Sujet Précédent Sujet Suivant

Probleme Gmzrotate.dll

Résolu
math2504 -  
math2504 Messages postés 1 Statut Membre -
Bonjour,
jai un probleme au demarage de mon ordi il affiche un erreur de gzmrotate.dll...jai fait un analyse de Hijackthis voici le rapport
Pouvez vous maider svp!

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:41:31, on 2007-10-24
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Intel Audio Studio\IntelAudioStudio.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\WINDOWS\system32\service.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Mathieu\Mes documents\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.freewebportal.net/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Media Holding Enterprises, LLC - {0D39A900-0F3A-4C29-A254-3E65244FDC34} - C:\Program Files\ContextTool\ContextTool-2.dll
O2 - BHO: ads_optimizer - {26E45419-7205-4fac-BBFE-174BC7337A79} - C:\WINDOWS\system32\nso12C.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.7.4.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: rightonadz browser optimizer - {971C3384-F75E-4562-95B3-CBE7417529BC} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Adssite Toolbar - {41C29B07-6F91-4966-91BE-2E2841643C83} - C:\Program Files\Adssite Advanced Toolbar\toolbar.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] sttray.exe
O4 - HKLM\..\Run: [IntelAudioStudio] "C:\Program Files\Intel Audio Studio\IntelAudioStudio.exe" TRAY
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Explorer] C:\WINDOWS\iexplorer.exe
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [MDNS] C:\WINDOWS\system32\service.exe
O4 - HKLM\..\Run: [hid_start] C:\WINDOWS\System32\Rundll32.exe "C:\WINDOWS\system32\gzmrotate.dll" DllVerify
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Uniblue RegistryBooster 2] C:\Program Files\Uniblue\RegistryBooster 2\RegistryBooster.exe /S
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Statistiques d’Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\SCIEPlgn.dll
O9 - Extra button: BitComet Search - {461CC20B-FB6E-4f16-8FE8-C29359DB100E} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.7.4.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5F5F9FB8-878E-4455-95E0-F64B2314288A} (ijjiPlugin2 Class) - http://gamedownload.ijjimax.com/gamedownload/dist/hgstart/HGPlugin11USA.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://valeriecutygirlforreal.spaces.live.com/PhotoUpload/MsnPUpld.cab
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Kaspersky Anti-Virus 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: Planificateur LiveUpdate automatique - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing)
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

13 réponses

Réponse 1 / 13
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
slt
oui c'etait un espion en partie viré par tes logiciels

fix ces lignes avec hijackthis (fix cheked):

O2 - BHO: rightonadz browser optimizer - {971C3384-F75E-4562-95B3-CBE7417529BC} - (no file)
O4 - HKLM\..\Run: [hid_start] C:\WINDOWS\System32\Rundll32.exe "C:\WINDOWS\system32\gzmrotate.dll" DllVerify

______________

mais il y en a d'autres

vire dans AJOUT/SUPPRESSION DE PROGRAMME: si present:

Media Holding Enterprises
ads_optimizer -
BitComet ClickCapture -

______________

lance

spybot :

https://www.01net.com/telecharger/windows/Securite/anti-spyware/fiches/26157.html

voir demo d utilisation (merci Balltrap)
http://pageperso.aol.fr/Balltrap34/demo%20spybot.htm

_______________________
puis

AVG antispyware

https://www.01net.com/telecharger/

Tuto :
http://www.kachouri.com/tuto/tuto-161-avg-anti-spyware-75-pour-votre-securite.html

->Relance AVG AS -> "Analyse" ->"Paramètres"

Sous la question "Comment réagir ?" :

-> clique sur "Actions recommandées" et choisis "Quarantaines"
-> Re-clique sur l'onglet "Analyse" puis réalise une "Analyse complète du système"

Si un fichier est infecté en fin d'analyse

->Clique sur "Appliquer toutes les actions "

->Clique sur "Enregistrer le rapport" puis sur "Enregistrer le rapport sous".

->Enregistre ce fichier texte sur ton bureau ensuite colle le rapport ici

________________

colle le rapport d'un scan en ligne
avec un des suivants:

bitdefender en ligne :
http://www.bitdefender.fr/scan_fr/scan8/ie.html

Panda en ligne :
http://pandasoftware.fr

secuser en ligne :
http://www.secuser.com/outils/antivirus.htm

___________________

recolle un rapport hijackthis et dis tes pbs

a demain avec les rapports
0
Réponse 2 / 13
amos2504
 
Jlpjlp, il n'y a pas les programmes dans ajout/supression de programme

Media Holding Enterprises
ads_optimizer -
BitComet ClickCapture
0
Réponse 3 / 13
math2504
 
Veut tu parler de les suprimers avec Hijacks ou dans le Panneaux de configuration - Aujouter/suprimer des programmes?

Car si c'est dans le panneaux...ils ne sont pas la.
0
Réponse 4 / 13
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
si ils ne sont pas la c'est pas grave fait la suite et on verra que faire a la fin pour ces logiciels

lance

spybot :

https://www.01net.com/telecharger/windows/Securite/anti-spyware/fiches/26157.html

voir demo d utilisation (merci Balltrap)
http://pageperso.aol.fr/Balltrap34/demo%20spybot.htm

_______________________
puis

AVG antispyware

https://www.01net.com/

Tuto :
http://www.kachouri.com/tuto/tuto-161-avg-anti-spyware-75-pour-votre-securite.html

->Relance AVG AS -> "Analyse" ->"Paramètres"

Sous la question "Comment réagir ?" :

-> clique sur "Actions recommandées" et choisis "Quarantaines"
-> Re-clique sur l'onglet "Analyse" puis réalise une "Analyse complète du système"

Si un fichier est infecté en fin d'analyse

->Clique sur "Appliquer toutes les actions "

->Clique sur "Enregistrer le rapport" puis sur "Enregistrer le rapport sous".

->Enregistre ce fichier texte sur ton bureau ensuite colle le rapport ici

________________

colle le rapport d'un scan en ligne
avec un des suivants:

bitdefender en ligne :
http://www.bitdefender.fr/scan_fr/scan8/ie.html

Panda en ligne :
http://pandasoftware.fr

secuser en ligne :
http://www.secuser.com/outils/antivirus.htm

___________________

recolle un rapport hijackthis et dis tes pbs

a demain avec les rapports
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 13
math2504
 
Raport AVG


---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 19:46:36 2007-10-24

+ Résultat de l'analyse:

:mozilla.180:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.181:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.182:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.183:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
C:\Documents and Settings\Mathieu\Cookies\mathieu@247realmedia[2].txt -> TrackingCookie.247realmedia : Nettoyé.
C:\Documents and Settings\Mathieu\Cookies\mathieu@network-ca.247realmedia[1].txt -> TrackingCookie.247realmedia : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon ordinateur@oasc08006.247realmedia[1].txt -> TrackingCookie.247realmedia : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon_ordinateur@247realmedia[1].txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.112:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.186:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.187:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.291:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.422:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.466:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.52:C:\Documents and Settings\François\Application Data\Mozilla\Firefox\Profiles\ncj19euh.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.572:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.6:C:\Documents and Settings\François\Application Data\Mozilla\Firefox\Profiles\ncj19euh.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.7:C:\Documents and Settings\François\Application Data\Mozilla\Firefox\Profiles\ncj19euh.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\François\Cookies\françois@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Mathieu\Cookies\mathieu@2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Mathieu\Cookies\mathieu@metacafe.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Mathieu\Cookies\mathieu@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon ordinateur@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon_ordinateur@2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon_ordinateur@homedepotca.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.21:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.22:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.23:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.24:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.25:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.26:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.39:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.40:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.41:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.42:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
C:\Documents and Settings\Mathieu\Cookies\mathieu@3.adbrite[1].txt -> TrackingCookie.Adbrite : Nettoyé.
C:\Documents and Settings\Mathieu\Cookies\mathieu@4.adbrite[1].txt -> TrackingCookie.Adbrite : Nettoyé.
C:\Documents and Settings\Mathieu\Cookies\mathieu@adbrite[1].txt -> TrackingCookie.Adbrite : Nettoyé.
C:\Documents and Settings\Mathieu\Cookies\mathieu@ads.adbrite[1].txt -> TrackingCookie.Adbrite : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon ordinateur@4.adbrite[1].txt -> TrackingCookie.Adbrite : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon ordinateur@ads.adbrite[2].txt -> TrackingCookie.Adbrite : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon_ordinateur@3.adbrite[1].txt -> TrackingCookie.Adbrite : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon_ordinateur@adbrite[2].txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.205:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Adengage : Nettoyé.
:mozilla.663:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Adengage : Nettoyé.
:mozilla.664:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Adengage : Nettoyé.
C:\Documents and Settings\Mathieu\Cookies\mathieu@rotator.its.adjuggler[1].txt -> TrackingCookie.Adjuggler : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon_ordinateur@rotator.adjuggler[1].txt -> TrackingCookie.Adjuggler : Nettoyé.
:mozilla.213:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.214:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.47:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.48:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.103:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.104:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.105:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.10:C:\Documents and Settings\François\Application Data\Mozilla\Firefox\Profiles\ncj19euh.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.
:mozilla.153:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.
:mozilla.73:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\François\Cookies\françois@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\Mathieu\Cookies\mathieu@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon ordinateur@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
:mozilla.62:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon ordinateur@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé.
:mozilla.35:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Burstbeacon : Nettoyé.
:mozilla.36:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Burstnet : Nettoyé.
:mozilla.100:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.157:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.158:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.159:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.160:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.161:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.162:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.163:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.90:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.99:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon_ordinateur@casalemedia[2].txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.657:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Clickhype : Nettoyé.
:mozilla.147:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Com : Nettoyé.
:mozilla.72:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Com : Nettoyé.
C:\Documents and Settings\Mathieu\Cookies\mathieu@com[1].txt -> TrackingCookie.Com : Nettoyé.
:mozilla.701:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.702:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.703:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
C:\Documents and Settings\Mathieu\Cookies\mathieu@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.267:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Connextra : Nettoyé.
:mozilla.268:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Connextra : Nettoyé.
:mozilla.11:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.
:mozilla.17:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon ordinateur@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.
:mozilla.316:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Estat : Nettoyé.
C:\Documents and Settings\Mathieu\Cookies\mathieu@estat[1].txt -> TrackingCookie.Estat : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon ordinateur@estat[1].txt -> TrackingCookie.Estat : Nettoyé.
:mozilla.65:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.67:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.68:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.69:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.70:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.72:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon_ordinateur@adopt.euroclick[1].txt -> TrackingCookie.Euroclick : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon_ordinateur@fastclick[1].txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.825:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.826:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.10:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.167:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.168:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.169:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.170:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.7:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.8:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.9:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon ordinateur@ehg-groupernetworks.hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon_ordinateur@hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.350:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Hotlog : Nettoyé.
:mozilla.354:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Hypertracker : Nettoyé.
:mozilla.116:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé.
:mozilla.118:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé.
:mozilla.163:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Information : Nettoyé.
C:\Documents and Settings\François\Cookies\françois@search.live[1].txt -> TrackingCookie.Live : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon ordinateur@search.live[2].txt -> TrackingCookie.Live : Nettoyé.
:mozilla.56:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon ordinateur@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon ordinateur@auto.search.msn[2].txt -> TrackingCookie.Msn : Nettoyé.
:mozilla.540:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Netflame : Nettoyé.
:mozilla.157:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.460:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.461:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon ordinateur@overture[1].txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.41:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Paypal : Nettoyé.
:mozilla.68:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Paypal : Nettoyé.
:mozilla.18:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.
:mozilla.19:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.
:mozilla.20:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.
:mozilla.21:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.
:mozilla.22:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.
:mozilla.23:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.
:mozilla.24:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon_ordinateur@ads.pointroll[2].txt -> TrackingCookie.Pointroll : Nettoyé.
:mozilla.489:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyé.
:mozilla.490:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon_ordinateur@questionmarket[2].txt -> TrackingCookie.Questionmarket : Nettoyé.
:mozilla.128:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Realtracker : Nettoyé.
:mozilla.745:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Realtracker : Nettoyé.
:mozilla.158:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Revenue : Nettoyé.
:mozilla.159:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Revenue : Nettoyé.
:mozilla.503:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.504:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.505:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.506:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.248:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.49:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.50:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.519:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.51:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.520:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.521:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.522:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.523:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.52:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.53:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.54:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon_ordinateur@bs.serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon_ordinateur@serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.117:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.
:mozilla.118:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.
:mozilla.100:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.57:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.58:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.59:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.71:C:\Documents and Settings\François\Application Data\Mozilla\Firefox\Profiles\ncj19euh.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.72:C:\Documents and Settings\François\Application Data\Mozilla\Firefox\Profiles\ncj19euh.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.73:C:\Documents and Settings\François\Application Data\Mozilla\Firefox\Profiles\ncj19euh.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.97:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.98:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.99:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Mathieu\Cookies\mathieu@smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon_ordinateur@smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon_ordinateur@statcounter[1].txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.545:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyé.
:mozilla.546:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyé.
:mozilla.547:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyé.
:mozilla.548:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyé.
:mozilla.101:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.102:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon_ordinateur@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.102:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Tribalfusion : Nettoyé.
:mozilla.564:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Tribalfusion : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon ordinateur@tribalfusion[1].txt -> TrackingCookie.Tribalfusion : Nettoyé.
:mozilla.122:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Valuead : Nettoyé.
:mozilla.123:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Valuead : Nettoyé.
:mozilla.124:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Valuead : Nettoyé.
:mozilla.125:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Valuead : Nettoyé.
:mozilla.126:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Valuead : Nettoyé.
:mozilla.127:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Valuead : Nettoyé.
:mozilla.495:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Valuead : Nettoyé.
:mozilla.496:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Valuead : Nettoyé.
:mozilla.497:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Valuead : Nettoyé.
:mozilla.498:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Valuead : Nettoyé.
:mozilla.499:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Valuead : Nettoyé.
:mozilla.578:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.579:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon_ordinateur@weborama[2].txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.721:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Webtrends : Nettoyé.
C:\Documents and Settings\François\Cookies\françois@m.webtrends[1].txt -> TrackingCookie.Webtrends : Nettoyé.
C:\Documents and Settings\Mathieu\Cookies\mathieu@m.webtrends[2].txt -> TrackingCookie.Webtrends : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon_ordinateur@m.webtrends[1].txt -> TrackingCookie.Webtrends : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon ordinateur@statse.webtrendslive[1].txt -> TrackingCookie.Webtrendslive : Nettoyé.
:mozilla.593:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Yadro : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon_ordinateur@yadro[2].txt -> TrackingCookie.Yadro : Nettoyé.
:mozilla.27:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.28:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.29:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.30:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.31:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.31:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.32:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.32:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.33:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.33:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.34:C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.34:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.35:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.37:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.38:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
C:\Documents and Settings\mon ordinateur\Cookies\mon_ordinateur@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.106:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.
:mozilla.107:C:\Documents and Settings\mon ordinateur\Application Data\Mozilla\Firefox\Profiles\veve2vjl.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.

Fin du rapport

-------------------------------------------------------------------------------------------------------------------------------
Raport Online scan

;***********************************************************************************************************************************************************************************
ANALYSIS: 2007-10-25 16:35:21
PROTECTIONS: 1
MALWARE: 32
SUSPECTS: 0
;***********************************************************************************************************************************************************************************
PROTECTIONS
Description Version Active Updated
;===================================================================================================================================================================================
Kaspersky Anti-Virus 7.0.0.125 Yes Yes
;===================================================================================================================================================================================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;===================================================================================================================================================================================
00139060 Cookie/Casalemedia TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.casalemedia.com/]
00139060 Cookie/Casalemedia TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.casalemedia.com/]
00139060 Cookie/Casalemedia TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.casalemedia.com/]
00139060 Cookie/Casalemedia TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.casalemedia.com/]
00139060 Cookie/Casalemedia TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.casalemedia.com/]
00139060 Cookie/Casalemedia TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.casalemedia.com/]
00139060 Cookie/Casalemedia TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.casalemedia.com/]
00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Cookies\mathieu@atdmt[2].txt
00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.atdmt.com/]
00145083 adware/mirar Adware No 1 Yes No c:\windows\system32\winnb58.dll
00145393 Cookie/Tradedoubler TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.tradedoubler.com/]
00145405 Cookie/RealMedia TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.247realmedia.com/]
00145405 Cookie/RealMedia TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.247realmedia.com/]
00145405 Cookie/RealMedia TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.247realmedia.com/]
00145405 Cookie/RealMedia TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.247realmedia.com/]
00145460 Cookie/2o7 TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.2o7.net/]
00145460 Cookie/2o7 TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.2o7.net/]
00145731 Cookie/Tribalfusion TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.tribalfusion.com/]
00167642 Cookie/Com.com TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.com.com/]
00167647 Cookie/Yadro TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.yadro.ru/]
00167704 Cookie/Xiti TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Cookies\mathieu@xiti[1].txt
00167704 Cookie/Xiti TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.xiti.com/]
00167724 Cookie/HotLog TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.hotlog.ru/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[ad.yieldmanager.com/]
00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.serving-sys.com/]
00168093 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.bs.serving-sys.com/]
00168097 Cookie/BurstBeacon TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[www.burstbeacon.com/]
00168106 Cookie/Weborama TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.weborama.fr/]
00168109 Cookie/Adtech TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.adtech.de/]
00168109 Cookie/Adtech TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.adtech.de/]
00168116 Cookie/Comclick TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[fl01.ct2.comclick.com/]
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.advertising.com/]
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.advertising.com/]
00170554 Cookie/Overture TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.overture.com/]
00171982 Cookie/QuestionMarket TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.questionmarket.com/]
00173520 Cookie/Bluestreak TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.bluestreak.com/]
00191644 Cookie/adultfriendfinder TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Cookies\mathieu@adultfriendfinder[2].txt
00191644 Cookie/adultfriendfinder TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.adultfriendfinder.com/]
00191644 Cookie/adultfriendfinder TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.adultfriendfinder.com/]
00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.smartadserver.com/]
00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.smartadserver.com/]
00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.smartadserver.com/]
00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No C:\Documents and Settings\Mathieu\Application Data\Mozilla\Firefox\Profiles\pg0tk2yp.default\cookies.txt[.smartadserver.com/]
01266988 Adware/WebHancer Adware No 0 No No C:\Documents and Settings\Mathieu\Local Settings\Temporary Internet Files\Content.IE5\A993K4UF\whCC-TRAFE7[1].exe[whAgent.exe]
01353539 Adware/WebHancer Adware No 0 No No C:\Documents and Settings\Mathieu\Local Settings\Temporary Internet Files\Content.IE5\A993K4UF\whCC-TRAFE7[1].exe[webhdll.dll]
01353540 Adware/WebHancer Adware No 0 No No C:\Documents and Settings\Mathieu\Local Settings\Temporary Internet Files\Content.IE5\A993K4UF\whCC-TRAFE7[1].exe[whiehlpr.dll]
01353541 Adware/WebHancer Adware No 0 No No C:\Documents and Settings\Mathieu\Local Settings\Temporary Internet Files\Content.IE5\A993K4UF\whCC-TRAFE7[1].exe[whInstaller.exe]
01468095 Adware/WebHancer Adware No 0 Yes No C:\Documents and Settings\Mathieu\Local Settings\Temporary Internet Files\Content.IE5\A993K4UF\whCC-TRAFE7[1].exe
02402103 Adware/AdRotator Adware No 0 Yes No C:\WINDOWS\system32\_gzmrotate.dll
02402183 Application/Playmp3z HackTools Yes 0 Yes No C:\WINDOWS\SYSTEM32\SERVICE.EXE
02567952 Adware/AdRotator Adware No 0 No No C:\Documents and Settings\Mathieu\Local Settings\Temporary Internet Files\Content.IE5\INVLZJ9V\rt_1066[1].exe[â– %%\gzmrotate.dll]
;===================================================================================================================================================================================
SUSPECTS
Location
;===================================================================================================================================================================================
;===================================================================================================================================================================================

------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Raport Hijackthis

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:37:01, on 2007-10-25
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Intel Audio Studio\IntelAudioStudio.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\WINDOWS\system32\service.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Documents and Settings\Mathieu\Mes documents\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.freewebportal.net/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Media Holding Enterprises, LLC - {0D39A900-0F3A-4C29-A254-3E65244FDC34} - C:\Program Files\ContextTool\ContextTool-2.dll
O2 - BHO: ads_optimizer - {26E45419-7205-4fac-BBFE-174BC7337A79} - C:\WINDOWS\system32\nso12C.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.7.4.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Adssite Toolbar - {41C29B07-6F91-4966-91BE-2E2841643C83} - C:\Program Files\Adssite Advanced Toolbar\toolbar.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] sttray.exe
O4 - HKLM\..\Run: [IntelAudioStudio] "C:\Program Files\Intel Audio Studio\IntelAudioStudio.exe" TRAY
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Explorer] C:\WINDOWS\iexplorer.exe
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [MDNS] C:\WINDOWS\system32\service.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Uniblue RegistryBooster 2] C:\Program Files\Uniblue\RegistryBooster 2\RegistryBooster.exe /S
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Statistiques d’Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\SCIEPlgn.dll
O9 - Extra button: BitComet Search - {461CC20B-FB6E-4f16-8FE8-C29359DB100E} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.7.4.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {512FC5A1-7DE1-43F1-BC0C-371622FCB409} (TotalScan Installer Class) - https://www.pandasecurity.com/en/homeusers/online-antivirus/?ref=activescan
O16 - DPF: {5F5F9FB8-878E-4455-95E0-F64B2314288A} (ijjiPlugin2 Class) - http://gamedownload.ijjimax.com/gamedownload/dist/hgstart/HGPlugin11USA.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://valeriecutygirlforreal.spaces.live.com/PhotoUpload/MsnPUpld.cab
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Kaspersky Anti-Virus 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: Planificateur LiveUpdate automatique - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing)
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
0
Réponse 6 / 13
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
colle un rapport combofix:

http://www.techsupportforum.com/sectools/sUBs/ComboFix.exe

http://download.bleepingcomputer.com/sUBs/ComboFix.exe

http://komun.chez-alice.fr/Repertoire/Utilitaires.Desinfection.html

a demain
0
Réponse 7 / 13
math2504
 
Voice le rapport Combofix:

ComboFix 07-10-23.2 - Mathieu 2007-10-25 17:43:56.2 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.2.1252.33.1036.18.101 [GMT -4:00]
Running from: C:\Documents and Settings\Mathieu\Mes documents\ComboFix.exe
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\WINDOWS\system32\nso12C.dll
C:\WINDOWS\system32\service.exe
C:\WINDOWS\system32\winnb58.dll

.
((((((((((((((((((((((((((((( Fichiers créés 2007-09-25 to 2007-10-25 ))))))))))))))))))))))))))))))))))))
.

2007-10-25 17:24 51,200 --a------ C:\WINDOWS\NirCmd.exe
2007-10-25 16:20 <REP> d-------- C:\Program Files\Panda Security
2007-10-24 19:05 126,976 --a------ C:\WINDOWS\War3Unin.exe
2007-10-24 19:05 17,761 --a------ C:\WINDOWS\War3Unin.dat
2007-10-24 19:05 2,829 --a------ C:\WINDOWS\War3Unin.pif
2007-10-24 19:02 <REP> d-------- C:\Program Files\Warcraft III
2007-10-24 16:06 <REP> d-------- C:\Documents and Settings\Mathieu\Application Data\Uniblue
2007-10-23 16:24 <REP> d-------- C:\WINDOWS\.jagex_cache_32
2007-10-21 18:48 <REP> d-------- C:\Program Files\Adssite Advanced Toolbar
2007-10-21 18:48 <REP> d-------- C:\Documents and Settings\Mathieu\Application Data\Adssite Advanced Toolbar
2007-10-21 18:48 79,877 --a------ C:\WINDOWS\system32\adssite-remove.exe
2007-10-21 18:48 40,733 --a------ C:\WINDOWS\system32\rightonadz-uninst.exe
2007-10-21 18:44 <REP> d-------- C:\Program Files\ContextTool
2007-10-19 12:48 <REP> d-------- C:\Program Files\Valve
2007-10-17 16:09 <REP> d-------- C:\Documents and Settings\mon ordinateur\Application Data\LEGO Company
2007-10-17 16:08 <REP> d-------- C:\Program Files\LEGO Company
2007-10-15 18:18 23,040 --------- C:\WINDOWS\kb913800.exe
2007-10-14 17:02 <REP> d-------- C:\Program Files\Windows Media Connect 2
2007-10-14 16:58 <REP> d-------- C:\WINDOWS\system32\LogFiles
2007-10-14 16:58 <REP> d-------- C:\WINDOWS\system32\drivers\UMDF
2007-10-14 16:16 46,592 --------- C:\WINDOWS\system32\drivers\irbus.sys
2007-10-14 16:16 19,200 --------- C:\WINDOWS\system32\drivers\hidir.sys
2007-10-07 15:24 <REP> d-------- C:\Program Files\Deus Ex - Invisible War
2007-10-03 18:57 <REP> d-------- C:\Program Files\Fichiers communs\Blizzard Entertainment
2007-10-01 19:10 <REP> d-------- C:\Program Files\Xvid
2007-10-01 19:10 765,952 --a------ C:\WINDOWS\system32\xvidcore.dll
2007-10-01 19:10 180,224 --a------ C:\WINDOWS\system32\xvidvfw.dll
2007-09-30 12:19 <REP> d-------- C:\Program Files\directx
2007-09-29 20:21 <REP> d-------- C:\Program Files\QuickTime
2007-09-29 11:35 <REP> d-------- C:\Program Files\Kaspersky Lab
2007-09-29 11:35 82,061 --a------ C:\WINDOWS\system32\drivers\klick.dat
2007-09-29 11:35 81,549 --a------ C:\WINDOWS\system32\drivers\klin.dat
2007-09-29 11:34 9,092,640 --ahs---- C:\WINDOWS\system32\drivers\fidbox.dat
2007-09-29 11:34 231,968 --ahs---- C:\WINDOWS\system32\drivers\fidbox2.dat
2007-09-28 17:01 <REP> d-------- C:\Program Files\ADSTechnology
2007-09-28 16:34 <REP> d-------- C:\Program Files\Apple Software Update
2007-09-25 08:17 64,000 --a------ C:\WINDOWS\system32\_gzmrotate.dll

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2007-10-25 21:53 22,532 --sha-w C:\WINDOWS\system32\drivers\fidbox2.idx
2007-10-25 21:53 122,564 --sha-w C:\WINDOWS\system32\drivers\fidbox.idx
2007-10-25 20:50 --------- d-----w C:\Documents and Settings\Mathieu\Application Data\SiteAdvisor
2007-10-23 23:12 --------- d-----w C:\Program Files\Fichiers communs\Symantec Shared
2007-10-22 23:41 2,359,296 ---ha-w C:\Documents and Settings\François\ntuser.dat
2007-10-21 22:39 --------- d-----w C:\Documents and Settings\Mathieu\Application Data\LimeWire
2007-10-19 16:48 --------- d--h--w C:\Program Files\InstallShield Installation Information
2007-10-19 16:48 --------- d-----w C:\Program Files\Fichiers communs\InstallShield
2007-10-14 20:31 --------- d-----w C:\Program Files\LimeWire
2007-10-12 22:10 --------- d-----w C:\Documents and Settings\mon ordinateur\Application Data\LimeWire
2007-10-05 20:42 --------- d-----w C:\Program Files\Java
2007-10-01 22:08 --------- d-----w C:\Program Files\Fichiers communs\Adobe
2007-09-30 16:11 --------- d-----w C:\Program Files\LucasArts
2007-09-30 00:35 --------- d-----w C:\Documents and Settings\Mathieu\Application Data\Apple Computer
2007-09-23 20:09 --------- d-----w C:\Program Files\Badongo
2007-09-23 14:59 --------- d-----w C:\Program Files\PowerISO
2007-09-22 00:50 --------- d-----w C:\Program Files\Ubisoft
2007-09-21 20:42 --------- d-----w C:\Program Files\VisualTaskTips
2007-09-18 23:13 --------- d-----w C:\Program Files\GameSpy Arcade
2007-09-18 22:56 --------- d-----w C:\Documents and Settings\Mathieu\Application Data\InstallShield
2007-09-18 22:10 --------- d-----w C:\Program Files\GlobFX Technologies
2007-09-18 20:48 69,367 ----a-w C:\WINDOWS\BricoPackUninst.cmd
2007-09-18 20:48 5,937 ----a-w C:\WINDOWS\BricoPackFoldersDelete.cmd
2007-09-13 17:24 --------- d-----w C:\Program Files\Microsoft Games
2007-09-13 17:15 --------- d-----w C:\Program Files\Sierra
2007-09-13 17:03 --------- d-----w C:\Documents and Settings\Mathieu\Application Data\Leadertech
2007-09-07 17:21 --------- d-----w C:\Program Files\Bethesda Softworks
2007-09-04 23:22 --------- d-----w C:\Documents and Settings\Mathieu\Application Data\My Battle for Middle-earth(tm) II Files
2007-09-04 22:56 --------- d-----w C:\Program Files\Electronic Arts
2007-08-31 19:02 --------- d-----w C:\Program Files\Google
2007-08-31 19:02 --------- d-----w C:\Program Files\Fichiers communs\Real
2007-08-31 13:21 --------- d-----w C:\Program Files\Photodex Presenter
2007-08-31 13:21 --------- d-----w C:\Documents and Settings\Mathieu\Application Data\Netscape
2007-08-29 21:35 163,644 ----a-w C:\WINDOWS\system32\drivers\secdrv.sys
2007-08-29 20:58 --------- d-----w C:\Documents and Settings\Mathieu\Application Data\XemiComputers
2007-08-29 00:46 --------- d--h--w C:\Documents and Settings\Mathieu\Application Data\ijjigame
2007-08-25 18:48 --------- d-----w C:\Documents and Settings\Mathieu\Application Data\HP
.

((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0D39A900-0F3A-4C29-A254-3E65244FDC34}]
2007-06-27 16:27 1044480 --a------ C:\Program Files\ContextTool\ContextTool-2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{41C29B07-6F91-4966-91BE-2E2841643C83}"= C:\Program Files\Adssite Advanced Toolbar\toolbar.dll [2007-08-30 08:24 561152]

[HKEY_CLASSES_ROOT\CLSID\{41C29B07-6F91-4966-91BE-2E2841643C83}]
[HKEY_CLASSES_ROOT\CoolToolBar.IEBarLogic.1]
[HKEY_CLASSES_ROOT\TypeLib\{6B4FA1DD-A353-49F8-A650-79C21D6B4824}]
[HKEY_CLASSES_ROOT\CoolToolBar.IEBarLogic]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray"="C:\WINDOWS\ehome\ehtray.exe" [2005-08-05 13:34]
"igfxtray"="C:\WINDOWS\system32\igfxtray.exe" [2005-09-20 11:35]
"igfxhkcmd"="C:\WINDOWS\system32\hkcmd.exe" [2005-09-20 11:32]
"igfxpers"="C:\WINDOWS\system32\igfxpers.exe" [2005-09-20 11:36]
"SigmatelSysTrayApp"="sttray.exe" []
"IntelAudioStudio"="C:\Program Files\Intel Audio Studio\IntelAudioStudio.exe" [2005-11-20 16:11]
"RemoteControl"="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" [2003-10-31 19:42]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 11:50]
"HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [2006-02-19 02:41]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 01:11]
"AVP"="C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe" [2007-06-28 12:51]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2007-06-29 06:24]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-05-11 03:06]
"ISUSPM Startup"="C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\isuspm.exe" [2004-04-17 12:41]
"ISUSScheduler"="C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" [2004-04-13 06:07]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.exe" [2007-01-19 12:55]
"AlcoholAutomount"="C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" [2007-07-02 06:29]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2006-03-24 08:00]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-10-13 12:24]
"Uniblue RegistryBooster 2"="C:\Program Files\Uniblue\RegistryBooster 2\RegistryBooster.exe" []

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme

R1 SSHDRV85;SSHDRV85;\??\C:\WINDOWS\system32\drivers\SSHDRV85.sys
R3 klim5;Kaspersky Anti-Virus NDIS Filter;C:\WINDOWS\system32\DRIVERS\klim5.sys
S2 Planificateur LiveUpdate automatique;Planificateur LiveUpdate automatique;"C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe"
S3 NAL;Nal Service ;\??\C:\WINDOWS\system32\Drivers\iqvw32.sys

.
Contenu du dossier 'Scheduled Tasks/Tâches planifiées'
"2007-09-28 20:34:45 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"
.
**************************************************************************

catchme 0.3.1232 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-10-25 17:55:33
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2007-10-25 17:57:42 - machine was rebooted
.
--- E O F ---
0
Réponse 8 / 13
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
recolle un rapport hijackthis svp
0
Réponse 9 / 13
math2504
 
+Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:18:59, on 2007-10-26
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Intel Audio Studio\IntelAudioStudio.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Documents and Settings\Mathieu\Mes documents\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.freewebportal.net/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Media Holding Enterprises, LLC - {0D39A900-0F3A-4C29-A254-3E65244FDC34} - C:\Program Files\ContextTool\ContextTool-2.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.7.4.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Adssite Toolbar - {41C29B07-6F91-4966-91BE-2E2841643C83} - C:\Program Files\Adssite Advanced Toolbar\toolbar.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] sttray.exe
O4 - HKLM\..\Run: [IntelAudioStudio] "C:\Program Files\Intel Audio Studio\IntelAudioStudio.exe" TRAY
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Uniblue RegistryBooster 2] C:\Program Files\Uniblue\RegistryBooster 2\RegistryBooster.exe /S
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-21-4180764985-3866652683-1585238883-1003\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background (User 'mon ordinateur')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Statistiques d’Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\SCIEPlgn.dll
O9 - Extra button: BitComet Search - {461CC20B-FB6E-4f16-8FE8-C29359DB100E} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.7.4.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5F5F9FB8-878E-4455-95E0-F64B2314288A} (ijjiPlugin2 Class) - http://gamedownload.ijjimax.com/gamedownload/dist/hgstart/HGPlugin11USA.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://valeriecutygirlforreal.spaces.live.com/PhotoUpload/MsnPUpld.cab
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Kaspersky Anti-Virus 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: Planificateur LiveUpdate automatique - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing)
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
0
Réponse 10 / 13
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
slt,
fix ces lignes avec hijackthis (fix cheked)

O2 - BHO: Media Holding Enterprises, LLC - {0D39A900-0F3A-4C29-A254-3E65244FDC34} - C:\Program Files\ContextTool\ContextTool-2.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O3 - Toolbar: Adssite Toolbar - {41C29B07-6F91-4966-91BE-2E2841643C83} - C:\Program Files\Adssite Advanced Toolbar\toolbar.dll

O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe

O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll

O16 - DPF: {5F5F9FB8-878E-4455-95E0-F64B2314288A} (ijjiPlugin2 Class) - http://gamedownload.ijjimax.com/gamedownload/dist/hgstart/HGPlugin11USA.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://valeriecutygirlforreal.spaces.live.com/PhotoUpload/MsnPUpld.cab

_______________________

télécharge OTMoveIt http://download.bleepingcomputer.com/oldtimer/OTMoveIt.exe (de Old_Timer) sur ton Bureau.
double-clique sur OTMoveIt.exe pour le lancer.
copie la liste qui se trouve en citation ci-dessous,
et colle-la dans le cadre de gauche de OTMoveIt :Paste List of Files/Folders to be moved.

Citation :

C:\Program Files\ContextTool\ContextTool-2.dll

C:\Program Files\Adssite Advanced Toolbar\toolbar.dll

clique sur MoveIt! pour lancer la suppression.
le résultat apparaitra dans le cadre "Results".
clique sur Exit pour fermer.
poste le rapport situé dans C:\_OTMoveIt\MovedFiles.

il te sera peut-être demander de redémarrer le pc pour achever la suppression.si c'est le cas accepte par Yes.

____________________

Colle le rapport :
Clean permettra de faire du nettoyage et supprimer des fichiers que des anti-virus et anti-spywares n'ont pas pu trouver. Le logiciel est régulièrement mis à jour, vous devrez donc le re-téléchargé pour obtenir une version plus récente.

· Téléchargez clean.zip, décompressez-le sur votre bureau (clic droit / extraire tout), vous obtenez alors un dossier clean
· Démarrez Windows en mode sans échec : Guide pour redémarrer en mode sans échec
· Ouvrez le dossier clean qui se trouve sur ton bureau, et double-cliquez sur clean.cmd, une fenêtre noire va apparaître pendant un instant, laissez la ouverte jusqu'à ce qu'elle se ferme.

http://kerio.probb.fr/tuto-Clean-h37.html

____________________
utilise

CCLEANER: (lance un nettoyage et répare 3 fois les erreurs) sans installer la barre yahoo

https://www.01net.com/telecharger/windows/Utilitaire/nettoyeurs_et_installeurs/fiches/32599.html

_______________________

scan ton ordi avec ton antivirus kaspersky pour voir
recolle hijackthis
et dis tes pbs
0
Réponse 11 / 13
math2504
 
Raport OTMoveIt

LoadLibrary failed for C:\Program Files\ContextTool\ContextTool-2.dll
C:\Program Files\ContextTool\ContextTool-2.dll NOT unregistered.
C:\Program Files\ContextTool\ContextTool-2.dll moved successfully.
C:\Program Files\Adssite Advanced Toolbar\toolbar.dll unregistered successfully.
C:\Program Files\Adssite Advanced Toolbar\toolbar.dll moved successfully.

Created on 10-27-2007 11:55:49

Raport Clean

C:\WINDOWS\System32\d3d8caps.dat -->2007-10-27 12:09:22
C:\WINDOWS\System32\adssite-remove.exe -->2007-10-23 16:14:32
C:\WINDOWS\System32\wpa.dbl -->2007-10-23 16:08:49
C:\WINDOWS\System32\rightonadz-uninst.exe -->2007-10-21 18:49:24
C:\WINDOWS\System32\FNTCACHE.DAT -->2007-10-21 11:45:54
C:\WINDOWS\System32\nscompat.tlb -->2007-10-14 17:03:26
C:\WINDOWS\System32\amcompat.tlb -->2007-10-14 17:03:26
C:\WINDOWS\System32\jupdate-1.6.0_03-b05.log -->2007-10-05 16:42:36
C:\WINDOWS\System32\MRT.exe -->2007-09-28 01:19:39
C:\WINDOWS\System32\_gzmrotate.dll -->2007-09-25 08:17:48
C:\WINDOWS\System32\javaws.exe -->2007-09-24 23:31:42
C:\WINDOWS\System32\javacpl.cpl -->2007-09-24 23:31:42
C:\WINDOWS\System32\javaw.exe -->2007-09-24 22:30:30
C:\WINDOWS\System32\java.exe -->2007-09-24 22:30:28
C:\WINDOWS\System32\CmdLineExt.dll -->2007-09-23 16:30:48
C:\WINDOWS\System32\uxtheme.dll -->2007-09-18 16:48:17
C:\WINDOWS\System32\TZLog.log -->2007-08-29 20:55:36
C:\WINDOWS\System32\inetcomm.dll -->2007-08-21 02:17:23
C:\WINDOWS\System32\wininet.dll -->2007-08-20 05:59:31
C:\WINDOWS\System32\webcheck.dll -->2007-08-20 05:59:31
C:\WINDOWS\System32\urlmon.dll -->2007-08-20 05:59:31
C:\WINDOWS\System32\url.dll -->2007-08-20 05:59:31
C:\WINDOWS\System32\occache.dll -->2007-08-20 05:59:31
C:\WINDOWS\System32\mstime.dll -->2007-08-20 05:59:30
C:\WINDOWS\System32\msrating.dll -->2007-08-20 05:59:30

C:\WINDOWS\setupact.log -->2007-10-27 12:16:02
C:\WINDOWS\ntbtlog.txt -->2007-10-27 12:14:40
C:\WINDOWS\bootstat.dat -->2007-10-27 12:14:33
C:\WINDOWS\WindowsUpdate.log -->2007-10-27 12:11:27
C:\WINDOWS\0.log -->2007-10-27 12:10:42
C:\WINDOWS\wiadebug.log -->2007-10-27 12:10:40
C:\WINDOWS\wiaservc.log -->2007-10-27 12:10:38
C:\WINDOWS\SchedLgU.Txt -->2007-10-27 12:05:10
C:\WINDOWS\d3dx.dat -->2007-10-26 16:54:05
C:\WINDOWS\setupapi.log -->2007-10-26 16:02:01
C:\WINDOWS\wmsetup.log -->2007-10-26 14:17:57
C:\WINDOWS\mozver.dat -->2007-10-25 16:39:55
C:\WINDOWS\War3Unin.dat -->2007-10-24 19:12:33
C:\WINDOWS\War3Unin.pif -->2007-10-24 19:05:24
C:\WINDOWS\War3Unin.exe -->2007-10-24 19:05:24

Hijackthis

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:53:37, on 2007-10-27
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Intel Audio Studio\IntelAudioStudio.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Documents and Settings\Mathieu\Mes documents\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.freewebportal.net/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.7.4.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] sttray.exe
O4 - HKLM\..\Run: [IntelAudioStudio] "C:\Program Files\Intel Audio Studio\IntelAudioStudio.exe" TRAY
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Uniblue RegistryBooster 2] C:\Program Files\Uniblue\RegistryBooster 2\RegistryBooster.exe /S
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O9 - Extra button: Statistiques d’Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\SCIEPlgn.dll
O9 - Extra button: BitComet Search - {461CC20B-FB6E-4f16-8FE8-C29359DB100E} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.7.4.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Kaspersky Anti-Virus 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: Planificateur LiveUpdate automatique - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing)
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
0
Réponse 12 / 13
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
encore des pbs?

sinon c'est bon!
0
Réponse 13 / 13
math2504 Messages postés 1 Statut Membre
 
non jai aucun probleme. Merci beaucoup pour ton aide!
0