éradiquer system doctor: help!!
Résolu
2cv
Messages postés
9
Statut
Membre
-
Utilisateur anonyme -
Utilisateur anonyme -
Bonjour,
Voici mon hijackthis pour éradiquer system doctor. Que faut-il faire ensuite??
merci!
Logfile of HijackThis v1.99.1
Scan saved at 11:43:46, on 19/05/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Apps\ActivBoard\nhksrv.exe
C:\WINDOWS\System32\drivers\CDAC11BA.EXE
C:\WINDOWS\System32\cisvc.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\MOUSEW~1\SYSTEM\EM_EXEC.EXE
C:\Apps\ActivBoard\MMKeybd.exe
C:\WINDOWS\anvshell.exe
C:\WINDOWS\System32\ezSP_Px.exe
C:\Program Files\Ihhfk\Pxinc.exe
C:\Program Files\Ihhfk\Pxinc.exe
C:\Apps\ActivBoard\TrayMon.exe
C:\Apps\ActivBoard\OSD.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Network Associates\VirusScan\Avsynmgr.exe
C:\Program Files\Network Associates\VirusScan\VsStat.exe
C:\Program Files\Network Associates\VirusScan\Vshwin32.exe
C:\Program Files\Network Associates\VirusScan\Avconsol.exe
C:\Program Files\Fichiers communs\Network Associates\McShield\Mcshield.exe
C:\Program Files\Network Associates\VirusScan\Webscanx.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\hijackthis\scan.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.cowblog.fr/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchURL = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ww25.planetis.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer fourni par Planetis
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - Default URLSearchHook is missing
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\apps\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [EM_EXEC] C:\PROGRA~1\MOUSEW~1\SYSTEM\EM_EXEC.EXE
O4 - HKLM\..\Run: [ACTIVBOARD] C:\Apps\ActivBoard\MMKeybd.exe
O4 - HKLM\..\Run: [PE2CKFNT SE] C:\Program Files\Ulead Systems\Ulead Photo Express 2 SE\ChkFont.exe
O4 - HKLM\..\Run: [FTWATCH] C:\PROGRA~1\LALIGN~1\watch.exe
O4 - HKLM\..\Run: [FTTASKBARICON] C:\PROGRA~1\LALIGN~1\taskbaricon.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [anvshell] anvshell.exe
O4 - HKLM\..\Run: [LiveNote] livenote.exe
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\System32\ezSP_Px.exe
O4 - HKLM\..\Run: [mvmnmd] C:\WINDOWS\mvmnmd.exe
O4 - HKLM\..\Run: [Jotkcgf] C:\Program Files\Ihhfk\Pxinc.exe
O4 - HKLM\..\Run: [WinPatrol] C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\Money Express.exe"
O4 - HKCU\..\Run: [Update Service] "C:\Program Files\Fichiers communs\Teknum Systems\update.exe" /startup
O4 - HKCU\..\Run: [Jotkcgf] C:\Program Files\Ihhfk\Pxinc.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O8 - Extra context menu item: Allow Popups - C:\Program Files\Meaya\Popup Ad Filter\WhiteGetUrl.js
O8 - Extra context menu item: Envoyer à &Bluetooth - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://ww25.planetis.com/
O16 - DPF: teleir_cert - http://static.ir.dgi.minefi.gouv.fr/...
O16 - DPF: {15AD6789-CDB4-47E1-A9DA-992EE8E6BAD6} - http://static.windupdates.com/cab/WebsiteAccess/ie/bridge-c10.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - https://onedrive.live.com/
O16 - DPF: {73F0FD85-BD47-4A95-86D1-DE38860462C1} - http://www.accesoplugin.com/dialercab/IberoDialerHTML.cab
O16 - DPF: {9BB641DB-045B-42B4-BAE2-CBAAD66B0CC4} (Spotlife Composer) - http://woo.spotlife.net/install/composer/1.6.0.228/SLCmpser.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {CC05BC12-2AA2-4AC7-AC81-0E40F83B1ADF} (Live365Player Class) - https://live365.com/
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~2\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~2\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: AVSync Manager (AvSynMgr) - Unknown owner - C:\Program Files\Network Associates\VirusScan\Avsynmgr.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\System32\drivers\CDAC11BA.EXE
O23 - Service: McShield - Unknown owner - C:\Program Files\Fichiers communs\Network Associates\McShield\Mcshield.exe
O23 - Service: Netropa NHK Server (nhksrv) - Unknown owner - C:\Apps\ActivBoard\nhksrv.exe
O23 - Service: ASUS Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\PROGRA~1\FICHIE~1\SONYSH~1\AVLib\Sptisrv.exe
Voici mon hijackthis pour éradiquer system doctor. Que faut-il faire ensuite??
merci!
Logfile of HijackThis v1.99.1
Scan saved at 11:43:46, on 19/05/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Apps\ActivBoard\nhksrv.exe
C:\WINDOWS\System32\drivers\CDAC11BA.EXE
C:\WINDOWS\System32\cisvc.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\MOUSEW~1\SYSTEM\EM_EXEC.EXE
C:\Apps\ActivBoard\MMKeybd.exe
C:\WINDOWS\anvshell.exe
C:\WINDOWS\System32\ezSP_Px.exe
C:\Program Files\Ihhfk\Pxinc.exe
C:\Program Files\Ihhfk\Pxinc.exe
C:\Apps\ActivBoard\TrayMon.exe
C:\Apps\ActivBoard\OSD.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Network Associates\VirusScan\Avsynmgr.exe
C:\Program Files\Network Associates\VirusScan\VsStat.exe
C:\Program Files\Network Associates\VirusScan\Vshwin32.exe
C:\Program Files\Network Associates\VirusScan\Avconsol.exe
C:\Program Files\Fichiers communs\Network Associates\McShield\Mcshield.exe
C:\Program Files\Network Associates\VirusScan\Webscanx.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\hijackthis\scan.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.cowblog.fr/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchURL = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ww25.planetis.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer fourni par Planetis
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - Default URLSearchHook is missing
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\apps\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [EM_EXEC] C:\PROGRA~1\MOUSEW~1\SYSTEM\EM_EXEC.EXE
O4 - HKLM\..\Run: [ACTIVBOARD] C:\Apps\ActivBoard\MMKeybd.exe
O4 - HKLM\..\Run: [PE2CKFNT SE] C:\Program Files\Ulead Systems\Ulead Photo Express 2 SE\ChkFont.exe
O4 - HKLM\..\Run: [FTWATCH] C:\PROGRA~1\LALIGN~1\watch.exe
O4 - HKLM\..\Run: [FTTASKBARICON] C:\PROGRA~1\LALIGN~1\taskbaricon.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [anvshell] anvshell.exe
O4 - HKLM\..\Run: [LiveNote] livenote.exe
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\System32\ezSP_Px.exe
O4 - HKLM\..\Run: [mvmnmd] C:\WINDOWS\mvmnmd.exe
O4 - HKLM\..\Run: [Jotkcgf] C:\Program Files\Ihhfk\Pxinc.exe
O4 - HKLM\..\Run: [WinPatrol] C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\Money Express.exe"
O4 - HKCU\..\Run: [Update Service] "C:\Program Files\Fichiers communs\Teknum Systems\update.exe" /startup
O4 - HKCU\..\Run: [Jotkcgf] C:\Program Files\Ihhfk\Pxinc.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O8 - Extra context menu item: Allow Popups - C:\Program Files\Meaya\Popup Ad Filter\WhiteGetUrl.js
O8 - Extra context menu item: Envoyer à &Bluetooth - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://ww25.planetis.com/
O16 - DPF: teleir_cert - http://static.ir.dgi.minefi.gouv.fr/...
O16 - DPF: {15AD6789-CDB4-47E1-A9DA-992EE8E6BAD6} - http://static.windupdates.com/cab/WebsiteAccess/ie/bridge-c10.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - https://onedrive.live.com/
O16 - DPF: {73F0FD85-BD47-4A95-86D1-DE38860462C1} - http://www.accesoplugin.com/dialercab/IberoDialerHTML.cab
O16 - DPF: {9BB641DB-045B-42B4-BAE2-CBAAD66B0CC4} (Spotlife Composer) - http://woo.spotlife.net/install/composer/1.6.0.228/SLCmpser.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {CC05BC12-2AA2-4AC7-AC81-0E40F83B1ADF} (Live365Player Class) - https://live365.com/
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~2\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~2\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: AVSync Manager (AvSynMgr) - Unknown owner - C:\Program Files\Network Associates\VirusScan\Avsynmgr.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\System32\drivers\CDAC11BA.EXE
O23 - Service: McShield - Unknown owner - C:\Program Files\Fichiers communs\Network Associates\McShield\Mcshield.exe
O23 - Service: Netropa NHK Server (nhksrv) - Unknown owner - C:\Apps\ActivBoard\nhksrv.exe
O23 - Service: ASUS Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\PROGRA~1\FICHIE~1\SONYSH~1\AVLib\Sptisrv.exe
A voir également:
- éradiquer system doctor: help!!
- Reboot system now - Guide
- Pc doctor - Télécharger - Optimisation
- Spyware doctor - Télécharger - Antivirus & Antimalwares
- Cette action ne peut pas être réalisée car le fichier est ouvert dans system - Guide
- Disk doctor - Télécharger - Récupération de données
6 réponses
Bonjour
On peut avoir un descriptif du PC et ce qu'il y a comme logiciel de protection et anti-spywares !
On peut avoir un descriptif du PC et ce qu'il y a comme logiciel de protection et anti-spywares !
bonjour,
c'est un packard bell avec windows Xp édition familiale. version 2002. Service pack 2. AMD athlon(tm) processor. 1,40 Ghz. 384 Mo RAM.
Mon anti-virus c'est Vshield (Virus Scan). J'utilise Winpatrol aussi. De temps en temps ad-aware et spy-bot pour faire du nettoyage.
C'est ce que tu voulais?
c'est un packard bell avec windows Xp édition familiale. version 2002. Service pack 2. AMD athlon(tm) processor. 1,40 Ghz. 384 Mo RAM.
Mon anti-virus c'est Vshield (Virus Scan). J'utilise Winpatrol aussi. De temps en temps ad-aware et spy-bot pour faire du nettoyage.
C'est ce que tu voulais?
Bien !
Télécharge SmitfraudFix et enregistre le sur le bureau. Si ton anti-virus t'alerte d'un virus, désactive-le.
http://siri.urz.free.fr/Fix/SmitfraudFix.zip
décompresse SmitfraudFix
Lance le fichier SmitfraudFix ou SmitfraudFix.cmd et choisit l option 1 copie le rapport ici
ET
Télécharge et installe AVG anti-spyware : mets le à jour
Tu fais un scan complet de ton système, dès qu'il a fini.
Si il te trouve des espions,supprime les. Enregistre le rapport et colle le ici stp
Téléchargeable et tutoriel sur cette page :
--> http://redir.fr/gsel
Télécharge SmitfraudFix et enregistre le sur le bureau. Si ton anti-virus t'alerte d'un virus, désactive-le.
http://siri.urz.free.fr/Fix/SmitfraudFix.zip
décompresse SmitfraudFix
Lance le fichier SmitfraudFix ou SmitfraudFix.cmd et choisit l option 1 copie le rapport ici
ET
Télécharge et installe AVG anti-spyware : mets le à jour
Tu fais un scan complet de ton système, dès qu'il a fini.
Si il te trouve des espions,supprime les. Enregistre le rapport et colle le ici stp
Téléchargeable et tutoriel sur cette page :
--> http://redir.fr/gsel
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Bonjour,
Voici le rapport smitfraud fix et celui d'AVG.
Depuis ce matin, en plus de system doctor je suis embêté par "spyware-secure"... Décidément!
SmitFraudFix v2.183
Rapport fait à 13:43:19,76, 19/05/2007
Executé à partir de C:\hijackthis\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode normal
»»»»»»»»»»»»»»»»»»»»»»»» Process
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Apps\ActivBoard\nhksrv.exe
C:\WINDOWS\System32\drivers\CDAC11BA.EXE
C:\WINDOWS\System32\cisvc.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\MOUSEW~1\SYSTEM\EM_EXEC.EXE
C:\Apps\ActivBoard\MMKeybd.exe
C:\WINDOWS\anvshell.exe
C:\WINDOWS\System32\ezSP_Px.exe
C:\Program Files\Ihhfk\Pxinc.exe
C:\windows\system32\wquqdkwym.exe
C:\Program Files\Ihhfk\Pxinc.exe
C:\Apps\ActivBoard\TrayMon.exe
C:\Apps\ActivBoard\OSD.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Network Associates\VirusScan\Avsynmgr.exe
C:\Program Files\Network Associates\VirusScan\VsStat.exe
C:\Program Files\Network Associates\VirusScan\Vshwin32.exe
C:\Program Files\Network Associates\VirusScan\Avconsol.exe
C:\Program Files\Fichiers communs\Network Associates\McShield\Mcshield.exe
C:\Program Files\Network Associates\VirusScan\Webscanx.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\QuickZip4\QuickZip.exe
C:\WINDOWS\system32\cmd.exe
»»»»»»»»»»»»»»»»»»»»»»»» hosts
»»»»»»»»»»»»»»»»»»»»»»»» C:\
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles
»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\VIRGINIE
»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\VIRGINIE\Application Data
»»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer
»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\VIRGINIE\Favoris
»»»»»»»»»»»»»»»»»»»»»»»» Bureau
»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files
»»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues
»»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
"Source"="http://www.jraunlimited.com/files/tba151.jpg"
"SubscribedURL"="http://www.jraunlimited.com/files/tba151.jpg"
"FriendlyName"=""
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\1]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="Ma page d'accueil"
»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll
»»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=""
»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""
»»»»»»»»»»»»»»»»»»»»»»»» pe386-msguard-lzx32-huy32
»»»»»»»»»»»»»»»»»»»»»»»» DNS
Description: Carte réseau Fast Ethernet PCI Realtek RTL8139 Family - Miniport d'ordonnancement de paquets
DNS Server Search Order: 192.168.0.1
HKLM\SYSTEM\CCS\Services\Tcpip\..\{89FACB9C-1C9B-4F78-B1C2-A92C1F99CDFD}: DhcpNameServer=192.168.0.1
HKLM\SYSTEM\CS1\Services\Tcpip\..\{89FACB9C-1C9B-4F78-B1C2-A92C1F99CDFD}: DhcpNameServer=192.168.0.1
HKLM\SYSTEM\CS2\Services\Tcpip\..\{89FACB9C-1C9B-4F78-B1C2-A92C1F99CDFD}: DhcpNameServer=192.168.0.1
HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=192.168.0.1
HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=192.168.0.1
HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: DhcpNameServer=192.168.0.1
»»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll
»»»»»»»»»»»»»»»»»»»»»»»» Fin
RAPPORT AVG
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 19:09:34 19/05/2007
+ Résultat de l'analyse:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Rotue -> Adware.InternetOptimizer : Aucune action entreprise.
C:\Downloads\DinerDashFotGSetup-dm[1].exe -> Adware.Trymedia : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\IberoDialerHTML.dll -> Dialer.IberoDial : Aucune action entreprise.
C:\Program Files\Messenger Plus! 2\Setup.dat/sponsor.exe -> Downloader.Swizzor.ag : Aucune action entreprise.
:mozilla.799:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.247realmedia : Aucune action entreprise.
:mozilla.800:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.247realmedia : Aucune action entreprise.
:mozilla.801:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.247realmedia : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@247realmedia[2].txt -> TrackingCookie.247realmedia : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@ice.112.2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@msnaccountservices.112.2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@opodo.122.2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.782:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Adbrite : Aucune action entreprise.
:mozilla.783:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Adbrite : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@4.adbrite[1].txt -> TrackingCookie.Adbrite : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@adbrite[2].txt -> TrackingCookie.Adbrite : Aucune action entreprise.
:mozilla.693:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Adtech : Aucune action entreprise.
:mozilla.694:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Adtech : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@adtech[2].txt -> TrackingCookie.Adtech : Aucune action entreprise.
:mozilla.113:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
:mozilla.616:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@bluestreak[2].txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
:mozilla.709:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Burstnet : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@burstnet[1].txt -> TrackingCookie.Burstnet : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@burstnet[2].txt -> TrackingCookie.Burstnet : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@burstnet[5].txt -> TrackingCookie.Burstnet : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@casinotropez[1].txt -> TrackingCookie.Casinotropez : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@www.casinotropez[1].txt -> TrackingCookie.Casinotropez : Aucune action entreprise.
:mozilla.725:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Com : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@com[1].txt -> TrackingCookie.Com : Aucune action entreprise.
:mozilla.61:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.62:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.63:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.64:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.66:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.67:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.109:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Doubleclick : Aucune action entreprise.
:mozilla.649:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Estat : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@estat[1].txt -> TrackingCookie.Estat : Aucune action entreprise.
:mozilla.23:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.24:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@www.myaffiliateprogram[1].txt -> TrackingCookie.Myaffiliateprogram : Aucune action entreprise.
:mozilla.324:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Onestat : Aucune action entreprise.
:mozilla.327:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Onestat : Aucune action entreprise.
:mozilla.328:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Onestat : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@overture[2].txt -> TrackingCookie.Overture : Aucune action entreprise.
:mozilla.771:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.802:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.803:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.398:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Questionmarket : Aucune action entreprise.
:mozilla.399:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Questionmarket : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@stats1.reliablestats[2].txt -> TrackingCookie.Reliablestats : Aucune action entreprise.
:mozilla.336:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.337:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.344:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.345:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.346:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@bs.serving-sys[1].txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@serving-sys[2].txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.68:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.69:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.70:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.71:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.72:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@specificclick[2].txt -> TrackingCookie.Specificclick : Aucune action entreprise.
:mozilla.303:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.304:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.305:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.306:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.309:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.310:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.311:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.312:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.313:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.325:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.329:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.355:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.356:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.357:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.358:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.359:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.362:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.364:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.365:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@statcounter[2].txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.292:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Tacoda : Aucune action entreprise.
:mozilla.293:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Tacoda : Aucune action entreprise.
:mozilla.110:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.111:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.112:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.256:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Tribalfusion : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@tribalfusion[2].txt -> TrackingCookie.Tribalfusion : Aucune action entreprise.
:mozilla.234:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@weborama[1].txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.150:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Yadro : Aucune action entreprise.
:mozilla.167:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Yadro : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@yadro[2].txt -> TrackingCookie.Yadro : Aucune action entreprise.
:mozilla.10:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.11:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.12:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.13:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.14:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.15:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.17:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.18:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.19:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.20:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.151:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Zedo : Aucune action entreprise.
:mozilla.162:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Zedo : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@zedo[1].txt -> TrackingCookie.Zedo : Aucune action entreprise.
C:\System Volume Information\_restore{5343D203-58D4-41AC-AFA3-4FC562CF7051}\RP617\A0170850.exe -> Trojan.Small.cy : Aucune action entreprise.
Fin du rapport
Merci de votre aide!
Voici le rapport smitfraud fix et celui d'AVG.
Depuis ce matin, en plus de system doctor je suis embêté par "spyware-secure"... Décidément!
SmitFraudFix v2.183
Rapport fait à 13:43:19,76, 19/05/2007
Executé à partir de C:\hijackthis\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode normal
»»»»»»»»»»»»»»»»»»»»»»»» Process
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Apps\ActivBoard\nhksrv.exe
C:\WINDOWS\System32\drivers\CDAC11BA.EXE
C:\WINDOWS\System32\cisvc.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\MOUSEW~1\SYSTEM\EM_EXEC.EXE
C:\Apps\ActivBoard\MMKeybd.exe
C:\WINDOWS\anvshell.exe
C:\WINDOWS\System32\ezSP_Px.exe
C:\Program Files\Ihhfk\Pxinc.exe
C:\windows\system32\wquqdkwym.exe
C:\Program Files\Ihhfk\Pxinc.exe
C:\Apps\ActivBoard\TrayMon.exe
C:\Apps\ActivBoard\OSD.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Network Associates\VirusScan\Avsynmgr.exe
C:\Program Files\Network Associates\VirusScan\VsStat.exe
C:\Program Files\Network Associates\VirusScan\Vshwin32.exe
C:\Program Files\Network Associates\VirusScan\Avconsol.exe
C:\Program Files\Fichiers communs\Network Associates\McShield\Mcshield.exe
C:\Program Files\Network Associates\VirusScan\Webscanx.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\QuickZip4\QuickZip.exe
C:\WINDOWS\system32\cmd.exe
»»»»»»»»»»»»»»»»»»»»»»»» hosts
»»»»»»»»»»»»»»»»»»»»»»»» C:\
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles
»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\VIRGINIE
»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\VIRGINIE\Application Data
»»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer
»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\VIRGINIE\Favoris
»»»»»»»»»»»»»»»»»»»»»»»» Bureau
»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files
»»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues
»»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
"Source"="http://www.jraunlimited.com/files/tba151.jpg"
"SubscribedURL"="http://www.jraunlimited.com/files/tba151.jpg"
"FriendlyName"=""
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\1]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="Ma page d'accueil"
»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll
»»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=""
»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""
»»»»»»»»»»»»»»»»»»»»»»»» pe386-msguard-lzx32-huy32
»»»»»»»»»»»»»»»»»»»»»»»» DNS
Description: Carte réseau Fast Ethernet PCI Realtek RTL8139 Family - Miniport d'ordonnancement de paquets
DNS Server Search Order: 192.168.0.1
HKLM\SYSTEM\CCS\Services\Tcpip\..\{89FACB9C-1C9B-4F78-B1C2-A92C1F99CDFD}: DhcpNameServer=192.168.0.1
HKLM\SYSTEM\CS1\Services\Tcpip\..\{89FACB9C-1C9B-4F78-B1C2-A92C1F99CDFD}: DhcpNameServer=192.168.0.1
HKLM\SYSTEM\CS2\Services\Tcpip\..\{89FACB9C-1C9B-4F78-B1C2-A92C1F99CDFD}: DhcpNameServer=192.168.0.1
HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=192.168.0.1
HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=192.168.0.1
HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: DhcpNameServer=192.168.0.1
»»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll
»»»»»»»»»»»»»»»»»»»»»»»» Fin
RAPPORT AVG
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 19:09:34 19/05/2007
+ Résultat de l'analyse:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Rotue -> Adware.InternetOptimizer : Aucune action entreprise.
C:\Downloads\DinerDashFotGSetup-dm[1].exe -> Adware.Trymedia : Aucune action entreprise.
C:\WINDOWS\Downloaded Program Files\IberoDialerHTML.dll -> Dialer.IberoDial : Aucune action entreprise.
C:\Program Files\Messenger Plus! 2\Setup.dat/sponsor.exe -> Downloader.Swizzor.ag : Aucune action entreprise.
:mozilla.799:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.247realmedia : Aucune action entreprise.
:mozilla.800:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.247realmedia : Aucune action entreprise.
:mozilla.801:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.247realmedia : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@247realmedia[2].txt -> TrackingCookie.247realmedia : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@ice.112.2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@msnaccountservices.112.2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@opodo.122.2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise.
:mozilla.782:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Adbrite : Aucune action entreprise.
:mozilla.783:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Adbrite : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@4.adbrite[1].txt -> TrackingCookie.Adbrite : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@adbrite[2].txt -> TrackingCookie.Adbrite : Aucune action entreprise.
:mozilla.693:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Adtech : Aucune action entreprise.
:mozilla.694:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Adtech : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@adtech[2].txt -> TrackingCookie.Adtech : Aucune action entreprise.
:mozilla.113:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
:mozilla.616:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@bluestreak[2].txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
:mozilla.709:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Burstnet : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@burstnet[1].txt -> TrackingCookie.Burstnet : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@burstnet[2].txt -> TrackingCookie.Burstnet : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@burstnet[5].txt -> TrackingCookie.Burstnet : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@casinotropez[1].txt -> TrackingCookie.Casinotropez : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@www.casinotropez[1].txt -> TrackingCookie.Casinotropez : Aucune action entreprise.
:mozilla.725:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Com : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@com[1].txt -> TrackingCookie.Com : Aucune action entreprise.
:mozilla.61:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.62:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.63:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.64:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.66:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.67:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Comclick : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : Aucune action entreprise.
:mozilla.109:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Doubleclick : Aucune action entreprise.
:mozilla.649:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Estat : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@estat[1].txt -> TrackingCookie.Estat : Aucune action entreprise.
:mozilla.23:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
:mozilla.24:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Fastclick : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@www.myaffiliateprogram[1].txt -> TrackingCookie.Myaffiliateprogram : Aucune action entreprise.
:mozilla.324:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Onestat : Aucune action entreprise.
:mozilla.327:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Onestat : Aucune action entreprise.
:mozilla.328:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Onestat : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@overture[2].txt -> TrackingCookie.Overture : Aucune action entreprise.
:mozilla.771:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.802:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.803:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Pointroll : Aucune action entreprise.
:mozilla.398:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Questionmarket : Aucune action entreprise.
:mozilla.399:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Questionmarket : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@stats1.reliablestats[2].txt -> TrackingCookie.Reliablestats : Aucune action entreprise.
:mozilla.336:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.337:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.344:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.345:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.346:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@bs.serving-sys[1].txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@serving-sys[2].txt -> TrackingCookie.Serving-sys : Aucune action entreprise.
:mozilla.68:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.69:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.70:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.71:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
:mozilla.72:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@specificclick[2].txt -> TrackingCookie.Specificclick : Aucune action entreprise.
:mozilla.303:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.304:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.305:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.306:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.309:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.310:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.311:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.312:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.313:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.325:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.329:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.355:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.356:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.357:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.358:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.359:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.362:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.364:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.365:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Statcounter : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@statcounter[2].txt -> TrackingCookie.Statcounter : Aucune action entreprise.
:mozilla.292:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Tacoda : Aucune action entreprise.
:mozilla.293:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Tacoda : Aucune action entreprise.
:mozilla.110:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.111:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.112:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
:mozilla.256:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Tribalfusion : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@tribalfusion[2].txt -> TrackingCookie.Tribalfusion : Aucune action entreprise.
:mozilla.234:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Weborama : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@weborama[1].txt -> TrackingCookie.Weborama : Aucune action entreprise.
:mozilla.150:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Yadro : Aucune action entreprise.
:mozilla.167:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Yadro : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@yadro[2].txt -> TrackingCookie.Yadro : Aucune action entreprise.
:mozilla.10:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.11:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.12:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.13:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.14:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.15:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.17:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.18:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.19:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.20:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Aucune action entreprise.
:mozilla.151:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Zedo : Aucune action entreprise.
:mozilla.162:C:\Documents and Settings\VIRGINIE\Application Data\Mozilla\Firefox\Profiles\cwl7teju.default\cookies.txt -> TrackingCookie.Zedo : Aucune action entreprise.
C:\Documents and Settings\VIRGINIE\Cookies\virginie@zedo[1].txt -> TrackingCookie.Zedo : Aucune action entreprise.
C:\System Volume Information\_restore{5343D203-58D4-41AC-AFA3-4FC562CF7051}\RP617\A0170850.exe -> Trojan.Small.cy : Aucune action entreprise.
Fin du rapport
Merci de votre aide!
