Sujet Précédent Sujet Suivant

Infecté par 3 virus

Résolu
nina -  
 nina -
Bonjour,
j'ai un problème, je suis infectée par 3 virus depuis quelques semaines, mon antivirus (Bitdefender 9 Professionnal Plus) les détecte quand je fais une analyse mais il ne peut pas les supprimer. Il s'agit des virus Adware.Navipromo.AO; Adware.Navipromo.BYN et Adware.Navipromo.BXQ. De plus je suis régulièrement harcelé par des spyware, notament spyware.securite.
Que faire pour les enlever?
A voir également:

15 réponses

Réponse 1 / 15
Utilisateur anonyme
 
Salut,

lance navilog 1

http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe

Télécharger sur le bureau
Navilog.zip
= Double-Clic navilog1.zip
= Extraire tout sur le bureau
= Double-Clic navilog1 qui est sur le bureau
= Appuyer sur une touche jusqu' arriver aux options
= Choisir option 1

un rapport : fixnavi.txt dans C : va se creer
le copier/coller dans ton prochain message.
0
Réponse 2 / 15
philae83 Messages postés 12854 Statut Contributeur sécurité 206
 
bonsoir

Télécharge navilog1 (Merci il.mafioso!)

http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe

* Ensuite double clique sur navilog1.exe pour lancer l'installation.

* Une fois l'installation terminée, le fix s'exécutera automatiquement.

* (Si ce n'est pas le cas, double-clique sur le raccourci Navilog1 présent sur le bureau).

* Laisse-toi guider. Au menu principal, choisis 1 et valides.

/*\ Ne fais pas le choix 2,3 ou 4 sans notre avis/accord /*\

* Patiente jusqu'au message : *** Analyse terminée le ..... ***

* Appuie sur une touche comme demandé, le Bloc-notes va s'ouvrir.

* Copie-colle l'intégralité du rapport dans ta prochaine réponse. Referme le Bloc-notes.

* Le rapport est en outre sauvegardé à la racine du disque (fixnavi.txt)
0
Réponse 3 / 15
nina
 
Voila le rapport

Search Navipromo version 3.3.2 commencé le 23/10/2007 à 19:24:50,76

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!

Outil exécuté depuis C:\Program Files\navilog1
Mise à jour le 22.10.2007 à 19h00 par IL-MAFIOSO

Microsoft Windows XP [version 5.1.2600]
Internet Explorer : 7.0.5730.11

*** Recherche Programmes installés ***

InternetGameBox

*** Recherche dossiers dans C:\WINDOWS ***

*** Recherche dossiers dans C:\Program Files ***

*** Recherche dossiers dans C:\Documents and Settings\All Users\Application Data ***

*** Recherche dossiers dans C:\Documents and Settings\martinez madeline\Application Data ***

*** Recherche dossiers dans C:\DOCUME~1\ALLUSE~1\MENUDÉ~1\PROGRA~1 ***

*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d'infos : http://www.gmer.net

Aucun fichier trouvé dans :

- C:\WINDOWS\system32
- C:\DOCUME~1\MARTIN~1\LOCALS~1\APPLIC~1

*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!

* Recherche dans C:\WINDOWS\system32 *

Fichiers trouvés :

ppjdzvu.exe trouvé !

* Recherche dans C:\DOCUME~1\MARTIN~1\LOCALS~1\APPLIC~1 *

*** Recherche fichiers ***

C:\WINDOWS\pack.epk trouvé !
C:\WINDOWS\system32\nvs2.inf trouvé !

*** Recherche clés spécifiques dans le Registre ***

HKEY_CURRENT_USER\Software\Lanconfig trouvé !

*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Recherche fichiers connus:

2)Recherche Heuristique :

C:\WINDOWS\system32\ppjdzvu.dat trouvé !

3)Recherche Certificats :

Certificat Egroup trouvé !

*** Analyse terminée le 23/10/2007 à 19:25:26,37 ***
0
Réponse 4 / 15
philae83 Messages postés 12854 Statut Contributeur sécurité 206
 
re

on continue

* Double clique sur le raccourci Navilog1 présent sur le bureau et laisse-toi guider.

* Au menu principal, choisis 2 et valide.

* Le fix va t'informer qu'il va alors redémarrer ton PC

* Ferme toutes les fenêtres ouvertes et enregistre tes documents personnels ouverts

* Appuie sur une touche comme demandé. (si ton Pc ne redémarre pas automatiquement, fais le toi même)

* Au redémarrage de ton PC, choisis ta session habituelle.

* Patiente jusqu'au message : *** Nettoyage Termine le ..... ***

* Le Bloc-notes va s'ouvrir.

* Sauvegarde le rapport de manière à le retrouver.

* Referme le Bloc-Notes. Ton bureau va réapparaître.

* Note : Si ton bureau ne réapparaît pas, fais CTRL+ALT+SUPP pour ouvrir le gestionnaire de tâches.

* Rends-toi à l'onglet "Processus", clique en haut à gauche sur > Fichiers et choisis > Exécuter

* Tape explorer et valide. Celà te fera apparaître ton Bureau.

* Tu posteras le rapport de Navilog1

et

* Télécharge HijackThis et poste le rapport stp
hijackthis

* Lance un scan "do a system scan & save a logfile" puis copie colle le rapport généré ici
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 15
nina
 
merci pour ton aide
Alors voila, j'espère que j'ai bien tout fait
Donc voila le premier rapport:

Clean Navipromo version 3.3.2 commencé le 23/10/2007 à 20:33:36,48

Outil exécuté depuis C:\Program Files\navilog1
Mise à jour le 22.10.2007 à 19h00 par IL-MAFIOSO

Microsoft Windows XP [version 5.1.2600]
Internet Explorer : 7.0.5730.11

Mode suppression automatique

*** fsbl1.txt non trouvé ***
(Assurez-vous que Catchme n'avait rien trouvé lors de la recherche)

*** Suppression avec sauvegardes résultats GenericNaviSearch ***

* Suppression dans C:\WINDOWS\System32 *

ppjdzvu.exe trouvé !
Copie ppjdzvu.exe réalisé avec succès !
ppjdzvu.exe supprimé !

ppjdzvu.dat trouvé !
Copie ppjdzvu.dat réalisé avec succès !
ppjdzvu.dat supprimé !

ppjdzvu_nav.dat trouvé !
Copie ppjdzvu_nav.dat réalisé avec succès !
ppjdzvu_nav.dat supprimé !

ppjdzvu_navps.dat trouvé !
Copie ppjdzvu_navps.dat réalisé avec succès !
ppjdzvu_navps.dat supprimé !

C:\WINDOWS\prefetch\ppjdzvu*.pf trouvé !
Copie C:\WINDOWS\prefetch\ppjdzvu*.pf réalisé avec succès !
C:\WINDOWS\prefetch\ppjdzvu*.pf supprimé !

* Suppression dans C:\DOCUME~1\MARTIN~1\LOCALS~1\APPLIC~1 *

*** Suppression dossiers dans C:\WINDOWS ***

*** Suppression dossiers dans C:\Program Files ***

*** Suppression dossiers dans C:\Documents and Settings\All Users\Application Data ***

*** Suppression dossiers dans C:\Documents and Settings\martinez madeline\Application Data ***

*** Suppression dossiers dans C:\DOCUME~1\ALLUSE~1\MENUDÉ~1\PROGRA~1 ***

*** Suppression fichiers ***

C:\WINDOWS\pack.epk supprimé !
C:\WINDOWS\system32\nvs2.inf supprimé !

*** Suppression fichiers temporaires ***

Nettoyage contenu C:\WINDOWS\Temp effectué !
Nettoyage contenu C:\Documents and Settings\martinez madeline\Local Settings\Temp effectué !

*** Traitement Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Recherche fichiers connus:

2)Recherche, création sauvegardes et suppression Heuristique :

*** Sauvegarde du Registre vers dossier Backupnavi ***

sauvegarde du Registre réalisé avec succès !

*** Nettoyage Registre ***

Nettoyage Registre Ok

*** Certificats ***

Certificat Egroup supprimé !

*** Nettoyage terminé le 23/10/2007 à 20:37:14,78 ***

.... et le deuxième...

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:54:48, on 23/10/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Acer\eManager\anbmServ.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\NOTEPAD.EXE
C:\acer\epm\epm-dm.exe
C:\progra~1\softwin\bitdef~1\bdnagent.exe
C:\progra~1\softwin\bitdef~1\bdswitch.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
c:\progra~1\softwin\bitdef~1\bdmcon.exe
C:\Program Files\Softwin\BitDefender9\vsserv.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://actus.sfr.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://actus.sfr.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://neufportail.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://actus.sfr.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://actus.sfr.fr
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = wmplayer.exe //ICWLaunch
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\WANADOO\SEARCH~1.DLL (file missing)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [epm-dm] c:\acer\epm\epm-dm.exe
O4 - HKLM\..\Run: [BDMCon] C:\PROGRA~1\SOFTWIN\BITDEF~1\bdmcon.exe
O4 - HKLM\..\Run: [BDNewsAgent] "c:\progra~1\softwin\bitdef~1\bdnagent.exe"
O4 - HKLM\..\Run: [BDSwitchAgent] "c:\progra~1\softwin\bitdef~1\bdswitch.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -masquer
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {05D96F71-87C6-11D3-9BE4-00902742D6E0} (QuickPlace Class) - http://upgroups.univ-poitiers.fr/qp2.cab
O23 - Service: Notebook Manager Service (anbmService) - OSA Technologies Inc. - C:\Acer\eManager\anbmServ.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
O23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender9\vsserv.exe
O23 - Service: BitDefender Communicator (XCOMM) - Softwin - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
0
Réponse 6 / 15
philae83 Messages postés 12854 Statut Contributeur sécurité 206
 
re

parfait,

* Fait un scan antivirus en ligne Panda et copie colle le résultat ici
https://www.pandasecurity.com/en/homeusers/online-antivirus/?ref=activescan
(avec Internet Explorer et désactive ton Antivirus pendant le scan)

* tuto en image
http://pageperso.aol.fr/loraline60/panda_scan.htm
0
Réponse 7 / 15
nina
 
Bon voila enfin fini...

Incident Status Location

Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@doubleclick[1].txt
Spyware:Cookie/Adtech Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@adtech[2].txt
Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@tribalfusion[1].txt
Spyware:Cookie/BurstNet Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@burstnet[2].txt
Spyware:Cookie/Tradedoubler Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@tradedoubler[2].txt
Spyware:Cookie/Overture Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@overture[2].txt
Spyware:Cookie/Falkag Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@as1.falkag[1].txt
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@advertising[1].txt
Spyware:Cookie/Weborama Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@weborama[1].txt
Spyware:Cookie/Xiti Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@xiti[1].txt
Spyware:Cookie/Comclick Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@fl01.ct2.comclick[2].txt
Spyware:Cookie/Smartadserver Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@smartadserver[3].txt
Spyware:Cookie/Weborama Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@weborama[2].txt
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@atdmt[2].txt
Spyware:Cookie/QuestionMarket Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@questionmarket[1].txt
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@statcounter[3].txt
Spyware:Cookie/Systemdoctor Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@systemdoctor[2].txt
Spyware:Cookie/FastClick Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@fastclick[2].txt
Spyware:Cookie/PointRoll Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@ads.pointroll[2].txt
Spyware:Cookie/Bluestreak Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@bluestreak[2].txt
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@ad.yieldmanager[2].txt
Spyware:Cookie/Falkag Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@as1.falkag[2].txt
Spyware:Cookie/ErrorSafe Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@errorsafe[2].txt
Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@realmedia[1].txt
Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@atwola[1].txt
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@serving-sys[2].txt
Spyware:Cookie/Overture Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@overture[1].txt
Spyware:Cookie/Smartadserver Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@smartadserver[2].txt
Spyware:Cookie/PointRoll Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@ads.pointroll[1].txt
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@bs.serving-sys[2].txt
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@advertising[1].txt
Spyware:Cookie/fe.lea.lycos Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@fe.lea.lycos[1].txt
Spyware:Cookie/Comclick Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@fl01.ct2.comclick[1].txt
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@statcounter[2].txt
Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@247realmedia[1].txt
Spyware:Cookie/Casalemedia Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@casalemedia[2].txt
Spyware:Cookie/Weborama Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@weborama[1].txt
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@adrevolver[1].txt
Spyware:Cookie/Adviva Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@adviva[2].txt
Spyware:Cookie/Systemdoctor Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@systemdoctor[1].txt
Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@tribalfusion[1].txt
Spyware:Cookie/FastClick Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@fastclick[1].txt
Spyware:Cookie/DriveCleaner Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@go.drivecleaner[1].txt
Spyware:Cookie/Hbmediapro Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@adopt.hbmediapro[2].txt
Spyware:Cookie/Zedo Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@zedo[2].txt
Spyware:Cookie/Winantivirus Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@winantivirus[2].txt
Spyware:Cookie/DriveCleaner Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@stats.drivecleaner[2].txt
Spyware:Cookie/Adtech Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@adtech[1].txt
Spyware:Cookie/Tradedoubler Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@tradedoubler[1].txt
Spyware:Cookie/Winantivirus Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@winantispyware[2].txt
Spyware:Cookie/2o7 Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@2o7[1].txt
Spyware:Cookie/WebtrendsLive Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@statse.webtrendslive[2].txt
Spyware:Cookie/adultfriendfinder Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@adultfriendfinder[2].txt
Spyware:Cookie/DriveCleaner Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@drivecleaner[2].txt
Spyware:Cookie/MetriWeb Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@metriweb[1].txt
Spyware:Cookie/Systemdoctor Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@www.systemdoctor[2].txt
Spyware:Cookie/Winantivirus Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@go.winantispyware[2].txt
Spyware:Cookie/Reliablestats Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@stats1.reliablestats[2].txt
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@ad.yieldmanager[2].txt
Spyware:Cookie/Casalemedia Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@casalemedia[3].txt
Spyware:Cookie/Winantivirus Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@go.winantispyware[4].txt
Spyware:Cookie/Advnt Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@www.advnt01[1].txt
Spyware:Cookie/Winantivirus Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@winantispyware[1].txt
Spyware:Cookie/Reliablestats Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@stats1.reliablestats[3].txt
Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@realmedia[1].txt
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@bs.serving-sys[1].txt
Spyware:Cookie/FastClick Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@fastclick[3].txt
Spyware:Cookie/ErrorSafe Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@errorsafe[1].txt
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@advertising[3].txt
Spyware:Cookie/Systemdoctor Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@www.systemdoctor[3].txt
Spyware:Cookie/Winantivirus Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@winantivirus[1].txt
Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@tribalfusion[2].txt
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@terra.com[1].txt
Spyware:Cookie/QuestionMarket Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@questionmarket[3].txt
Spyware:Cookie/Adviva Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@adviva[1].txt
Spyware:Cookie/DriveCleaner Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@stats.drivecleaner[3].txt
Spyware:Cookie/2o7 Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@112.2o7[2].txt
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@adrevolver[2].txt
Spyware:Cookie/2o7 Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@2o7[2].txt
Spyware:Cookie/DriveCleaner Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@drivecleaner[3].txt
Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@atwola[2].txt
Spyware:Cookie/Research-int Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@research-int[1].txt
Spyware:Cookie/SpyLog Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@spylog[1].txt
Spyware:Cookie/Yadro Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@yadro[2].txt
Spyware:Cookie/adultfriendfinder Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@adultfriendfinder[1].txt
Spyware:Cookie/DriveCleaner Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@go.drivecleaner[2].txt
Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@247realmedia[2].txt
Spyware:Cookie/PointRoll Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@ads.pointroll[3].txt
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@ad.yieldmanager[3].txt
Spyware:Cookie/Apmebf Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@apmebf[2].txt
Spyware:Cookie/Comclick Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@fl01.ct2.comclick[2].txt
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@serving-sys[1].txt
Spyware:Cookie/Mediaplex Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@mediaplex[1].txt
Spyware:Cookie/Overture Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@overture[3].txt
Spyware:Cookie/Weborama Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@weborama[2].txt
Spyware:Cookie/Tradedoubler Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@tradedoubler[3].txt
Spyware:Cookie/Zedo Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@zedo[3].txt
Spyware:Cookie/Weborama Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.weborama.fr/]
Spyware:Cookie/Smartadserver Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.smartadserver.com/]
Spyware:Cookie/Weborama Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.weborama.fr/]
Spyware:Cookie/Smartadserver Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.smartadserver.com/]
Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.doubleclick.net/]
Spyware:Cookie/Bluestreak Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.bluestreak.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.ad.yieldmanager.com/]
Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.realmedia.com/]
Spyware:Cookie/Xiti Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.xiti.com/]
Spyware:Cookie/PointRoll Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.ads.pointroll.com/]
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.advertising.com/]
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.atdmt.com/]
Spyware:Cookie/Comclick Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.fl01.ct2.comclick.com/]
Spyware:Cookie/FastClick Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.fastclick.net/]
Spyware:Cookie/BurstNet Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.burstnet.com/]
Spyware:Cookie/Overture Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.overture.com/]
Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.tribalfusion.com/]
Spyware:Cookie/Adtech Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.adtech.de/]
Spyware:Cookie/Tradedoubler Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.tradedoubler.com/]
Potentially unwanted tool:Application/Processor Not disinfected C:\Program Files\Navilog1\Process.exe
Virus:Trj/Rebooter.J Disinfected C:\Program Files\Navilog1\REBOOT.EXE
Adware:Adware/NaviPromo Not disinfected C:\Program Files\Navilog1\Backupnavi\PPJDZVU.EXE

Je ne m'y connais pas trop mais c'est pas joli, joli tout ça
0
Réponse 8 / 15
philae83 Messages postés 12854 Statut Contributeur sécurité 206
 
non des cookies et les backups de navilog.
RIen de spécial

reposte un dernier rapport hijackthis stp

0
Réponse 9 / 15
nina
 
c'est déja plus rapide à faire
voila le rapport...

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:43:37, on 23/10/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Acer\eManager\anbmServ.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\acer\epm\epm-dm.exe
C:\progra~1\softwin\bitdef~1\bdnagent.exe
C:\progra~1\softwin\bitdef~1\bdswitch.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
c:\progra~1\softwin\bitdef~1\bdmcon.exe
C:\Program Files\Softwin\BitDefender9\vsserv.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://actus.sfr.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://actus.sfr.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://neufportail.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://actus.sfr.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://actus.sfr.fr
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = wmplayer.exe //ICWLaunch
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\WANADOO\SEARCH~1.DLL (file missing)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [epm-dm] c:\acer\epm\epm-dm.exe
O4 - HKLM\..\Run: [BDMCon] C:\PROGRA~1\SOFTWIN\BITDEF~1\bdmcon.exe
O4 - HKLM\..\Run: [BDNewsAgent] "c:\progra~1\softwin\bitdef~1\bdnagent.exe"
O4 - HKLM\..\Run: [BDSwitchAgent] "c:\progra~1\softwin\bitdef~1\bdswitch.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -masquer
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {05D96F71-87C6-11D3-9BE4-00902742D6E0} (QuickPlace Class) - http://upgroups.univ-poitiers.fr/qp2.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O23 - Service: Notebook Manager Service (anbmService) - OSA Technologies Inc. - C:\Acer\eManager\anbmServ.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
O23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender9\vsserv.exe
O23 - Service: BitDefender Communicator (XCOMM) - Softwin - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
0
Réponse 10 / 15
philae83 Messages postés 12854 Statut Contributeur sécurité 206
 
re

* lance hijackthis "do a system scan only" puis coche ces ligne s:

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://recherche.neuf.fr/ie/default.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = wmplayer.exe //ICWLaunch
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\WANADOO\SEARCH~1.DLL (file missing)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O16 - DPF: {05D96F71-87C6-11D3-9BE4-00902742D6E0} (QuickPlace Class) - http://upgroups.univ-poitiers.fr/qp2.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab

* toutes applications fermées et HORS CONNEXION, clique sur fix checked

encore des problèmes particuliers ?

0
Réponse 11 / 15
nina
 
Alors c'est fini? c'est réglé? cool merci beaucoup!!

Je voulais savoir par contre si je supprime ou pas les logiciels téléchargés Navilog1 et Hijackthis
0
Réponse 12 / 15
philae83 Messages postés 12854 Statut Contributeur sécurité 206
 
c'était une question, j'aime bien terminer sur un scan en ligne tout de même si tu veux bien

* Fait un scan antivirus en ligne Panda et copie colle le résultat ici
https://www.pandasecurity.com/en/homeusers/online-antivirus/?ref=activescan
(avec Internet Explorer et désactive ton Antivirus pendant le scan)

* tuto en image
http://pageperso.aol.fr/loraline60/panda_scan.htm

je coupe pour ce soir, je serais là demain soir
0
Réponse 13 / 15
nina
 
rapport du scan en ligne

Incident Status Location

Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@doubleclick[1].txt
Spyware:Cookie/Adtech Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@adtech[2].txt
Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@tribalfusion[1].txt
Spyware:Cookie/BurstNet Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@burstnet[2].txt
Spyware:Cookie/Tradedoubler Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@tradedoubler[2].txt
Spyware:Cookie/Overture Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@overture[2].txt
Spyware:Cookie/Falkag Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@as1.falkag[1].txt
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@advertising[1].txt
Spyware:Cookie/Weborama Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@weborama[1].txt
Spyware:Cookie/Xiti Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@xiti[1].txt
Spyware:Cookie/Comclick Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@fl01.ct2.comclick[2].txt
Spyware:Cookie/Weborama Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@weborama[2].txt
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@atdmt[2].txt
Spyware:Cookie/QuestionMarket Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@questionmarket[1].txt
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@statcounter[3].txt
Spyware:Cookie/Systemdoctor Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@systemdoctor[2].txt
Spyware:Cookie/FastClick Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@fastclick[2].txt
Spyware:Cookie/PointRoll Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@ads.pointroll[2].txt
Spyware:Cookie/Bluestreak Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@bluestreak[2].txt
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@ad.yieldmanager[2].txt
Spyware:Cookie/Falkag Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@as1.falkag[2].txt
Spyware:Cookie/ErrorSafe Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@errorsafe[2].txt
Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez madeline@realmedia[1].txt
Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@atwola[1].txt
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@serving-sys[2].txt
Spyware:Cookie/Overture Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@overture[1].txt
Spyware:Cookie/Smartadserver Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@smartadserver[2].txt
Spyware:Cookie/PointRoll Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@ads.pointroll[1].txt
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@bs.serving-sys[2].txt
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@advertising[1].txt
Spyware:Cookie/fe.lea.lycos Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@fe.lea.lycos[1].txt
Spyware:Cookie/Comclick Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@fl01.ct2.comclick[1].txt
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@statcounter[2].txt
Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@247realmedia[1].txt
Spyware:Cookie/Casalemedia Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@casalemedia[2].txt
Spyware:Cookie/Weborama Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@weborama[1].txt
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@adrevolver[1].txt
Spyware:Cookie/Adviva Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@adviva[2].txt
Spyware:Cookie/Systemdoctor Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@systemdoctor[1].txt
Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@tribalfusion[1].txt
Spyware:Cookie/FastClick Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@fastclick[1].txt
Spyware:Cookie/DriveCleaner Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@go.drivecleaner[1].txt
Spyware:Cookie/Hbmediapro Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@adopt.hbmediapro[2].txt
Spyware:Cookie/Zedo Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@zedo[2].txt
Spyware:Cookie/Winantivirus Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@winantivirus[2].txt
Spyware:Cookie/DriveCleaner Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@stats.drivecleaner[2].txt
Spyware:Cookie/Adtech Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@adtech[1].txt
Spyware:Cookie/Tradedoubler Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@tradedoubler[1].txt
Spyware:Cookie/Winantivirus Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@winantispyware[2].txt
Spyware:Cookie/2o7 Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@2o7[1].txt
Spyware:Cookie/WebtrendsLive Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@statse.webtrendslive[2].txt
Spyware:Cookie/adultfriendfinder Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@adultfriendfinder[2].txt
Spyware:Cookie/DriveCleaner Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@drivecleaner[2].txt
Spyware:Cookie/MetriWeb Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@metriweb[1].txt
Spyware:Cookie/Systemdoctor Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@www.systemdoctor[2].txt
Spyware:Cookie/Winantivirus Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@go.winantispyware[2].txt
Spyware:Cookie/Reliablestats Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@stats1.reliablestats[2].txt
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@ad.yieldmanager[2].txt
Spyware:Cookie/Casalemedia Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@casalemedia[3].txt
Spyware:Cookie/Winantivirus Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@go.winantispyware[4].txt
Spyware:Cookie/Advnt Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@www.advnt01[1].txt
Spyware:Cookie/Winantivirus Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@winantispyware[1].txt
Spyware:Cookie/Reliablestats Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@stats1.reliablestats[3].txt
Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@realmedia[1].txt
Spyware:Cookie/FastClick Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@fastclick[3].txt
Spyware:Cookie/ErrorSafe Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@errorsafe[1].txt
Spyware:Cookie/Systemdoctor Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@www.systemdoctor[3].txt
Spyware:Cookie/Smartadserver Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@smartadserver[1].txt
Spyware:Cookie/Winantivirus Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@winantivirus[1].txt
Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@tribalfusion[2].txt
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@terra.com[1].txt
Spyware:Cookie/QuestionMarket Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@questionmarket[3].txt
Spyware:Cookie/Adviva Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@adviva[1].txt
Spyware:Cookie/DriveCleaner Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@stats.drivecleaner[3].txt
Spyware:Cookie/2o7 Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@112.2o7[2].txt
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@adrevolver[2].txt
Spyware:Cookie/2o7 Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@2o7[2].txt
Spyware:Cookie/DriveCleaner Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@drivecleaner[3].txt
Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@atwola[2].txt
Spyware:Cookie/Research-int Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@research-int[1].txt
Spyware:Cookie/SpyLog Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@spylog[1].txt
Spyware:Cookie/Yadro Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@yadro[2].txt
Spyware:Cookie/adultfriendfinder Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@adultfriendfinder[1].txt
Spyware:Cookie/DriveCleaner Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@go.drivecleaner[2].txt
Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@247realmedia[2].txt
Spyware:Cookie/PointRoll Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@ads.pointroll[3].txt
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@ad.yieldmanager[3].txt
Spyware:Cookie/Apmebf Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@apmebf[2].txt
Spyware:Cookie/Comclick Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@fl01.ct2.comclick[2].txt
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@bs.serving-sys[1].txt
Spyware:Cookie/Mediaplex Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@mediaplex[1].txt
Spyware:Cookie/Overture Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@overture[3].txt
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@advertising[3].txt
Spyware:Cookie/Weborama Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@weborama[2].txt
Spyware:Cookie/Tradedoubler Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@tradedoubler[3].txt
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@serving-sys[1].txt
Spyware:Cookie/Zedo Not disinfected C:\Documents and Settings\martinez madeline\Cookies\martinez_madeline@zedo[3].txt
Spyware:Cookie/Weborama Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.weborama.fr/]
Spyware:Cookie/Smartadserver Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.smartadserver.com/]
Spyware:Cookie/Weborama Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.weborama.fr/]
Spyware:Cookie/Smartadserver Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.smartadserver.com/]
Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.doubleclick.net/]
Spyware:Cookie/Bluestreak Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.bluestreak.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.ad.yieldmanager.com/]
Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.realmedia.com/]
Spyware:Cookie/Xiti Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.xiti.com/]
Spyware:Cookie/PointRoll Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.ads.pointroll.com/]
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.advertising.com/]
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.atdmt.com/]
Spyware:Cookie/Comclick Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.fl01.ct2.comclick.com/]
Spyware:Cookie/FastClick Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.fastclick.net/]
Spyware:Cookie/BurstNet Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.burstnet.com/]
Spyware:Cookie/Overture Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.overture.com/]
Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.tribalfusion.com/]
Spyware:Cookie/Adtech Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.adtech.de/]
Spyware:Cookie/Tradedoubler Not disinfected C:\Documents and Settings\martinez madeline\Application Data\Mozilla\Firefox\Profiles\l242odjf.default\COOKIES.TXT[.tradedoubler.com/]
Potentially unwanted tool:Application/Processor Not disinfected C:\Program Files\Navilog1\Process.exe
Adware:Adware/NaviPromo Not disinfected C:\Program Files\Navilog1\Backupnavi\PPJDZVU.EXE
0
Réponse 14 / 15
philae83 Messages postés 12854 Statut Contributeur sécurité 206
 
bonsoir

parfait

si tu n'as plus de problèmes tu peux :

supprimer tous les logiciels que nous avons utilisés

IMPORTANT

* démarrer-----------panneau de configuration------------système----------
onglet Restauration système-----------coche la case (Désactiver la restauration système)--------------
redémarre l'ordinateur
réactive la ensuite

* Pour améliorer la sécurité de ton PC prend quelques instants pour lire

CECI

* Dénonce ton infection pour faire condamner les auteurs.
Crée un message pour faire avancer les choses sur Malware-Complaints, nous devons être les plus nombreux possibles, alors rends compte de ton infection :

- Voir les règles du forum : https://malwarecomplaints.info/
- Après t'être enregistré à l'aide du bouton en haut se nommant "Register"
Si tu as plus de 13 ans, choisir : "I Agree to these terms and am over or exactly 13 years of age"
Si tu as moins, clique sur : "I Agree to these terms and am under 13 years of age"

Tu as alors sous forme de liste un sujet par type d'infection (Look2Me, Smitfraud, SpywareQuake etc..).
La tienne = ******

---> https://malwarecomplaints.info/

Si le malware que tu as eu n'apparaît pas dans la liste, ou si tu ne sais pas par quoi tu étais infecté(e), crée un message dans le sujet Autres infections
conforme au règle du forum (age, ville, département etc..)

Indique aussi le nom du Forum qui t'a aidé, CommentCaMarche

Bonne soirée

0
Réponse 15 / 15
nina
 
Je vais faire ça...
en tout cas merci beaucoup pour ton aide
Bonne soirée
0

Discussions similaires

Ca veut dire quoi :3
Moi -
Adraen -

3 réponses
Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
Signification de :3
blanchecanelle -
Adraen -

6 réponses
signification "<3" dans un sms
lecogno -
Utilisateur anonyme -

3 réponses
3 a l'envers
Fan12 -
Ya -

15 réponses