Sujet Précédent Sujet Suivant

UC utilisé à 100%

Oone -  
Oonee Messages postés 4 Statut Membre -
Bonjour, et me revoici donc :)

Je sais que le problème est déjà abordé dans plusieurs dizaines de topics sur ce forum, mais j'ai la forte impression que les solution sont bien souvents différentes. Résultat, je me retrouve donc à poster mon propre problème.

Allons droit au problème : L'UC de mon PC est utilisé à 100% voir 99% dans ces meilleurs moments. Je ne vois pas vraiment d'où peut venir le problème. Donc j'en viens à vous demander de l'aide :p

Ce que j'ai fais :
- Un scan complet avec Kaspersky
- Un scan avec Spybot
- Des recherches :D
- Un Hijack que je post ci-dessous

Enfin voilà, en esperant recevoir l'aide que j'ai toujours reçu en venant ici, merci bien.

Logfile of HijackThis v1.99.1
Scan saved at 20:05:09, on 06/07/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Steam\Steam.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe
C:\Fraps\fraps.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Azureus\Azureus.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\VP\Mes documents\Hijack\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [kav] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe"
O4 - HKLM\..\Run: [WinDLL (wchshield.exe)] rundll32.exe C:\WINDOWS\System32\wchshield.exe,start
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra button: Antivirus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site....
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://drivers1.free.fr/telecharger.php?id=2&version=
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

14 réponses

Réponse 1 / 14
Kristopher Messages postés 3752 Statut Contributeur 106
 
Salut,

Tu es infecté.

Pour commencer, rends toi sur cette page et fais exactement ce qui est demandé :

virus methode preliminaire de desinfection version fr

a+
0
Réponse 2 / 14
phoibe Messages postés 158 Statut Membre 8
 
bonjour,

dans hijackthis, coche et fix :

O4 - HKLM\..\Run: [WinDLL (wchshield.exe)] rundll32.exe C:\WINDOWS\System32\wchshield.exe,start

phoibe
0
Réponse 3 / 14
Oone
 
Voici le rapport Ewido après analyse (prêt d'une heure et demie :sweat:)

C:\WINDOWS\system32\wchshield.exe -> Backdoor.Cloner : No action taken.
C:\WINDOWS\system32\TFTP3580 -> Dropper.Paradrop.a : No action taken.
C:\WINDOWS\system32\blsx.exe -> Dropper.Paradrop.a : No action taken.
:mozilla.27:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.28:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.29:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
C:\Documents and Settings\VP\Cookies\vp@247realmedia[2].txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.183:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.184:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.185:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.186:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.187:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.188:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.562:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.626:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\VP\Cookies\vp@microsoftwga.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\VP\Cookies\vp@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
:mozilla.139:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.140:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.141:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.142:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.114:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Adtech : No action taken.
:mozilla.115:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Adtech : No action taken.
C:\Documents and Settings\VP\Cookies\vp@adtech[2].txt -> TrackingCookie.Adtech : No action taken.
:mozilla.366:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.367:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.368:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.369:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.370:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.143:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Atdmt : No action taken.
:mozilla.20:C:\Documents and Settings\Serge\Application Data\Mozilla\Firefox\Profiles\jm80gw4t.default\cookies.txt -> TrackingCookie.Atdmt : No action taken.
C:\Documents and Settings\VP\Cookies\vp@atdmt[2].txt -> TrackingCookie.Atdmt : No action taken.
C:\Documents and Settings\VP\Cookies\vp@bluestreak[1].txt -> TrackingCookie.Bluestreak : No action taken.
:mozilla.534:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Burstnet : No action taken.
:mozilla.535:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Burstnet : No action taken.
:mozilla.536:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Burstnet : No action taken.
:mozilla.306:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.307:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.308:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.309:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.310:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
C:\Documents and Settings\VP\Cookies\vp@vip2.clickzs[2].txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.181:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Com : No action taken.
:mozilla.215:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.216:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.217:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Comclick : No action taken.
C:\Documents and Settings\VP\Cookies\vp@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : No action taken.
:mozilla.16:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Doubleclick : No action taken.
:mozilla.34:C:\Documents and Settings\Serge\Application Data\Mozilla\Firefox\Profiles\jm80gw4t.default\cookies.txt -> TrackingCookie.Doubleclick : No action taken.
C:\Documents and Settings\VP\Cookies\vp@doubleclick[1].txt -> TrackingCookie.Doubleclick : No action taken.
:mozilla.255:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Estat : No action taken.
:mozilla.528:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Euroclick : No action taken.
:mozilla.529:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Euroclick : No action taken.
:mozilla.530:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Euroclick : No action taken.
:mozilla.531:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Euroclick : No action taken.
:mozilla.532:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Euroclick : No action taken.
:mozilla.108:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.109:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.110:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.111:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.28:C:\Documents and Settings\Serge\Application Data\Mozilla\Firefox\Profiles\jm80gw4t.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.29:C:\Documents and Settings\Serge\Application Data\Mozilla\Firefox\Profiles\jm80gw4t.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.30:C:\Documents and Settings\Serge\Application Data\Mozilla\Firefox\Profiles\jm80gw4t.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.31:C:\Documents and Settings\Serge\Application Data\Mozilla\Firefox\Profiles\jm80gw4t.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.32:C:\Documents and Settings\Serge\Application Data\Mozilla\Firefox\Profiles\jm80gw4t.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.339:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.33:C:\Documents and Settings\Serge\Application Data\Mozilla\Firefox\Profiles\jm80gw4t.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.340:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.341:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.342:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.343:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.34:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.36:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.37:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.39:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.40:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.41:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
C:\Documents and Settings\VP\Cookies\vp@as1.falkag[2].txt -> TrackingCookie.Falkag : No action taken.
:mozilla.10:C:\Documents and Settings\Serge\Application Data\Mozilla\Firefox\Profiles\jm80gw4t.default\cookies.txt -> TrackingCookie.Fastclick : No action taken.
:mozilla.11:C:\Documents and Settings\Serge\Application Data\Mozilla\Firefox\Profiles\jm80gw4t.default\cookies.txt -> TrackingCookie.Fastclick : No action taken.
:mozilla.12:C:\Documents and Settings\Serge\Application Data\Mozilla\Firefox\Profiles\jm80gw4t.default\cookies.txt -> TrackingCookie.Fastclick : No action taken.
:mozilla.377:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Fastclick : No action taken.
:mozilla.378:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Fastclick : No action taken.
:mozilla.9:C:\Documents and Settings\Serge\Application Data\Mozilla\Firefox\Profiles\jm80gw4t.default\cookies.txt -> TrackingCookie.Fastclick : No action taken.
:mozilla.229:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.592:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.257:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.258:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.259:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.269:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.270:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.271:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.364:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.365:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.641:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.642:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.644:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.645:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.218:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Mediaplex : No action taken.
C:\Documents and Settings\VP\Cookies\vp@mediaplex[1].txt -> TrackingCookie.Mediaplex : No action taken.
:mozilla.225:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Overture : No action taken.
:mozilla.303:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Qksrv : No action taken.
:mozilla.304:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Qksrv : No action taken.
:mozilla.464:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.465:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.466:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.467:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.468:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.469:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.470:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.471:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.472:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.473:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.474:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
C:\Documents and Settings\VP\Cookies\vp@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.6:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
C:\Documents and Settings\VP\Cookies\vp@serving-sys[1].txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.291:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.292:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.293:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.294:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.295:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.296:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.297:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.298:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
C:\Documents and Settings\VP\Cookies\vp@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.126:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.130:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.131:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.132:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.133:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.134:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.135:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.136:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
C:\Documents and Settings\VP\Cookies\vp@statcounter[2].txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.201:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Tacoda : No action taken.
:mozilla.206:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Tacoda : No action taken.
:mozilla.207:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Tacoda : No action taken.
:mozilla.208:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Tacoda : No action taken.
:mozilla.85:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.90:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
C:\Documents and Settings\VP\Cookies\vp@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.260:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Tribalfusion : No action taken.
:mozilla.26:C:\Documents and Settings\Serge\Application Data\Mozilla\Firefox\Profiles\jm80gw4t.default\cookies.txt -> TrackingCookie.Tribalfusion : No action taken.
:mozilla.321:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Valueclick : No action taken.
:mozilla.322:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Valueclick : No action taken.
:mozilla.17:C:\Documents and Settings\Serge\Application Data\Mozilla\Firefox\Profiles\jm80gw4t.default\cookies.txt -> TrackingCookie.Weborama : No action taken.
:mozilla.18:C:\Documents and Settings\Serge\Application Data\Mozilla\Firefox\Profiles\jm80gw4t.default\cookies.txt -> TrackingCookie.Weborama : No action taken.
:mozilla.61:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Weborama : No action taken.
:mozilla.62:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Weborama : No action taken.
:mozilla.63:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Weborama : No action taken.
C:\Documents and Settings\VP\Cookies\vp@weborama[1].txt -> TrackingCookie.Weborama : No action taken.
:mozilla.280:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Webtrendslive : No action taken.
C:\Documents and Settings\VP\Cookies\vp@statse.webtrendslive[2].txt -> TrackingCookie.Webtrendslive : No action taken.
:mozilla.169:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Yadro : No action taken.
:mozilla.170:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Yadro : No action taken.
:mozilla.102:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Yieldmanager : No action taken.
:mozilla.103:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Yieldmanager : No action taken.
:mozilla.104:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Yieldmanager : No action taken.
:mozilla.105:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Yieldmanager : No action taken.
:mozilla.106:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Yieldmanager : No action taken.
:mozilla.107:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Yieldmanager : No action taken.
:mozilla.148:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Zedo : No action taken.
:mozilla.149:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Zedo : No action taken.
:mozilla.150:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Zedo : No action taken.
:mozilla.151:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Zedo : No action taken.
:mozilla.152:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Zedo : No action taken.
:mozilla.153:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Zedo : No action taken.

::Report end

et un nouveau HijackThis

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe
C:\Fraps\fraps.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\VP\Mes documents\Hijack\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [kav] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra button: Antivirus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site....
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://drivers1.free.fr/telecharger.php?id=2&version=
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

Le scan de BitDefender arriiiiivera dans la soirée :D
0
Réponse 4 / 14
Oone
 
ERREUR MONUMENTAL : j'avais oublié de delete les fichiers infectés, donc voici les deux rapports à jour :

C:\WINDOWS\system32\wchshield.exe -> Backdoor.Cloner : Cleaned.
C:\WINDOWS\system32\TFTP3580 -> Dropper.Paradrop.a : Cleaned.
C:\WINDOWS\system32\blsx.exe -> Dropper.Paradrop.a : Cleaned.
:mozilla.27:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.28:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.29:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
C:\Documents and Settings\VP\Cookies\vp@247realmedia[2].txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.183:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.184:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.185:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.186:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.187:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.188:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.562:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.626:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\VP\Cookies\vp@microsoftwga.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\VP\Cookies\vp@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.139:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.140:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.141:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.142:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.114:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.115:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
C:\Documents and Settings\VP\Cookies\vp@adtech[2].txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.366:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.367:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.368:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.369:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.370:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.143:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.20:C:\Documents and Settings\Serge\Application Data\Mozilla\Firefox\Profiles\jm80gw4t.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
C:\Documents and Settings\VP\Cookies\vp@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned.
C:\Documents and Settings\VP\Cookies\vp@bluestreak[1].txt -> TrackingCookie.Bluestreak : Cleaned.
:mozilla.534:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.535:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.536:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.306:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.307:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.308:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.309:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.310:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
C:\Documents and Settings\VP\Cookies\vp@vip2.clickzs[2].txt -> TrackingCookie.Clickzs : Cleaned.
:mozilla.181:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.215:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.216:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.217:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Comclick : Cleaned.
C:\Documents and Settings\VP\Cookies\vp@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.16:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.34:C:\Documents and Settings\Serge\Application Data\Mozilla\Firefox\Profiles\jm80gw4t.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
C:\Documents and Settings\VP\Cookies\vp@doubleclick[1].txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.255:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Estat : Cleaned.
:mozilla.528:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.529:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.530:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.531:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.532:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.108:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.109:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.110:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.111:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.28:C:\Documents and Settings\Serge\Application Data\Mozilla\Firefox\Profiles\jm80gw4t.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.29:C:\Documents and Settings\Serge\Application Data\Mozilla\Firefox\Profiles\jm80gw4t.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.30:C:\Documents and Settings\Serge\Application Data\Mozilla\Firefox\Profiles\jm80gw4t.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.31:C:\Documents and Settings\Serge\Application Data\Mozilla\Firefox\Profiles\jm80gw4t.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.32:C:\Documents and Settings\Serge\Application Data\Mozilla\Firefox\Profiles\jm80gw4t.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.339:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.33:C:\Documents and Settings\Serge\Application Data\Mozilla\Firefox\Profiles\jm80gw4t.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.340:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.341:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.342:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.343:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.34:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.36:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.37:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.39:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.40:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.41:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
C:\Documents and Settings\VP\Cookies\vp@as1.falkag[2].txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.10:C:\Documents and Settings\Serge\Application Data\Mozilla\Firefox\Profiles\jm80gw4t.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.11:C:\Documents and Settings\Serge\Application Data\Mozilla\Firefox\Profiles\jm80gw4t.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.12:C:\Documents and Settings\Serge\Application Data\Mozilla\Firefox\Profiles\jm80gw4t.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.377:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.378:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.9:C:\Documents and Settings\Serge\Application Data\Mozilla\Firefox\Profiles\jm80gw4t.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.229:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.592:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.257:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.258:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.259:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.269:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.270:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.271:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.364:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.365:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.641:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.642:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.644:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.645:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.218:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
C:\Documents and Settings\VP\Cookies\vp@mediaplex[1].txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.225:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.303:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned.
:mozilla.304:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned.
:mozilla.464:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.465:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.466:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.467:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.468:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.469:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.470:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.471:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.472:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.473:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.474:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
C:\Documents and Settings\VP\Cookies\vp@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.6:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
C:\Documents and Settings\VP\Cookies\vp@serving-sys[1].txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.291:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.292:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.293:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.294:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.295:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.296:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.297:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.298:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
C:\Documents and Settings\VP\Cookies\vp@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.126:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.130:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.131:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.132:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.133:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.134:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.135:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.136:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
C:\Documents and Settings\VP\Cookies\vp@statcounter[2].txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.201:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.206:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.207:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.208:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.85:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.90:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
C:\Documents and Settings\VP\Cookies\vp@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.260:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.26:C:\Documents and Settings\Serge\Application Data\Mozilla\Firefox\Profiles\jm80gw4t.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.321:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Valueclick : Cleaned.
:mozilla.322:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Valueclick : Cleaned.
:mozilla.17:C:\Documents and Settings\Serge\Application Data\Mozilla\Firefox\Profiles\jm80gw4t.default\cookies.txt -> TrackingCookie.Weborama : Cleaned.
:mozilla.18:C:\Documents and Settings\Serge\Application Data\Mozilla\Firefox\Profiles\jm80gw4t.default\cookies.txt -> TrackingCookie.Weborama : Cleaned.
:mozilla.61:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Weborama : Cleaned.
:mozilla.62:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Weborama : Cleaned.
:mozilla.63:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Weborama : Cleaned.
C:\Documents and Settings\VP\Cookies\vp@weborama[1].txt -> TrackingCookie.Weborama : Cleaned.
:mozilla.280:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned.
C:\Documents and Settings\VP\Cookies\vp@statse.webtrendslive[2].txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.169:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Yadro : Cleaned.
:mozilla.170:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Yadro : Cleaned.
:mozilla.102:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.103:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.104:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.105:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.106:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.107:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.148:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.149:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.150:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.151:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.152:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.153:C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.

::Report end

Et le HIJACK à jour :

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe
C:\Fraps\fraps.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Documents and Settings\VP\Mes documents\Hijack\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [kav] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra button: Antivirus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site....
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://drivers1.free.fr/telecharger.php?id=2&version=
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

Le BitDefender arrive dans quelques heures.
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 14
Séb08 Messages postés 18169 Date d'inscription   Statut Contributeur Dernière intervention   1 430
 
slt,

ERREUR MONUMENTAL : j'avais oublié de delete les fichiers infectés

Bien, au moins tu t'en est aperçu...

Colle le rapport de bitdefender lorsqu'il sera terminé mais à mon avis pour nous ça sera pour demain... :)

A+
0
Oone
 
Le voici le voilà : par contre l'est un peu moisi du genoux, mais heureusement y'avais qu'un fichier infecté (system32/i) que voici :


<tr>
<td colspan=2>  
<table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%">
<tr>
<td width="252" bgcolor="#CCCCCC">
<p><font face="Arial" size="2"><B>Scanned File</b></font></p>
</td>
<td width="195" bgcolor="#CCCCCC" align="right">
<p align="left"><b><font size="2" face="Arial"> Status</font></b></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">C:\WINDOWS\system32\i</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Infected with: Backdoor.BotGet.FtpB.Gen</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\WINDOWS\system32\i</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Deleted</font></p>
0
Séb08 Messages postés 18169 Date d'inscription   Statut Contributeur Dernière intervention   1 430
 
Ensuite télécharges smitfraudfix :

En image :
http://siri.urz.free.fr/Fix/SmitfraudFix.php

tu le décompresses tu doubles cliques sur smitfraudfix.cmd et tu choisi l option 1
cela vas générer un rapport.
Si tu vois des lignes avec PRESENT! Continue la manip qui suit.

Redémarres le PC en mode sans échec : tu tapotes sur la touche F8 de ton clavier (ou F5 ) et tu choisis le mode sans échec)

- Ouvre le dossier "SmitfraudFix" et double clic sur "Smitfraudfix.cmd", choisit l’option 2 et tu réponds oui à tout.

Copie/colle le rapport sur le forum stp.

A+
0
Oone > Séb08 Messages postés 18169 Date d'inscription   Statut Contributeur Dernière intervention  
 
Le voilà :

SmitFraudFix v2.68b

Rapport fait à 10:55:23,03, 07/07/2006
Executé à partir de C:\Documents and Settings\VP\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Fix executé en mode sans echec

»»»»»»»»»»»»»»»»»»»»»»»» Avant SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» Arret des processus


»»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix

GenericRenosFix by S!Ri


»»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés


»»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires


»»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre

Nettoyage terminé.

»»»»»»»»»»»»»»»»»»»»»»»» Après SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll


»»»»»»»»»»»»»»»»»»»»»»»» Fin
0
Réponse 6 / 14
Séb08 Messages postés 18169 Date d'inscription   Statut Contributeur Dernière intervention   1 430
 
Remet un hijack STP

A+
0
Réponse 7 / 14
Oone
 
Le voici :

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\VP\Mes documents\Hijack\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [kav] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra button: Antivirus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site....
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://drivers1.free.fr/telecharger.php?id=2&version=
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
0
Réponse 8 / 14
Kristopher Messages postés 3752 Statut Contributeur 106
 
Salut,

Où en sont tes soucis Oone ?

Pour accélérer ton PC fais ceci :

Télécharge et nettoie ton PC avec ces deux logiciels :

CCLEANER https://www.01net.com/telecharger/windows/Utilitaire/nettoyeurs_et_installeurs/fiches/32599.html

Utilisation : Dans l'onglet "Nettoyeur" cliquez sur "Analyse". Une fois l'analyse terminée, cliquez sur "Lancer le Nettoyage".
Ensuite, dans l'onglet "Erreurs" cliquez sur "Chercher des erreurs" puis, avant de cliquer sur "Réparer les erreurs sélectionnées" effectuez une sauvegarde de votre registre (comme proposé).

CleanUp40
http://pageperso.aol.fr/Balltrap34/CleanUp40.exe
Démo d’utilisation :
http://pageperso.aol.fr/balltrap34/democleanup.htm

Puis, pour vérifier, fais ceci :

Scanne ton PC avec cet antivirus en ligne : https://www.pandasecurity.com/?ref=www.pandasoftware.com/activescan/fr/activescan_principal.htm
Copie/colle le rapport sur le forum.

Courage, Kristopher
0
Réponse 9 / 14
Oonee Messages postés 4 Statut Membre
 
Je rame toujours, par exemple là l'application s'est terminé et s'est impossible d'ouvrir deux pages en même temps

Le rapport d'Activescan :

Incident Statut Analyse

Spyware:spyware/virtumonde No Désinfecté Registre Windows
Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt[.xiti.com/]
Spyware:Cookie/RealMedia No Désinfecté C:\Documents and Settings\VP\Application Data\Mozilla\Firefox\Profiles\eg6xq47f.default\cookies.txt[.247realmedia.com/]
Outil indésirable:Application/Processor No Désinfecté C:\Documents and Settings\VP\Bureau\SmitfraudFix\Process.exe
Adware:Adware/DollarRevenue No Désinfecté C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\OXCFEN0H\drsmartload278a[1].exe
Adware:Adware/DollarRevenue

E tun Hijack :

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Documents and Settings\VP\Mes documents\Hijack\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [kav] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra button: Antivirus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site....
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://drivers1.free.fr/telecharger.php?id=2&version=
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
0
Réponse 10 / 14
Kristopher Messages postés 3752 Statut Contributeur 106
 
Re

Relis plus attentivement ce que je t'ai marqué plus haut si tu ne vois pas.

Malgré mon conseil, tu n'as pas scanné le PC comme il fallait avec les deux logiciels, pas étonnant que les infections persistent !

Et mets le rapport HijackThis complet, comme au tout début.
0
Réponse 11 / 14
Oonee Messages postés 4 Statut Membre
 
Autant pour moi, j'avais complètement zappé CleanUp alors que j'ai pourtant l'habitude de l'utiliser. J'espère que ça ne posera pas de pb pour la suite :s

Voici le Hijack :

Logfile of HijackThis v1.99.1
Scan saved at 17:48:58, on 07/07/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Documents and Settings\VP\Mes documents\Hijack\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [kav] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra button: Antivirus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site....
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://drivers1.free.fr/telecharger.php?id=2&version=
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
0
Réponse 12 / 14
Oonee Messages postés 4 Statut Membre
 
Erf, à vrai dire j'ai l'impression que mon ordinateur rame de plus en plus et de plus en plus vite X_X
0
Réponse 13 / 14
Kristopher Messages postés 3752 Statut Contributeur 106
 
Salut,

Peut être que ton PC rame mais en tout cas il est presque clean (contrairement à la situation initiale !!)

Fais exactement ce qui suit et dans l'ordre :

1/ Scanne ton PC avec cet antispyware en ligne :
https://www.trendmicro.com/en_us/forHome/products/housecall.html
Clique sur "I Accept" et patiente un peu…
Ensuite, clique sur "Start Scan"
À la fin du scan "Scan Results" -> "Clean Threats Now"

2/ Télécharge EasyCleaner ici :

https://www.01net.com/telecharger/windows/Utilitaire/registre/fiches/8351.html

Utilisation : Exécuter EasyCleaner, choisir "Registre" + "Inutiles". Ne pas toucher à la fonction doublons. Supprimer tout ce qu'il vous propose.

3/ Clique sur Poste de travail -> Disque local (C:) -> Clique droit sur "Propriétés" -> onglet "Outils" -> "Vérifier maintenant... " -> coche les deux cases "Réparer" et "Rechercher" -> clique sur "Démarrer" -> "Oui" (pour le message qui va apparaître).

Une fois la vérification achevée, redémarre le PC en mode sans échec : tu tapotes sur la touche F8 de ton clavier (ou bien F5 selon la version de Windows) et tu choisis le mode sans échec puis tu fais une défragmentation de tous tes disques durs.

Tiens moi au courant quant à l'évolution de la situation.

Bonne soirée.
0
Réponse 14 / 14
Oonee Messages postés 4 Statut Membre
 
Tout est fait. Résultat : pas vraiment mieux :/ Ca rame toujours autant, j'ai l'impression que c'est firefox... parceque si j'allume mon pc et que je commence une partie de hl2, je vais jouer sans problème... dès que j'arrête de jouer, que je vais sur internet, les problèmes commencent :/

Un petit Hijack pour la route :

Logfile of HijackThis v1.99.1
Scan saved at 11:00:03, on 09/07/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Documents and Settings\VP\Mes documents\Hijack\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [kav] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra button: Antivirus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site....
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://drivers1.free.fr/telecharger.php?id=2&version=
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {B1826A9F-4AA0-4510-BA77-9013E74E4B9B} - http://www.trendmicro.com/spyware-scan/as4web.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
0

Discussions similaires

CPU 100% en jeu
Yokoku -
Malekal_morte- -

8 réponses
besoin d'aide pour la conversion de format
tadoni -
renard bleu -

1 réponse
Ce numéro de téléphone a déjà été utilisé de trop nombreuses
ttt -
MPMP10 -

1 réponse
Question 1 Mb = ?Mo
allosme -
Kayzer54 -

6 réponses
100 mo d'internet en gros c quoi ?
jess4 -
MPMP10 -

4 réponses