:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Euroclick : Aucune action entreprise.
:mozilla.91:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Euroclick : Aucune action entreprise.
:mozilla.92:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Euroclick : Aucune action entreprise.
:mozilla.93:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Euroclick : Aucune action entreprise.
:mozilla.94:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Euroclick : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@adopt.euroclick[2].txt -> TrackingCookie.Euroclick : Aucune action entreprise.
:mozilla.551:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.555:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.569:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.79:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.80:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.81:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.82:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.83:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.84:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@fastclick[1].txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.178:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Googleadservices : Aucune action entreprise.
:mozilla.400:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Googleadservices : Aucune action entreprise.
:mozilla.428:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Googleadservices : Aucune action entreprise.
:mozilla.599:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Googleadservices : Aucune action entreprise.
:mozilla.633:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Googleadservices : Aucune action entreprise.
:mozilla.634:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Googleadservices : Aucune action entreprise.
:mozilla.635:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Googleadservices : Aucune action entreprise.
:mozilla.636:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Googleadservices : Aucune action entreprise.
:mozilla.526:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Hitbox : Aucune action entreprise.
:mozilla.685:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Hitbox : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@ehg-foxsports.hitbox[2].txt -> TrackingCookie.Hitbox : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@hitbox[1].txt -> TrackingCookie.Hitbox : Aucune action entreprise.
:mozilla.720:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Imrworldwide : Aucune action entreprise.
:mozilla.721:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Imrworldwide : Aucune action entreprise.
:mozilla.766:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Imrworldwide : Aucune action entreprise.
:mozilla.768:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Imrworldwide : Aucune action entreprise.
:mozilla.406:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Information : Aucune action entreprise.
:mozilla.622:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Information : Aucune action entreprise.
:mozilla.844:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Ivwbox : Aucune action entreprise.
:mozilla.198:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Liveperson : Aucune action entreprise.
:mozilla.607:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Liveperson : Aucune action entreprise.
:mozilla.608:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Liveperson : Aucune action entreprise.
:mozilla.736:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Liveperson : Aucune action entreprise.
:mozilla.737:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Liveperson : Aucune action entreprise.
:mozilla.738:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Liveperson : Aucune action entreprise.
:mozilla.182:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Mediaplex : Aucune action entreprise.
:mozilla.787:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Mediaplex : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@mediaplex[1].txt -> TrackingCookie.Mediaplex : Aucune action entreprise.
:mozilla.472:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Msn : Aucune action entreprise.
:mozilla.473:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Msn : Aucune action entreprise.
:mozilla.474:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Msn : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@ssl-hints.netflame[2].txt -> TrackingCookie.Netflame : Aucune action entreprise.
:mozilla.174:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Overture : Aucune action entreprise.
:mozilla.175:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Overture : Aucune action entreprise.
:mozilla.176:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Overture : Aucune action entreprise.
:mozilla.392:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Overture : Aucune action entreprise.
:mozilla.393:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Overture : Aucune action entreprise.
:mozilla.394:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Overture : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@overture[2].txt -> TrackingCookie.Overture : Aucune action entreprise.
:mozilla.543:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.544:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.545:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.546:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.781:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.782:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.783:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.784:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.465:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Questionmarket : Aucune action entreprise.
:mozilla.466:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Questionmarket : Aucune action entreprise.
:mozilla.163:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Realmedia : Aucune action entreprise.
:mozilla.164:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Realmedia : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@realmedia[1].txt -> TrackingCookie.Realmedia : Aucune action entreprise.
:mozilla.243:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.244:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.245:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.245:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.246:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.246:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.247:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.247:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.248:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.248:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.249:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.250:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@revsci[1].txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.325:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.326:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.327:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.328:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.329:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.59:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.60:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.61:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.62:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.63:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.71:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.72:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@bs.serving-sys[2].txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@serving-sys[2].txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.564:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sexcounter : Aucune action entreprise.
:mozilla.649:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sexcounter : Aucune action entreprise.
:mozilla.650:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sexcounter : Aucune action entreprise.
:mozilla.651:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sexcounter : Aucune action entreprise.
:mozilla.789:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sexcounter : Aucune action entreprise.
:mozilla.790:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sexcounter : Aucune action entreprise.
:mozilla.791:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sexcounter : Aucune action entreprise.
:mozilla.792:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sexcounter : Aucune action entreprise.
:mozilla.138:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.620:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.719:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.720:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.741:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.748:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.751:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.752:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.763:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.777:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.778:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.833:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.115:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Skype : Aucune action entreprise.
:mozilla.116:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Skype : Aucune action entreprise.
:mozilla.117:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Skype : Aucune action entreprise.
:mozilla.136:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Skype : Aucune action entreprise.
:mozilla.618:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Skype : Aucune action entreprise.
:mozilla.619:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Skype : Aucune action entreprise.
:mozilla.149:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.150:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.151:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.152:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.153:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.154:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.155:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.156:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.204:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.28:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.30:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.33:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@smartadserver[1].txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@smartadserver[2].txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.173:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.174:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.254:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.255:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.256:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@statcounter[2].txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.143:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.144:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.145:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.146:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.370:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.371:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.372:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.373:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.343:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Tribalfusion : Aucune action entreprise.
:mozilla.403:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Tribalfusion : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@tribalfusion[2].txt -> TrackingCookie.Tribalfusion : Aucune action entreprise.
:mozilla.107:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.108:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.109:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.110:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.132:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.133:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.134:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@weborama[2].txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.392:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Webtrends : Aucune action entreprise.
:mozilla.393:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Webtrends : Aucune action entreprise.
:mozilla.791:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Webtrends : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@m.webtrends[1].txt -> TrackingCookie.Webtrends : Aucune action entreprise.
:mozilla.274:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Webtrendslive : Aucune action entreprise.
:mozilla.275:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Webtrendslive : Aucune action entreprise.
:mozilla.276:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Webtrendslive : Aucune action entreprise.
:mozilla.45:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Webtrendslive : Aucune action entreprise.
:mozilla.46:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Webtrendslive : Aucune action entreprise.
:mozilla.631:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Webtrendslive : Aucune action entreprise.
:mozilla.632:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Webtrendslive : Aucune action entreprise.
:mozilla.753:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Webtrendslive : Aucune action entreprise.
:mozilla.754:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Webtrendslive : Aucune action entreprise.
:mozilla.113:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.114:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.115:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.116:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.117:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.118:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.739:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.251:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Zedo : Aucune action entreprise.
:mozilla.252:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Zedo : Aucune action entreprise.
:mozilla.50:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Zedo : Aucune action entreprise.
:mozilla.63:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Zedo : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@zedo[1].txt -> TrackingCookie.Zedo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104709.exe -> Trojan.Agent.dwb : Aucune action entreprise.
C:\Documents and Settings\bibiche\Bureau\SDFix\backups\backups.zip/backups/uninstall_nmon.vbs -> Trojan.Small : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP758\A0113271.vbs -> Trojan.Small : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP758\A0113285.vbs -> Trojan.Small : Aucune action entreprise.
C:\WINDOWS\YmliaWNoZQ\sA52uqhCtk.vbs -> Trojan.Small : Aucune action entreprise.


Fin du rapport

2 eme rapport
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

 + Créé à:	20:26 2008-01-30

 + Résultat de l'analyse:	



HKU\S-1-5-21-1910013712-902997221-3515541208-1008\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{4E7BD74F-2B8D-469E-A0E8-ED6AB685FA7D} -> Adware.2020Search : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0109046.dll -> Adware.CommAd : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0110036.dll -> Adware.CommAd : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0110037.exe -> Adware.CommAd : Nettoyé et sauvegardé (mise en quarantaine).
C:\WINDOWS\YmliaWNoZQ\asappsrv.dll -> Adware.CommAd : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104712.exe -> Adware.ZQuest : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\bibiche\Local Settings\Temporary Internet Files\Content.IE5\R8G8HPZY\gamadril20071203[1] -> Backdoor.Agent.dbm : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104702.exe -> Downloader.Adload.pr : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104710.exe -> Downloader.Agent.erf : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104711.exe -> Downloader.Agent.fjn : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104714.exe -> Downloader.Small.buy : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104715.exe -> Downloader.Small.hqc : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104713.exe -> Downloader.VB.ceh : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\All Users\Documents\Mes vidéos\01 Track 1.wma -> Downloader.Wimad.l : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\All Users\Documents\Mes vidéos\02 Track 2.wma -> Downloader.Wimad.l : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\All Users\Documents\Mes vidéos\03 Track 3.wma -> Downloader.Wimad.l : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\All Users\Documents\Mes vidéos\06 Track 6.wma -> Downloader.Wimad.l : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\All Users\Documents\Mes vidéos\Top of Charts - 2004.wma -> Downloader.Wimad.l : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\bibiche\Local Settings\Temp\RCXB.tmp -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104707.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104708.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104751.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP742\A0104773.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP744\A0104894.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP745\A0104930.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP746\A0104939.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP746\A0104951.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP746\A0104963.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP747\A0104975.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0105999.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0106027.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0106038.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0107038.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0108039.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0109038.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP763\A0113816.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP763\A0113817.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP764\A0113949.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP764\A0113950.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP764\A0113954.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP765\A0114970.rbf -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\WINDOWS\system32\RCXD.tmp -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\WINDOWS\system32\ctfmon.exe.tmp -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\WINDOWS\system32\sstts.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\bibiche\Bureau\SDFix\backups\backups.zip/backups/prokykohdyd.html -> Hijacker.IFrame.dn : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104704.dll -> Hijacker.StartPage : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104705.dll -> Hijacker.StartPage : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104706.dll -> Hijacker.StartPage : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\All Users\Documents\Mes vidéos\aire ahizpak(1).zip/Setup.exe -> Not-A-Virus.Adware.Agent : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\All Users\Documents\Mes vidéos\aire ahizpak.zip/Setup.exe -> Not-A-Virus.Adware.Agent : Nettoyé et sauvegardé (mise en quarantaine).
C:\QooBox\Quarantine\C\WINDOWS\system32
sw28.dll.vir -> Not-A-Virus.Adware.Agent : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP740\A0104653.exe -> Not-A-Virus.Adware.Agent : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP759\A0113317.dll -> Not-A-Virus.Adware.Agent : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP764\A0113969.exe -> Not-A-Virus.Adware.Agent : Nettoy

kaori · Answer

---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

 + Créé à:	20:24 2008-01-30

 + Résultat de l'analyse:	



HKU\S-1-5-21-1910013712-902997221-3515541208-1008\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{4E7BD74F-2B8D-469E-A0E8-ED6AB685FA7D} -> Adware.2020Search : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0109046.dll -> Adware.CommAd : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0110036.dll -> Adware.CommAd : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0110037.exe -> Adware.CommAd : Aucune action entreprise.
C:\WINDOWS\YmliaWNoZQ\asappsrv.dll -> Adware.CommAd : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104712.exe -> Adware.ZQuest : Aucune action entreprise.
C:\Documents and Settings\bibiche\Local Settings\Temporary Internet Files\Content.IE5\R8G8HPZY\gamadril20071203[1] -> Backdoor.Agent.dbm : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104702.exe -> Downloader.Adload.pr : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104710.exe -> Downloader.Agent.erf : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104711.exe -> Downloader.Agent.fjn : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104714.exe -> Downloader.Small.buy : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104715.exe -> Downloader.Small.hqc : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104713.exe -> Downloader.VB.ceh : Aucune action entreprise.
C:\Documents and Settings\All Users\Documents\Mes vidéos\01 Track 1.wma -> Downloader.Wimad.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Documents\Mes vidéos\02 Track 2.wma -> Downloader.Wimad.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Documents\Mes vidéos\03 Track 3.wma -> Downloader.Wimad.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Documents\Mes vidéos\06 Track 6.wma -> Downloader.Wimad.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Documents\Mes vidéos\Top of Charts - 2004.wma -> Downloader.Wimad.l : Aucune action entreprise.
C:\Documents and Settings\bibiche\Local Settings\Temp\RCXB.tmp -> Dropper.Agent.dgo : Aucune action entreprise.
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104707.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104708.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104751.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP742\A0104773.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP744\A0104894.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP745\A0104930.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP746\A0104939.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP746\A0104951.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP746\A0104963.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP747\A0104975.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0105999.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0106027.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0106038.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0107038.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0108039.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0109038.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP763\A0113816.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP763\A0113817.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP764\A0113949.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP764\A0113950.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP764\A0113954.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP765\A0114970.rbf -> Dropper.Agent.dgo : Aucune action entreprise.
C:\WINDOWS\system32\RCXD.tmp -> Dropper.Agent.dgo : Aucune action entreprise.
C:\WINDOWS\system32\ctfmon.exe.tmp -> Dropper.Agent.dgo : Aucune action entreprise.
C:\WINDOWS\system32\sstts.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\Documents and Settings\bibiche\Bureau\SDFix\backups\backups.zip/backups/prokykohdyd.html -> Hijacker.IFrame.dn : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104704.dll -> Hijacker.StartPage : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104705.dll -> Hijacker.StartPage : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104706.dll -> Hijacker.StartPage : Aucune action entreprise.
C:\Documents and Settings\All Users\Documents\Mes vidéos\aire ahizpak(1).zip/Setup.exe -> Not-A-Virus.Adware.Agent : Aucune action entreprise.
C:\Documents and Settings\All Users\Documents\Mes vidéos\aire ahizpak.zip/Setup.exe -> Not-A-Virus.Adware.Agent : Aucune action entreprise.
C:\QooBox\Quarantine\C\WINDOWS\system32
sw28.dll.vir -> Not-A-Virus.Adware.Agent : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP740\A0104653.exe -> Not-A-Virus.Adware.Agent : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP759\A0113317.dll -> Not-A-Virus.Adware.Agent : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP764\A0113969.exe -> Not-A-Virus.Adware.Agent : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP764\A0113970.exe -> Not-A-Virus.Adware.Agent : Aucune action entreprise.
C:\Documents and Settings\bibiche\Bureau\SDFix\backups\backups.zip/backups/TTC-4444.exe -> Not-A-Virus.Adware.TTC : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP735\A0103467.exe -> Not-A-Virus.Adware.TTC : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP736\A0103534.exe -> Not-A-Virus.Adware.TTC : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104703.dll -> Not-A-Virus.Adware.TTC : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP758\A0113270.exe -> Not-A-Virus.Adware.TTC : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP758\A0113284.exe -> Not-A-Virus.Adware.TTC : Aucune action entreprise.
C:\WINDOWS\system32\wc9	ycodllz83122.exe -> Not-A-Virus.Adware.TTC : Aucune action entreprise.
C:\Documents and Settings\bibiche\Bureau\MSNFix\28012008_11295121.zip/backup/removalfile.bat -> Not-A-Virus.Adware.Virtumonde : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0109045.exe -> Not-A-Virus.Monitor.Win32.NetMon.a : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0110033.exe -> Not-A-Virus.Monitor.Win32.NetMon.a : Aucune action entreprise.
:mozilla.162:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.247realmedia : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@247realmedia[1].txt -> TrackingCookie.247realmedia : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@network-ca.247realmedia[1].txt -> TrackingCookie.247realmedia : Aucune action entreprise.
:mozilla.354:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.355:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.356:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.357:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.358:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.359:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.379:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.404:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.460:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.493:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.504:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.525:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.531:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.532:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.534:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.539:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.552:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.574:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.676:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.682:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@2o7[2].txt -> TrackingCookie.2o7 : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.568:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.66.220.17.154 : Aucune action entreprise.
:mozilla.598:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Adbrite : Aucune action entreprise.
:mozilla.645:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Adbrite : Aucune action entreprise.
:mozilla.646:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Adbrite : Aucune action entreprise.
:mozilla.143:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Adobe : Aucune action entreprise.
:mozilla.464:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Adobe : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@media.adrevolver[1].txt -> TrackingCookie.Adrevolver : Aucune action entreprise.
:mozilla.121:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Adtech : Aucune action entreprise.
:mozilla.122:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Adtech : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@adtech[1].txt -> TrackingCookie.Adtech : Aucune action entreprise.
:mozilla.10:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.11:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.8:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.9:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Advertising : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@advertising[1].txt -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.384:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Adviva : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@adviva[1].txt -> TrackingCookie.Adviva : Aucune action entreprise.
:mozilla.34:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Atdmt : Aucune action entreprise.
:mozilla.742:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Atdmt : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@atdmt[2].txt -> TrackingCookie.Atdmt : Aucune action entreprise.
:mozilla.35:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
:mozilla.433:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
:mozilla.591:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@bluestreak[2].txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
:mozilla.530:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Casalemedia : Aucune action entreprise.
:mozilla.548:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Casalemedia : Aucune action entreprise.
:mozilla.549:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Casalemedia : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@casalemedia[1].txt -> TrackingCookie.Casalemedia : Aucune action entreprise.
:mozilla.258:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.259:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.260:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.261:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.262:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.263:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.784:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.785:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.788:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.36:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Doubleclick : Aucune action entreprise.
:mozilla.675:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Doubleclick : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@doubleclick[1].txt -> TrackingCookie.Doubleclick : Aucune action entreprise.
:mozilla.172:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Estat : Aucune action entreprise.
:mozilla.522:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Estat : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@estat[1].txt -> TrackingCookie.Estat : Aucune action entreprise.
:mozilla.477:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Euroclick : Aucune action entreprise.
:mozilla.500:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Euroclick : Aucune action entreprise.
:mozilla.501:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Euroclick : Aucune action entreprise.
:mozilla.847:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Euroclick : Aucune action entreprise.
:mozilla.90:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Euroclick : Aucune action entreprise.
:mozilla.91:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Euroclick : Aucune action entreprise.
:mozilla.92:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Euroclick : Aucune action entreprise.
:mozilla.93:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Euroclick : Aucune action entreprise.
:mozilla.94:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Euroclick : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@adopt.euroclick[2].txt -> TrackingCookie.Euroclick : Aucune action entreprise.
:mozilla.551:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.555:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.569:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.79:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.80:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.81:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.82:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.83:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.84:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@fastclick[1].txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.178:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Googleadservices : Aucune action entreprise.
:mozilla.400:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Googleadservices : Aucune action entreprise.
:mozilla.428:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Googleadservices : Aucune action entreprise.
:mozilla.599:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Googleadservices : Aucune action entreprise.
:mozilla.633:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Googleadservices : Aucune action entreprise.
:mozilla.634:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Googleadservices : Aucune action entreprise.
:mozilla.635:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Googleadservices : Aucune action entreprise.
:mozilla.636:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Googleadservices : Aucune action entreprise.
:mozilla.526:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Hitbox : Aucune action entreprise.
:mozilla.685:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Hitbox : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@ehg-foxsports.hitbox[2].txt -> TrackingCookie.Hitbox : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@hitbox[1].txt -> TrackingCookie.Hitbox : Aucune action entreprise.
:mozilla.720:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Imrworldwide : Aucune action entreprise.
:mozilla.721:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Imrworldwide : Aucune action entreprise.
:mozilla.766:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Imrworldwide : Aucune action entreprise.
:mozilla.768:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Imrworldwide : Aucune action entreprise.
:mozilla.406:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Information : Aucune action entreprise.
:mozilla.622:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Information : Aucune action entreprise.
:mozilla.844:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Ivwbox : Aucune action entreprise.
:mozilla.198:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Liveperson : Aucune action entreprise.
:mozilla.607:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Liveperson : Aucune action entreprise.
:mozilla.608:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Liveperson : Aucune action entreprise.
:mozilla.736:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Liveperson : Aucune action entreprise.
:mozilla.737:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Liveperson : Aucune action entreprise.
:mozilla.738:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Liveperson : Aucune action entreprise.
:mozilla.182:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Mediaplex : Aucune action entreprise.
:mozilla.787:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Mediaplex : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@mediaplex[1].txt -> TrackingCookie.Mediaplex : Aucune action entreprise.
:mozilla.472:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Msn : Aucune action entreprise.
:mozilla.473:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Msn : Aucune action entreprise.
:mozilla.474:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Msn : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@ssl-hints.netflame[2].txt -> TrackingCookie.Netflame : Aucune action entreprise.
:mozilla.174:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Overture : Aucune action entreprise.
:mozilla.175:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Overture : Aucune action entreprise.
:mozilla.176:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Overture : Aucune action entreprise.
:mozilla.392:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Overture : Aucune action entreprise.
:mozilla.393:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Overture : Aucune action entreprise.
:mozilla.394:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Overture : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@overture[2].txt -> TrackingCookie.Overture : Aucune action entreprise.
:mozilla.543:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.544:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.545:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.546:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.781:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.782:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.783:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.784:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.465:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Questionmarket : Aucune action entreprise.
:mozilla.466:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Questionmarket : Aucune action entreprise.
:mozilla.163:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Realmedia : Aucune action entreprise.
:mozilla.164:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Realmedia : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@realmedia[1].txt -> TrackingCookie.Realmedia : Aucune action entreprise.
:mozilla.243:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.244:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.245:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.245:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.246:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.246:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.247:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.247:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.248:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.248:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.249:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.250:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@revsci[1].txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.325:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.326:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.327:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.328:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.329:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.59:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.60:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.61:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.62:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.63:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.71:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.72:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@bs.serving-sys[2].txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@serving-sys[2].txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.564:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sexcounter : Aucune action entreprise.
:mozilla.649:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sexcounter : Aucune action entreprise.
:mozilla.650:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sexcounter : Aucune action entreprise.
:mozilla.651:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sexcounter : Aucune action entreprise.
:mozilla.789:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sexcounter : Aucune action entreprise.
:mozilla.790:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sexcounter : Aucune action entreprise.
:mozilla.791:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sexcounter : Aucune action entreprise.
:mozilla.792:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sexcounter : Aucune action entreprise.
:mozilla.138:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.620:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.719:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.720:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.741:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.748:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.751:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.752:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.763:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.777:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.778:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.833:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.115:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Skype : Aucune action entreprise.
:mozilla.116:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Skype : Aucune action entreprise.
:mozilla.117:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Skype : Aucune action entreprise.
:mozilla.136:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Skype : Aucune action entreprise.
:mozilla.618:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Skype : Aucune action entreprise.
:mozilla.619:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Skype : Aucune action entreprise.
:mozilla.149:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.150:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.151:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.152:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.153:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.154:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.155:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.156:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.204:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.28:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.30:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.33:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@smartadserver[1].txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@smartadserver[2].txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.173:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.174:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.254:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.255:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.256:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@statcounter[2].txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.143:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.144:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.145:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.146:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.370:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.371:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.372:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.373:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.343:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Tribalfusion : Aucune action entreprise.
:mozilla.403:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Tribalfusion : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@tribalfusion[2].txt -> TrackingCookie.Tribalfusion : Aucune action entreprise.
:mozilla.107:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.108:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.109:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.110:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.132:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.133:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.134:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@weborama[2].txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.392:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Webtrends : Aucune action entreprise.
:mozilla.393:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Webtrends : Aucune action entreprise.
:mozilla.791:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Webtrends : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@m.webtrends[1].txt -> TrackingCookie.Webtrends : Aucune action entreprise.
:mozilla.274:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Webtrendslive : Aucune action entreprise.
:mozilla.275:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Webtrendslive : Aucune action entreprise.
:mozilla.276:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Webtrendslive : Aucune action entreprise.
:mozilla.45:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Webtrendslive : Aucune action entreprise.
:mozilla.46:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Webtrendslive : Aucune action entreprise.
:mozilla.631:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Webtrendslive : Aucune action entreprise.
:mozilla.632:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Webtrendslive : Aucune action entreprise.
:mozilla.753:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Webtrendslive : Aucune action entreprise.
:mozilla.754:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Webtrendslive : Aucune action entreprise.
:mozilla.113:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.114:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.115:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.116:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.117:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.118:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.739:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.251:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Zedo : Aucune action entreprise.
:mozilla.252:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Zedo : Aucune action entreprise.
:mozilla.50:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Zedo : Aucune action entreprise.
:mozilla.63:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Zedo : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@zedo[1].txt -> TrackingCookie.Zedo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104709.exe -> Trojan.Agent.dwb : Aucune action entreprise.
C:\Documents and Settings\bibiche\Bureau\SDFix\backups\backups.zip/backups/uninstall_nmon.vbs -> Trojan.Small : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP758\A0113271.vbs -> Trojan.Small : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP758\A0113285.vbs -> Trojan.Small : Aucune action entreprise.
C:\WINDOWS\YmliaWNoZQ\sA52uqhCtk.vbs -> Trojan.Small : Aucune action entreprise.


Fin du rapport

2 eme rapport
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

 + Créé à:	20:26 2008-01-30

 + Résultat de l'analyse:	



HKU\S-1-5-21-1910013712-902997221-3515541208-1008\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{4E7BD74F-2B8D-469E-A0E8-ED6AB685FA7D} -> Adware.2020Search : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0109046.dll -> Adware.CommAd : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0110036.dll -> Adware.CommAd : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0110037.exe -> Adware.CommAd : Nettoyé et sauvegardé (mise en quarantaine).
C:\WINDOWS\YmliaWNoZQ\asappsrv.dll -> Adware.CommAd : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104712.exe -> Adware.ZQuest : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\bibiche\Local Settings\Temporary Internet Files\Content.IE5\R8G8HPZY\gamadril20071203[1] -> Backdoor.Agent.dbm : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104702.exe -> Downloader.Adload.pr : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104710.exe -> Downloader.Agent.erf : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104711.exe -> Downloader.Agent.fjn : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104714.exe -> Downloader.Small.buy : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104715.exe -> Downloader.Small.hqc : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104713.exe -> Downloader.VB.ceh : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\All Users\Documents\Mes vidéos\01 Track 1.wma -> Downloader.Wimad.l : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\All Users\Documents\Mes vidéos\02 Track 2.wma -> Downloader.Wimad.l : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\All Users\Documents\Mes vidéos\03 Track 3.wma -> Downloader.Wimad.l : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\All Users\Documents\Mes vidéos\06 Track 6.wma -> Downloader.Wimad.l : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\All Users\Documents\Mes vidéos\Top of Charts - 2004.wma -> Downloader.Wimad.l : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\bibiche\Local Settings\Temp\RCXB.tmp -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104707.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104708.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104751.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP742\A0104773.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP744\A0104894.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP745\A0104930.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP746\A0104939.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP746\A0104951.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP746\A0104963.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP747\A0104975.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0105999.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0106027.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0106038.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0107038.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0108039.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0109038.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP763\A0113816.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP763\A0113817.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP764\A0113949.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP764\A0113950.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP764\A0113954.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP765\A0114970.rbf -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\WINDOWS\system32\RCXD.tmp -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\WINDOWS\system32\ctfmon.exe.tmp -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\WINDOWS\system32\sstts.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\bibiche\Bureau\SDFix\backups\backups.zip/backups/prokykohdyd.html -> Hijacker.IFrame.dn : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104704.dll -> Hijacker.StartPage : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104705.dll -> Hijacker.StartPage : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104706.dll -> Hijacker.StartPage : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\All Users\Documents\Mes vidéos\aire ahizpak(1).zip/Setup.exe -> Not-A-Virus.Adware.Agent : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\All Users\Documents\Mes vidéos\aire ahizpak.zip/Setup.exe -> Not-A-Virus.Adware.Agent : Nettoyé et sauvegardé (mise en quarantaine).
C:\QooBox\Quarantine\C\WINDOWS\system32
sw28.dll.vir -> Not-A-Virus.Adware.Agent : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP740\A0104653.exe -> Not-A-Virus.Adware.Agent : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP759\A0113317.dll -> Not-A-Virus.Adware.Agent : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP764\A0113969.exe -> Not-A-Virus.Adware.Agent : Nettoy

kaori · Answer

---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

 + Créé à:	20:24 2008-01-30

 + Résultat de l'analyse:	



HKU\S-1-5-21-1910013712-902997221-3515541208-1008\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{4E7BD74F-2B8D-469E-A0E8-ED6AB685FA7D} -> Adware.2020Search : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0109046.dll -> Adware.CommAd : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0110036.dll -> Adware.CommAd : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0110037.exe -> Adware.CommAd : Aucune action entreprise.
C:\WINDOWS\YmliaWNoZQ\asappsrv.dll -> Adware.CommAd : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104712.exe -> Adware.ZQuest : Aucune action entreprise.
C:\Documents and Settings\bibiche\Local Settings\Temporary Internet Files\Content.IE5\R8G8HPZY\gamadril20071203[1] -> Backdoor.Agent.dbm : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104702.exe -> Downloader.Adload.pr : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104710.exe -> Downloader.Agent.erf : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104711.exe -> Downloader.Agent.fjn : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104714.exe -> Downloader.Small.buy : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104715.exe -> Downloader.Small.hqc : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104713.exe -> Downloader.VB.ceh : Aucune action entreprise.
C:\Documents and Settings\All Users\Documents\Mes vidéos\01 Track 1.wma -> Downloader.Wimad.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Documents\Mes vidéos\02 Track 2.wma -> Downloader.Wimad.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Documents\Mes vidéos\03 Track 3.wma -> Downloader.Wimad.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Documents\Mes vidéos\06 Track 6.wma -> Downloader.Wimad.l : Aucune action entreprise.
C:\Documents and Settings\All Users\Documents\Mes vidéos\Top of Charts - 2004.wma -> Downloader.Wimad.l : Aucune action entreprise.
C:\Documents and Settings\bibiche\Local Settings\Temp\RCXB.tmp -> Dropper.Agent.dgo : Aucune action entreprise.
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104707.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104708.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104751.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP742\A0104773.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP744\A0104894.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP745\A0104930.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP746\A0104939.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP746\A0104951.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP746\A0104963.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP747\A0104975.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0105999.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0106027.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0106038.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0107038.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0108039.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0109038.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP763\A0113816.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP763\A0113817.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP764\A0113949.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP764\A0113950.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP764\A0113954.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP765\A0114970.rbf -> Dropper.Agent.dgo : Aucune action entreprise.
C:\WINDOWS\system32\RCXD.tmp -> Dropper.Agent.dgo : Aucune action entreprise.
C:\WINDOWS\system32\ctfmon.exe.tmp -> Dropper.Agent.dgo : Aucune action entreprise.
C:\WINDOWS\system32\sstts.exe -> Dropper.Agent.dgo : Aucune action entreprise.
C:\Documents and Settings\bibiche\Bureau\SDFix\backups\backups.zip/backups/prokykohdyd.html -> Hijacker.IFrame.dn : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104704.dll -> Hijacker.StartPage : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104705.dll -> Hijacker.StartPage : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104706.dll -> Hijacker.StartPage : Aucune action entreprise.
C:\Documents and Settings\All Users\Documents\Mes vidéos\aire ahizpak(1).zip/Setup.exe -> Not-A-Virus.Adware.Agent : Aucune action entreprise.
C:\Documents and Settings\All Users\Documents\Mes vidéos\aire ahizpak.zip/Setup.exe -> Not-A-Virus.Adware.Agent : Aucune action entreprise.
C:\QooBox\Quarantine\C\WINDOWS\system32
sw28.dll.vir -> Not-A-Virus.Adware.Agent : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP740\A0104653.exe -> Not-A-Virus.Adware.Agent : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP759\A0113317.dll -> Not-A-Virus.Adware.Agent : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP764\A0113969.exe -> Not-A-Virus.Adware.Agent : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP764\A0113970.exe -> Not-A-Virus.Adware.Agent : Aucune action entreprise.
C:\Documents and Settings\bibiche\Bureau\SDFix\backups\backups.zip/backups/TTC-4444.exe -> Not-A-Virus.Adware.TTC : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP735\A0103467.exe -> Not-A-Virus.Adware.TTC : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP736\A0103534.exe -> Not-A-Virus.Adware.TTC : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104703.dll -> Not-A-Virus.Adware.TTC : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP758\A0113270.exe -> Not-A-Virus.Adware.TTC : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP758\A0113284.exe -> Not-A-Virus.Adware.TTC : Aucune action entreprise.
C:\WINDOWS\system32\wc9	ycodllz83122.exe -> Not-A-Virus.Adware.TTC : Aucune action entreprise.
C:\Documents and Settings\bibiche\Bureau\MSNFix\28012008_11295121.zip/backup/removalfile.bat -> Not-A-Virus.Adware.Virtumonde : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0109045.exe -> Not-A-Virus.Monitor.Win32.NetMon.a : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0110033.exe -> Not-A-Virus.Monitor.Win32.NetMon.a : Aucune action entreprise.
:mozilla.162:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.247realmedia : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@247realmedia[1].txt -> TrackingCookie.247realmedia : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@network-ca.247realmedia[1].txt -> TrackingCookie.247realmedia : Aucune action entreprise.
:mozilla.354:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.355:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.356:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.357:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.358:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.359:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.379:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.404:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.460:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.493:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.504:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.525:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.531:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.532:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.534:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.539:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.552:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.574:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.676:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.682:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@2o7[2].txt -> TrackingCookie.2o7 : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.568:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.66.220.17.154 : Aucune action entreprise.
:mozilla.598:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Adbrite : Aucune action entreprise.
:mozilla.645:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Adbrite : Aucune action entreprise.
:mozilla.646:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Adbrite : Aucune action entreprise.
:mozilla.143:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Adobe : Aucune action entreprise.
:mozilla.464:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Adobe : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@media.adrevolver[1].txt -> TrackingCookie.Adrevolver : Aucune action entreprise.
:mozilla.121:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Adtech : Aucune action entreprise.
:mozilla.122:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Adtech : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@adtech[1].txt -> TrackingCookie.Adtech : Aucune action entreprise.
:mozilla.10:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.11:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.8:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.9:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Advertising : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@advertising[1].txt -> TrackingCookie.Advertising : Aucune action entreprise.
:mozilla.384:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Adviva : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@adviva[1].txt -> TrackingCookie.Adviva : Aucune action entreprise.
:mozilla.34:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Atdmt : Aucune action entreprise.
:mozilla.742:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Atdmt : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@atdmt[2].txt -> TrackingCookie.Atdmt : Aucune action entreprise.
:mozilla.35:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
:mozilla.433:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
:mozilla.591:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@bluestreak[2].txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
:mozilla.530:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Casalemedia : Aucune action entreprise.
:mozilla.548:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Casalemedia : Aucune action entreprise.
:mozilla.549:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Casalemedia : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@casalemedia[1].txt -> TrackingCookie.Casalemedia : Aucune action entreprise.
:mozilla.258:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.259:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.260:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.261:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.262:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.263:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.784:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.785:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.788:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.36:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Doubleclick : Aucune action entreprise.
:mozilla.675:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Doubleclick : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@doubleclick[1].txt -> TrackingCookie.Doubleclick : Aucune action entreprise.
:mozilla.172:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Estat : Aucune action entreprise.
:mozilla.522:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Estat : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@estat[1].txt -> TrackingCookie.Estat : Aucune action entreprise.
:mozilla.477:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Euroclick : Aucune action entreprise.
:mozilla.500:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Euroclick : Aucune action entreprise.
:mozilla.501:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Euroclick : Aucune action entreprise.
:mozilla.847:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Euroclick : Aucune action entreprise.
:mozilla.90:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Euroclick : Aucune action entreprise.
:mozilla.91:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Euroclick : Aucune action entreprise.
:mozilla.92:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Euroclick : Aucune action entreprise.
:mozilla.93:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Euroclick : Aucune action entreprise.
:mozilla.94:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Euroclick : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@adopt.euroclick[2].txt -> TrackingCookie.Euroclick : Aucune action entreprise.
:mozilla.551:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.555:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.569:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.79:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.80:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.81:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.82:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.83:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.84:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@fastclick[1].txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.178:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Googleadservices : Aucune action entreprise.
:mozilla.400:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Googleadservices : Aucune action entreprise.
:mozilla.428:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Googleadservices : Aucune action entreprise.
:mozilla.599:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Googleadservices : Aucune action entreprise.
:mozilla.633:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Googleadservices : Aucune action entreprise.
:mozilla.634:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Googleadservices : Aucune action entreprise.
:mozilla.635:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Googleadservices : Aucune action entreprise.
:mozilla.636:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Googleadservices : Aucune action entreprise.
:mozilla.526:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Hitbox : Aucune action entreprise.
:mozilla.685:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Hitbox : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@ehg-foxsports.hitbox[2].txt -> TrackingCookie.Hitbox : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@hitbox[1].txt -> TrackingCookie.Hitbox : Aucune action entreprise.
:mozilla.720:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Imrworldwide : Aucune action entreprise.
:mozilla.721:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Imrworldwide : Aucune action entreprise.
:mozilla.766:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Imrworldwide : Aucune action entreprise.
:mozilla.768:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Imrworldwide : Aucune action entreprise.
:mozilla.406:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Information : Aucune action entreprise.
:mozilla.622:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Information : Aucune action entreprise.
:mozilla.844:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Ivwbox : Aucune action entreprise.
:mozilla.198:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Liveperson : Aucune action entreprise.
:mozilla.607:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Liveperson : Aucune action entreprise.
:mozilla.608:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Liveperson : Aucune action entreprise.
:mozilla.736:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Liveperson : Aucune action entreprise.
:mozilla.737:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Liveperson : Aucune action entreprise.
:mozilla.738:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Liveperson : Aucune action entreprise.
:mozilla.182:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Mediaplex : Aucune action entreprise.
:mozilla.787:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Mediaplex : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@mediaplex[1].txt -> TrackingCookie.Mediaplex : Aucune action entreprise.
:mozilla.472:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Msn : Aucune action entreprise.
:mozilla.473:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Msn : Aucune action entreprise.
:mozilla.474:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Msn : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@ssl-hints.netflame[2].txt -> TrackingCookie.Netflame : Aucune action entreprise.
:mozilla.174:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Overture : Aucune action entreprise.
:mozilla.175:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Overture : Aucune action entreprise.
:mozilla.176:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Overture : Aucune action entreprise.
:mozilla.392:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Overture : Aucune action entreprise.
:mozilla.393:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Overture : Aucune action entreprise.
:mozilla.394:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Overture : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@overture[2].txt -> TrackingCookie.Overture : Aucune action entreprise.
:mozilla.543:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.544:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.545:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.546:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.781:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.782:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.783:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.784:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.465:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Questionmarket : Aucune action entreprise.
:mozilla.466:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Questionmarket : Aucune action entreprise.
:mozilla.163:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Realmedia : Aucune action entreprise.
:mozilla.164:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Realmedia : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@realmedia[1].txt -> TrackingCookie.Realmedia : Aucune action entreprise.
:mozilla.243:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.244:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.245:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.245:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.246:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.246:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.247:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.247:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.248:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.248:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.249:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.250:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Revsci : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@revsci[1].txt -> TrackingCookie.Revsci : Aucune action entreprise.
:mozilla.325:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.326:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.327:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.328:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.329:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.59:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.60:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.61:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.62:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.63:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.71:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.72:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@bs.serving-sys[2].txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@serving-sys[2].txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.564:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sexcounter : Aucune action entreprise.
:mozilla.649:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sexcounter : Aucune action entreprise.
:mozilla.650:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sexcounter : Aucune action entreprise.
:mozilla.651:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sexcounter : Aucune action entreprise.
:mozilla.789:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sexcounter : Aucune action entreprise.
:mozilla.790:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sexcounter : Aucune action entreprise.
:mozilla.791:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sexcounter : Aucune action entreprise.
:mozilla.792:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sexcounter : Aucune action entreprise.
:mozilla.138:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.620:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.719:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.720:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.741:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.748:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.751:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.752:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.763:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.777:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.778:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.833:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sitestat : Aucune action entreprise.
:mozilla.115:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Skype : Aucune action entreprise.
:mozilla.116:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Skype : Aucune action entreprise.
:mozilla.117:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Skype : Aucune action entreprise.
:mozilla.136:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Skype : Aucune action entreprise.
:mozilla.618:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Skype : Aucune action entreprise.
:mozilla.619:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Skype : Aucune action entreprise.
:mozilla.149:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.150:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.151:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.152:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.153:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.154:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.155:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.156:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.204:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.28:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.30:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.33:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@smartadserver[1].txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@smartadserver[2].txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.173:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.174:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.254:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.255:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.256:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@statcounter[2].txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.143:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.144:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.145:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.146:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.370:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.371:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.372:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.373:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.343:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Tribalfusion : Aucune action entreprise.
:mozilla.403:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Tribalfusion : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@tribalfusion[2].txt -> TrackingCookie.Tribalfusion : Aucune action entreprise.
:mozilla.107:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.108:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.109:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.110:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.132:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.133:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.134:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@weborama[2].txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.392:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Webtrends : Aucune action entreprise.
:mozilla.393:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Webtrends : Aucune action entreprise.
:mozilla.791:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Webtrends : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@m.webtrends[1].txt -> TrackingCookie.Webtrends : Aucune action entreprise.
:mozilla.274:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Webtrendslive : Aucune action entreprise.
:mozilla.275:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Webtrendslive : Aucune action entreprise.
:mozilla.276:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Webtrendslive : Aucune action entreprise.
:mozilla.45:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Webtrendslive : Aucune action entreprise.
:mozilla.46:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Webtrendslive : Aucune action entreprise.
:mozilla.631:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Webtrendslive : Aucune action entreprise.
:mozilla.632:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Webtrendslive : Aucune action entreprise.
:mozilla.753:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Webtrendslive : Aucune action entreprise.
:mozilla.754:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Webtrendslive : Aucune action entreprise.
:mozilla.113:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.114:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.115:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.116:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.117:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.118:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.739:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.251:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Zedo : Aucune action entreprise.
:mozilla.252:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Zedo : Aucune action entreprise.
:mozilla.50:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Zedo : Aucune action entreprise.
:mozilla.63:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Zedo : Aucune action entreprise.
C:\Documents and Settings\bibiche\Cookies\bibiche@zedo[1].txt -> TrackingCookie.Zedo : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104709.exe -> Trojan.Agent.dwb : Aucune action entreprise.
C:\Documents and Settings\bibiche\Bureau\SDFix\backups\backups.zip/backups/uninstall_nmon.vbs -> Trojan.Small : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP758\A0113271.vbs -> Trojan.Small : Aucune action entreprise.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP758\A0113285.vbs -> Trojan.Small : Aucune action entreprise.
C:\WINDOWS\YmliaWNoZQ\sA52uqhCtk.vbs -> Trojan.Small : Aucune action entreprise.


Fin du rapport

kaori · Answer

---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

 + Créé à:	20:26 2008-01-30

 + Résultat de l'analyse:	



HKU\S-1-5-21-1910013712-902997221-3515541208-1008\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{4E7BD74F-2B8D-469E-A0E8-ED6AB685FA7D} -> Adware.2020Search : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0109046.dll -> Adware.CommAd : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0110036.dll -> Adware.CommAd : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0110037.exe -> Adware.CommAd : Nettoyé et sauvegardé (mise en quarantaine).
C:\WINDOWS\YmliaWNoZQ\asappsrv.dll -> Adware.CommAd : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104712.exe -> Adware.ZQuest : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\bibiche\Local Settings\Temporary Internet Files\Content.IE5\R8G8HPZY\gamadril20071203[1] -> Backdoor.Agent.dbm : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104702.exe -> Downloader.Adload.pr : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104710.exe -> Downloader.Agent.erf : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104711.exe -> Downloader.Agent.fjn : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104714.exe -> Downloader.Small.buy : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104715.exe -> Downloader.Small.hqc : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104713.exe -> Downloader.VB.ceh : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\All Users\Documents\Mes vidéos\01 Track 1.wma -> Downloader.Wimad.l : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\All Users\Documents\Mes vidéos\02 Track 2.wma -> Downloader.Wimad.l : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\All Users\Documents\Mes vidéos\03 Track 3.wma -> Downloader.Wimad.l : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\All Users\Documents\Mes vidéos\06 Track 6.wma -> Downloader.Wimad.l : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\All Users\Documents\Mes vidéos\Top of Charts - 2004.wma -> Downloader.Wimad.l : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\bibiche\Local Settings\Temp\RCXB.tmp -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104707.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104708.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104751.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP742\A0104773.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP744\A0104894.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP745\A0104930.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP746\A0104939.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP746\A0104951.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP746\A0104963.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP747\A0104975.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0105999.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0106027.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0106038.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0107038.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0108039.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0109038.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP763\A0113816.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP763\A0113817.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP764\A0113949.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP764\A0113950.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP764\A0113954.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP765\A0114970.rbf -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\WINDOWS\system32\RCXD.tmp -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\WINDOWS\system32\ctfmon.exe.tmp -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\WINDOWS\system32\sstts.exe -> Dropper.Agent.dgo : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\bibiche\Bureau\SDFix\backups\backups.zip/backups/prokykohdyd.html -> Hijacker.IFrame.dn : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104704.dll -> Hijacker.StartPage : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104705.dll -> Hijacker.StartPage : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104706.dll -> Hijacker.StartPage : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\All Users\Documents\Mes vidéos\aire ahizpak(1).zip/Setup.exe -> Not-A-Virus.Adware.Agent : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\All Users\Documents\Mes vidéos\aire ahizpak.zip/Setup.exe -> Not-A-Virus.Adware.Agent : Nettoyé et sauvegardé (mise en quarantaine).
C:\QooBox\Quarantine\C\WINDOWS\system32
sw28.dll.vir -> Not-A-Virus.Adware.Agent : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP740\A0104653.exe -> Not-A-Virus.Adware.Agent : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP759\A0113317.dll -> Not-A-Virus.Adware.Agent : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP764\A0113969.exe -> Not-A-Virus.Adware.Agent : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP764\A0113970.exe -> Not-A-Virus.Adware.Agent : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\bibiche\Bureau\SDFix\backups\backups.zip/backups/TTC-4444.exe -> Not-A-Virus.Adware.TTC : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP735\A0103467.exe -> Not-A-Virus.Adware.TTC : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP736\A0103534.exe -> Not-A-Virus.Adware.TTC : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104703.dll -> Not-A-Virus.Adware.TTC : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP758\A0113270.exe -> Not-A-Virus.Adware.TTC : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP758\A0113284.exe -> Not-A-Virus.Adware.TTC : Nettoyé et sauvegardé (mise en quarantaine).
C:\WINDOWS\system32\wc9	ycodllz83122.exe -> Not-A-Virus.Adware.TTC : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\bibiche\Bureau\MSNFix\28012008_11295121.zip/backup/removalfile.bat -> Not-A-Virus.Adware.Virtumonde : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0109045.exe -> Not-A-Virus.Monitor.Win32.NetMon.a : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP748\A0110033.exe -> Not-A-Virus.Monitor.Win32.NetMon.a : Nettoyé et sauvegardé (mise en quarantaine).
:mozilla.162:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@247realmedia[1].txt -> TrackingCookie.247realmedia : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@network-ca.247realmedia[1].txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.354:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.355:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.356:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.357:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.358:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.359:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.379:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.404:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.460:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.493:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.504:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.525:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.531:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.532:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.534:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.539:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.552:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.574:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.676:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.682:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@2o7[2].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.568:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.66.220.17.154 : Nettoyé.
:mozilla.598:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.645:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.646:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.143:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Adobe : Nettoyé.
:mozilla.464:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Adobe : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@media.adrevolver[1].txt -> TrackingCookie.Adrevolver : Nettoyé.
:mozilla.121:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.122:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@adtech[1].txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.10:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.11:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.8:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.9:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@advertising[1].txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.384:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Adviva : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@adviva[1].txt -> TrackingCookie.Adviva : Nettoyé.
:mozilla.34:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.
:mozilla.742:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
:mozilla.35:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
:mozilla.433:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
:mozilla.591:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyé.
:mozilla.530:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.548:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.549:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@casalemedia[1].txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.258:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.259:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.260:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.261:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.262:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.263:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.784:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.785:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.788:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.36:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.
:mozilla.675:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.
:mozilla.172:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Estat : Nettoyé.
:mozilla.522:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Estat : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@estat[1].txt -> TrackingCookie.Estat : Nettoyé.
:mozilla.477:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.500:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.501:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.847:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.90:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.91:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.92:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.93:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.94:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@adopt.euroclick[2].txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.551:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.555:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.569:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.79:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.80:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.81:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.82:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.83:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.84:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@fastclick[1].txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.178:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.400:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.428:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.599:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.633:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.634:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.635:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.636:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.526:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.685:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@ehg-foxsports.hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.720:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé.
:mozilla.721:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé.
:mozilla.766:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé.
:mozilla.768:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé.
:mozilla.406:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Information : Nettoyé.
:mozilla.622:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Information : Nettoyé.
:mozilla.844:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Ivwbox : Nettoyé.
:mozilla.198:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Liveperson : Nettoyé.
:mozilla.607:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Liveperson : Nettoyé.
:mozilla.608:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Liveperson : Nettoyé.
:mozilla.736:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Liveperson : Nettoyé.
:mozilla.737:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Liveperson : Nettoyé.
:mozilla.738:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Liveperson : Nettoyé.
:mozilla.182:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé.
:mozilla.787:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyé.
:mozilla.472:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Msn : Nettoyé.
:mozilla.473:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Msn : Nettoyé.
:mozilla.474:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Msn : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@ssl-hints.netflame[2].txt -> TrackingCookie.Netflame : Nettoyé.
:mozilla.174:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.175:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.176:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.392:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.393:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.394:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@overture[2].txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.543:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.
:mozilla.544:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.
:mozilla.545:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.
:mozilla.546:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.
:mozilla.781:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.
:mozilla.782:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.
:mozilla.783:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.
:mozilla.784:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.
:mozilla.465:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyé.
:mozilla.466:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyé.
:mozilla.163:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Realmedia : Nettoyé.
:mozilla.164:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Realmedia : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@realmedia[1].txt -> TrackingCookie.Realmedia : Nettoyé.
:mozilla.243:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.244:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.245:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.245:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.246:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.246:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.247:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.247:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.248:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.248:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.249:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.250:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@revsci[1].txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.325:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.326:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.327:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.328:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.329:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.59:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.60:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.61:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.62:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.63:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.71:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.72:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@bs.serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.564:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.649:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.650:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.651:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.789:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.790:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.791:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.792:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyé.
:mozilla.138:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.
:mozilla.620:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.
:mozilla.719:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.
:mozilla.720:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.
:mozilla.741:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.
:mozilla.748:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.
:mozilla.751:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.
:mozilla.752:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.
:mozilla.763:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.
:mozilla.777:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.
:mozilla.778:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.
:mozilla.833:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.
:mozilla.115:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Skype : Nettoyé.
:mozilla.116:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Skype : Nettoyé.
:mozilla.117:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Skype : Nettoyé.
:mozilla.136:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Skype : Nettoyé.
:mozilla.618:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Skype : Nettoyé.
:mozilla.619:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Skype : Nettoyé.
:mozilla.149:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.150:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.151:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.152:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.153:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.154:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.155:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.156:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.204:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.28:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.30:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.33:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.173:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.174:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.254:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.255:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.256:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@statcounter[2].txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.143:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.144:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.145:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.146:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.370:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.371:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.372:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.373:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.343:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Tribalfusion : Nettoyé.
:mozilla.403:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Tribalfusion : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@tribalfusion[2].txt -> TrackingCookie.Tribalfusion : Nettoyé.
:mozilla.107:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.108:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.109:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.110:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.132:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.133:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.134:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@weborama[2].txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.392:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Webtrends : Nettoyé.
:mozilla.393:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Webtrends : Nettoyé.
:mozilla.791:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Webtrends : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@m.webtrends[1].txt -> TrackingCookie.Webtrends : Nettoyé.
:mozilla.274:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyé.
:mozilla.275:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyé.
:mozilla.276:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyé.
:mozilla.45:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyé.
:mozilla.46:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyé.
:mozilla.631:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyé.
:mozilla.632:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyé.
:mozilla.753:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyé.
:mozilla.754:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyé.
:mozilla.113:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.114:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.115:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.116:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.117:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.118:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.739:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.251:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
:mozilla.252:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\h2uhwg45.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
:mozilla.50:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
:mozilla.63:C:\Documents and Settings\bibiche\Application Data\Mozilla\Firefox\Profiles\5rw3p43c.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
C:\Documents and Settings\bibiche\Cookies\bibiche@zedo[1].txt -> TrackingCookie.Zedo : Nettoyé.
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104709.exe -> Trojan.Agent.dwb : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\bibiche\Bureau\SDFix\backups\backups.zip/backups/uninstall_nmon.vbs -> Trojan.Small : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP758\A0113271.vbs -> Trojan.Small : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP758\A0113285.vbs -> Trojan.Small : Nettoyé et sauvegardé (mise en quarantaine).
C:\WINDOWS\YmliaWNoZQ\sA52uqhCtk.vbs -> Trojan.Small : Nettoyé et sauvegardé (mise en quarantaine).


Fin du rapport

kaori · Answer

oups je croyais que ca ne marchait pas les deux dernier rapport sont complet

Utilisateur anonyme · Answer

desinstal avast qui n'est plus si performant qu'avant , antivir est bien mieux note il est gratuit

utilitaire de desinstalation de avast :http://www.commentcamarche.net/telecharger/telechargement 34055246 utilitaire de desinstallation de avast

telecharge antivir comme antivirus il est plus reactif et plus performant que avast : http://www.commentcamarche.net/telecharger/telechargement 55 antivir

regarde ici pour la configuration de antivir :https://www.malekal.com/avira-free-security-antivirus-gratuit/

scan ton pc avec antivir en mode sans echecs copie le rapport d'antivir

kaori · Answer

i a trouvé 7 virus ou je ne sais quoi ne sachant pas quoi faire je les ai mis en quarantaine, ai je bien fais? AntiVir PersonalEdition Classic Report file date: 2008-01-30 21:40 Scanning for 1085601 virus strains and unwanted programs. Licensed to: Avira AntiVir PersonalEdition Classic Serial number: 0000149996-ADJIE-0001 Platform: Windows XP Windows version: (Service Pack 2) [5.1.2600] Username: bibiche Computer name: MARIE Version information: BUILD.DAT : 270 15603 Bytes 2007-09-19 13:32:00 AVSCAN.EXE : 7.0.6.1 290856 Bytes 2007-08-23 13:16:29 AVSCAN.DLL : 7.0.6.0 49192 Bytes 2007-08-16 12:23:51 LUKE.DLL : 7.0.5.3 147496 Bytes 2007-08-14 15:32:47 LUKERES.DLL : 7.0.6.1 10280 Bytes 2007-08-21 12:35:20 ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 2007-07-18 14:27:15 ANTIVIR1.VDF : 7.0.1.95 3367424 Bytes 2007-12-14 20:17:40 ANTIVIR2.VDF : 7.0.2.49 1339904 Bytes 2008-01-25 20:17:40 ANTIVIR3.VDF : 7.0.2.72 208896 Bytes 2008-01-30 20:17:40 AVEWIN32.DLL : 7.6.0.59 3232256 Bytes 2008-01-30 20:17:40 AVWINLL.DLL : 1.0.0.7 14376 Bytes 2007-02-26 10:36:26 AVPREF.DLL : 7.0.2.2 25640 Bytes 2007-07-18 07:39:17 AVREP.DLL : 7.0.0.1 155688 Bytes 2007-04-16 13:16:24 AVPACK32.DLL : 7.6.0.3 360488 Bytes 2008-01-30 20:17:40 AVREG.DLL : 7.0.1.6 30760 Bytes 2007-07-18 07:17:06 AVARKT.DLL : 1.0.0.20 278568 Bytes 2007-08-28 12:26:33 AVEVTLOG.DLL : 7.0.0.20 86056 Bytes 2007-07-18 07:10:18 NETNT.DLL : 7.0.0.0 7720 Bytes 2007-03-08 11:09:42 RCIMAGE.DLL : 7.0.1.30 2342952 Bytes 2007-08-07 12:38:13 RCTEXT.DLL : 7.0.62.0 86056 Bytes 2007-08-21 12:50:37 SQLITE3.DLL : 3.3.17.1 339968 Bytes 2007-07-23 09:37:21 Configuration settings for the scan: Jobname..........................: Local Drives Configuration file...............: c:\program files\avira\antivir personaledition classic\alldrives.avp Logging..........................: low Primary action...................: interactive Secondary action.................: ignore Scan master boot sector..........: off Scan boot sector.................: on Boot sectors.....................: D:, Scan memory......................: on Process scan.....................: on Scan registry....................: on Search for rootkits..............: off Scan all files...................: Intelligent file selection Scan archives....................: on Recursion depth..................: 20 Smart extensions.................: on Macro heuristic..................: on File heuristic...................: medium Start of the scan: 2008-01-30 21:40 The scan of running processes will be started Scan process 'avscan.exe' - '1' Module(s) have been scanned Scan process 'avcenter.exe' - '1' Module(s) have been scanned Scan process 'explorer.exe' - '1' Module(s) have been scanned Scan process 'guard.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'lsass.exe' - '1' Module(s) have been scanned Scan process 'services.exe' - '1' Module(s) have been scanned Scan process 'winlogon.exe' - '1' Module(s) have been scanned Scan process 'csrss.exe' - '1' Module(s) have been scanned Scan process 'smss.exe' - '1' Module(s) have been scanned 14 processes with 14 modules were scanned Start scanning boot sectors: Boot sector 'C:\' [NOTE] No virus was found! Boot sector 'E:\' [NOTE] In the drive 'E:\' no data medium is inserted! Boot sector 'F:\' [NOTE] In the drive 'F:\' no data medium is inserted! Boot sector 'G:\' [NOTE] In the drive 'G:\' no data medium is inserted! Boot sector 'H:\' [NOTE] In the drive 'H:\' no data medium is inserted! Starting to scan the registry. The registry was scanned ( '26' files ). Starting the file scan: Begin scan in 'C:\' C:\pagefile.sys [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Documents\Incomplete\T-233472-Dragon Naturally Speaking 9.exe [DETECTION] Is the Trojan horse TR/Drop.VB.LU.35 [INFO] The file was moved to '47d2e11f.qua'! C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP737\A0104576.exe [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen [INFO] The file was moved to '47d1e601.qua'! C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104697.exe [DETECTION] Contains detection pattern of the worm WORM/Fontra.C [INFO] The file was moved to '47d1e609.qua'! C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104698.exe [DETECTION] Contains detection pattern of the worm WORM/Fontra.C [INFO] The file was moved to '47d1e60c.qua'! C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104699.exe [DETECTION] Contains detection pattern of the worm WORM/Fontra.C [INFO] The file was moved to '47d1e60f.qua'! C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104700.exe [DETECTION] Is the Trojan horse TR/Dldr.Fontra.C.2 [INFO] The file was moved to '47d1e613.qua'! C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP741\A0104701.exe [DETECTION] Contains detection pattern of the worm WORM/Fontra.C [INFO] The file was moved to '47d1e615.qua'! Begin scan in 'E:\' Search path E:\ could not be opened! Le périphérique n'est pas prêt. Begin scan in 'F:\' Search path F:\ could not be opened! Le périphérique n'est pas prêt. Begin scan in 'G:\' Search path G:\ could not be opened! Le périphérique n'est pas prêt. Begin scan in 'H:\' Search path H:\ could not be opened! Le périphérique n'est pas prêt. Begin scan in 'D:\' End of the scan: 2008-01-30 22:25 Used time: 44:40 min The scan has been done completely. 5833 Scanning directories 272661 Files were scanned 7 viruses and/or unwanted programs were found 0 Files were classified as suspicious: 0 files were deleted 0 files were repaired 7 files were moved to quarantine 0 files were renamed 1 Files cannot be scanned 272654 Files not concerned 8614 Archives were scanned 1 Warnings 7 Notes

Utilisateur anonyme · Answer

c'est tout bon regarde ici et effectue cette manipe .
c'est parfait , maintenant regarde ici http://service1.symantec.com/

pour purger les virus qui  se trouvent dans ta restauration du systeme , desactive ta restauration systeme , reactive la et cree un nouveau point de restauration qui , aores la manip seras saint et exempt de virus .

kaori · Answer

c'est cool merci beaucoup!!!! je pensais vraiment pas y arriver! alors on peut dire que le probleme est résolu , juste une derniere question je peux enlever tous les cleaner, avg et killbox que j'ai du telecharger???

^^Marie^^ · Answer

Salut TLM

Désinstalle TOUS les FIx que l'on t'a fait passer
Pour compléter

·	Télécharge ToolsCleaner de A.Roshtein sur ton Bureau.

·	http://a-rothstein.changelog.fr/TC/ToolsCleaner2.exe

·	Clique sur Recherche et laisse le scan se terminer.
·	Clique, sur Suppression pour finaliser.
·	Tu peux, si tu le souhaites, te servir des Options facultatives.
·	Clique sur Quitter, pour que le rapport puisse se créer.
·	Poste moi le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur( C:\).


Bon surf

Utilisateur anonyme · Answer

Bonjour Kaori , bonjour ^^marie^^.
j'ai ete un peu vite hier , j'aurais du te debarrasser des fix avant de te faire purger la restauration , il dois rester les quarentaines des outils utilises , rien de mechant , il faut juste recommancer la manip pour purger la restauration , car antivir a une tes bonne detection il se peu lors d'un scan qu'il trouve des trucs dans les quarentaines de ta restauration systeme , donc desoles de mon erreur recommance stp la manip pour desactiver ta restauration .

kaori · Answer

-->- Recherche: 

C:\Combofix: trouvé !
C:\!Killbox: trouvé !
bonjour a tous je me suis absenté mais me revoila pour finaliser


C:\HijackThis: trouvé !
C:\Vundofix backups: trouvé !
C:\Qoobox: trouvé !
C:\Program Files\Navilog1: trouvé !
C:\Program Files\Trend Micro\HijackThis: trouvé !
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: trouvé !
C:\QooBox\Quarantine\C\Combofix: trouvé !

---------------------------------
-->- Suppression: 

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: supprimé !
C:\Combofix: supprimé !
C:\!Killbox: supprimé !
C:\HijackThis: supprimé !
C:\Vundofix backups: supprimé !
C:\Qoobox: supprimé !
C:\Program Files\Navilog1: supprimé !
C:\Program Files\Trend Micro\HijackThis: supprimé !

Point de restauration crée !
Corbeille vidée!
Fichiers temporaires nettoyés !

KAORI · Answer

UN GRAND MERCI

Utilisateur anonyme · Answer

Bonjour Kaori , de rien , ce fut un plaisir . bonne continuation .

^^Marie^^ · Answer

Coucou TLM

Bon surf,
Si tu as besoin tu sais où nous trouver..

ps : supprime Tool

Infecté par de nombreux virus

75 réponses

Discussions similaires

Newsletters