Sujet Précédent Sujet Suivant

[Virus] Win32.Perlovga.A (Copy.exe, Autorun)

Fermé
Stahn - 22 nov. 2006 à 18:19
 AQueLaVérité - 19 sept. 2013 à 16:23
Salut tout le monde,
Mon PC est infecté par le virus "Win32Perlovga.A"
J'utilse BitDefender 8 Pro comme antivirus
Lors des analyses il a détecté le fichier Copy.exe sur presque toute les partitions
Or il se regénère à chaque fois que je veux accèder à un disque
Il y a aussi les fichiers "autorun.inf" qui se créent sur la racine
de toute les partitions aussi
A noter aussi la présence de deux processus "temp1" et "temp2" chargés
Comment je peux me débarasser de ce virus S'il Vous Plait.
A voir également:

34 réponses

  • 1
  • 2
Réponse 1 / 34
Séb08 Messages postés 16502 Date d'inscription dimanche 13 novembre 2005 Statut Contributeur Dernière intervention 17 février 2023 1 430
22 nov. 2006 à 18:28
slt,

Regarde bien et applique ce qui est indiqué en gras pour les 2 installations .

==================================

Télécharge et installe ce log :

ewido (gratuit même après la période d’essai)
Téléchargement :
ewido
Cliques sur « update » fais les mise à jour ensuite clique sur « scanner » puis sur « complete scan system ».
Tuto pour la version 4 d’Ewido :
https://www.malekal.com/tutorial-et-guide-ewido-v4/

Met le à jour comme indiqué, lance le « delete » (supprime) tout ce qu’il te trouve et copie/colle moi le rapport.

Puis :


télécharge HijackThis (version francaise) ici:
hijackthis

Dézippe le dans un dossier prévu à cet effet.

Par exemple C:\hijackthis < Enregistre le bien dans c : !

Démo (merci à Balltrap) :
instalation hijackthis
http://pageperso.aol.fr/balltrap34/Hijenr.gif

Lance le puis:
clique sur "faire un scan et sauvegarder le log" (cf démo)
faire un copier coller du log entier sur le forum

Démo : (merci à balltrap34 pour cette réalisation)
http://pageperso.aol.fr/balltrap34/demohijack.htm

Bon courage

a+
1
Réponse 2 / 34
Stahn
22 nov. 2006 à 22:09
Voilà les 2 logfiles :

ewido anti-spyware - Scan Report
---------------------------------------------------------

+ Created at: 21:00:08 22/11/2006

+ Scan result:



C:\_RESTORE\TEMP\IPCCLI~1.0 -> Adware.Aureate : No action taken.
C:\_RESTORE\TEMP\MSIPCSV.0 -> Adware.Aureate : No action taken.
C:\WINDOWS\SYSTEM\cp.exe -> Adware.ComedyPlanet : No action taken.
C:\WINDOWS\Temporary Internet Files\Content.IE5\ORB3MWHL\c15[1].exe -> Adware.ComedyPlanet : No action taken.
C:\WINDOWS\SYSTEM\GoGo9CP.dll -> Adware.EZula : No action taken.
C:\Program Files\DivX\DivX Pro Codec\gain_trickler_3202.exe -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\CMEII\CMEIIAPI.dll -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\CMEII\CMESys.exe -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\CMEII\GAppMgr.dll -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\CMEII\GController.dll -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\CMEII\GDwldEng.dll -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\CMEII\GIocl.dll -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\CMEII\GIoclClient.dll -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\CMEII\GMTProxy.dll -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\CMEII\GObjs.dll -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\CMEII\GStore.dll -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\CMEII\GStoreServer.dll -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\CMEII\Gtools.dll -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\GMT\EGIEProcess.dll -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\GMT\EGNSEngine.dll -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\GMT\GMT.exe -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\GMT\GUninstaller.exe -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\GMT\GatorRes.dll -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\GMT\GatorStubSetup.exe -> Adware.Gator : No action taken.
C:\Program Files\Fichiers communs\GMT\egIEEngine.dll -> Adware.Gator : No action taken.
C:\WINDOWS\SYSTEM\gogotoolsSILAWO9pi.exe -> Adware.GogoTools : No action taken.
C:\WINDOWS\HLInstaller3.exe -> Adware.MDH : No action taken.
C:\WINDOWS\SYSTEM\HyperLinker3.exe -> Adware.MDH : No action taken.
C:\WINDOWS\Temporary Internet Files\Content.IE5\EPRWDKZI\HyperLinker3[1].cab/HyperLinker3.exe -> Adware.MDH : No action taken.
C:\WINDOWS\SYSTEM\lmf32v.dll -> Adware.Suggestor : No action taken.
F:\WINDOWS\system32\temp2.exe -> Backdoor.Small.lo : No action taken.
C:\WINDOWS\SYSTEM\MegasearchBarSetup.exe -> Downloader.Agent.a : No action taken.
C:\WINDOWS\SYSTEM\CP22.exe -> Downloader.Small.ahx : No action taken.
C:\WINDOWS\SYSTEM\TVM_B5B27.EXE -> Downloader.Small.wk : No action taken.
J:\[Software] Utilitaires\Bitcomet 0.68 Crack.rar/crack.exe -> Dropper.Agent.anl : No action taken.
C:\WINDOWS\SYSTEM\in10b6.dll -> Dropper.Small.abe : No action taken.
C:\host.exe -> Dropper.Small.apl : No action taken.
D:\host.exe -> Dropper.Small.apl : No action taken.
E:\host.exe -> Dropper.Small.apl : No action taken.
F:\WINDOWS\svchost.exe -> Dropper.Small.apl : No action taken.
F:\host.exe -> Dropper.Small.apl : No action taken.
G:\host.exe -> Dropper.Small.apl : No action taken.
H:\host.exe -> Dropper.Small.apl : No action taken.
J:\host.exe -> Dropper.Small.apl : No action taken.
C:\WINDOWS\SYSTEM\a.exe -> Logger.Briss.c : No action taken.
C:\WINDOWS\SYSTEM\bridge.dll -> Logger.Briss.c : No action taken.
C:\Program Files\WinRAR\Patcher.exe -> Not-A-Virus.VirTool.Win32.AvSpoffer.a : No action taken.
J:\[Software] Utilitaires\Stream Video Audio Capture Pack\StreamBox.zip/fr_svcr1b31_crack.zip/fr_svcr1b31_crack.exe -> Not-A-Virus.VirTool.Win32.AvSpoffer.a : No action taken.
J:\[Software] Utilitaires\Stream Video Audio Capture Pack\StreamBox.zip/fr_svcr1b31_crack/fr_svcr1b31_crack.exe -> Not-A-Virus.VirTool.Win32.AvSpoffer.a : No action taken.
:mozilla.116:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.117:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.118:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.229:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.51:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.52:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.53:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.54:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.55:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.56:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.57:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.726:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.727:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.728:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.729:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.129:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.139:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.187:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.188:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.189:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.351:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.361:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.370:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.535:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.536:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.537:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.538:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.715:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.716:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
F:\Documents and Settings\Mahmoud\Cookies\mahmoud@2o7[1].txt -> TrackingCookie.2o7 : No action taken.
:mozilla.25:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.517:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.518:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.519:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.755:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.756:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.758:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.738:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Addcontrol : No action taken.
:mozilla.522:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Adrevolver : No action taken.
:mozilla.523:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Adrevolver : No action taken.
:mozilla.135:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Adserver : No action taken.
:mozilla.137:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Adserver : No action taken.
C:\WINDOWS\Cookies\anyuser@z1.adserver[1].txt -> TrackingCookie.Adserver : No action taken.
C:\WINDOWS\Cookies\anyuser@z1.adserver[3].txt -> TrackingCookie.Adserver : No action taken.
:mozilla.107:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Adtech : No action taken.
:mozilla.108:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Adtech : No action taken.
:mozilla.158:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Adtech : No action taken.
:mozilla.159:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Adtech : No action taken.
:mozilla.162:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Adtech : No action taken.
:mozilla.163:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Adtech : No action taken.
:mozilla.231:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Adtech : No action taken.
:mozilla.244:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Adtech : No action taken.
C:\WINDOWS\Cookies\anyuser@adtech[2].txt -> TrackingCookie.Adtech : No action taken.
:mozilla.116:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.117:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.118:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.119:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.120:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.121:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.144:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.145:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.146:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.147:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.150:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.151:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.152:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.153:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.154:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.155:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.156:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.157:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.158:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.434:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.436:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.437:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.438:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.439:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.440:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
C:\WINDOWS\Cookies\anyuser@advertising[2].txt -> TrackingCookie.Advertising : No action taken.
C:\WINDOWS\Cookies\anyuser@advertising[3].txt -> TrackingCookie.Advertising : No action taken.
C:\WINDOWS\Cookies\anyuser@servedby.advertising[1].txt -> TrackingCookie.Advertising : No action taken.
C:\WINDOWS\Cookies\anyuser@servedby.advertising[3].txt -> TrackingCookie.Advertising : No action taken.
F:\Documents and Settings\Mahmoud\Cookies\mahmoud@advertising[1].txt -> TrackingCookie.Advertising : No action taken.
:mozilla.112:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Atdmt : No action taken.
:mozilla.115:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Atdmt : No action taken.
:mozilla.54:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Atdmt : No action taken.
:mozilla.59:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Atdmt : No action taken.
C:\WINDOWS\Cookies\anyuser@atdmt[2].txt -> TrackingCookie.Atdmt : No action taken.
F:\Documents and Settings\Mahmoud\Cookies\mahmoud@atdmt[2].txt -> TrackingCookie.Atdmt : No action taken.
:mozilla.245:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Bfast : No action taken.
:mozilla.573:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Bfast : No action taken.
C:\WINDOWS\Cookies\anyuser@bfast[2].txt -> TrackingCookie.Bfast : No action taken.
:mozilla.12:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Bluestreak : No action taken.
:mozilla.148:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Bluestreak : No action taken.
:mozilla.181:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Bluestreak : No action taken.
:mozilla.73:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Bluestreak : No action taken.
C:\WINDOWS\Cookies\anyuser@bluestreak[1].txt -> TrackingCookie.Bluestreak : No action taken.
C:\WINDOWS\Cookies\anyuser@bluestreak[2].txt -> TrackingCookie.Bluestreak : No action taken.
F:\Documents and Settings\Mahmoud\Cookies\mahmoud@bluestreak[2].txt -> TrackingCookie.Bluestreak : No action taken.
:mozilla.261:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Burstnet : No action taken.
:mozilla.446:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Burstnet : No action taken.
:mozilla.447:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Burstnet : No action taken.
:mozilla.513:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Burstnet : No action taken.
:mozilla.514:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Burstnet : No action taken.
C:\WINDOWS\Cookies\anyuser@burstnet[2].txt -> TrackingCookie.Burstnet : No action taken.
:mozilla.367:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.368:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.369:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.370:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.373:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.374:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.375:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.81:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.82:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.83:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.84:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.95:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.96:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.97:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
C:\WINDOWS\Cookies\anyuser@casalemedia[2].txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.767:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Casinotropez : No action taken.
:mozilla.263:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Clickbank : No action taken.
:mozilla.143:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Com : No action taken.
:mozilla.144:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Com : No action taken.
:mozilla.218:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Com : No action taken.
:mozilla.95:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Com : No action taken.
C:\WINDOWS\Cookies\anyuser@com[2].txt -> TrackingCookie.Com : No action taken.
F:\Documents and Settings\Mahmoud\Cookies\mahmoud@com[1].txt -> TrackingCookie.Com : No action taken.
:mozilla.125:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.126:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.127:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.195:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.196:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.197:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.198:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.292:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.293:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.294:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Comclick : No action taken.
C:\WINDOWS\Cookies\anyuser@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : No action taken.
F:\Documents and Settings\Mahmoud\Cookies\mahmoud@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : No action taken.
:mozilla.18:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Doubleclick : No action taken.
:mozilla.20:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Doubleclick : No action taken.
:mozilla.43:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Doubleclick : No action taken.
:mozilla.52:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Doubleclick : No action taken.
C:\WINDOWS\Cookies\anyuser@doubleclick[2].txt -> TrackingCookie.Doubleclick : No action taken.
F:\Documents and Settings\Mahmoud\Cookies\mahmoud@doubleclick[1].txt -> TrackingCookie.Doubleclick : No action taken.
:mozilla.135:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Esomniture : No action taken.
:mozilla.128:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Estat : No action taken.
:mozilla.216:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Estat : No action taken.
:mozilla.36:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Estat : No action taken.
:mozilla.57:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Estat : No action taken.
C:\WINDOWS\Cookies\anyuser@estat[1].txt -> TrackingCookie.Estat : No action taken.
:mozilla.805:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Euroclick : No action taken.
:mozilla.175:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.176:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.177:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.178:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.179:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.180:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.210:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.252:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.253:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.254:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.255:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.256:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.257:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.307:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.308:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.309:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.310:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.401:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
C:\WINDOWS\Cookies\anyuser@as-us.falkag[2].txt -> TrackingCookie.Falkag : No action taken.
C:\WINDOWS\Cookies\anyuser@as1.falkag[1].txt -> TrackingCookie.Falkag : No action taken.
C:\WINDOWS\Cookies\anyuser@as1.falkag[2].txt -> TrackingCookie.Falkag : No action taken.
F:\Documents and Settings\Mahmoud\Cookies\mahmoud@as1.falkag[1].txt -> TrackingCookie.Falkag : No action taken.
:mozilla.136:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Fastclick : No action taken.
:mozilla.138:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Fastclick : No action taken.
:mozilla.19:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Fastclick : No action taken.
:mozilla.215:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Fastclick : No action taken.
:mozilla.216:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Fastclick : No action taken.
:mozilla.83:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Fastclick : No action taken.
:mozilla.84:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Fastclick : No action taken.
:mozilla.85:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Fastclick : No action taken.
:mozilla.86:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Fastclick : No action taken.
C:\WINDOWS\Cookies\anyuser@fastclick[1].txt -> TrackingCookie.Fastclick : No action taken.
C:\WINDOWS\Cookies\anyuser@fastclick[3].txt -> TrackingCookie.Fastclick : No action taken.
C:\WINDOWS\Cookies\anyuser@gator[1].txt -> TrackingCookie.Gator : No action taken.
C:\WINDOWS\Cookies\anyuser@gator[2].txt -> TrackingCookie.Gator : No action taken.
C:\WINDOWS\Cookies\anyuser@webpdp.gator[2].txt -> TrackingCookie.Gator : No action taken.
:mozilla.206:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Goclick : No action taken.
C:\WINDOWS\Cookies\anyuser@goclick[1].txt -> TrackingCookie.Goclick : No action taken.
:mozilla.218:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.212:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.213:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.214:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.608:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.609:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.646:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.726:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.727:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.728:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.729:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.835:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.930:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
C:\WINDOWS\Cookies\anyuser@ehg-dig.hitbox[1].txt -> TrackingCookie.Hitbox : No action taken.
C:\WINDOWS\Cookies\anyuser@hitbox[1].txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.130:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Hitslink : No action taken.
:mozilla.131:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Hitslink : No action taken.
:mozilla.132:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Hitslink : No action taken.
:mozilla.133:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Hitslink : No action taken.
:mozilla.125:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Hotlog : No action taken.
:mozilla.660:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Hotlog : No action taken.
:mozilla.90:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Hotlog : No action taken.
C:\WINDOWS\Cookies\anyuser@hotlog[1].txt -> TrackingCookie.Hotlog : No action taken.
:mozilla.572:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Ivwbox : No action taken.
C:\WINDOWS\Cookies\anyuser@ivwbox[2].txt -> TrackingCookie.Ivwbox : No action taken.
:mozilla.301:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Mediaplex : No action taken.
:mozilla.302:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Mediaplex : No action taken.
:mozilla.31:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Mediaplex : No action taken.
:mozilla.32:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Mediaplex : No action taken.
:mozilla.57:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Mediaplex : No action taken.
C:\WINDOWS\Cookies\anyuser@mediaplex[1].txt -> TrackingCookie.Mediaplex : No action taken.
F:\Documents and Settings\Mahmoud\Cookies\mahmoud@mediaplex[1].txt -> TrackingCookie.Mediaplex : No action taken.
:mozilla.561:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Onestat : No action taken.
:mozilla.562:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Onestat : No action taken.
:mozilla.563:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Onestat : No action taken.
:mozilla.101:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Overture : No action taken.
:mozilla.140:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Overture : No action taken.
:mozilla.141:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Overture : No action taken.
:mozilla.877:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Overture : No action taken.
C:\WINDOWS\Cookies\anyuser@www10.paypopup[1].txt -> TrackingCookie.Paypopup : No action taken.
C:\WINDOWS\Cookies\anyuser@www2.paypopup[1].txt -> TrackingCookie.Paypopup : No action taken.
C:\WINDOWS\Cookies\anyuser@www4.paypopup[2].txt -> TrackingCookie.Paypopup : No action taken.
C:\WINDOWS\Cookies\anyuser@www6.paypopup[1].txt -> TrackingCookie.Paypopup : No action taken.
C:\WINDOWS\Cookies\anyuser@www7.paypopup[1].txt -> TrackingCookie.Paypopup : No action taken.
:mozilla.222:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.223:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.224:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.225:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.731:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.732:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.733:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.734:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Pointroll : No action taken.
C:\WINDOWS\Cookies\anyuser@ads.pointroll[2].txt -> TrackingCookie.Pointroll : No action taken.
F:\Documents and Settings\Mahmoud\Cookies\mahmoud@ads.pointroll[2].txt -> TrackingCookie.Pointroll : No action taken.
C:\WINDOWS\Cookies\anyuser@ppms.popularix[1].txt -> TrackingCookie.Popularix : No action taken.
:mozilla.252:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Qksrv : No action taken.
:mozilla.254:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Qksrv : No action taken.
:mozilla.357:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Qksrv : No action taken.
:mozilla.358:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Qksrv : No action taken.
:mozilla.50:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Questionmarket : No action taken.
:mozilla.51:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Questionmarket : No action taken.
:mozilla.667:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Questionmarket : No action taken.
:mozilla.668:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Questionmarket : No action taken.
C:\WINDOWS\Cookies\anyuser@questionmarket[1].txt -> TrackingCookie.Questionmarket : No action taken.
C:\WINDOWS\Cookies\anyuser@ads.realcastmedia[1].txt -> TrackingCookie.Realcastmedia : No action taken.
C:\WINDOWS\Cookies\anyuser@www.realcastmedia[2].txt -> TrackingCookie.Realcastmedia : No action taken.
:mozilla.250:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Revenue : No action taken.
:mozilla.482:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Revenue : No action taken.
:mozilla.533:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Revenue : No action taken.
C:\WINDOWS\Cookies\anyuser@revenue[2].txt -> TrackingCookie.Revenue : No action taken.
C:\WINDOWS\Cookies\anyuser@revenue[3].txt -> TrackingCookie.Revenue : No action taken.
C:\WINDOWS\Cookies\anyuser@edge.ru4[2].txt -> TrackingCookie.Ru4 : No action taken.
:mozilla.331:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.332:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.333:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.334:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.335:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.336:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.380:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.381:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.382:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.383:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.43:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.44:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.45:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.46:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
C:\WINDOWS\Cookies\anyuser@serving-sys[1].txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.122:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Sitestat : No action taken.
:mozilla.123:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Sitestat : No action taken.
:mozilla.405:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Sitestat : No action taken.
:mozilla.507:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Sitestat : No action taken.
:mozilla.508:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Sitestat : No action taken.
:mozilla.531:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Sitestat : No action taken.
:mozilla.532:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Sitestat : No action taken.
:mozilla.938:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Sitestat : No action taken.
:mozilla.10:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.11:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.11:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.12:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.13:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.15:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.16:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.17:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.6:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.74:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.75:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.76:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Smartadserver : No action taken.
F:\Documents and Settings\Mahmoud\Cookies\mahmoud@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.160:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Spylog : No action taken.
C:\WINDOWS\Cookies\anyuser@spylog[1].txt -> TrackingCookie.Spylog : No action taken.
:mozilla.129:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.33:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.34:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.36:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.37:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.38:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.39:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.40:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.41:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.42:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.43:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.44:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.45:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.46:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.47:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.48:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.49:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.592:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.593:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.594:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.595:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.596:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.597:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.598:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.599:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.600:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.601:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.602:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.603:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.604:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.605:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.606:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.607:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.608:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.609:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.610:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.611:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.612:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.613:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.614:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.615:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.616:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.617:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.618:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
C:\WINDOWS\Cookies\anyuser@statcounter[1].txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.451:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Tacoda : No action taken.
:mozilla.452:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Tacoda : No action taken.
:mozilla.803:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Tacoda : No action taken.
:mozilla.804:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Tacoda : No action taken.
:mozilla.168:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Targetnet : No action taken.
:mozilla.417:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Targetnet : No action taken.
C:\WINDOWS\Cookies\anyuser@targetnet[1].txt -> TrackingCookie.Targetnet : No action taken.
F:\Documents and Settings\Mahmoud\Cookies\mahmoud@targetnet[1].txt -> TrackingCookie.Targetnet : No action taken.
C:\WINDOWS\Cookies\anyuser@tfag[2].txt -> TrackingCookie.Tfag : No action taken.
C:\WINDOWS\Cookies\anyuser@tracking.thunderdownloads[2].txt -> TrackingCookie.Thunderdownloads : No action taken.
:mozilla.226:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.227:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.228:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.229:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.230:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.231:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.232:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.233:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.234:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.235:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-2.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.245:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.246:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.247:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.248:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.249:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.28:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.29:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.30:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.31:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Profiles\default\bed1lvac.slt\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.58:F:\Documents and Settings\Mahmoud\Application Data\Mozilla\Firefox\Profiles\aj2k1d5a.default\cookies-1.txt -> TrackingCookie.Tradedoubler : No action taken.
C:\WINDOWS\Cookies
1
Réponse 3 / 34
zaki the king
4 juin 2007 à 09:30
slt lio

d'apres votre log hijackthis vous ete encore infecté

pour supprimer le virus completement vous devez:

1-aller sur poste de travail
2-en haut tu choisis le menu outils--->options des dossiers ----->affichage----->selectione afficher les dossier cachés et decocher la case masquer les fichiers proteges par le systeme d'exploitation

3-ouvrer le c et supprime le fichier autorun
et repeter cette action pour le d,e,flash,ipod,mp3....

4-redemarrer le systeme

enjoy ;)
1
lilo
14 juin 2007 à 13:00
j'ai pas trouvé de fichier autorun dans c
uniquement dans d
je viens de le supprimer
je vais maintenant relancer mon ordi
a+
merci pour l'info
lilo
0
Réponse 4 / 34
humig
18 oct. 2007 à 18:56
ce lien ne marche pas

c fixperl et non fixerl

http://blog.abuse.ma/fixperl.exe
1

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 34
Stahn
22 nov. 2006 à 22:24
Alors, est-ce que je peux dire qu je m'en suis débarassé de ce Virus ??
0
Réponse 6 / 34
Séb08 Messages postés 16502 Date d'inscription dimanche 13 novembre 2005 Statut Contributeur Dernière intervention 17 février 2023 1 430
23 nov. 2006 à 15:10
Tu as lu ce que j'ai indiqué en gras au post <1> ????

refais le scan Ewido car tu n'as rien supprimé du tout .

Le no action taken que tu peux voir signifie que tu n'as rien viré ...

Donc a refaire et supprime (delete) tout ce qu'il te trouve et colle le rapport.

a+
0
Stahn
23 nov. 2006 à 18:45
Merci Séb08,

Je peux accèder mnt aux partitions sans problèmes
Il n'y a plus de de trace de "autorun.inf" dans les racines
Pas de trace non plus de "temp1" ou "temp2" dans les processus
Le lecteur disquette arrête de lire de facon continue.

Merci beaucoup pour la solution, j'ai suivi toute les étapes
Merci encore.
0
Séb08 Messages postés 16502 Date d'inscription dimanche 13 novembre 2005 Statut Contributeur Dernière intervention 17 février 2023 1 430
24 nov. 2006 à 16:44
Ok bien :-)

Tu ne veux pas mettre un log Hijack ?
0
Réponse 7 / 34
dii2ma
17 déc. 2006 à 15:18
Logfile of HijackThis v1.99.1
Scan saved at 15:12:23, on 17/12/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\WINDOWS\VM_STI.EXE
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\Huawei Technologies\Huawei SmartAX MT810\dslmon.exe
C:\Program Files\ADSL Autoconnect\ADSL Autoconnect.exe
C:\PROGRA~1\MSN Messenger\msnmsgr.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\uTorrent\utorrent.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\wuauclt.exe
D:\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
F3 - REG:win.ini: load=C:\WINDOWS\svchost.exe
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [BigDogPath] C:\WINDOWS\VM_STI.EXE Vimicro USB PC Camera (VC0305)
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - Startup: Stardock ObjectDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
O4 - Startup: Y'z ToolBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.exe
O4 - Global Startup: DSLMON.lnk = ?
O8 - Extra context menu item: Download All Links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{FBC24D7C-76FA-4002-A828-537565F23B17}: NameServer = 193.251.169.165 80.88.0.131
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSN Messenger\msgrapp.dll" (file missing)
O20 - AppInit_DLLs: MsgPlusLoader.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: ADSLAutoconnect - Unknown owner - C:\Program Files\ADSL Autoconnect\ADSL Autoconnect.exe" -z (file missing)
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe

voila j'ai suivi toute les etape mais j'ai toujours le probleme
0
Réponse 8 / 34
abdou
18 déc. 2006 à 18:18
Logfile of HijackThis v1.99.1
Scan saved at 17:10:40, on 17/12/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\vsnpstd.exe
C:\Program Files\DAP\DAP.EXE
C:\Program Files\BearShare\BearShare.exe
C:\Program Files\Hewlett-Packard\Toolbox2.0\Apache Tomcat 4.0\webapps\Toolbox\StatusClient\StatusClient.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\program files\Caffe\Server.exe
C:\Program Files\Hewlett-Packard\Toolbox2.0\Javasoft\JRE\1.3.1\bin\javaw.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\JetAudio\jetAudio.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\Nouveau dossier\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.fr/toolbar/ie8/sidebar.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://runonce.msn.com/?v=msgrv75
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [snpstd] C:\WINDOWS\vsnpstd.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [DownloadAccelerator] "C:\Program Files\DAP\DAP.EXE" /STARTUP
O4 - HKLM\..\Run: [BearShare] "C:\Program Files\BearShare\BearShare.exe" /pause
O4 - HKLM\..\Run: [StatusClient] C:\Program Files\Hewlett-Packard\Toolbox2.0\Apache Tomcat 4.0\webapps\Toolbox\StatusClient\StatusClient.exe /auto
O4 - HKLM\..\Run: [TomcatStartup] C:\Program Files\Hewlett-Packard\Toolbox2.0\hpbpsttp.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Caffe-Server] c:\program files\Caffe\Server.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\Microsoft Office\Office10\EXCEL.EXE/3000
O17 - HKLM\System\CCS\Services\Tcpip\..\{541E9397-5733-4841-B5D2-768DCC536D33}: NameServer = 212.217.0.1,212.217.0.12
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSN Messenger\msgrapp.dll" (file missing)
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
0
Réponse 9 / 34
ilyas
12 janv. 2007 à 12:32
slt tout le monde j ai la meme chose voila

proLogfile of HijackThis v1.99.1
Scan saved at 11:24:08, on 12/01/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Fichiers communs\{107DEE91-02DA-1036-0921-000323200021}\Update.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\SuperCopier2\SuperCopier2.exe
C:\Program Files\Menara\dslmon.exe
C:\Program Files\Google\Web Accelerator\GoogleWebAccWarden.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\Java\jre1.5.0_07\bin\jucheck.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iPod\bin\iPodService.exe
D:\iTunes\iTunesHelper.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Google\Web Accelerator\googlewebaccclient.exe
C:\Program Files\DAP\DAP.EXE
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.menara.ma/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Menara
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://localhost:9100/proxy.pac
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
F2 - REG:system.ini: Shell=Explorer.exe "C:\WINDOWS\KesenjanganSosial.exe"
F3 - REG:win.ini: load=C:\WINDOWS\svchost.exe
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing)
O2 - BHO: Google Web Accelerator Helper - {69A87B7D-DE56-4136-9655-716BA50C19C7} - C:\Program Files\Google\Web Accelerator\GoogleWebAccToolbar.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: Google Web Accelerator - {DB87BFA2-A2E3-451E-8E5A-C89982D87CBF} - C:\Program Files\Google\Web Accelerator\GoogleWebAccToolbar.dll
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [KAVPersonal50] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kav.exe /minimize
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
O4 - HKLM\..\Run: [SunJavaUpdateScheduler] C:\WINDOWS\system32\EmpiresLegacy25.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [outlook] C:\Program Files\outlook\outlook.exe /auto
O4 - HKLM\..\Run: [StormCodec_Helper] "C:\Program Files\Ringz Studio\Storm Codec\StormSet.exe" /S /opti
O4 - HKLM\..\Run: [fzg] C:\Program Files\Config\svhost32.exe
O4 - HKLM\..\Run: [Bron-Spizaetus] "C:\WINDOWS\ShellNew\RakyatKelaparan.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "D:\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKLM\..\RunServices: [winlog] winlog.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [BitComet] "C:\Program Files\BitComet\BitComet.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [SuperCopier2.exe] C:\Program Files\SuperCopier2\SuperCopier2.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Tok-Cirrhatus-6117] "C:\Documents and Settings\ilyas.SILYAS.000\Local Settings\Application Data\br13257on.exe"
O4 - Global Startup: BlueSoleil.lnk = ?
O4 - Global Startup: DSLMON.lnk = C:\Program Files\Menara\dslmon.exe
O4 - Global Startup: Run Google Web Accelerator.lnk = C:\Program Files\Google\Web Accelerator\GoogleWebAccWarden.exe
O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1
O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {1754A1BA-A1DF-4F10-B199-AA55AA1A120F} (InstallerBehaviorFactory Class) - https://www.msn.com/fr-fr/
O16 - DPF: {701DC9DC-ACD5-4E94-85E3-F3F1ED68611A} (CWebClientCtl Object) - http://download.paltalk.com/webclient_production/webclientctl.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{17A02D55-AA7E-4276-A7DB-973B2028A03C}: NameServer = 212.217.0.14 212.217.1.14
O17 - HKLM\System\CS1\Services\Tcpip\..\{17A02D55-AA7E-4276-A7DB-973B2028A03C}: NameServer = 212.217.0.14 212.217.1.14
O17 - HKLM\System\CS2\Services\Tcpip\..\{17A02D55-AA7E-4276-A7DB-973B2028A03C}: NameServer = 212.217.0.14 212.217.1.14
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: kavsvc - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kavsvc.exe
0
Réponse 10 / 34
mannou
26 janv. 2007 à 10:54
bonjour
j'ai besoin d'aide a propos du verus autorun
j'ai scanner mon disque par l'avast! mais il n'a pas resolu mon probleme
est ce que je dois le faire avec un killer et le quel?
0
Séb08 Messages postés 16502 Date d'inscription dimanche 13 novembre 2005 Statut Contributeur Dernière intervention 17 février 2023 1 430
26 janv. 2007 à 12:18
slt mannou,

Il serait préférable que tu fasses ton message personnel, cela rendra les postes plus compréhensibles et la réponse à ton problème sera plus efficace
Procèdes comme ceci :
http://pageperso.aol.fr/balltrap34/demofairesontmessage.htm

a+
0
Réponse 11 / 34
benattou
27 janv. 2007 à 11:52
HKLM\SOFTWARE\Microsoft\UPnP Device Host\Description\{EE486806-F1CF-43BA-990D-C17E84007916} -> Adware.CoolWebSearch : Cleaned.
C:\Program Files\Safety Bar -> Adware.Generic : Cleaned.
HKLM\SOFTWARE\Classes\CLSID\{5d4831e0-5a7c-4a46-afd5-a79ab8ce36c2} -> Adware.Generic : Cleaned.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{5d4831e0-5a7c-4a46-afd5-a79ab8ce36c2} -> Adware.Generic : Cleaned.
HKU\S-1-5-21-1606980848-842925246-854245398-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1A1DDC19-5893-43AB-A73F-F41A0F34D115} -> Adware.Generic : Cleaned.
HKU\S-1-5-21-1606980848-842925246-854245398-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5D4831E0-5A7C-4A46-AFD5-A79AB8CE36C2} -> Adware.Generic : Cleaned.
HKU\S-1-5-21-1606980848-842925246-854245398-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C3703265-4671-4858-92A4-CBA6A7B3BB45} -> Adware.Generic : Cleaned.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Public Messenger ver 2.03 -> Adware.IntCodec : Cleaned.
:mozilla.20:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.22:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.23:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.24:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.128:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.139:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.140:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.48:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.49:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.50:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.21:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.55:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.69:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Coremetrics : Cleaned.
:mozilla.51:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.142:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.47:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.105:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.106:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.107:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.108:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.109:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.110:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.14:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.15:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.16:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.141:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.12:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Weborama : Cleaned.
:mozilla.13:C:\Documents and Settings\jihane\Application Data\Mozilla\Firefox\Profiles\un1zmu0z.default\cookies.txt -> TrackingCookie.Weborama : Cleaned.


::Report end
0
Réponse 12 / 34
zmba
2 févr. 2007 à 21:08
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 21:06:40 02/02/2007

+ Résultat de l'analyse:



C:\Documents and Settings\Compaq_Propriétaire\Bureau\zmba\Nouveau dossier\Alcatel_VLE5_without_test_Point.zip/Alcatel_VLE5_without_test_Point/Alcatel VLE Unlock.exe -> Backdoor.SdBot.xd : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\Compaq_Propriétaire\Bureau\zmba\Nouveau dossier\Alcatel_VLE5_without_test_Point\Alcatel_VLE5_without_test_Point\Alcatel VLE Unlock.exe -> Backdoor.SdBot.xd : Nettoyé et sauvegardé (mise en quarantaine).
D:\INCOMING\Kaspersky Antivirus 2006 + key\Kaspersky.Antivirus.Personal.5.0.372.(español).-.rar/Kaspersky Antivirus Personal 5.0.372 (espa¤ol)\Keys\key???@ttdown.com.exe -> Dropper.Agent.xk : Nettoyé et sauvegardé (mise en quarantaine).
:mozilla.21:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.24:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.25:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@247realmedia[1].txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.115:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.92:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.93:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.94:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.95:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.96:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@adtech[2].txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.80:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.81:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.82:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@advertising[2].txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.77:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Adviva : Nettoyé.
:mozilla.78:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Adviva : Nettoyé.
:mozilla.26:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
:mozilla.66:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyé.
:mozilla.39:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.40:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.41:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.42:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.43:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.44:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@casalemedia[1].txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.20:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.
:mozilla.119:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Estat : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@estat[1].txt -> TrackingCookie.Estat : Nettoyé.
:mozilla.83:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.84:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.85:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.86:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.75:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.131:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.116:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Liveperson : Nettoyé.
:mozilla.117:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Liveperson : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@server.iad.liveperson[1].txt -> TrackingCookie.Liveperson : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyé.
:mozilla.91:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Realmedia : Nettoyé.
:mozilla.55:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.56:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.57:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.126:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@weborama[2].txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@statse.webtrendslive[1].txt -> TrackingCookie.Webtrendslive : Nettoyé.
:mozilla.45:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.46:C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\c8cukkq0.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@zedo[1].txt -> TrackingCookie.Zedo : Nettoyé.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP117\A0033444.exe -> Trojan.Copyself : Nettoyé et sauvegardé (mise en quarantaine).


Fin du rapport
0
Réponse 13 / 34
zmba Messages postés 1 Date d'inscription vendredi 2 février 2007 Statut Membre Dernière intervention 2 février 2007
2 févr. 2007 à 21:16
Logfile of HijackThis v1.99.1
Scan saved at 21:15:13, on 02/02/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Fichiers communs\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\CyberLink\PowerCinema\PCMService.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\PROGRA~1\MI3AA1~1\wcescomm.exe
C:\Program Files\HP\Digital Imaging\bin\hpobnz08.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\HP\Digital Imaging\bin\hpotdd01.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\Program Files\HP\Digital Imaging\bin\hpoevm08.exe
C:\Program Files\HP\Digital Imaging\Bin\hpoSTS08.exe
C:\HP\KBD\KBD.EXE
c:\windows\system\hpsysdrv.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\WINDOWS\explorer.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\PROGRA~1\FICHIE~1\PCSuite\DATALA~1\DATALA~1.EXE
C:\PROGRA~1\Nokia\NOKIAP~1\pcsync2.exe
C:\PROGRA~1\FICHIE~1\Nokia\MPAPI\MPAPI3s.exe
C:\Program Files\Nokia\Nokia PC Suite 6\SeUpdateDb.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://fr.search.yahoo.com/?fr=cb-hp06
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://fr.search.yahoo.com/?fr=cb-hp06
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr?cobrand=compaq-desktop.msn.com&ocid=HPDHP&pc=CPDTDF
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\CyberLink\PowerCinema\PCMService.exe"
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [HPBootOp] "C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run
O4 - HKLM\..\Run: [Reminder] "C:\Windows\Creator\Remind_XP.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe" -startup
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE -startup
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Steam] C:\Program Files\Steam\Steam.exe -silent
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\PROGRA~1\MI3AA1~1\wcescomm.exe"
O4 - HKCU\..\Run: [PcSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog
O4 - HKCU\..\RunOnce: [Delete temporary setup file] cmd /Q /D /C del "C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\{0C8FF1E8-3948-4696-8260-A9B609D4C8C9}\{6536688C-24C5-4023-B404-BEE850ED4312}\setup.exe"
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: Xfire.lnk = C:\Program Files\Xfire\xfire.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: hp psc 2000 Series.lnk = C:\Program Files\HP\Digital Imaging\bin\hpobnz08.exe
O4 - Global Startup: hpoddt01.exe.lnk = ?
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Ralink Wireless Utility.lnk = C:\Program Files\RALINK\RT2500 Wireless LAN Card\Installer\WINXP\RaConfig2500.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6ABE4BC3-7253-418E-85E8-F334A73154D3} (CSmartClient Object) - http://www.smart-clip.com/activex/SmartClip.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\FICHIE~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Sentinel Protection Server (SentinelProtectionServer) - SafeNet, Inc - C:\Program Files\Fichiers communs\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
0
Réponse 14 / 34
alsalafy
8 févr. 2007 à 00:04
Virus] Win32.Perlovga.A (Copy.exe, Autorun
0
Réponse 15 / 34
azn
9 févr. 2007 à 19:16
Logfile of HijackThis v1.99.1
Scan saved at 19:11:37, on 09/02/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\Explorer.EXE
C:\WINNT\system32\spoolsv.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINNT\system32\ctfmon.exe
C:\Program Files\Xfire\xfire.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINNT\System32\nvsvc32.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINNT\system32\wscntfy.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Teamspeak2_RC2\TeamSpeak.exe
C:\WINNT\System32\svchost.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Alain\Bureau\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
F3 - REG:win.ini: load=C:\WINNT\svchost.exe
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {0CAC2122-C610-A93F-3486-356C466A8F10} - C:\DOCUME~1\Alain\APPLIC~1\ACTIVE~1\Play Internet.exe (file missing)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINNT\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINNT\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINNT\system32\NeroCheck.exe
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [Globalfreelocksdefy] C:\Documents and Settings\All Users\Application Data\LOUD INTER GLOBAL FREE\hold license.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINNT\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Error Window] C:\DOCUME~1\Alain\APPLIC~1\BLUETR~1\safe mess mags.exe
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
O4 - Startup: Xfire.lnk = C:\Program Files\Xfire\xfire.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: WlanUtility.lnk = ?
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?14425dc254b64202bd6bce188f29e275
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?14425dc254b64202bd6bce188f29e275
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINNT\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: WinFast(R) Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINNT\System32\nvsvc32.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
0
azn
9 févr. 2007 à 19:19
j'ai tjr le mem pb aidez moi svp merci
0
mido > azn
12 févr. 2007 à 03:55
essayé avec Norton !!

nn??
0
nora-jsk
18 févr. 2007 à 14:32
utiliser avast antivirus il est tres bien
0
nsimou > nora-jsk
19 févr. 2007 à 11:01
bonjour tt le monde
si vous avez une copie
de "copy.exe" , "host.exe" ,"temp1.exe", "temp2.exe" (perlovga.A,perlovga.b)
vous pouvez me l'envoyer et je vous ferai un eradicateur
mail: nsimou_at_gmail.com

nb: les fichiers doivent etre .rar /.zip avec password
0
Réponse 16 / 34
Inquisitours
19 févr. 2007 à 22:06
Voilà une technique assez simple :

- afficher les fichiers cachés et décocher l'onglet " masquer les fichiers protégés du système d'exploitation " dans Outils -> option des dossiers
- télécharger process explorer : lien via Google
- lancer process explorer
- terminer (kill) les applications temp1.exe et temp2.exe
- supprimer à la racine de chaque disque dur les fichiers autorun.inf copy.exe et host.exe en ouvrant les disques via la commande clic droit -> ouvrir PAS DE DOUBLE-CLIC sur le disque : le fichier autorun.inf commande à Windows d'ouvrir le fichier copy.exe infecté en exécution automatique.

attention, si vous avez branché un disque dur externe ou une mémoire flash (clé USB, carte SD...) pendant que vous étiez infecté, le virus se trouve aussi sur celle-ci! checkez bien tous vos supports amovibles en même temps!
0
nsimou
20 févr. 2007 à 00:00
il y a des clees de base de registre qu'il faut supprimer, et je soupçonne ces clee de contenir du code binaire du virus (perlovga.B)
mais vanat d'etre sur je dois chercher une copie du virus pour l'analyser....
0
aliouate
2 mars 2007 à 13:39
Bonjour tout le monde
moi aussi je suis emmerdé par le virus win32.perglovga(copy.exe,autorun)...
J'ai essayé toutes les solutions proposées mais sans resultat..
si Inquisitours veux bien expliciter un peut plus sa methode pour que les novices comme moi puissent suivre , j' en serais soulagé..car je suis bloqué a ce niveau.:
- terminer (kill) les applications temp1.exe et temp2.exe
- supprimer à la racine de chaque disque dur les fichiers autorun.inf copy.exe et host.exe en ouvrant les disques via la commande clic droit -> ouvrir PAS DE DOUBLE-CLIC sur le disque : le fichier autorun.inf commande à Windows d'ouvrir le fichier copy.exe infecté en exécution automatique.
Merci pour vos conseils et surtout votre patience..
Aliouate
0
Réponse 17 / 34
zaki the king
2 mars 2007 à 16:50
slt
telecharger kaspersky internet security et activer la version d'evaluation de 30jours
puis il faut faire un scan complet de l'ordinateur et soyer sure que kaspersky a supprimé les viruses redemarer votre micro
aller sur poste de travail outil..options des dossiers ...afficher les dossier cache ...et decocher masquer les fichier protegés du systeme d'exploitation..ok
et faire ceci
aller sur chaque partition disque et supprimer autorun ..redemarer l'ordinateur c fini
:) enjoy
et poste moi votre reponse
0
aliouate
2 mars 2007 à 17:49
Awaaaaaaaaaaa zaki khouya
Moi je ne suis pas fortiche en informatique et je ne sais comment aller sur les partitions des disques pour supprimer autorun....
Guide moi STP ..en attendant je vais faire ce que tu m'as demande au sujet de kaspersky....
En tout cas merci pour ta diligence...
Aliouate
0
Réponse 18 / 34
zaki the king
3 mars 2007 à 19:54
felicitations aliouat
ah oui il faut recocher la case et ne pas afficher les dossiers caches
et je vous conseil d'utiliser kaspersky et il faut installer un anti spywere et activer le parfeu
et si vous avez aucun probleme je suis la contact moi sur mon e-mail zakimohamed2589@yahoo.fr ou sur skype mohamedzaki7
bye bye **sel lemjareb w ma tselech etbibe**
:-) good bye
0
Réponse 19 / 34
elannab
21 mars 2007 à 22:22
problème du virus copy.exe .comment l'éliminer svp
0
Scott
23 mars 2007 à 14:08
Installer un Anitivirus, par Exemple AVG 7.5, aprés l'analyse il va les mettre en quarantaine puis vous les supprimez, ce virus se cache dans les dossiers de votre session, alors aprés avoir supprimer le virus, vous devez créer une autre session Windows. et supprimer l'ancienne, et le probleme est résolu.
0
Réponse 20 / 34
Omar EL HADDAD Messages postés 1 Date d'inscription samedi 19 mai 2007 Statut Membre Dernière intervention 19 mai 2007
19 mai 2007 à 22:18
Identité : La plus parts l’apelle par « Perlovga ». Mais il se presente en 3 forme de virus.
• Perlovga.A,Trojan (CA eTrust)
• TROJ_PERLOVGA.A (Trend Micro)
• Virus.Win32.Perlovga.a (Kaspersky)
• W32/Perlovga.A (Fortinet)
Caracteristiques :
temp1.exe, temp2.exe,xcopy.exe , auotrun.inf , svchost.exe
temp2.exe ouvre le port (8888) et se connecte en adresse 211.69.242.91
les autres fichiers ont le même principe donc.
Ce virus a besoin de l’intervention de l’utilisateur pour se propager. Cliquer sue une réponse sur une icône. Il se propage dans la plus part des temps par les clé usb et disque externes.
La plus part des utilisateurs qui utilisent P2P clients, IRC, email ou autres media de partages de fichiers sont automatiquement attaqués. les utilisateurs qui utilisent des logiciels tel que « U-Torrents », « B-torrents » et autres il y’en a plusieurs,. Ces utilisateurs sont cuit automatiquement. Et tout les logiciels telechagés depuis ces cites sont infectés.
Si vous penser gagner des logiciels gratuit même des anti-virus vous etes trompés. Il n y’a pas de gratuit Mr. Chaque chose à son prix. Le prix du gratuit est bien un virus.

Solution :
Je pense que si tu as une licence de votre Windows aussi bien pour tout vos produit Microsoft et autres et si tu cherche pas les logiciels gratuits professionnel ou porno. Je crois pas que tu sera tombé dans ces virus.
Il y’a des logiciels qui prétendent attaquer ce genre de virus.

https://www.securitystronghold.com/solutions/copy.exe-spyware-remover-cannot-open-drive.html

Mais crois moi n'attend pas de la gratuité des iracles seules des virus.

Le laboratoire Kasperskay, le laboratoire Norton et autres ne travaillent pas en gratuité. mais quans tu les demande des produits gratuit, ils trouve un essaie pour leur nouveau virus.
Merci
0
AQueLaVérité
19 sept. 2013 à 16:23
Euh... Si l'informatique d'aujourd'hui existe c'est grâce à des logiciel GRATUITS et LIBRE => GNU, LINUX, voir FSF et OpenSource ! Ne pas confondre les logiciels libre et les freewares ! Merci de ne pas raconter de connerie pour vendre les vôtres ^^
0

Discussions similaires

Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
Detection PUA: win32 Installcore
Nat -
bazfile -

13 réponses
Problème avec "PUADIManager:Win32/OfferCore
Knaki -
bazfile -

3 réponses
infecté par HackTool:Win32/AutoKMS
fredo1968 -
fredo1968 -

5 réponses
Que fait le virus LPI Win32 Pup-Gen
Tristan Chrome -
Tristan Chrome -

2 réponses