Infection avec TR/Drop.Agent.dgo.8

[ClaudeR]

A l'ouverture de Windows XP Antivir le detecte, je le détruit et il reviens Oupi !!!

 

J'ai fait le ménage avec ATF.

Antivir est à jour.

 

Aussi mon Firefox est très instable, il se referme toujours seuls ???

 

Voici mon rapport Hijack.

 

Merci encore une chance qu'on vous a

Bye

 

Logfile of HijackThis v1.99.1

Scan saved at 20:19, on 2008-01-15

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe

N:\AntiVir PersonalEdition Classic\sched.exe

N:\AntiVir PersonalEdition Classic\avguard.exe

C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe

C:\WINDOWS\system32\FreezeScreenSaver.exe

C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE

C:\WINDOWS\system32\HPZipm12.exe

C:\Program Files\TRENDnet\TEW-424UB\SiSWLSvc.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\fxssvc.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\Explorer.EXE

N:\AntiVir PersonalEdition Classic\avgnt.exe

L:\QUICKENW2002\QAGENT.EXE

C:\WINDOWS\system32\ctfmon.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\TRENDnet\TEW-424UB\TRENDnet.exe

C:\WINDOWS\system32\mrtMngr.EXE

C:\Program Files\Internet Explorer\IEXPLORE.EXE

C:\WINDOWS\system32\msiexec.exe

C:\Documents and Settings\Compaq_Propriétaire\Bureau\HijackThis.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

F3 - REG:win.ini: load=C:\WINDOWS\system32\ssttq.exe

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll

O4 - HKLM\..\Run: [avgnt] "N:\AntiVir PersonalEdition Classic\avgnt.exe" /min

O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay

O4 - HKLM\..\Run: [QAGENT] L:\QUICKENW2002\QAGENT.EXE

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - Global Startup: Wireless Configuration Utility HW.32.lnk = ?

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll

O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL

O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm

O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE

O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (HKCU)

O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (HKCU)

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1174783407203

O18 - Protocol: bwz0 - {DE93EC42-9FB4-4A30-A41A-D510199B8C56} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwz0s - {DE93EC42-9FB4-4A30-A41A-D510199B8C56} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSN Messenger\msgrapp.8.1.0178.00.dll

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSN Messenger\msgrapp.8.1.0178.00.dll

O18 - Protocol: offline-8876480 - {DE93EC42-9FB4-4A30-A41A-D510199B8C56} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll

O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - N:\AntiVir PersonalEdition Classic\sched.exe

O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - N:\AntiVir PersonalEdition Classic\avguard.exe

O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe

O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe

O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe

O23 - Service: FreezeScreenSaver - Unknown owner - C:\WINDOWS\system32\FreezeScreenSaver.exe

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe

O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - N:\iPod\bin\iPodService.exe

O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe

O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe

O23 - Service: SiS WirelessLan Service (SiSWLSvc) - Unknown owner - C:\Program Files\TRENDnet\TEW-424UB\SiSWLSvc.exe

[Gof]

Bonjour aussi ClaudeR !

 

Relance un scan HijackThis

• Clique sur Do a system scan only et coche les lignes ci-dessous :
  

• F3 - REG:win.ini: load=C:\WINDOWS\system32\ssttq.exe
  

• Ferme toutes les fenêtres sauf HijackThis et Fix Checked.
  

Supprime ce fichier : C:\WINDOWS\system32\ssttq.exe.

Vide ta corbeille. Si tu as des difficultés à le supprimer, dis le.

 

Télécharge DiagHelp.zip de Malekal_morte sur ton bureau.

• Décompresse le, sur ton bureau par exemple.
  
• Un nouveau dossier chercher va être créé DiagHelp.
  
• Ouvre le et double-clique sur go.cmd (le .cmd peut ne pas apparaître)
  
• Une fenêtre va s'ouvrir, choisis l'option 1
  
• L'analyse va commencer, ceci peut durer quelques minutes, laisse faire et appuie sur une touche quand on te le demande
  
• Copie/colle le contenu du bloc-note qui s'ouvre et joins le à ta prochaine réponse.
  

A bientôt.

[ClaudeR]

Merci, voici le rapport..Pour ce qui est du fichier .exe j'ai été capable de le détruire mais pas la DLL !!

 

Lors de l'exécution, Antivir mon BEEPER souvent en /$/%$/"$%

 

DiagHelp version v1.4 - http://www.malekal.com

excute le 2008-01-16 à 19:33:08.62

 

 

Liste des derniers fichies modifies/crees dans windir\system32 et prefetch

C:\WINDOWS\prefetch\CHCP.COM-17EDBDC9.pf -->2008-01-16 19:33:05

C:\WINDOWS\prefetch\QUICKZIP.EXE-1A428356.pf -->2008-01-16 19:32:23

C:\WINDOWS\prefetch\VERCLSID.EXE-28F52AD2.pf -->2008-01-16 19:30:56

C:\WINDOWS\prefetch\HIJACKTHIS.EXE-1A274752.pf -->2008-01-16 19:30:14

C:\WINDOWS\prefetch\WUAUCLT.EXE-1360D60A.pf -->2008-01-16 19:28:58

C:\WINDOWS\prefetch\WSCNTFY.EXE-0B14C27D.pf -->2008-01-16 19:28:58

C:\WINDOWS\prefetch\WMIPRVSE.EXE-0D449B4F.pf -->2008-01-16 19:28:58

C:\WINDOWS\prefetch\SVCHOST.EXE-2D5FBD18.pf -->2008-01-16 19:28:58

C:\WINDOWS\prefetch\NTOSBOOT-B00DFAAD.pf -->2008-01-16 19:28:58

C:\WINDOWS\prefetch\ALG.EXE-275708CF.pf -->2008-01-16 19:28:58

 

C:\WINDOWS\System32\drivers\secdrv.sys -->2007-11-13 06:25:54

C:\WINDOWS\System32\drivers\usbaapl.sys -->2007-10-31 14:09:14

C:\WINDOWS\System32\drivers\tcpip.sys -->2007-10-30 13:20:55

C:\WINDOWS\System32\drivers\avipbb.sys -->2007-10-15 14:54:00

C:\WINDOWS\System32\drivers\ssmdrv.sys -->2007-04-20 17:59:50

C:\WINDOWS\System32\drivers\scdemu.sys -->2007-04-09 08:27:07

C:\WINDOWS\System32\drivers\gmer.sys -->2007-04-03 18:04:55

 

C:\WINDOWS\System32\qttss.ini -->2008-01-16 19:33:01

C:\WINDOWS\System32\qttss.ini2 -->2008-01-16 19:30:32

C:\WINDOWS\System32\ctfmon .exe -->2008-01-16 19:27:53

C:\WINDOWS\System32\ctfmon.exe.tmp -->2008-01-16 19:27:30

C:\WINDOWS\System32\RCX14.tmp -->2008-01-16 17:48:43

C:\WINDOWS\System32\nqiirmpw.dll -->2008-01-16 08:06:03

C:\WINDOWS\System32\qmeowqsh.exe -->2008-01-16 08:03:57

C:\WINDOWS\System32\RCX55.tmp -->2008-01-16 07:09:52

C:\WINDOWS\System32\RCX13.tmp -->2008-01-16 06:52:11

C:\WINDOWS\System32\huimyafu.dll -->2008-01-15 17:22:13

C:\WINDOWS\System32\aljfuuab.dll -->2008-01-15 17:22:04

C:\WINDOWS\System32\pegdxygj.dll -->2008-01-15 17:21:59

C:\WINDOWS\System32\RCX12.tmp -->2008-01-15 17:21:21

C:\WINDOWS\System32\RCX11.tmp -->2008-01-14 20:38:24

C:\WINDOWS\System32\RCX9.tmp -->2008-01-14 20:29:11

C:\WINDOWS\System32\RCXC.tmp -->2008-01-14 18:40:39

C:\WINDOWS\System32\jabcyodh.dll -->2008-01-14 16:05:32

C:\WINDOWS\System32\jdtexmmh.dll -->2008-01-14 16:04:08

C:\WINDOWS\System32\xkhcwarv.dll -->2008-01-14 16:03:57

C:\WINDOWS\System32\RCXB.tmp -->2008-01-14 16:03:45

C:\WINDOWS\System32\RCX10.tmp -->2008-01-13 18:26:24

C:\WINDOWS\System32\RCXF.tmp -->2008-01-13 16:32:41

C:\WINDOWS\System32\tpjnlcdt.dll -->2008-01-13 16:19:01

C:\WINDOWS\System32\btqhvcaf.dll -->2008-01-13 16:18:26

C:\WINDOWS\System32\vgeysulm.exe -->2008-01-13 16:18:23

 

C:\WINDOWS\WindowsUpdate.log -->2008-01-16 19:28:53

C:\WINDOWS.log -->2008-01-16 19:28:15

C:\WINDOWS\ModemLog_Motorola SM56 Speakerphone Modem.txt -->2008-01-16 19:28:14

C:\WINDOWS\wiadebug.log -->2008-01-16 19:28:08

C:\WINDOWS\wiaservc.log -->2008-01-16 19:27:58

C:\WINDOWS\bootstat.dat -->2008-01-16 19:27:09

C:\WINDOWS\SchedLgU.Txt -->2008-01-16 17:58:32

C:\WINDOWS\setupapi.log -->2008-01-16 07:22:04

C:\WINDOWS\QTFont.qfn -->2008-01-16 06:54:42

C:\WINDOWS\setupact.log -->2008-01-15 20:31:16

C:\WINDOWS\QTFont.for -->2008-01-13 18:46:42

C:\WINDOWS\QUICKEN.INI -->2008-01-13 14:59:02

C:\WINDOWS\wmsetup.log -->2008-01-12 22:18:53

C:\WINDOWS\WinAVI Video Converter 9.0 Setup Log.txt -->2008-01-12 19:46:20

C:\WINDOWS\tsoc.log -->2008-01-10 16:46:17

 

winlogon.exe

Verified: Signed

svchost.exe

Verified: Signed

ws2_32.dll

Verified: Signed

user32.dll

Verified: Signed

tcpip.sys

Verified: Signed

ndis.sys

Verified: Signed

null.sys

Verified: Signed

 

 

ListDLLs v2.25 - DLL lister for Win9x/NT

Copyright © 1997-2004 Mark Russinovich

Sysinternals - www.sysinternals.com

 

------------------------------------------------------------------------------

explorer.exe pid: 1760

Command line: C:\WINDOWS\Explorer.EXE

 

Base Size Version Path

0x58b50000 0x9a000 5.82.2900.2982 C:\WINDOWS\system32\comctl32.dll

0x10000000 0xa7000 C:\WINDOWS\system32\ssttq.dll

0x76f80000 0x7f000 2001.12.4414.0308 C:\WINDOWS\system32\CLBCATQ.DLL

0x77000000 0xd4000 2001.12.4414.0258 C:\WINDOWS\system32\COMRes.dll

0x76ac0000 0x11000 3.05.2284.0000 C:\WINDOWS\system32\ATL.DLL

0x01a30000 0x13000 7.05.0000.0047 C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll

0x01a50000 0x14000 C:\WINDOWS\system32\ssqqnkh.dll

0x164a0000 0x23000 5.02.5721.5145 C:\WINDOWS\system32\WPDShServiceObj.dll

0x109c0000 0x2c000 5.02.5721.5145 C:\WINDOWS\system32\PortableDeviceTypes.dll

0x10930000 0x49000 5.02.5721.5145 C:\WINDOWS\system32\PortableDeviceApi.dll

0x7d200000 0x2be000 3.01.4000.4039 C:\WINDOWS\system32\msi.dll

0x00e80000 0x17000 9.05.0000.1098 C:\Program Files\Fichiers communs\Logitech\LVMVFM\LVPrcInj.dll

0x76010000 0x65000 6.02.3104.0000 C:\WINDOWS\system32\MSVCP60.dll

0x748f0000 0x113000 8.90.1101.0000 C:\WINDOWS\system32\msxml3.dll

0x74630000 0x27000 3.10.0349.0000 C:\WINDOWS\system32\msls31.dll

0x01440000 0x1c000 7.00.0000.0000 C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll

0x017a0000 0xd000 7.00.0009.0050 C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

0x7c340000 0x56000 7.10.3052.0004 C:\WINDOWS\system32\MSVCR71.dll

0x74730000 0x3d000 3.525.1117.0000 C:\WINDOWS\system32\ODBC32.dll

0x02080000 0x18000 3.525.1117.0000 C:\WINDOWS\system32\odbcint.dll

0x325c0000 0x12000 11.00.5510.0000 C:\Program Files\Microsoft Office\OFFICE11\msohev.dll

0x03e50000 0x11000 7.00.0000.0010 N:\AntiVir PersonalEdition Classic\shlext.dll

0x04280000 0x102000 7.10.3077.0000 N:\AntiVir PersonalEdition Classic\MFC71U.DLL

0x5d360000 0xf000 7.10.3077.0000 C:\WINDOWS\system32\MFC71FRA.DLL

0x041e0000 0x20000 7.05.0000.0049 C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\context.dll

0x04490000 0x1a000 C:\WINDOWS\system32\CmdLineExt03.dll

 

ListDLLs v2.25 - DLL lister for Win9x/NT

Copyright © 1997-2004 Mark Russinovich

Sysinternals - www.sysinternals.com

 

------------------------------------------------------------------------------

winlogon.exe pid: 636

Command line: winlogon.exe

 

Base Size Version Path

0x01000000 0x81000 \??\C:\WINDOWS\system32\winlogon.exe

0x58b50000 0x9a000 5.82.2900.2982 C:\WINDOWS\system32\COMCTL32.dll

0x74730000 0x3d000 3.525.1117.0000 C:\WINDOWS\system32\ODBC32.dll

0x20000000 0x18000 3.525.1117.0000 C:\WINDOWS\system32\odbcint.dll

0x10000000 0x11000 6.14.0010.4132 C:\WINDOWS\system32\Ati2evxx.dll

0x01430000 0x14000 C:\WINDOWS\system32\ssqqnkh.dll

0x77000000 0xd4000 2001.12.4414.0258 C:\WINDOWS\system32\COMRes.dll

0x76f80000 0x7f000 2001.12.4414.0308 C:\WINDOWS\system32\CLBCATQ.DLL

 

 

Le volume dans le lecteur C s'appelle PRESARIO

Le numéro de série du volume est C07C-02CD

 

Répertoire de C:\WINDOWS\system

 

1998-05-07 12:04 52,736 hpsysdrv.exe

1 fichier(s) 52,736 octets

0 Rép(s) 8,028,438,528 octets libres

Le volume dans le lecteur C s'appelle PRESARIO

Le numéro de série du volume est C07C-02CD

 

Répertoire de C:\WINDOWS\system32

 

2004-08-05 14:00 6,144 csrss.exe

1 fichier(s) 6,144 octets

0 Rép(s) 8,028,438,528 octets libres

 

Contenu de Downloaded Program Files

Le volume dans le lecteur C s'appelle PRESARIO

Le numéro de série du volume est C07C-02CD

 

Répertoire de C:\WINDOWS\Downloaded Program Files

 

2007-09-22 20:12 <REP> .

2007-09-22 20:12 <REP> ..

2004-11-10 20:09 65 desktop.ini

2002-07-25 18:13 24,576 dwusplay.dll

2002-07-25 18:13 196,608 dwusplay.exe

2002-07-25 18:05 172,032 isusweb.dll

2000-01-20 14:25 1,162 Microsoft XML Parser for Java.osd

2005-05-26 03:19 293 muweb.inf

6 fichier(s) 394,736 octets

 

Total des fichiers listés :

6 fichier(s) 394,736 octets

2 Rép(s) 8,028,434,432 octets libres

 

Recherche de rootkit! (Merci S!Ri)

 

Recherche d'infections connues

 

Export des clefs sensibles..

 

 

Liste des fichiers en exception sur le pare-feu XP SP2

 

"C:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"="C:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe:*:Disabled:Logitech Desktop Messenger"

"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Messenger"

"L:\\Nexon\\MapleStory\\MapleStory.exe"="L:\\Nexon\\MapleStory\\MapleStory.exe:*:Enabled:MapleStory"

"C:\\Program Files\\Messenger\\msmsgs.exe"="C:\\Program Files\\Messenger\\msmsgs.exe:*:Disabled:Messenger"

"C:\\Program Files\\LimeWire\\LimeWire.exe"="C:\\Program Files\\LimeWire\\LimeWire.exe:*:Disabled:LimeWire"

"C:\\Program Files\\uTorrent\\uTorrent.exe"="C:\\Program Files\\uTorrent\\uTorrent.exe:*:Enabled:µTorrent"

"N:\\BearShare\\BearShare.exe"="N:\\BearShare\\BearShare.exe:*:Disabled:BearShare"

"C:\\Program Files\\MSN Messenger\\msnmsgr .exe"="C:\\Program Files\\MSN Messenger\\msnmsgr .exe:*:Disabled:Messenger"

"C:\\Program Files\\iTunes\\iTunes.exe"="C:\\Program Files\\iTunes\\iTunes.exe:*:Enabled:iTunes"

 

 

Export de la clef SharedTaskScheduler

 

[sharedTaskScheduler]

"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui"

"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant"

 

 

 

exports des policies

REGEDIT4

 

[system]

"legalnoticecaption"=""

"legalnoticetext"=""

"undockwithoutlogon"=dword:00000001

"ShutdownWithoutLogon"=dword:00000001

"DontDisplayLastUserName"=dword:00000000

 

 

 

Export des clefs sensibles..

Rechercher adresses sensibles dans le fichier HOSTS...

catchme 0.3.1319 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2008-01-16 19:34:57

Windows 5.1.2600 Service Pack 2 NTFS

 

scanning hidden services & system hive ...

 

scanning hidden registry entries ...

 

scanning hidden files ...

 

scan completed successfully

hidden services: 0

hidden files: 0

 

 

KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (www.security.org.sg)

 

Process list by traversal of KiWaitListHead

 

4 - System

284 - MDM.EXE

376 - HPZipm12.exe

584 - avgnt.exe

608 - csrss.exe

636 - winlogon.exe

680 - services.exe

692 - lsass.exe

760 - SiSWLSvc.exe

888 - svchost.exe

908 - qagent.exe

1004 - svchost.exe

1084 - svchost.exe

1096 - svchost.exe

1248 - TRENDnet.exe

1252 - svchost.exe

1276 - IEXPLORE.EXE

1532 - LVPrcSrv.exe

1708 - ctfmon .exe

1760 - explorer.exe

1776 - mrtMngr.exe

1864 - sched.exe

1964 - avguard.exe

1976 - AppleMobileDevi

2012 - guard.exe

2044 - FreezeScreenSav

2904 - alg.exe

3632 - svchost.exe

4060 - cmd.exe

 

Total number of processes = 29

NOTE: Under WinXP, this will not show all processes.

 

KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (www.security.org.sg)

 

Driver/Module list by traversal of PsLoadedModuleList

 

804D7000 - \WINDOWS\system32\ntoskrnl.exe

806EC000 - \WINDOWS\system32\hal.dll

F7A2F000 - \WINDOWS\system32\KDCOM.DLL

F793F000 - \WINDOWS\system32\BOOTVID.dll

F74DF000 - ACPI.sys

F7A31000 - \WINDOWS\system32\DRIVERS\WMILIB.SYS

F74CE000 - pci.sys

F752F000 - isapnp.sys

F753F000 - ohci1394.sys

F754F000 - \WINDOWS\system32\DRIVERS\1394BUS.SYS

F7AF7000 - pciide.sys

F77AF000 - \WINDOWS\system32\DRIVERS\PCIIDEX.SYS

F7A33000 - viaide.sys

F755F000 - MountMgr.sys

F74AF000 - ftdisk.sys

F77B7000 - PartMgr.sys

F77BF000 - sfsync02.sys

F756F000 - VolSnap.sys

F7497000 - atapi.sys

F757F000 - disk.sys

F758F000 - \WINDOWS\system32\DRIVERS\CLASSPNP.SYS

F7477000 - fltMgr.sys

F7465000 - sr.sys

F77C7000 - PxHelp20.sys

F744E000 - KSecDD.sys

F73C1000 - Ntfs.sys

F7394000 - NDIS.sys

F759F000 - uagp35.sys

F7381000 - sfvfs02.sys

F77CF000 - sfhlp02.sys

F736F000 - sfdrv01.sys

F7354000 - Mup.sys

F75AF000 - gagp30kx.sys

F76DF000 - \SystemRoot\system32\DRIVERS\amdk7.sys

F676B000 - \SystemRoot\system32\DRIVERS\ati2mtag.sys

F6757000 - \SystemRoot\system32\DRIVERS\VIDEOPRT.SYS

F6675000 - \SystemRoot\system32\DRIVERS\smserial.sys

F78F7000 - \SystemRoot\System32\Drivers\Modem.SYS

F76EF000 - \SystemRoot\system32\DRIVERS\imapi.sys

F76FF000 - \SystemRoot\system32\DRIVERS\cdrom.sys

F770F000 - \SystemRoot\system32\DRIVERS\redbook.sys

F6652000 - \SystemRoot\system32\DRIVERS\ks.sys

F78FF000 - \SystemRoot\SYSTEM32\DRIVERS\GEARAspiWDM.sys

F7907000 - \SystemRoot\system32\DRIVERS\usbuhci.sys

F662F000 - \SystemRoot\system32\DRIVERS\USBPORT.SYS

F790F000 - \SystemRoot\system32\DRIVERS\usbehci.sys

F63F9000 - \SystemRoot\system32\drivers\ALCXWDM.SYS

F63D5000 - \SystemRoot\system32\drivers\portcls.sys

F772F000 - \SystemRoot\system32\drivers\drmk.sys

F6B7F000 - \SystemRoot\system32\DRIVERS\fetnd5b.sys

F63C4000 - \SystemRoot\system32\DRIVERS\serial.sys

F79FB000 - \SystemRoot\system32\DRIVERS\serenum.sys

F63B0000 - \SystemRoot\system32\DRIVERS\parport.sys

F6B6F000 - \SystemRoot\system32\DRIVERS\i8042prt.sys

F7917000 - \SystemRoot\system32\DRIVERS\mouclass.sys

F791F000 - \SystemRoot\system32\DRIVERS\kbdclass.sys

F7C5C000 - \SystemRoot\system32\DRIVERS\audstub.sys

F6B0F000 - \SystemRoot\system32\DRIVERS\rasl2tp.sys

F7A03000 - \SystemRoot\system32\DRIVERS\ndistapi.sys

F6376000 - \SystemRoot\system32\DRIVERS\ndiswan.sys

F6AFF000 - \SystemRoot\system32\DRIVERS\raspppoe.sys

F6AEF000 - \SystemRoot\system32\DRIVERS\raspptp.sys

F7927000 - \SystemRoot\system32\DRIVERS\TDI.SYS

F634D000 - \SystemRoot\system32\DRIVERS\psched.sys

F6982000 - \SystemRoot\system32\DRIVERS\msgpc.sys

F792F000 - \SystemRoot\system32\DRIVERS\ptilink.sys

F7937000 - \SystemRoot\system32\DRIVERS\raspti.sys

F6972000 - \SystemRoot\system32\DRIVERS\termdd.sys

F7A85000 - \SystemRoot\system32\DRIVERS\swenum.sys

F6319000 - \SystemRoot\system32\DRIVERS\update.sys

F7A17000 - \SystemRoot\system32\DRIVERS\mssmbios.sys

F6962000 - \SystemRoot\System32\Drivers\NDProxy.SYS

F70F6000 - \SystemRoot\system32\drivers\MODEMCSA.sys

F776F000 - \SystemRoot\system32\DRIVERS\usbhub.sys

F7AA9000 - \SystemRoot\system32\DRIVERS\USBD.SYS

F7AAF000 - \SystemRoot\System32\Drivers\Fs_Rec.SYS

F7B27000 - \SystemRoot\System32\Drivers\Null.SYS

F7AB1000 - \SystemRoot\System32\Drivers\Beep.SYS

F7B28000 - \SystemRoot\System32\DRIVERS\AvgAsCln.sys

F7867000 - \SystemRoot\System32\drivers\vga.sys

F7AB3000 - \SystemRoot\System32\Drivers\mnmdd.SYS

F7AB5000 - \SystemRoot\System32\DRIVERS\RDPCDD.sys

F786F000 - \SystemRoot\System32\Drivers\Msfs.SYS

F7877000 - \SystemRoot\System32\Drivers\Npfs.SYS

F79C7000 - \SystemRoot\system32\DRIVERS\rasacd.sys

BA632000 - \SystemRoot\system32\DRIVERS\ipsec.sys

BA5DA000 - \SystemRoot\system32\DRIVERS\tcpip.sys

BA5B2000 - \SystemRoot\system32\DRIVERS\netbt.sys

BA590000 - \SystemRoot\System32\drivers\afd.sys

F777F000 - \SystemRoot\system32\DRIVERS\netbios.sys

BA565000 - \SystemRoot\system32\DRIVERS\rdbss.sys

F7B3D000 - \SystemRoot\System32\Drivers\PQNTDrv.SYS

BA4CE000 - \SystemRoot\system32\DRIVERS\mrxsmb.sys

F779F000 - \SystemRoot\System32\Drivers\Fips.SYS

BA4AD000 - \SystemRoot\system32\DRIVERS\ipnat.sys

F75DF000 - \SystemRoot\system32\DRIVERS\wanarp.sys

F75EF000 - \SystemRoot\system32\DRIVERS\avipbb.sys

F7AE3000 - \??\N:\AntiVir PersonalEdition Classic\avgio.sys

F7B97000 - \??\C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys

F762F000 - \SystemRoot\system32\drivers\lvusbsta.sys

B9CDA000 - \SystemRoot\system32\DRIVERS\LV561AV.SYS

F763F000 - \SystemRoot\system32\DRIVERS\STREAM.SYS

BAA0D000 - \SystemRoot\system32\DRIVERS\USBSTOR.SYS

B93A3000 - \SystemRoot\System32\Drivers\Fastfat.SYS

B938B000 - \SystemRoot\System32\Drivers\dump_atapi.sys

B9C35000 - \SystemRoot\System32\Drivers\dump_WMILIB.SYS

BF800000 - \SystemRoot\System32\win32k.sys

B9908000 - \SystemRoot\System32\drivers\Dxapi.sys

B9928000 - \SystemRoot\System32\watchdog.sys

BF9C3000 - \SystemRoot\System32\drivers\dxg.sys

F7B8B000 - \SystemRoot\System32\drivers\dxgthk.sys

B97F2000 - \SystemRoot\system32\DRIVERS\atinmdxx.sys

B936E000 - \SystemRoot\system32\DRIVERS\atinrvxx.sys

BF9D5000 - \SystemRoot\System32\ati2dvag.dll

BFA18000 - \SystemRoot\System32\ati2cqag.dll

BFA5D000 - \SystemRoot\System32\atikvmag.dll

BFA93000 - \SystemRoot\System32\ati3duag.dll

BFD25000 - \SystemRoot\System32\ativvaxx.dll

BFFA0000 - \SystemRoot\System32\ATMFD.DLL

BA073000 - \SystemRoot\system32\DRIVERS\ndisuio.sys

B7291000 - \SystemRoot\system32\drivers\wdmaud.sys

B981E000 - \SystemRoot\system32\drivers\sysaudio.sys

B714E000 - \SystemRoot\system32\DRIVERS\mrxdav.sys

B6E63000 - \SystemRoot\System32\Drivers\HTTP.sys

B6DE9000 - \SystemRoot\system32\DRIVERS\srv.sys

BA6BD000 - \SystemRoot\System32\Drivers\mrtRate.SYS

B9A88000 - \??\L:\Nexon\MapleStory\npkcrypt.sys

B6F1C000 - \SystemRoot\System32\Drivers\Cdfs.SYS

B717B000 - \SystemRoot\system32\DRIVERS\secdrv.sys

B6B2E000 - \??\N:\AntiVir PersonalEdition Classic\avgntflt.sys

B97DA000 - \??\C:\WINDOWS\system32\drivers\LVPrcMon.sys

F7C15000 - \SystemRoot\System32\DRIVERS\KProcCheck.sys

 

Total number of drivers = 132

 

Liste des programmes installes

 

1500

1500_Help

1500Trb

802.11g Wireless USB 2.0 Adapter

Ad-Aware SE Personal

Adobe Photoshop Album 2.0 Edition Découverte

Adobe Photoshop Elements

Adobe Reader 7.0.9 - Français

Adobe Shockwave Player

AiO_Scan

AiOSoftware

Apple Mobile Device Support

Apple Software Update

ATI - Software Uninstall Utility

ATI Catalyst Control Center

ATI Display Driver

AVG Anti-Spyware 7.5

Avira AntiVir PersonalEdition Classic

BufferChm

CCleaner (remove only)

Compléments d'aide et de support

Correctif pour Lecteur Windows Media 11 (KB939683)

Correctif Windows XP - KB867282

Correctif Windows XP - KB873339

Correctif Windows XP - KB883667

Correctif Windows XP - KB885250

Correctif Windows XP - KB885835

Correctif Windows XP - KB885836

Correctif Windows XP - KB886185

Correctif Windows XP - KB887472

Correctif Windows XP - KB887742

Correctif Windows XP - KB888113

Correctif Windows XP - KB888239

Correctif Windows XP - KB888302

Correctif Windows XP - KB890175

Correctif Windows XP - KB890859

Correctif Windows XP - KB891781

CP_Package_Variety1

CP_Package_Variety2

CP_Package_Variety3

CustomerResearchQFolder

DeepBurner v1.8.0.224

Destinations

DeviceManagementQFolder

DocProc

Doom 3

Doom 3

Doom 3

Doom 3

DOOM 3: Resurrection of Evil

DOOM 3: Resurrection of Evil

Eau secours! Professeur Scientifix

eSupportQFolder

EVEREST Home Edition v2.20

Fax

Final Fantasy XI Theme Installer

GameSpy Arcade

GdiplusUpgrade

Google Earth

Google Toolbar for Internet Explorer

GUILD WARS

Half-Life 2: Episode One

Half-Life 2: Episode Two

Half-Life® 2

HijackThis 1.99.1

Hotfix for Windows Media Format 11 SDK (KB929399)

Hotfix for Windows XP (KB926239)

HP Boot Optimizer

HP Extended Capabilities 5.3

HP Help and Support 4.0

HP Image Zone Express

HP Imaging Device Functions 5.3

HP PSC & OfficeJet 5.3.B

HP Software Update

HP Solution Center & Imaging Support Tools 5.3

HPProductAssistant

HpSdpAppCoreApp

InterVideo WinDVD Player

InterVideo WinDVD Player

iPod for Windows 2006-06-28

iPod for Windows 2006-06-28

iTunes

J2SE Runtime Environment 5.0

J2SE Runtime Environment 5.0 Update 10

J2SE Runtime Environment 5.0 Update 6

LimeWire 4.14.10

Living Marine Aquarium 2 Screen Saver

Logiciel QuickCam de Logitech

Logitech Desktop Messenger

MapleStory

MarketResearch

Microsoft .NET Framework 1.1

Microsoft .NET Framework 1.1

Microsoft .NET Framework 1.1 French Language Pack

Microsoft .NET Framework 1.1 Hotfix (KB928366)

Microsoft .NET Framework 2.0

Microsoft .NET Framework 2.0

Microsoft .NET Framework 2.0 Language Pack - FRA

Microsoft .NET Framework 3.0

Microsoft .NET Framework 3.0

Microsoft .NET Framework 3.0 French Language Pack

Microsoft Compression Client Pack 1.0 for Windows XP

Microsoft Office 2000 Premium

Microsoft Office Standard Edition 2003

Microsoft User-Mode Driver Framework Feature Pack 1.0

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual Studio 6.0 Enterprise Edition

Microsoft Web Publishing Wizard 1.53

Mise à jour de sécurité pour Lecteur Windows Media (KB911564)

Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)

Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)

Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)

Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398)

Mise à jour de sécurité pour Step by Step Interactive Training (KB898458)

Mise à jour de sécurité pour Step by Step Interactive Training (KB923723)

Mise à jour de sécurité pour Windows XP (KB890046)

Mise à jour de sécurité pour Windows XP (KB893066)

Mise à jour de sécurité pour Windows XP (KB893756)

Mise à jour de sécurité pour Windows XP (KB896358)

Mise à jour de sécurité pour Windows XP (KB896422)

Mise à jour de sécurité pour Windows XP (KB896423)

Mise à jour de sécurité pour Windows XP (KB896424)

Mise à jour de sécurité pour Windows XP (KB896428)

Mise à jour de sécurité pour Windows XP (KB899587)

Mise à jour de sécurité pour Windows XP (KB899591)

Mise à jour de sécurité pour Windows XP (KB900725)

Mise à jour de sécurité pour Windows XP (KB901017)

Mise à jour de sécurité pour Windows XP (KB901214)

Mise à jour de sécurité pour Windows XP (KB902400)

Mise à jour de sécurité pour Windows XP (KB904706)

Mise à jour de sécurité pour Windows XP (KB905414)

Mise à jour de sécurité pour Windows XP (KB905749)

Mise à jour de sécurité pour Windows XP (KB905915)

Mise à jour de sécurité pour Windows XP (KB908519)

Mise à jour de sécurité pour Windows XP (KB908531)

Mise à jour de sécurité pour Windows XP (KB911280)

Mise à jour de sécurité pour Windows XP (KB911562)

Mise à jour de sécurité pour Windows XP (KB911567)

Mise à jour de sécurité pour Windows XP (KB911927)

Mise à jour de sécurité pour Windows XP (KB912812)

Mise à jour de sécurité pour Windows XP (KB912919)

Mise à jour de sécurité pour Windows XP (KB913446)

Mise à jour de sécurité pour Windows XP (KB913580)

Mise à jour de sécurité pour Windows XP (KB914388)

Mise à jour de sécurité pour Windows XP (KB914389)

Mise à jour de sécurité pour Windows XP (KB916281)

Mise à jour de sécurité pour Windows XP (KB917159)

Mise à jour de sécurité pour Windows XP (KB917344)

Mise à jour de sécurité pour Windows XP (KB917422)

Mise à jour de sécurité pour Windows XP (KB917953)

Mise à jour de sécurité pour Windows XP (KB918118)

Mise à jour de sécurité pour Windows XP (KB918439)

Mise à jour de sécurité pour Windows XP (KB918899)

Mise à jour de sécurité pour Windows XP (KB919007)

Mise à jour de sécurité pour Windows XP (KB920213)

Mise à jour de sécurité pour Windows XP (KB920214)

Mise à jour de sécurité pour Windows XP (KB920670)

Mise à jour de sécurité pour Windows XP (KB920683)

Mise à jour de sécurité pour Windows XP (KB920685)

Mise à jour de sécurité pour Windows XP (KB921398)

Mise à jour de sécurité pour Windows XP (KB921503)

Mise à jour de sécurité pour Windows XP (KB921883)

Mise à jour de sécurité pour Windows XP (KB922616)

Mise à jour de sécurité pour Windows XP (KB922760)

Mise à jour de sécurité pour Windows XP (KB922819)

Mise à jour de sécurité pour Windows XP (KB923191)

Mise à jour de sécurité pour Windows XP (KB923414)

Mise à jour de sécurité pour Windows XP (KB923689)

Mise à jour de sécurité pour Windows XP (KB923694)

Mise à jour de sécurité pour Windows XP (KB923980)

Mise à jour de sécurité pour Windows XP (KB924191)

Mise à jour de sécurité pour Windows XP (KB924270)

Mise à jour de sécurité pour Windows XP (KB924496)

Mise à jour de sécurité pour Windows XP (KB924667)

Mise à jour de sécurité pour Windows XP (KB925454)

Mise à jour de sécurité pour Windows XP (KB925486)

Mise à jour de sécurité pour Windows XP (KB925902)

Mise à jour de sécurité pour Windows XP (KB926255)

Mise à jour de sécurité pour Windows XP (KB926436)

Mise à jour de sécurité pour Windows XP (KB927779)

Mise à jour de sécurité pour Windows XP (KB927802)

Mise à jour de sécurité pour Windows XP (KB928090)

Mise à jour de sécurité pour Windows XP (KB928255)

Mise à jour de sécurité pour Windows XP (KB928843)

Mise à jour de sécurité pour Windows XP (KB929123)

Mise à jour de sécurité pour Windows XP (KB929969)

Mise à jour de sécurité pour Windows XP (KB930178)

Mise à jour de sécurité pour Windows XP (KB931261)

Mise à jour de sécurité pour Windows XP (KB931768)

Mise à jour de sécurité pour Windows XP (KB931784)

Mise à jour de sécurité pour Windows XP (KB932168)

Mise à jour de sécurité pour Windows XP (KB933566)

Mise à jour de sécurité pour Windows XP (KB933729)

Mise à jour de sécurité pour Windows XP (KB935839)

Mise à jour de sécurité pour Windows XP (KB935840)

Mise à jour de sécurité pour Windows XP (KB936021)

Mise à jour de sécurité pour Windows XP (KB937143)

Mise à jour de sécurité pour Windows XP (KB938127)

Mise à jour de sécurité pour Windows XP (KB938829)

Mise à jour de sécurité pour Windows XP (KB939653)

Mise à jour de sécurité pour Windows XP (KB941202)

Mise à jour de sécurité pour Windows XP (KB941568)

Mise à jour de sécurité pour Windows XP (KB941569)

Mise à jour de sécurité pour Windows XP (KB941644)

Mise à jour de sécurité pour Windows XP (KB942615)

Mise à jour de sécurité pour Windows XP (KB943460)

Mise à jour de sécurité pour Windows XP (KB943485)

Mise à jour de sécurité pour Windows XP (KB944653)

Mise à jour pour Windows XP (KB894391)

Mise à jour pour Windows XP (KB898461)

Mise à jour pour Windows XP (KB900485)

Mise à jour pour Windows XP (KB910437)

Mise à jour pour Windows XP (KB916595)

Mise à jour pour Windows XP (KB920872)

Mise à jour pour Windows XP (KB922582)

Mise à jour pour Windows XP (KB925720)

Mise à jour pour Windows XP (KB927891)

Mise à jour pour Windows XP (KB930916)

Mise à jour pour Windows XP (KB931836)

Mise à jour pour Windows XP (KB933360)

Mise à jour pour Windows XP (KB938828)

Mise à jour pour Windows XP (KB942763)

Mise à jour pour Windows XP (KB942840)

Mise à jour pour Windows XP (KB946627)

Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA

Module de prise en charge linguistique du français de Microsoft .NET Framework 3.0

Motorola SM56 Speakerphone Modem

Mozilla Firefox (2.0.0.9)

MSXML 4.0 SP2 (KB927978)

MSXML 4.0 SP2 (KB936181)

MSXML 4.0 SP2 Parser and SDK

MSXML 6.0 Parser (KB933579)

NewCopy

Panda TotalScan

PartitionMagic

PC-Doctor for Windows

PC-Doctor for Windows

Portal

PowerQuest PartitionMagic 8.0

ProductContext

Programme de gestion Camera de Logitech®

Python 2.2 pywin32 extensions (build 203)

Python 2.2.3

Quick Zip 4.60.017

Quicken 2002 de luxe

QuickTime

Readme

Registry Mechanic 4.0

Report Agent

S3GSetup

Scan

ScannerCopy

Security Update for CAPICOM (KB931906)

Security Update for CAPICOM (KB931906)

Security Update pour Microsoft .NET Framework 2.0 (KB928365)

Shockwave

Silkroad

SolutionCenter

SpeechRedist

Spybot - Search & Destroy 1.4

Starcraft

Status

Steam

Team Fortress 2

Themexp.org File

TrayApp

TRENDnet TEW-424UB

TRENDnet TEW-424UB

Unload

Unreal Tournament 2004

UxTheme Multipatcher Fr

VIA/S3G Display Driver

Warcraft II BNE

WebFldrs XP

WebReg

WinAVI Video Converter 9.0

Windows Communication Foundation

Windows Communication Foundation Language Pack - FRA

Windows Genuine Advantage v1.3.0254.0

Windows Imaging Component

Windows Installer 3.1 (KB893803)

Windows Live Messenger

Windows Live Sign-in Assistant

Windows Media Format 11 runtime

Windows Media Format 11 runtime

Windows Media Player 11

Windows Media Player 11

Windows Presentation Foundation

Windows Presentation Foundation Language Pack (FRA)

Windows Workflow Foundation

Windows Workflow Foundation FR Language Pack

Xfire (remove only)

XML Paper Specification Shared Components Language Pack 1.0

XML Paper Specification Shared Components Pack 1.0

XP Tuner

YouTUBE movie downloader

 

 

 

Le volume dans le lecteur C s'appelle PRESARIO

Le numéro de série du volume est C07C-02CD

 

Répertoire de C:\Program Files

 

2008-01-14 16:45 <REP> .

2008-01-14 16:45 <REP> ..

2008-01-11 19:16 <REP> Adobe

2008-01-01 18:31 <REP> Apple Software Update

2007-03-26 19:24 <REP> Army

2007-03-11 16:02 <REP> ATI Technologies

2007-08-31 18:18 <REP> Common Files

2006-05-11 16:24 <REP> ComPlus Applications

2007-12-19 20:34 <REP> Dcads Games Collection

2007-10-04 19:32 <REP> DesktopFun

2006-01-03 19:11 <REP> directx

2006-01-03 15:30 <REP> Easy Internet signup

2008-01-11 20:35 <REP> Easy Video Downloader

2007-06-04 16:12 <REP> eMule

2008-01-12 22:16 <REP> Fichiers communs

2007-08-17 12:09 <REP> filesubmit

2008-01-11 19:20 1,181,812 flvplayer_setup.exe

2007-12-14 09:15 <REP> freewareboard

2007-08-16 20:08 <REP> GameSpy Arcade

2007-02-19 08:43 <REP> Google

2007-02-26 21:48 <REP> Grisoft

2007-01-22 18:53 <REP> Hewlett-Packard

2007-01-22 18:35 <REP> HP

2005-12-24 20:18 <REP> HPQ

2007-11-07 19:44 314 INSTALL.LOG

2007-12-11 16:52 <REP> Internet Explorer

2005-12-24 20:18 <REP> InterVideo

2008-01-16 07:09 <REP> iTunes

2006-12-22 12:27 <REP> Java

2007-09-24 19:56 <REP> LimeWire

2007-02-25 15:53 <REP> Logitech

2008-01-16 07:09 <REP> Messenger

2007-05-09 20:16 <REP> Microsoft CAPICOM 2.1.0.2

2005-12-24 20:19 <REP> Microsoft Encarta

2006-04-04 12:27 <REP> microsoft frontpage

2006-04-04 13:49 <REP> Microsoft Office

2005-12-24 20:19 <REP> Microsoft Visual Studio

2006-04-04 13:49 <REP> Microsoft Works

2005-12-24 20:19 <REP> Microsoft.NET

2005-12-24 20:21 <REP> Movie Maker

2008-01-16 17:50 <REP> Mozilla Firefox

2008-01-12 19:03 <REP> MP4 Converter

2007-04-27 15:44 <REP> MSBuild

2005-12-24 20:21 <REP> MSN Gaming Zone

2008-01-16 07:09 <REP> MSN Messenger

2006-05-11 19:05 <REP> MSXML 4.0

2007-08-14 12:46 <REP> MSXML 6.0

2007-01-02 21:29 <REP> Nero

2005-12-24 20:21 <REP> NetMeeting

2007-11-26 19:48 <REP> Orbitdownloader

2007-06-13 13:54 <REP> Outlook Express

2007-12-30 22:07 <REP> Panda Security

2005-12-24 20:21 <REP> PC-Doctor for Windows

2008-01-05 14:40 <REP> PowerISO

2006-01-03 00:00 <REP> PowerQuest

2008-01-11 19:20 <REP> QuickTime

2005-12-24 20:22 <REP> Real

2007-04-27 15:40 <REP> Reference Assemblies

2006-08-22 19:17 <REP> Registry Mechanic

2005-12-24 20:22 <REP> Services en ligne

2007-06-22 11:36 <REP> SystemRequirementsLab

2006-10-28 16:26 <REP> TerraGame

2007-12-14 09:25 <REP> themexp

2007-11-07 19:49 <REP> TRENDnet

2008-01-12 18:46 <REP> TubeMaster

2007-12-14 08:37 <REP> uTorrent

2007-08-17 11:19 <REP> UxTheme Multipatcher Fr

2006-01-07 00:20 <REP> VIA

2006-05-11 16:20 <REP> Web Publish

2006-01-03 21:00 <REP> Windows Media Components

2007-01-04 20:47 <REP> Windows Media Connect 2

2008-01-06 13:13 <REP> Windows Media Player

2005-12-24 20:22 <REP> Windows NT

2005-12-24 20:22 <REP> xerox

2008-01-11 19:18 <REP> YouTUBE movie downloader

2 fichier(s) 1,182,126 octets

73 Rép(s) 8,013,504,512 octets libres

Le volume dans le lecteur C s'appelle PRESARIO

Le numéro de série du volume est C07C-02CD

 

Répertoire de C:\Program Files\fichiers communs

 

2008-01-12 22:16 <REP> .

2008-01-12 22:16 <REP> ..

2007-09-24 19:42 <REP> Adobe

2007-02-22 20:36 <REP> Ahead

2008-01-01 18:31 <REP> Apple

2008-01-14 16:45 <REP> AVSMedia

2006-05-11 16:20 <REP> DESIGNER

2006-01-05 19:02 <REP> Hewlett-Packard

2007-01-22 18:56 <REP> HP

2005-12-24 20:17 <REP> InstallShield

2005-12-24 20:17 <REP> Java

2007-02-25 15:54 <REP> Logitech

2008-01-12 22:16 <REP> Microsoft Shared

2007-08-31 18:18 <REP> Motive

2005-12-24 20:18 <REP> MSSoap

2005-12-24 20:18 <REP> ODBC

2006-01-03 19:14 <REP> Palo Alto Software Inc

2006-01-03 19:08 <REP> Real

2005-12-24 20:18 <REP> Services

2006-10-16 18:17 <REP> Sony Shared

2005-12-24 20:18 <REP> SpeechEngines

2006-01-03 16:29 <REP> Symantec Shared

2007-06-13 13:54 <REP> System

2006-04-17 13:42 <REP> Vbox

2007-12-14 09:15 <REP> Wise Installation Wizard

0 fichier(s) 0 octets

25 Rép(s) 8,013,504,512 octets libres

Le volume dans le lecteur C s'appelle PRESARIO

Le numéro de série du volume est C07C-02CD

 

Répertoire de C:\Program Files\fichiers communs\Microsoft Shared\Web Folders

 

2005-12-24 20:17 <REP> .

2005-12-24 20:17 <REP> ..

2005-12-24 20:17 <REP> 1033

2005-12-24 20:17 <REP> 1036

2003-07-11 11:15 1,292,872 MSONSEXT.DLL

2003-07-15 07:52 35,896 MSOSV.DLL

1999-06-03 19:09 122,937 MSOWS409.DLL

2001-03-07 14:00 127,033 MSOWS40c.DLL

2003-07-11 03:25 80,448 PKMWS.DLL

1999-03-18 01:37 593,977 RAGENT.DLL

6 fichier(s) 2,253,163 octets

4 Rép(s) 8,013,504,512 octets libres

Le volume dans le lecteur C s'appelle PRESARIO

Le numéro de série du volume est C07C-02CD

 

Répertoire de C:\Program Files\common files

 

2007-08-31 18:18 <REP> .

2007-08-31 18:18 <REP> ..

2006-11-02 17:13 <REP> Borland Shared

2006-06-09 15:33 <REP> Motion Playground Inc

2007-08-31 18:57 <REP> Motive

0 fichier(s) 0 octets

5 Rép(s) 8,013,512,704 octets libres

 

 

 

 

c:\Documents and Settings\Adina\Application Data\U3\temp\cleanup.exe

c:\Documents and Settings\Adina\Application Data\U3\temp\Launchpad Removal.exe

c:\Documents and Settings\Administrateur\Hewlett-Packard\HP Boot Optimizer\InstMsiA.Exe

c:\Documents and Settings\Administrateur\Hewlett-Packard\HP Boot Optimizer\InstMsiW.Exe

c:\Documents and Settings\Administrateur\Hewlett-Packard\HP Boot Optimizer\Setup.Exe

c:\Documents and Settings\All Users\Application Data\AntiVir PersonalEdition Classic\BACKUP\avcenter.exe

c:\Documents and Settings\All Users\Application Data\AntiVir PersonalEdition Classic\Update\AVUPDATE_47671d96\winwks\en\basic-nt\preupd.exe

c:\Documents and Settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 7.5.0.20\iTunesSetupAdmin.exe

c:\Documents and Settings\Compaq_Propriétaire\Application Data\Adobe\Acrobat\7.0\Updater\AdbeRdr709_fr_FR.exe

c:\Documents and Settings\Compaq_Propriétaire\Application Data\LimeWire\.NetworkShare\LimeWireWin4.16.2.exe

c:\Documents and Settings\Compaq_Propriétaire\Application Data\Microsoft\Installer\{048298C9-A4D3-490B-9FF9-AB023A9238F3}\Icon048298C9.exe

c:\Documents and Settings\Compaq_Propriétaire\Application Data\Microsoft\Installer\{C5BABF36-B64A-4E17-A1A2-65B646FC2F38}\ARPPRODUCTICON.exe

c:\Documents and Settings\Compaq_Propriétaire\Application Data\Microsoft\Installer\{C5BABF36-B64A-4E17-A1A2-65B646FC2F38}\NewShortcut2_C3F512394F2D404EA8F95253EB54766A.exe

c:\Documents and Settings\Compaq_Propriétaire\Application Data\Microsoft\Installer\{DB4D9207-C792-4D0F-8481-56FBA02892BF}\ARPPRODUCTICON.exe

c:\Documents and Settings\Compaq_Propriétaire\Application Data\Microsoft\Installer\{DB4D9207-C792-4D0F-8481-56FBA02892BF}\MapleStory.exe_A4722257521C48E69F8D11B286645AD3_1.exe

c:\Documents and Settings\Compaq_Propriétaire\Application Data\Microsoft\Installer\{DB4D9207-C792-4D0F-8481-56FBA02892BF}\MapleStory.exe1_A4722257521C48E69F8D11B286645AD3_1.exe

c:\Documents and Settings\Compaq_Propriétaire\Bureau\ATF-Cleaner.exe

c:\Documents and Settings\Compaq_Propriétaire\Bureau\BSLITEINSTALL.exe

c:\Documents and Settings\Compaq_Propriétaire\Bureau\HijackThis.exe

c:\Documents and Settings\Compaq_Propriétaire\Bureau\Update20060112.exe

c:\Documents and Settings\Gabriel\Application Data\GanymedeNet\Online Games\Common\ielauncher.exe

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\GoogleEarth.exe

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\gpsbabel.exe

c:\Documents and Settings\Gabriel\Application Data\InstallShield\Driver\11\Intel 32\IDriver.exe

c:\Documents and Settings\Gabriel\Application Data\InstallShield\Driver\11\Intel 32\IDriver2.exe

c:\Documents and Settings\Gabriel\Application Data\InstallShield\Driver\11\Intel 32\ISBEW64.exe

c:\Documents and Settings\Gabriel\Application Data\InstallShield\Professional\RunTime9\Intel32\DotNetInstaller.exe

c:\Documents and Settings\Gabriel\Application Data\InstallShield\Professional\RunTime\101\Intel32\DotNetInstaller.exe

c:\Documents and Settings\Gabriel\Application Data\InstallShield Installation Information\{2D7F824B-6744-4C30-B78B-0966E9BD461D}\setup.exe

c:\Documents and Settings\Gabriel\Application Data\InstallShield Installation Information\{3DE5E7D4-7B88-403C-A3FD-2017A8240C5B}\setup.exe

c:\Documents and Settings\Gabriel\Application Data\LimeWire\.NetworkShare\LimeWireWin4.16.2.exe

c:\Documents and Settings\Gabriel\Application Data\Macromedia\Flash Player\#SharedObjects\269MDTZN\localhost\DOCUME~1\Gabriel\LOCALS~1\Temp\QZTEMP\LineRider_beta.exe

c:\Documents and Settings\Gabriel\Application Data\Macromedia\Flash Player\www.macromedia.com\bin\fpupdatepl\fpupdatepl.exe

c:\Documents and Settings\Gabriel\Application Data\U3\temp\cleanup.exe

c:\Documents and Settings\Gabriel\Application Data\U3\temp\Launchpad Removal.exe

c:\Documents and Settings\Gabriel\Bureau\Pontifex II - BCS\bcs.exe

c:\Documents and Settings\Gabriel\Bureau\Pontifex II - BCS\bcs.v1.30.exe

c:\Documents and Settings\Gabriel\Bureau\Pontifex II - BCS\setup.exe

c:\Documents and Settings\All Users\Application Data\AntiVir PersonalEdition Classic\BACKUP\FAILSAFE\avewin32.dll

c:\Documents and Settings\All Users\Application Data\AntiVir PersonalEdition Classic\Update\AVUPDATE_47894f2f\UPDENGVDFTEST\avewin32.dll

c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\production\ppcrlconfig.dll

c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll

c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylomgamesplayer.dll

c:\Documents and Settings\Compaq_Propriétaire\Application Data\Macromedia\Flash MX\Configuration\authplay.dll

c:\Documents and Settings\Compaq_Propriétaire\Application Data\Macromedia\Flash MX\Configuration\Importers\AIImport.dll

c:\Documents and Settings\Compaq_Propriétaire\Application Data\Macromedia\Flash MX\Configuration\Importers\FhDbRdr.dll

c:\Documents and Settings\Compaq_Propriétaire\Application Data\Macromedia\Flash MX\Configuration\Importers\Fireworks Importer.dll

c:\Documents and Settings\Compaq_Propriétaire\Application Data\Macromedia\Flash MX\Configuration\Importers\ToonboomStudioImportPlugin.dll

c:\Documents and Settings\Compaq_Propriétaire\Application Data\Microsoft\IdentityCRL\Production\ppcrlconfig.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\auth.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\base.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\basicIngest.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\common.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\componentFramework.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\etestd.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\etfile.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\etsystem.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\etxml.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\evll.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\fusionCommon.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\geobase.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\glu32.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\GoogleSearch.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\gps.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\ijl20.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\layer.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\libcurl.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\libexpat.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\libIGCore.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\libIGMath.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\libIGUtils.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\measure.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\moduleFramework.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\msvcirt.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\msvcp60.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\msvcrt.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\navigate.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\network.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\pthreadVC.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\qt-mt335.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\render.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\support.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\usp10.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\WebBrowser.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\Wmsbase.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\xerces-c_2_2_0.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\zlibwapi.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\alchemy\dx\libIGGfx.dll

c:\Documents and Settings\Gabriel\Application Data\Google\Google Earth\alchemy\ogl\libIGGfx.dll

c:\Documents and Settings\Gabriel\Application Data\InstallShield\Driver\11\Intel 32\_ISRES1033.dll

c:\Documents and Settings\Gabriel\Application Data\InstallShield\Driver\11\Intel 32\iGdiCnv.dll

c:\Documents and Settings\Gabriel\Application Data\InstallShield\Driver\11\Intel 32\IScrCnv.dll

c:\Documents and Settings\Gabriel\Application Data\InstallShield\Driver\11\Intel 32\ISRT.dll

c:\Documents and Settings\Gabriel\Application Data\InstallShield\Driver\11\Intel 32\IUserCnv.dll

c:\Documents and Settings\Gabriel\Application Data\InstallShield\Driver\11\Intel 32\objpscnv.dll

c:\Documents and Settings\Gabriel\Application Data\InstallShield\Professional\RunTime\Objectps.dll

c:\Documents and Settings\Gabriel\Application Data\InstallShield\Professional\RunTime9\Intel32\ctor.dll

c:\Documents and Settings\Gabriel\Application Data\InstallShield\Professional\RunTime9\Intel32\iGdi.dll

c:\Documents and Settings\Gabriel\Application Data\InstallShield\Professional\RunTime9\Intel32\iKernel.dll

c:\Documents and Settings\Gabriel\Application Data\InstallShield\Professional\RunTime9\Intel32\iscript.dll

c:\Documents and Settings\Gabriel\Application Data\InstallShield\Professional\RunTime9\Intel32\iuser.dll

c:\Documents and Settings\Gabriel\Application Data\InstallShield\Professional\RunTime9\Intel32\Setup.dll

c:\Documents and Settings\Gabriel\Application Data\InstallShield\Professional\RunTime\101\Intel32\ctor.dll

c:\Documents and Settings\Gabriel\Application Data\InstallShield\Professional\RunTime\101\Intel32\iGdi.dll

c:\Documents and Settings\Gabriel\Application Data\InstallShield\Professional\RunTime\101\Intel32\iKernel.dll

c:\Documents and Settings\Gabriel\Application Data\InstallShield\Professional\RunTime\101\Intel32\iscript.dll

c:\Documents and Settings\Gabriel\Application Data\InstallShield\Professional\RunTime\101\Intel32\iuser.dll

c:\Documents and Settings\Gabriel\Application Data\InstallShield\Professional\RunTime\101\Intel32\setup.dll

c:\Documents and Settings\Gabriel\Application Data\InstallShield Installation Information\{2D7F824B-6744-4C30-B78B-0966E9BD461D}\_setup.dll

c:\Documents and Settings\Gabriel\Application Data\InstallShield Installation Information\{31777F40-593D-4331-A236-D2580CD319BE}\_setup.dll

c:\Documents and Settings\Gabriel\Application Data\InstallShield Installation Information\{3DE5E7D4-7B88-403C-A3FD-2017A8240C5B}\_setup.dll

c:\Documents and Settings\Gabriel\Application Data\InstallShield Installation Information\{B6060381-5C28-4F86-A31A-B5ADA7A1BD8D}\_setup.dll

c:\Documents and Settings\Gabriel\Application Data\Macromedia\Flash MX\Configuration\authplay.dll

c:\Documents and Settings\Gabriel\Application Data\Macromedia\Flash MX\Configuration\Importers\AIImport.dll

c:\Documents and Settings\Gabriel\Application Data\Macromedia\Flash MX\Configuration\Importers\FhDbRdr.dll

c:\Documents and Settings\Gabriel\Application Data\Macromedia\Flash MX\Configuration\Importers\Fireworks Importer.dll

c:\Documents and Settings\Gabriel\Application Data\Macromedia\Flash MX\Configuration\Importers\ToonboomStudioImportPlugin.dll

c:\Documents and Settings\Gabriel\Application Data\Microsoft\IdentityCRL\Production\ppcrlconfig.dll

c:\Documents and Settings\Gabriel\Application Data\SystemRequirementsLab\SRLProxyI.dll

c:\Documents and Settings\Gabriel\Application Data\SystemRequirementsLab\SRLProxyJ.dll

c:\Documents and Settings\Gabriel\Application Data\SystemRequirementsLab\SRLProxyK.dll

c:\Documents and Settings\Gabriel\Application Data\SystemRequirementsLab\SRLProxyL.dll

c:\Documents and Settings\LocalService\Application Data\Microsoft\UPnP Device Host\upnphost\udhisapi.dll

c:\Documents and Settings\Pascal\Application Data\Microsoft\IdentityCRL\Production\ppcrlconfig.dll

 

****** Fin du rapport DiagHelp

Veuillez svp envoyer le fichier C:\upload_moi_RHEAUME.tar.gz a l'adresse http://upload.malekal.com

[Gof]

Bonjour ClaudeR

 

As-tu envoyé le rapport de Diaghelp comme indiqué en fin de rapport ? Tu ne me l'as pas dit.

 

Poursuivons

 

Télécharge VundoFix.exe (par Atribune) sur ton Bureau.

• Double-clique VundoFix.exe afin de le lancer
  
• Clique sur le bouton Scan for Vundo
  
• Lorsque le scan est complété, clique sur le bouton Remove Vundo
  
• Une invite te demandera si tu veux supprimer les fichiers, clique YES
  
• Après avoir cliqué "Yes", le Bureau disparaîtra un moment lors de la suppression des fichiers
  
• Tu verras une invite qui t'annonce que ton PC va redémarrer; clique OK
  
• Copie/colle le contenu du rapport situé dans C:\vundofix.txt ainsi qu'un nouveau rapport HijackThis! dans ta prochaine réponse
  

Note: Il est possible que VundoFix soit confronté à un fichier qu'il ne peut supprimer. Si tel est le cas, l'outil se lancera au prochain redémarrage; il faut simplement suivre les instructions ci-haut, à partir de "clique sur le bouton Scan for Vundo".

 

 

Télécharge combofix.exe (par sUBs) et sauvegarde le sur ton bureau.

• Double-clique combofix.exe afin de l'exécuter et suis les instructions.
  
• Lorsque l'analyse sera complétée, un rapport apparaîtra.
  
• Copie-colle ce rapport dans ta prochaine réponse.
  

A bientôt.

[ClaudeR]

Pour ce qui est du rapport diag, j'ai bien essayer 2 fois mais fichier invalide....

De plus le foutu virus en titre me semble toujours présent...

et Firefox se ferme toujouts seul ??? Des fois IE est pratique

 

 

Voila pour Vundo..

 

VundoFix V6.7.7

 

Checking Java version...

 

Java version is 1.5.0.6

Old versions of java are exploitable and should be removed.

 

Java version is 1.5.0.10

 

Scan started at 21:04:36 2008-01-20

 

Listing files found while scanning....

 

C:\WINDOWS\system32\qmeowqsh .exe

C:\WINDOWS\system32\qmeowqsh.exe

C:\WINDOWS\system32\qttss.ini

C:\WINDOWS\system32\qttss.ini2

C:\WINDOWS\system32\ssqqnkh.dll

C:\WINDOWS\system32\ssttq.dll

C:\WINDOWS\system32\ssttq.exe

C:\WINDOWS\system32\vgeysulm .exe

C:\WINDOWS\system32\vgeysulm.exe

 

Beginning removal...

 

Attempting to delete C:\WINDOWS\system32\qmeowqsh .exe

C:\WINDOWS\system32\qmeowqsh .exe Has been deleted!

 

Attempting to delete C:\WINDOWS\system32\qmeowqsh.exe

C:\WINDOWS\system32\qmeowqsh.exe Has been deleted!

 

Attempting to delete C:\WINDOWS\system32\qttss.ini

C:\WINDOWS\system32\qttss.ini Has been deleted!

 

Attempting to delete C:\WINDOWS\system32\qttss.ini2

C:\WINDOWS\system32\qttss.ini2 Has been deleted!

 

Attempting to delete C:\WINDOWS\system32\ssqqnkh.dll

C:\WINDOWS\system32\ssqqnkh.dll Could not be deleted.

 

Attempting to delete C:\WINDOWS\system32\ssttq.dll

C:\WINDOWS\system32\ssttq.dll Could not be deleted.

 

Attempting to delete C:\WINDOWS\system32\ssttq.exe

C:\WINDOWS\system32\ssttq.exe Has been deleted!

 

Attempting to delete C:\WINDOWS\system32\vgeysulm .exe

C:\WINDOWS\system32\vgeysulm .exe Could not be deleted.

 

Attempting to delete C:\WINDOWS\system32\vgeysulm.exe

C:\WINDOWS\system32\vgeysulm.exe Could not be deleted.

 

Performing Repairs to the registry.

Done!

 

 

Voilà Combo...

 

ComboFix 08-01-20.1 - Compaq_Propriétaire 2008-01-20 22:02:53.4 - NTFSx86

Microsoft Windows XP Édition familiale 5.1.2600.2.1252.1.1036.18.422 [GMT -4:00]

Running from: C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Temporary Internet Files\Content.IE5\UZKRGT6T\ComboFix[1].exe

* Created a new restore point

.

 

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))

.

 

C:\Program Files\iTunes\iTunesHelper .exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\Program Files\Messenger\msmsgs .exe

C:\Program Files\Messenger\msmsgs.exe

C:\Program Files\MSN Messenger\msnmsgr .exe

C:\Program Files\MSN Messenger\msnmsgr.exe

C:\WINDOWS\system32\ctfmon .exe

C:\WINDOWS\system32\ctfmon.exe.tmp

C:\WINDOWS\system32\qttss.ini

C:\WINDOWS\system32\qttss.ini2

C:\WINDOWS\system32\RCX10.tmp

C:\WINDOWS\system32\RCX11.tmp

C:\WINDOWS\system32\RCX12.tmp

C:\WINDOWS\system32\RCX13.tmp

C:\WINDOWS\system32\RCX14.tmp

C:\WINDOWS\system32\RCX15.tmp

C:\WINDOWS\system32\RCX16.tmp

C:\WINDOWS\system32\RCX17.tmp

C:\WINDOWS\system32\RCX18.tmp

C:\WINDOWS\system32\RCX19.tmp

C:\WINDOWS\system32\RCX1A.tmp

C:\WINDOWS\system32\RCX1B.tmp

C:\WINDOWS\system32\RCX1C.tmp

C:\WINDOWS\system32\RCX38.tmp

C:\WINDOWS\system32\RCX55.tmp

C:\WINDOWS\system32\RCX9.tmp

C:\WINDOWS\system32\RCXA.tmp

C:\WINDOWS\system32\RCXA5.tmp

C:\WINDOWS\system32\RCXB.tmp

C:\WINDOWS\system32\RCXC.tmp

C:\WINDOWS\system32\RCXD.tmp

C:\WINDOWS\system32\RCXE.tmp

C:\WINDOWS\system32\RCXF.tmp

C:\WINDOWS\system32\ssqqnkh.dll

C:\WINDOWS\system32\ssttq.dll

C:\WINDOWS\system32\ssttq.exe

C:\WINDOWS\system32\vgeysulm .exe

C:\WINDOWS\system32\vgeysulm.exe

 

 <pre>
C:\Program Files\iTunes\iTunesHelper .exe ---> QooBox
C:\Program Files\Messenger\msmsgs .exe ---> QooBox
C:\Program Files\MSN Messenger\msnmsgr .exe ---> QooBox
C:\WINDOWS\system32\ctfmon .exe ---> QooBox
C:\WINDOWS\system32\vgeysulm .exe ---> QooBox
</pre>

.

.

((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))

 

.

-------\poof

 

 

((((((((((((((((((((((((((((( Fichiers cr‚‚s 2007-12-21 to 2008-01-21 ))))))))))))))))))))))))))))))))))))

.

 

2008-01-20 22:01 . 2000-08-31 08:00 51,200 --a------ C:\WINDOWS\NirCmd.exe

2008-01-20 21:04 . 2008-01-20 21:04 <REP> d-------- C:\VundoFix Backups

2008-01-19 12:56 . 2008-01-20 21:58 54,156 --ah----- C:\WINDOWS\QTFont.qfn

2008-01-19 12:56 . 2008-01-19 12:56 1,409 --a------ C:\WINDOWS\QTFont.for

2008-01-19 07:26 . 2008-01-19 14:59 <REP> d-------- C:\new dl

2008-01-16 20:35 . 2008-01-16 20:35 <REP> d-------- C:\Program Files\Free iPod Video Converter

2008-01-16 20:35 . 2004-05-25 17:06 417,792 --a------ C:\WINDOWS\system32\ac3filter.ax

2008-01-16 20:35 . 2005-02-27 21:48 356,352 --a------ C:\WINDOWS\system32\RealMediaSplitter.ax

2008-01-16 20:35 . 2004-01-10 17:02 258,048 --a------ C:\WINDOWS\system32\GplMpgDec.ax

2008-01-16 20:29 . 2008-01-16 20:29 244 --ah----- C:\sqmnoopt06.sqm

2008-01-16 20:29 . 2008-01-16 20:29 232 --ah----- C:\sqmdata06.sqm

2008-01-16 20:27 . 2008-01-16 20:32 <REP> d-------- C:\Program Files\AVS4YOU

2008-01-16 19:36 . 2008-01-16 19:36 15,657,662 --a------ C:\upload_moi_RHEAUME.tar.gz

2008-01-12 22:19 . 2008-01-12 22:19 <REP> d-------- C:\Documents and Settings\All Users\Application Data\AVS4YOU

2008-01-12 22:16 . 2008-01-16 20:32 <REP> d-------- C:\Program Files\Fichiers communs\AVSMedia

2008-01-12 21:50 . 2008-01-12 21:50 80,105 --a------ C:\WINDOWS\system32\dcads-remove.exe

2008-01-12 19:45 . 2008-01-12 19:45 <REP> d-------- C:\WINDOWS\WinAVI Video Converter 9.0

2008-01-12 19:03 . 2008-01-12 19:03 <REP> d-------- C:\Program Files\MP4 Converter

2008-01-12 18:46 . 2008-01-12 18:46 <REP> d-------- C:\Program Files\TubeMaster

2008-01-11 21:32 . 2008-01-11 21:32 <REP> d-------- C:\Documents and Settings\Gabriel\Application Data\STOIK

2008-01-11 20:35 . 2008-01-11 20:35 <REP> d-------- C:\Program Files\Easy Video Downloader

2008-01-11 19:20 . 2008-01-11 19:20 1,181,812 --a------ C:\Program Files\flvplayer_setup.exe

2008-01-11 19:18 . 2008-01-11 19:18 <REP> d-------- C:\Program Files\YouTUBE movie downloader

2008-01-05 14:40 . 2008-01-05 14:40 <REP> d-------- C:\Program Files\PowerISO

2008-01-01 18:33 . 2008-01-20 22:05 <REP> d-------- C:\Program Files\iTunes

2008-01-01 18:31 . 2008-01-01 18:31 <REP> d-------- C:\Program Files\Fichiers communs\Apple

2008-01-01 18:31 . 2008-01-01 18:31 <REP> d-------- C:\Program Files\Apple Software Update

2008-01-01 18:31 . 2008-01-01 18:31 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Apple

2008-01-01 18:31 . 2007-10-31 14:09 30,464 --a------ C:\WINDOWS\system32\drivers\usbaapl.sys

2007-12-30 22:05 . 2007-12-30 22:07 <REP> d-------- C:\Program Files\Panda Security

2007-12-30 15:25 . 2007-12-30 15:34 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy

2007-12-24 09:07 . 2007-12-24 09:07 319,488 --a------ C:\WINDOWS\system32\dcads_sidebar.dll

 

.

(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))

.

2008-01-21 02:05 --------- d-----w C:\Program Files\MSN Messenger

2008-01-19 18:59 --------- d-----w C:\Documents and Settings\Gabriel\Application Data\uTorrent

2008-01-12 17:11 --------- d-----w C:\Documents and Settings\Gabriel\Application Data\LimeWire

2008-01-12 01:38 --------- d-----w C:\Documents and Settings\Gabriel\Application Data\InstallShield Installation Information

2008-01-11 23:20 --------- d-----w C:\Program Files\QuickTime

2008-01-06 18:43 --------- d-----w C:\Documents and Settings\Adina\Application Data\U3

2008-01-01 22:32 --------- d-----w C:\Documents and Settings\All Users\Application Data\Apple Computer

2007-12-20 00:34 --------- d-----w C:\Program Files\Dcads Games Collection

2007-12-14 13:25 --------- d-----w C:\Program Files\themexp

2007-12-14 13:15 --------- d-----w C:\Program Files\freewareboard

2007-12-14 13:15 --------- d-----w C:\Program Files\Fichiers communs\Wise Installation Wizard

2007-12-14 12:46 --------- d-----w C:\Documents and Settings\Gabriel\Application Data\TuneUp Software

2007-12-14 12:37 --------- d-----w C:\Program Files\uTorrent

2007-11-26 23:48 --------- d-----w C:\Program Files\Orbitdownloader

2007-11-26 20:24 --------- d-----w C:\Documents and Settings\Adina\Application Data\Orbit

2007-11-25 18:51 --------- d-----w C:\Documents and Settings\Pascal\Application Data\Orbit

2007-11-25 17:40 --------- d-----w C:\Documents and Settings\Pascal\Application Data\Talkback

2007-11-25 01:59 --------- d-----w C:\Documents and Settings\Gabriel\Application Data\Orbit

2007-11-24 15:37 --------- d-----w C:\Documents and Settings\Gabriel\Application Data\Talkback

2007-11-24 13:51 --------- d-----w C:\Documents and Settings\Adina\Application Data\Talkback

2007-11-07 23:44 314 ----a-w C:\Program Files\INSTALL.LOG

2006-04-02 19:59 1,504 -c--a-w C:\Documents and Settings\Gabriel\Application Data\wklnhst.dat

.

 

((((((((((((((((((((((((((((( snapshot@2007-12-30_15.15.44.29 )))))))))))))))))))))))))))))))))))))))))

.

+ 2007-10-30 16:53:32 360,832 ----a-w C:\WINDOWS\$hf_mig$\KB941644\SP2QFE\tcpip.sys

+ 2007-03-06 01:34:33 15,072 ----a-w C:\WINDOWS\$hf_mig$\KB941644\spmsg.dll

+ 2007-03-06 01:34:38 216,800 ----a-w C:\WINDOWS\$hf_mig$\KB941644\spuninst.exe

+ 2007-03-06 01:34:31 22,752 ----a-w C:\WINDOWS\$hf_mig$\KB941644\update\spcustom.dll

+ 2007-03-06 01:34:56 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB941644\update\update.exe

+ 2007-03-06 01:35:48 394,976 ----a-w C:\WINDOWS\$hf_mig$\KB941644\update\updspapi.dll

+ 2007-11-07 09:50:06 733,696 ----a-w C:\WINDOWS\$hf_mig$\KB943485\SP2QFE\lsasrv.dll

+ 2007-03-06 01:34:33 15,072 ----a-w C:\WINDOWS\$hf_mig$\KB943485\spmsg.dll

+ 2007-03-06 01:34:38 216,800 ----a-w C:\WINDOWS\$hf_mig$\KB943485\spuninst.exe

+ 2007-03-06 01:34:31 22,752 ----a-w C:\WINDOWS\$hf_mig$\KB943485\update\spcustom.dll

+ 2007-03-06 01:34:56 727,776 ----a-w C:\WINDOWS\$hf_mig$\KB943485\update\update.exe

+ 2007-03-06 01:35:48 394,976 ----a-w C:\WINDOWS\$hf_mig$\KB943485\update\updspapi.dll

+ 2000-08-31 12:00:00 163,328 ----a-w C:\WINDOWS\erdnt\Hiv-backup\ERDNT.EXE

+ 2008-01-21 02:02:07 696,320 ----a-w C:\WINDOWS\erdnt\Hiv-backup\Users\00000001\NTUSER.DAT

+ 2008-01-21 02:02:07 8,192 ----a-w C:\WINDOWS\erdnt\Hiv-backup\Users\00000002\UsrClass.dat

+ 2008-01-21 02:02:07 692,224 ----a-w C:\WINDOWS\erdnt\Hiv-backup\Users\00000003\NTUSER.DAT

+ 2008-01-21 02:02:07 8,192 ----a-w C:\WINDOWS\erdnt\Hiv-backup\Users\00000004\UsrClass.dat

+ 2008-01-21 02:02:08 7,004,160 ----a-w C:\WINDOWS\erdnt\Hiv-backup\Users\00000005\ntuser.dat

+ 2008-01-21 02:02:08 204,800 ----a-w C:\WINDOWS\erdnt\Hiv-backup\Users\00000006\UsrClass.dat

+ 2000-08-31 12:00:00 163,328 ----a-w C:\WINDOWS\erdnt\subs\ERDNT.EXE

+ 2008-01-17 22:34:52 102,400 ----a-r C:\WINDOWS\Installer\{18388EF8-E0A3-442B-8BFE-E2F1B3D05C91}\iTunesIco.exe

+ 2008-01-01 22:31:53 27,136 ----a-r C:\WINDOWS\Installer\{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}\AppleSoftwareUpdateIco.exe

- 2007-11-27 00:32:24 6,343 -c--a-w C:\WINDOWS\mozver.dat

+ 2007-12-31 02:05:50 7,562 -c--a-w C:\WINDOWS\mozver.dat

- 2007-11-16 00:59:31 16,384 -c--a-w C:\WINDOWS\system32\config\systemprofile\Cookies\index.dat

+ 2008-01-12 23:37:08 16,384 -c--a-w C:\WINDOWS\system32\config\systemprofile\Cookies\index.dat

- 2007-11-16 00:59:31 32,768 -c--a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\Historique\History.IE5\index.dat

+ 2008-01-12 23:37:08 32,768 -c--a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\Historique\History.IE5\index.dat

- 2007-11-16 00:59:31 32,768 -c--a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat

+ 2008-01-12 23:37:08 32,768 -c--a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat

- 2004-08-05 18:00:00 15,360 ----a-w C:\WINDOWS\system32\ctfmon.exe

+ 2004-08-05 04:00:00 15,360 ----a-w C:\WINDOWS\system32\ctfmon.exe

- 2007-12-20 00:34:50 77,360 ----a-w C:\WINDOWS\system32\dcads_sidebar_uninstall.exe

+ 2008-01-13 01:50:04 77,379 ----a-w C:\WINDOWS\system32\dcads_sidebar_uninstall.exe

+ 2007-02-27 23:36:08 638,976 ----a-w C:\WINDOWS\system32\divx.dll

+ 2004-08-05 04:00:00 15,360 ----a-w C:\WINDOWS\system32\dllcache\ctfmon.exe

+ 2007-11-07 09:28:31 728,576 ------w C:\WINDOWS\system32\dllcache\lsasrv.dll

+ 2007-10-30 17:20:55 360,064 ------w C:\WINDOWS\system32\dllcache\tcpip.sys

- 2005-02-02 06:21:04 14,408 -c--a-w C:\WINDOWS\system32\drivers\GEARAspiWDM.sys

+ 2006-09-19 18:44:04 15,664 ----a-w C:\WINDOWS\system32\drivers\GEARAspiWDM.sys

+ 2007-04-09 12:27:07 31,548 ----a-w C:\WINDOWS\system32\drivers\scdemu.sys

- 2006-04-20 11:51:50 359,808 -c--a-w C:\WINDOWS\system32\drivers\tcpip.sys

+ 2007-10-30 17:20:55 360,064 ----a-w C:\WINDOWS\system32\drivers\tcpip.sys

+ 2007-10-31 18:09:14 30,464 -c--a-w C:\WINDOWS\system32\DRVSTORE\usbaapl_4351B7DAFF62FD33510D77DFAE3CF8CC82517571\usbaapl.sys

- 2007-10-21 13:41:50 181,832 -c--a-w C:\WINDOWS\system32\FNTCACHE.DAT

+ 2008-01-13 18:17:43 182,632 -c--a-w C:\WINDOWS\system32\FNTCACHE.DAT

- 2005-05-31 15:20:36 79,432 -c--a-w C:\WINDOWS\system32\GEARAspi.dll

+ 2006-10-03 23:47:52 109,360 ----a-w C:\WINDOWS\system32\GEARAspi.dll

- 2006-08-17 12:29:49 728,576 ----a-w C:\WINDOWS\system32\lsasrv.dll

+ 2007-11-07 09:28:31 728,576 ----a-w C:\WINDOWS\system32\lsasrv.dll

+ 2007-02-27 23:36:08 261,632 ----a-w C:\WINDOWS\system32\mcdvd_32.dll

+ 2007-02-27 23:36:14 974,848 ----a-w C:\WINDOWS\system32\mfc70.dll

+ 2007-02-27 23:36:08 413,760 ----a-w C:\WINDOWS\system32\mpg4c32.dll

- 2007-12-02 23:00:05 18,684,536 -c--a-w C:\WINDOWS\system32\MRT.exe

+ 2008-01-02 18:21:36 17,642,616 -c--a-w C:\WINDOWS\system32\MRT.exe

+ 2007-02-27 23:36:12 24,576 ----a-w C:\WINDOWS\system32\msxml3a.dll

- 2007-12-14 01:26:50 156,160 -c--a-w C:\WINDOWS\system32\swreg.exe

+ 2000-08-31 12:00:00 156,160 -c--a-w C:\WINDOWS\system32\swreg.exe

+ 2007-10-15 13:35:46 524,288 ----a-w C:\WINDOWS\system32\xvidcore.dll

+ 2007-10-15 13:35:46 139,264 ----a-w C:\WINDOWS\system32\xvidvfw.dll

+ 2008-01-12 23:45:36 451,072 ----a-w C:\WINDOWS\WinAVI Video Converter 9.0\uninstall.exe

+ 2006-12-02 02:56:00 96,256 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_cbb27474\ATL80.dll

+ 2006-12-02 02:54:32 479,232 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcm80.dll

+ 2006-12-02 02:54:34 548,864 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcp80.dll

+ 2006-12-02 02:54:32 626,688 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcr80.dll

+ 2006-12-02 04:25:52 1,101,824 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80.dll

+ 2006-12-02 04:25:56 1,093,120 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80u.dll

+ 2006-12-02 04:25:58 69,632 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfcm80.dll

+ 2006-12-02 04:26:00 57,856 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfcm80u.dll

+ 2006-12-02 04:08:00 40,960 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80CHS.dll

+ 2006-12-02 04:08:00 45,056 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80CHT.dll

+ 2006-12-02 04:08:00 65,536 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80DEU.dll

+ 2006-12-02 04:08:00 57,344 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ENU.dll

+ 2006-12-02 04:08:00 61,440 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ESP.dll

+ 2006-12-02 04:08:00 61,440 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80FRA.dll

+ 2006-12-02 04:08:00 61,440 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ITA.dll

+ 2006-12-02 04:08:00 49,152 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80JPN.dll

+ 2006-12-02 04:08:00 49,152 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80KOR.dll

+ 2006-12-02 04:46:44 65,536 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.OpenMP_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6c18549a\vcomp.dll

.

-- Snapshot reset to current date --

.

((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

REGEDIT4

*Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-05 00:00 15360]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"avgnt"="N:\AntiVir PersonalEdition Classic\avgnt.exe" [2007-10-15 14:54 249896]

"ATICCC"="C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" [ ]

"QAGENT"="L:\QUICKENW2002\QAGENT.EXE" [2001-11-13 20:36 94208]

"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [ ]

"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [ ]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]

"NoResolveTrack"= 1 (0x1)

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]

"NoSimpleStartMenu"= 0 (0x0)

 

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^HP Digital Imaging Monitor.lnk]

backup=C:\WINDOWS\pss\HP Digital Imaging Monitor.lnkCommon Startup

 

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Lancement rapide d'Adobe Reader.lnk]

backup=C:\WINDOWS\pss\Lancement rapide d'Adobe Reader.lnkCommon Startup

 

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Logitech Desktop Messenger.lnk]

backup=C:\WINDOWS\pss\Logitech Desktop Messenger.lnkCommon Startup

 

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Microsoft Office.lnk]

backup=C:\WINDOWS\pss\Microsoft Office.lnkCommon Startup

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATICCC]

C:\Program Files\ATI Technologies\ATI.ACE\cli.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]

--a------ 2004-08-05 00:00 15360 C:\WINDOWS\system32\ctfmon.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]

--a--c--- 2005-05-11 23:12 49152 N:\HP\HP Software Update\HPWuSchd2.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPBootOp]

--a--c--- 2005-02-25 16:34 245760 C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]

C:\Program Files\iTunes\iTunesHelper.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]

C:\WINDOWS\system32\dumprep 0 -k

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechCameraAssistant]

--a--c--- 2005-12-07 10:26 489472 C:\Program Files\Logitech\Video\CameraAssistant.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideo[inspector]]

--a--c--- 2005-12-07 10:33 73728 C:\Program Files\Logitech\Video\InstallHelper.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LVCOMSX]

--a------ 2005-12-09 15:32 225280 C:\WINDOWS\system32\LVCOMSX.EXE

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QAGENT]

--a--c--- 2001-11-13 20:36 94208 L:\QUICKENW2002\QAGENT.EXE

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]

C:\Program Files\QuickTime\qttask.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SMSERIAL]

--a--c--- 2005-01-24 05:56 544768 C:\WINDOWS\sm56hlpr.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]

--a------ 2007-11-30 16:42 1266936 L:\Steam\Steam.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]

--a--c--- 2006-11-09 15:07 49263 C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe

 

R2 FreezeScreenSaver;FreezeScreenSaver;C:\WINDOWS\system32\FreezeScreenSaver.exe [2005-09-29 14:55]

R2 mrtRate;mrtRate;C:\WINDOWS\system32\drivers\mrtRate.sys [2001-02-28 11:42]

R3 LVPrcMon;Logitech LVPrcMon Driver;C:\WINDOWS\system32\drivers\LVPrcMon.sys [2005-12-09 15:37]

R3 USBSTOR;Pilote de stockage de masse USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-04 06:08]

S2 UxTuneUp;TuneUp Extension de thème (Beta);C:\WINDOWS\System32\svchost.exe [2004-08-05 14:00]

S3 nenum13E;nenum13E;C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\nenum13E.sys []

S3 SIS163u;SiS163 USB Wireless LAN Adapter Driver;C:\WINDOWS\system32\DRIVERS\sis163u.sys [2006-02-15 18:25]

S3 usbscan;Pilote de scanneur USB;C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 18:58]

S3 XDva010;XDva010;C:\WINDOWS\system32\XDva010.sys []

 

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs

UxTuneUp

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\D]

\Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Info.exe protect.ed 480 480

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{7987110a-c9c1-11d9-b148-806d6172696f}]

\Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Info.exe protect.ed 480 480

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{e010179d-5558-11dc-835a-0013d40243db}]

\Shell\AutoRun\command - M:\LaunchU3.exe -a

 

.

Contenu du dossier 'Scheduled Tasks/Tƒches planifi‚es'

"2008-01-17 22:57:56 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"

- C:\Program Files\Apple Software Update\SoftwareUpdate.exe

"2007-02-23 21:56:33 C:\WINDOWS\Tasks\Symantec NetDetect.job"

- C:\Program Files\Symantec\LiveUpdate\NDetect.exe

.

**************************************************************************

 

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2008-01-20 22:09:56

Windows 5.1.2600 Service Pack 2 NTFS

 

scanning hidden processes ...

 

scanning hidden autostart entries ...

 

scanning hidden files ...

 

scan completed successfully

hidden files: 0

 

**************************************************************************

.

Completion time: 2008-01-20 22:12:11 - machine was rebooted [Compaq_Propri‚taire]

ComboFix-quarantined-files.txt 2008-01-21 02:12:08

.

2008-01-10 20:47:52 --- E O F ---

 

 

Et maintenant Hijack

 

Logfile of HijackThis v1.99.1

Scan saved at 10:42:11, on 2008-01-21

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe

N:\AntiVir PersonalEdition Classic\sched.exe

N:\AntiVir PersonalEdition Classic\avguard.exe

C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe

C:\WINDOWS\system32\FreezeScreenSaver.exe

C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE

C:\WINDOWS\system32\HPZipm12.exe

C:\Program Files\TRENDnet\TEW-424UB\SiSWLSvc.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\fxssvc.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\Explorer.EXE

N:\AntiVir PersonalEdition Classic\avgnt.exe

L:\QUICKENW2002\QAGENT.EXE

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\TRENDnet\TEW-424UB\TRENDnet.exe

C:\WINDOWS\system32\mrtMngr.EXE

C:\WINDOWS\System32\svchost.exe

C:\Program Files\internet explorer\iexplore.exe

C:\WINDOWS\system32\wuauclt.exe

C:\Documents and Settings\Compaq_Propriétaire\Bureau\HijackThis.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll

O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll

O4 - HKLM\..\Run: [avgnt] "N:\AntiVir PersonalEdition Classic\avgnt.exe" /min

O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay

O4 - HKLM\..\Run: [QAGENT] L:\QUICKENW2002\QAGENT.EXE

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - Global Startup: Wireless Configuration Utility HW.32.lnk = ?

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll

O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL

O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm

O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE (file missing)

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE (file missing)

O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (HKCU)

O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (HKCU)

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1174783407203

O18 - Protocol: bwz0 - {DE93EC42-9FB4-4A30-A41A-D510199B8C56} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwz0s - {DE93EC42-9FB4-4A30-A41A-D510199B8C56} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSN Messenger\msgrapp.8.1.0178.00.dll

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSN Messenger\msgrapp.8.1.0178.00.dll

O18 - Protocol: offline-8876480 - {DE93EC42-9FB4-4A30-A41A-D510199B8C56} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\

O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll

O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - N:\AntiVir PersonalEdition Classic\sched.exe

O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - N:\AntiVir PersonalEdition Classic\avguard.exe

O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe

O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe

O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe

O23 - Service: FreezeScreenSaver - Unknown owner - C:\WINDOWS\system32\FreezeScreenSaver.exe

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe

O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - N:\iPod\bin\iPodService.exe

O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe

O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe

O23 - Service: SiS WirelessLan Service (SiSWLSvc) - Unknown owner - C:\Program Files\TRENDnet\TEW-424UB\SiSWLSvc.exe

[Gof]

Re

 

Dans ton log, il y a la présence de Logitech Desktop Messenger, qui s'installe en même temps que les drivers des matériels Logitech (clavier, souris, webcam, etc). Il est là pour t'informer des mises à jour de produits, de la sortie de nouveaux produits, etc. Il n'est pas malicieux, mais cela reste de la publicité essentiellement, et c'est autant de ressources consommées dès le démarrage. Si tu veux t'en débarrasser, tu le trouveras dans ton panneau de configuration>Ajout/suppression de programmes.

 

Ta version Adobe n'est pas à jour -> Adobe Reader 7.0.9. Cela introduit une vulnérabilité sur ton système.

De même pour ts versions JAVA :

• J2SE Runtime Environment 5.0
  J2SE Runtime Environment 5.0 Update 10
  J2SE Runtime Environment 5.0 Update 6
  

Il t faut désinstaller ces versions, et te rendre sur ce lien afin de télécharger une version à jour.

 

Est-ce toi qui a créé ce répertoire => C:\new dl ?

 

Télécharge CFScript.txt et enregistre le sur ton bureau.

• Fait un glisser/déposer de ce fichier CFScript sur le fichier ComboFix.exe comme sur la capture
   
  
  
• Une fenêtre bleue va apparaître: au message qui apparaît ( Type 1 to continue, or 2 to abort) , tape 1 puis valide.
  
• Patiente le temps du scan.Le bureau va disparaître à plusieurs reprises: c'est normal!
  Ne touche à rien tant que le scan n'est pas terminé.
  
• Une fois le scan achevé, un rapport va s'afficher: poste son contenu.
  
• Si le fichier ne s'ouvre pas, il se trouve ici > C:\ComboFix.txt
  

[ClaudeR]

C'est ok pour les mise à jour, elles sont faites.

 

Oui c'est moi (Je pense...) qui est créer ce répertoire

 

Pour ce qui de Combofix..Il ne termine jamais, il semble avoir exécuter les instructions spécifiées..Delete ,,,,

Mais il ne se ferme pas, a-t-il fait le travail, je l'ignore...

 

ET j'ai toujours le maudit virus en titre DROP_AGENT,,, qui est détecté par AntiVir.

[ClaudeR]

Bon j'ai réussi ComboFix

 

ComboFix 08-01-20.1 - Compaq_Propriétaire 2008-01-22 20:06:59.6 - NTFSx86

Microsoft Windows XP Édition familiale 5.1.2600.2.1252.1.1036.18.454 [GMT -4:00]

Running from: C:\ComboFix.exe

Command switches used :: C:\CFScript.txt

* Created a new restore point

 

FILE

C:\Program Files\Dcads Games Collection

C:\WINDOWS\system32\dcads-remove.exe

C:\WINDOWS\system32\dcads_sidebar.dll

C:\WINDOWS\system32\FreezeScreenSaver.exe

.

 

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))

.

 

C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat . . . . Echec de suppression

C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat . . . . Echec de suppression

.

---- Previous Run -------

.

C:\WINDOWS\system32\dcads-remove.exe

C:\WINDOWS\system32\dcads_sidebar.dll

C:\WINDOWS\system32\FreezeScreenSaver.exe

 

----- Unknown downloads made by BITS: ----

http://javadl.sun.com

.

((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))

 

.

-------\LEGACY_FREEZESCREENSAVER

-------\FreezeScreenSaver

 

 

-------\LEGACY_FREEZESCREENSAVER

-------\FreezeScreenSaver

 

 

((((((((((((((((((((((((((((( Fichiers cr‚‚s 2007-12-23 to 2008-01-23 ))))))))))))))))))))))))))))))))))))

.

 

2008-01-22 20:04 . 2008-01-22 20:04 162 --ah----- C:\~$log.html

2008-01-21 18:59 . 2008-01-21 18:59 1,550,759 --a------ C:\ComboFix.exe

2008-01-21 14:57 . 2007-09-24 23:31 69,632 --a------ C:\WINDOWS\system32\javacpl.cpl

2008-01-20 22:01 . 2000-08-31 08:00 51,200 --a------ C:\WINDOWS\NirCmd.exe

2008-01-20 21:04 . 2008-01-20 21:04 <REP> d-------- C:\VundoFix Backups

2008-01-19 12:56 . 2008-01-22 20:12 54,156 --ah----- C:\WINDOWS\QTFont.qfn

2008-01-19 12:56 . 2008-01-21 20:40 1,409 --a------ C:\WINDOWS\QTFont.for

2008-01-19 07:26 . 2008-01-19 14:59 <REP> d-------- C:\new dl

2008-01-16 20:35 . 2008-01-16 20:35 <REP> d-------- C:\Program Files\Free iPod Video Converter

2008-01-16 20:35 . 2004-05-25 17:06 417,792 --a------ C:\WINDOWS\system32\ac3filter.ax

2008-01-16 20:35 . 2005-02-27 21:48 356,352 --a------ C:\WINDOWS\system32\RealMediaSplitter.ax

2008-01-16 20:35 . 2004-01-10 17:02 258,048 --a------ C:\WINDOWS\system32\GplMpgDec.ax

2008-01-16 20:29 . 2008-01-16 20:29 244 --ah----- C:\sqmnoopt06.sqm

2008-01-16 20:29 . 2008-01-16 20:29 232 --ah----- C:\sqmdata06.sqm

2008-01-16 20:27 . 2008-01-16 20:32 <REP> d-------- C:\Program Files\AVS4YOU

2008-01-12 22:19 . 2008-01-12 22:19 <REP> d-------- C:\Documents and Settings\All Users\Application Data\AVS4YOU

2008-01-12 22:16 . 2008-01-16 20:32 <REP> d-------- C:\Program Files\Fichiers communs\AVSMedia

2008-01-12 19:45 . 2008-01-12 19:45 <REP> d-------- C:\WINDOWS\WinAVI Video Converter 9.0

2008-01-12 19:03 . 2008-01-12 19:03 <REP> d-------- C:\Program Files\MP4 Converter

2008-01-12 18:46 . 2008-01-12 18:46 <REP> d-------- C:\Program Files\TubeMaster

2008-01-11 21:32 . 2008-01-11 21:32 <REP> d-------- C:\Documents and Settings\Gabriel\Application Data\STOIK

2008-01-11 20:35 . 2008-01-11 20:35 <REP> d-------- C:\Program Files\Easy Video Downloader

2008-01-11 19:20 . 2008-01-11 19:20 1,181,812 --a------ C:\Program Files\flvplayer_setup.exe

2008-01-11 19:18 . 2008-01-11 19:18 <REP> d-------- C:\Program Files\YouTUBE movie downloader

2008-01-05 14:40 . 2008-01-05 14:40 <REP> d-------- C:\Program Files\PowerISO

2008-01-01 18:33 . 2008-01-21 20:40 <REP> d-------- C:\Program Files\iTunes

2008-01-01 18:31 . 2008-01-01 18:31 <REP> d-------- C:\Program Files\Fichiers communs\Apple

2008-01-01 18:31 . 2008-01-01 18:31 <REP> d-------- C:\Program Files\Apple Software Update

2008-01-01 18:31 . 2008-01-01 18:31 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Apple

2008-01-01 18:31 . 2007-10-31 14:09 30,464 --a------ C:\WINDOWS\system32\drivers\usbaapl.sys

2007-12-30 22:05 . 2007-12-30 22:07 <REP> d-------- C:\Program Files\Panda Security

2007-12-30 15:25 . 2007-12-30 15:34 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy

 

.

(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))

.

2008-01-21 18:57 --------- d-----w C:\Program Files\Java

2008-01-21 18:53 --------- d-----w C:\Program Files\Logitech

2008-01-21 02:05 --------- d-----w C:\Program Files\MSN Messenger

2008-01-19 18:59 --------- d-----w C:\Documents and Settings\Gabriel\Application Data\uTorrent

2008-01-12 17:11 --------- d-----w C:\Documents and Settings\Gabriel\Application Data\LimeWire

2008-01-12 01:38 --------- d-----w C:\Documents and Settings\Gabriel\Application Data\InstallShield Installation Information

2008-01-11 23:20 --------- d-----w C:\Program Files\QuickTime

2008-01-06 18:43 --------- d-----w C:\Documents and Settings\Adina\Application Data\U3

2008-01-01 22:32 --------- d-----w C:\Documents and Settings\All Users\Application Data\Apple Computer

2007-12-20 00:34 --------- d-----w C:\Program Files\Dcads Games Collection

2007-12-14 13:25 --------- d-----w C:\Program Files\themexp

2007-12-14 13:15 --------- d-----w C:\Program Files\freewareboard

2007-12-14 13:15 --------- d-----w C:\Program Files\Fichiers communs\Wise Installation Wizard

2007-12-14 12:46 --------- d-----w C:\Documents and Settings\Gabriel\Application Data\TuneUp Software

2007-12-14 12:37 --------- d-----w C:\Program Files\uTorrent

2007-11-26 23:48 --------- d-----w C:\Program Files\Orbitdownloader

2007-11-26 20:24 --------- d-----w C:\Documents and Settings\Adina\Application Data\Orbit

2007-11-25 18:51 --------- d-----w C:\Documents and Settings\Pascal\Application Data\Orbit

2007-11-25 17:40 --------- d-----w C:\Documents and Settings\Pascal\Application Data\Talkback

2007-11-25 01:59 --------- d-----w C:\Documents and Settings\Gabriel\Application Data\Orbit

2007-11-24 15:37 --------- d-----w C:\Documents and Settings\Gabriel\Application Data\Talkback

2007-11-24 13:51 --------- d-----w C:\Documents and Settings\Adina\Application Data\Talkback

2007-11-07 23:44 314 ----a-w C:\Program Files\INSTALL.LOG

2006-04-02 19:59 1,504 -c--a-w C:\Documents and Settings\Gabriel\Application Data\wklnhst.dat

.

 

((((((((((((((((((((((((((((( snapshot_2008-01-20_22.11.54.45 )))))))))))))))))))))))))))))))))))))))))

.

- 2008-01-21 02:02:07 696,320 ----a-w C:\WINDOWS\erdnt\Hiv-backup\Users\00000001\NTUSER.DAT

+ 2008-01-23 00:06:40 696,320 ----a-w C:\WINDOWS\erdnt\Hiv-backup\Users\00000001\NTUSER.DAT

- 2008-01-21 02:02:07 8,192 ----a-w C:\WINDOWS\erdnt\Hiv-backup\Users\00000002\UsrClass.dat

+ 2008-01-23 00:06:40 8,192 ----a-w C:\WINDOWS\erdnt\Hiv-backup\Users\00000002\UsrClass.dat

- 2008-01-21 02:02:07 692,224 ----a-w C:\WINDOWS\erdnt\Hiv-backup\Users\00000003\NTUSER.DAT

+ 2008-01-23 00:06:40 692,224 ----a-w C:\WINDOWS\erdnt\Hiv-backup\Users\00000003\NTUSER.DAT

- 2008-01-21 02:02:07 8,192 ----a-w C:\WINDOWS\erdnt\Hiv-backup\Users\00000004\UsrClass.dat

+ 2008-01-23 00:06:40 8,192 ----a-w C:\WINDOWS\erdnt\Hiv-backup\Users\00000004\UsrClass.dat

- 2008-01-21 02:02:08 7,004,160 ----a-w C:\WINDOWS\erdnt\Hiv-backup\Users\00000005\ntuser.dat

+ 2008-01-23 00:06:41 7,004,160 ----a-w C:\WINDOWS\erdnt\Hiv-backup\Users\00000005\ntuser.dat

- 2008-01-21 02:02:08 204,800 ----a-w C:\WINDOWS\erdnt\Hiv-backup\Users\00000006\UsrClass.dat

+ 2008-01-23 00:06:41 204,800 ----a-w C:\WINDOWS\erdnt\Hiv-backup\Users\00000006\UsrClass.dat

- 2008-01-17 22:34:52 102,400 ----a-r C:\WINDOWS\Installer\{18388EF8-E0A3-442B-8BFE-E2F1B3D05C91}\iTunesIco.exe

+ 2008-01-22 00:40:11 102,400 ----a-r C:\WINDOWS\Installer\{18388EF8-E0A3-442B-8BFE-E2F1B3D05C91}\iTunesIco.exe

- 2007-01-30 00:30:59 25,214 -c--a-r C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A70900000002}\SC_Reader.exe

+ 2008-01-21 18:54:12 25,214 ----a-r C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A70900000002}\SC_Reader.exe

+ 2003-03-19 01:05:50 89,088 ----a-r C:\WINDOWS\system32\atl71.dll

- 2006-11-09 17:28:20 49,248 -c--a-w C:\WINDOWS\system32\java.exe

+ 2007-09-25 02:30:28 135,168 ----a-w C:\WINDOWS\system32\java.exe

- 2006-11-09 17:28:30 53,346 -c--a-w C:\WINDOWS\system32\javaw.exe

+ 2007-09-25 02:30:30 135,168 ----a-w C:\WINDOWS\system32\javaw.exe

- 2006-11-09 19:07:32 127,078 -c--a-w C:\WINDOWS\system32\javaws.exe

+ 2007-09-25 03:31:42 139,264 ----a-w C:\WINDOWS\system32\javaws.exe

.

((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

REGEDIT4

*Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-05 00:00 15360]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"avgnt"="N:\AntiVir PersonalEdition Classic\avgnt.exe" [2007-10-15 14:54 249896]

"ATICCC"="C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" [ ]

"QAGENT"="L:\QUICKENW2002\QAGENT.EXE" [2001-11-13 20:36 94208]

"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [ ]

"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2007-12-11 12:10 267048]

"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 01:11 132496]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]

"NoResolveTrack"= 1 (0x1)

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]

"NoSimpleStartMenu"= 0 (0x0)

 

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^HP Digital Imaging Monitor.lnk]

backup=C:\WINDOWS\pss\HP Digital Imaging Monitor.lnkCommon Startup

 

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Lancement rapide d'Adobe Reader.lnk]

backup=C:\WINDOWS\pss\Lancement rapide d'Adobe Reader.lnkCommon Startup

 

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Logitech Desktop Messenger.lnk]

backup=C:\WINDOWS\pss\Logitech Desktop Messenger.lnkCommon Startup

 

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Microsoft Office.lnk]

backup=C:\WINDOWS\pss\Microsoft Office.lnkCommon Startup

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATICCC]

C:\Program Files\ATI Technologies\ATI.ACE\cli.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]

--a------ 2004-08-05 00:00 15360 C:\WINDOWS\system32\ctfmon.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]

--a--c--- 2005-05-11 23:12 49152 N:\HP\HP Software Update\HPWuSchd2.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPBootOp]

--a--c--- 2005-02-25 16:34 245760 C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]

--a------ 2007-12-11 12:10 267048 C:\Program Files\iTunes\iTunesHelper.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]

C:\WINDOWS\system32\dumprep 0 -k

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechCameraAssistant]

--a--c--- 2005-12-07 10:26 489472 C:\Program Files\Logitech\Video\CameraAssistant.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideo[inspector]]

--a--c--- 2005-12-07 10:33 73728 C:\Program Files\Logitech\Video\InstallHelper.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LVCOMSX]

--a------ 2005-12-09 15:32 225280 C:\WINDOWS\system32\LVCOMSX.EXE

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QAGENT]

--a--c--- 2001-11-13 20:36 94208 L:\QUICKENW2002\QAGENT.EXE

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]

C:\Program Files\QuickTime\qttask.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SMSERIAL]

--a--c--- 2005-01-24 05:56 544768 C:\WINDOWS\sm56hlpr.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]

--a------ 2007-11-30 16:42 1266936 L:\Steam\Steam.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]

--a--c--- 2006-11-09 15:07 49263 C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe

 

R2 mrtRate;mrtRate;C:\WINDOWS\system32\drivers\mrtRate.sys [2001-02-28 11:42]

R3 LVPrcMon;Logitech LVPrcMon Driver;C:\WINDOWS\system32\drivers\LVPrcMon.sys [2005-12-09 15:37]

R3 USBSTOR;Pilote de stockage de masse USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-04 06:08]

S2 UxTuneUp;TuneUp Extension de thème (Beta);C:\WINDOWS\System32\svchost.exe [2004-08-05 14:00]

S3 nenum13E;nenum13E;C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\nenum13E.sys []

S3 SIS163u;SiS163 USB Wireless LAN Adapter Driver;C:\WINDOWS\system32\DRIVERS\sis163u.sys [2006-02-15 18:25]

S3 usbscan;Pilote de scanneur USB;C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 18:58]

S3 XDva010;XDva010;C:\WINDOWS\system32\XDva010.sys []

 

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs

UxTuneUp

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\D]

\Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Info.exe protect.ed 480 480

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{7987110a-c9c1-11d9-b148-806d6172696f}]

\Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Info.exe protect.ed 480 480

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{e010179d-5558-11dc-835a-0013d40243db}]

\Shell\AutoRun\command - M:\LaunchU3.exe -a

 

.

Contenu du dossier 'Scheduled Tasks/Tƒches planifi‚es'

"2008-01-17 22:57:56 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"

- C:\Program Files\Apple Software Update\SoftwareUpdate.exe

"2007-02-23 21:56:33 C:\WINDOWS\Tasks\Symantec NetDetect.job"

- C:\Program Files\Symantec\LiveUpdate\NDetect.exe

.

**************************************************************************

 

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2008-01-22 20:12:10

Windows 5.1.2600 Service Pack 2 NTFS

 

scanning hidden processes ...

 

scanning hidden autostart entries ...

 

scanning hidden files ...

 

scan completed successfully

hidden files: 0

 

**************************************************************************

.

Completion time: 2008-01-22 20:14:30 - machine was rebooted [Compaq_Propri‚taire]

ComboFix-quarantined-files.txt 2008-01-23 00:14:27

ComboFix2.txt 2008-01-21 02:12:11

.

2008-01-10 20:47:52 --- E O F ---

[Gof]

Bonjour ClaudeR

 

Je ne sais pas pour toi, mais j'aime bien avoir un "bonjour" en arrivant sur un sujet. Je n'ai pas eu le droit à un seul de ta part encore. Tu es économe en la matière ??

 

Comment se comporte le pc à présent, il y a-t-il du mieux ? Antivir a-t-il toujours des alertes ? Tu ne sembles pas appliquer toutes mes consignes, je vois par exemple des restes JAVA de versions que je t'avais demandé de désinstaller.

 

Tu as AVG AS sur ce pc, nous allons le mettre à profit. Assure toi qu'il soit à jour.

 

• Télécharge ATF Cleaner par Atribune.
  

-Redémarre en mode sans échec :

(En mode sans échec : seul les processus systèmes sont lancés il est donc plus facile de supprimer ce qui est infecté.)

Au redémarrage de l'ordinateur, une fois le chargement du BIOS terminé,

Il y a un écran noir qui apparaît rapidement, tapote par alternance les touches [F8] et [F5] jusqu’à l'affichage du menu des options avancées de Windows. Sélectionne "Mode sans échec"et appuyer sur [Entrée].

• Double-clique ATF-Cleaner.exe afin de lancer le programme.
  

• Pour internet explorer
  Sous l'onglet Main, choisis : Select All
  Clique sur le bouton Empty Selected
  

• Pour Firefox
  Sous l'onglet Firefox, choisis : Select All
  Clique le bouton Empty Selected
  NOTE : Si tu veux conserver tes mots de passe sauvegardés, clique No à l'invite.
  

• Clique Exit, du menu prinicipal, afin de fermer le programme.
  

• Lance AVG AS et clique sur Analyse
  
• Puis sur l'onglets Puis l'onglet Paramètres, pour Comment réagir ? sélectionne Actions recommandées puis Quarantaine
  
• Reviens a l'onglet Analyse et clique sur Analyse complète du système, le scan démarre
  
• Si un fichier infecté a été détecté, en fin d'analyse clique sur Appliquer toutes les actions
  
• Clique sur Enregistrer le rapport et pour finir Enregistrer le rapport sous, enregistre sur le Bureau
  

• Redémarre en mode normal et poste :
  
• le rapport AVG AS
  
• un nouveau log hijackthis
  
• les réponses à mes questions
  
• 1 bonjour
  

[ClaudeR]

BONJOUR

Comment ca va aujourd'hui...

 

Je vais tenter de ne rien oublier...

J'ai enlever les javas

 

Antivir détecte DR.AGENT

 

Voici les rapports

 

---------------------------------------------------------

AVG Anti-Spyware - Rapport d'analyse

---------------------------------------------------------

 

+ Créé à: 07:23:42 2008-01-25

 

+ Résultat de l'analyse:

 

 

 

C:\qoobox\Quarantine\C\WINDOWS\NDNuninstall6_38.exe.vir -> Adware.NewDotNet : Nettoyé.

C:\qoobox\Quarantine\C\WINDOWS\NDNuninstall7_48.exe.vir -> Adware.NewDotNet : Nettoyé.

F:\Musique\non classer7 Track 7 (angelique).wma -> Downloader.Wimad.l : Nettoyé.

C:\System Volume Information\_restore{5468DB36-2FF3-44DE-B67D-B49088DCAAFF}\RP255\A0130138.exe -> Dropper.Agent.dgo : Nettoyé.

C:\System Volume Information\_restore{5468DB36-2FF3-44DE-B67D-B49088DCAAFF}\RP255\A0130139.exe -> Dropper.Agent.dgo : Nettoyé.

C:\System Volume Information\_restore{5468DB36-2FF3-44DE-B67D-B49088DCAAFF}\RP255\A0130186.exe -> Dropper.Agent.dgo : Nettoyé.

C:\System Volume Information\_restore{5468DB36-2FF3-44DE-B67D-B49088DCAAFF}\RP255\A0130193.exe -> Dropper.Agent.dgo : Nettoyé.

C:\System Volume Information\_restore{5468DB36-2FF3-44DE-B67D-B49088DCAAFF}\RP255\A0130194.exe -> Dropper.Agent.dgo : Nettoyé.

C:\System Volume Information\_restore{5468DB36-2FF3-44DE-B67D-B49088DCAAFF}\RP255\A0130206.exe -> Dropper.Agent.dgo : Nettoyé.

C:\System Volume Information\_restore{5468DB36-2FF3-44DE-B67D-B49088DCAAFF}\RP255\A0130208.exe -> Dropper.Agent.dgo : Nettoyé.

C:\System Volume Information\_restore{5468DB36-2FF3-44DE-B67D-B49088DCAAFF}\RP256\A0130229.exe -> Dropper.Agent.dgo : Nettoyé.

C:\System Volume Information\_restore{5468DB36-2FF3-44DE-B67D-B49088DCAAFF}\RP256\A0130230.exe -> Dropper.Agent.dgo : Nettoyé.

C:\System Volume Information\_restore{5468DB36-2FF3-44DE-B67D-B49088DCAAFF}\RP256\A0130249.exe -> Dropper.Agent.dgo : Nettoyé.

C:\System Volume Information\_restore{5468DB36-2FF3-44DE-B67D-B49088DCAAFF}\RP256\A0130251.exe -> Dropper.Agent.dgo : Nettoyé.

C:\System Volume Information\_restore{5468DB36-2FF3-44DE-B67D-B49088DCAAFF}\RP256\A0130269.exe -> Dropper.Agent.dgo : Nettoyé.

C:\System Volume Information\_restore{5468DB36-2FF3-44DE-B67D-B49088DCAAFF}\RP256\A0130270.exe -> Dropper.Agent.dgo : Nettoyé.

C:\System Volume Information\_restore{5468DB36-2FF3-44DE-B67D-B49088DCAAFF}\RP257\A0130288.exe -> Dropper.Agent.dgo : Nettoyé.

C:\System Volume Information\_restore{5468DB36-2FF3-44DE-B67D-B49088DCAAFF}\RP257\A0130296.exe -> Dropper.Agent.dgo : Nettoyé.

C:\System Volume Information\_restore{5468DB36-2FF3-44DE-B67D-B49088DCAAFF}\RP257\A0130301.exe -> Dropper.Agent.dgo : Nettoyé.

C:\System Volume Information\_restore{5468DB36-2FF3-44DE-B67D-B49088DCAAFF}\RP258\A0130345.exe -> Dropper.Agent.dgo : Nettoyé.

C:\System Volume Information\_restore{5468DB36-2FF3-44DE-B67D-B49088DCAAFF}\RP258\A0130346.exe -> Dropper.Agent.dgo : Nettoyé.

C:\System Volume Information\_restore{5468DB36-2FF3-44DE-B67D-B49088DCAAFF}\RP258\A0130347.exe -> Dropper.Agent.dgo : Nettoyé.

C:\System Volume Information\_restore{5468DB36-2FF3-44DE-B67D-B49088DCAAFF}\RP258\A0130348.exe -> Dropper.Agent.dgo : Nettoyé.

C:\VundoFix Backups\qmeowqsh.exe.bad -> Dropper.Agent.dgo : Nettoyé.

C:\VundoFix Backups\ssttq.exe.bad -> Dropper.Agent.dgo : Nettoyé.

C:\VundoFix Backups\vgeysulm.exe.bad -> Dropper.Agent.dgo : Nettoyé.

C:\qoobox\Quarantine\C\Program Files\MSN Messenger\msnmsgr.exe.vir -> Dropper.Agent.dgo : Nettoyé.

C:\qoobox\Quarantine\C\Program Files\Messenger\msmsgs.exe.vir -> Dropper.Agent.dgo : Nettoyé.

C:\qoobox\Quarantine\C\Program Files\iTunes\iTunesHelper.exe.vir -> Dropper.Agent.dgo : Nettoyé.

C:\qoobox\Quarantine\C\WINDOWS\system32\RCX10.tmp.vir -> Dropper.Agent.dgo : Nettoyé.

C:\qoobox\Quarantine\C\WINDOWS\system32\RCX11.tmp.vir -> Dropper.Agent.dgo : Nettoyé.

C:\qoobox\Quarantine\C\WINDOWS\system32\RCX12.tmp.vir -> Dropper.Agent.dgo : Nettoyé.

C:\qoobox\Quarantine\C\WINDOWS\system32\RCX13.tmp.vir -> Dropper.Agent.dgo : Nettoyé.

C:\qoobox\Quarantine\C\WINDOWS\system32\RCX14.tmp.vir -> Dropper.Agent.dgo : Nettoyé.

C:\qoobox\Quarantine\C\WINDOWS\system32\RCX15.tmp.vir -> Dropper.Agent.dgo : Nettoyé.

C:\qoobox\Quarantine\C\WINDOWS\system32\RCX16.tmp.vir -> Dropper.Agent.dgo : Nettoyé.

C:\qoobox\Quarantine\C\WINDOWS\system32\RCX17.tmp.vir -> Dropper.Agent.dgo : Nettoyé.

C:\qoobox\Quarantine\C\WINDOWS\system32\RCX18.tmp.vir -> Dropper.Agent.dgo : Nettoyé.

C:\qoobox\Quarantine\C\WINDOWS\system32\RCX19.tmp.vir -> Dropper.Agent.dgo : Nettoyé.

C:\qoobox\Quarantine\C\WINDOWS\system32\RCX1A.tmp.vir -> Dropper.Agent.dgo : Nettoyé.

C:\qoobox\Quarantine\C\WINDOWS\system32\RCX1B.tmp.vir -> Dropper.Agent.dgo : Nettoyé.

C:\qoobox\Quarantine\C\WINDOWS\system32\RCX1C.tmp.vir -> Dropper.Agent.dgo : Nettoyé.

C:\qoobox\Quarantine\C\WINDOWS\system32\RCX38.tmp.vir -> Dropper.Agent.dgo : Nettoyé.

C:\qoobox\Quarantine\C\WINDOWS\system32\RCX55.tmp.vir -> Dropper.Agent.dgo : Nettoyé.

C:\qoobox\Quarantine\C\WINDOWS\system32\RCX9.tmp.vir -> Dropper.Agent.dgo : Nettoyé.

C:\qoobox\Quarantine\C\WINDOWS\system32\RCXA.tmp.vir -> Dropper.Agent.dgo : Nettoyé.

C:\qoobox\Quarantine\C\WINDOWS\system32\RCXA5.tmp.vir -> Dropper.Agent.dgo : Nettoyé.

C:\qoobox\Quarantine\C\WINDOWS\system32\RCXB.tmp.vir -> Dropper.Agent.dgo : Nettoyé.

C:\qoobox\Quarantine\C\WINDOWS\system32\RCXC.tmp.vir -> Dropper.Agent.dgo : Nettoyé.

C:\qoobox\Quarantine\C\WINDOWS\system32\RCXD.tmp.vir -> Dropper.Agent.dgo : Nettoyé.

C:\qoobox\Quarantine\C\WINDOWS\system32\RCXE.tmp.vir -> Dropper.Agent.dgo : Nettoyé.

C:\qoobox\Quarantine\C\WINDOWS\system32\RCXF.tmp.vir -> Dropper.Agent.dgo : Nettoyé.

C:\qoobox\Quarantine\C\WINDOWS\system32\ctfmon.exe.tmp.vir -> Dropper.Agent.dgo : Nettoyé.

C:\qoobox\Quarantine\C\WINDOWS\system32\ssttq.exe.vir -> Dropper.Agent.dgo : Nettoyé.

C:\qoobox\Quarantine\C\WINDOWS\system32\vgeysulm.exe.vir -> Dropper.Agent.dgo : Nettoyé.

C:\qoobox\Quarantine\C\WINDOWS\system32\rlvknlg.exe.vir -> Not-A-Virus.Adware.RK : Nettoyé.

F:\Musique\non classer\Horny tuneup utilities 2007 6 0.zip/setup.exe -> Not-A-Virus.Adware.TrafficSol : Nettoyé.

F:\Musique\non classer\Horny winavi mp4 convert.zip/setup.exe -> Not-A-Virus.Adware.TrafficSol : Nettoyé.

:mozilla.293:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.

:mozilla.577:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.

:mozilla.578:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.

:mozilla.914:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.

:mozilla.915:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.

C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@247realmedia[1].txt -> TrackingCookie.247realmedia : Nettoyé.

C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@network-ca.247realmedia[2].txt -> TrackingCookie.247realmedia : Nettoyé.

:mozilla.158:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.161:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.164:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.165:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.166:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.168:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.169:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.170:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.171:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.172:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.173:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.174:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.175:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.176:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.177:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.180:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.181:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.182:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.183:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.184:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.185:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.186:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.187:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.188:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.189:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.190:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.191:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.192:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.193:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.194:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.195:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.196:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.197:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.198:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.199:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.200:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.201:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.218:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.307:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.336:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.398:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.400:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.447:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.489:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.490:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.496:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.519:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.56:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.57:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.589:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.58:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.59:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.66:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.67:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.68:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.69:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.764:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.78:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.890:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.893:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.93:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

C:\Documents and Settings\Adina\Cookies\adina@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.104:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.71i : Nettoyé.

:mozilla.343:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.

:mozilla.344:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.

:mozilla.596:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.

:mozilla.579:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Adjuggler : Nettoyé.

:mozilla.580:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Adjuggler : Nettoyé.

:mozilla.199:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Adobe : Nettoyé.

:mozilla.200:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.

:mozilla.201:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.

:mozilla.202:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.

:mozilla.212:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.

:mozilla.213:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.

:mozilla.214:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.

:mozilla.215:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.

:mozilla.216:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.

:mozilla.217:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.

:mozilla.218:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.

:mozilla.219:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.

:mozilla.478:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.

:mozilla.479:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.

:mozilla.480:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.

:mozilla.481:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.

:mozilla.482:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.

C:\Documents and Settings\Adina\Cookies\adina@adrevolver[2].txt -> TrackingCookie.Adrevolver : Nettoyé.

C:\Documents and Settings\Adina\Cookies\adina@media.adrevolver[2].txt -> TrackingCookie.Adrevolver : Nettoyé.

C:\Documents and Settings\Gabriel\Cookies\gabriel@adrevolver[1].txt -> TrackingCookie.Adrevolver : Nettoyé.

C:\Documents and Settings\Gabriel\Cookies\gabriel@media.adrevolver[2].txt -> TrackingCookie.Adrevolver : Nettoyé.

:mozilla.178:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.

:mozilla.179:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.

:mozilla.467:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.

:mozilla.91:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.

:mozilla.92:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.

:mozilla.100:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.

:mozilla.213:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.

:mozilla.214:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.

:mozilla.215:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.

:mozilla.216:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.

:mozilla.217:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.

:mozilla.383:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.

:mozilla.384:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.

:mozilla.385:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.

:mozilla.386:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.

:mozilla.387:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.

:mozilla.96:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.

:mozilla.97:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.

:mozilla.98:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.

:mozilla.99:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.

:mozilla.577:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Adviva : Nettoyé.

C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@adviva[1].txt -> TrackingCookie.Adviva : Nettoyé.

C:\Documents and Settings\Gabriel\Cookies\gabriel@adviva[1].txt -> TrackingCookie.Adviva : Nettoyé.

:mozilla.31:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.

:mozilla.54:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.

:mozilla.8:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.

C:\Documents and Settings\Adina\Cookies\adina@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.

C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.

C:\Documents and Settings\Gabriel\Cookies\gabriel@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.

:mozilla.470:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Bfast : Nettoyé.

:mozilla.489:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Bfast : Nettoyé.

:mozilla.255:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.

:mozilla.279:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.

:mozilla.460:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.

:mozilla.333:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Bridgetrack : Nettoyé.

:mozilla.231:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Burstnet : Nettoyé.

:mozilla.232:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Burstnet : Nettoyé.

:mozilla.233:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Burstnet : Nettoyé.

:mozilla.264:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Burstnet : Nettoyé.

:mozilla.265:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Burstnet : Nettoyé.

:mozilla.134:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.

:mozilla.135:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.

:mozilla.136:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.

:mozilla.137:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.

:mozilla.138:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.

:mozilla.139:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.

:mozilla.249:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.

:mozilla.250:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.

:mozilla.251:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.

:mozilla.59:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.

:mozilla.60:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.

:mozilla.61:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.

:mozilla.62:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.

:mozilla.63:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.

:mozilla.64:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.

:mozilla.65:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.

:mozilla.66:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.

:mozilla.67:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.

:mozilla.68:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.

:mozilla.69:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.

:mozilla.330:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Clickbank : Nettoyé.

:mozilla.689:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Clickhype : Nettoyé.

:mozilla.433:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.

:mozilla.434:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.

:mozilla.435:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.

:mozilla.823:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.

:mozilla.824:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.

:mozilla.825:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.

:mozilla.840:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Connextra : Nettoyé.

:mozilla.841:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Connextra : Nettoyé.

:mozilla.846:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Connextra : Nettoyé.

:mozilla.382:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Coremetrics : Nettoyé.

:mozilla.385:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Coremetrics : Nettoyé.

C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@bilbo.counted[1].txt -> TrackingCookie.Counted : Nettoyé.

:mozilla.109:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.

:mozilla.16:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.

:mozilla.21:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.

:mozilla.220:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.

C:\Documents and Settings\Adina\Cookies\adina@doubleclick[2].txt -> TrackingCookie.Doubleclick : Nettoyé.

C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.

C:\Documents and Settings\Gabriel\Cookies\gabriel@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.

:mozilla.357:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Enhance : Nettoyé.

:mozilla.358:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Enhance : Nettoyé.

:mozilla.364:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Estat : Nettoyé.

:mozilla.693:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Estat : Nettoyé.

C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@estat[1].txt -> TrackingCookie.Estat : Nettoyé.

:mozilla.25:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Etracker : Nettoyé.

:mozilla.26:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Etracker : Nettoyé.

:mozilla.270:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.

:mozilla.284:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.

:mozilla.22:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.

:mozilla.23:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.

:mozilla.24:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.

:mozilla.258:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.

:mozilla.25:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.

:mozilla.262:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.

:mozilla.26:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.

:mozilla.27:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.

:mozilla.28:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.

:mozilla.29:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.

:mozilla.30:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.

:mozilla.438:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.

:mozilla.439:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.

:mozilla.440:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.

:mozilla.441:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.

:mozilla.751:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Findwhat : Nettoyé.

:mozilla.310:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Gemius : Nettoyé.

:mozilla.311:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Gemius : Nettoyé.

:mozilla.312:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Gemius : Nettoyé.

:mozilla.445:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.606:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.609:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.111:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.

:mozilla.112:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.

:mozilla.113:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.

:mozilla.245:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.

:mozilla.271:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.

:mozilla.284:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.

:mozilla.285:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.

:mozilla.286:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.

:mozilla.287:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.

:mozilla.313:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.

:mozilla.315:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.

:mozilla.316:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.

:mozilla.343:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.

:mozilla.403:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.

:mozilla.404:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.

:mozilla.405:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.

:mozilla.406:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.

:mozilla.407:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.

:mozilla.408:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.

:mozilla.409:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.

:mozilla.410:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.

:mozilla.411:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.

:mozilla.476:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.

:mozilla.506:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.

:mozilla.537:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.

:mozilla.679:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.

:mozilla.691:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.

:mozilla.82:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.

:mozilla.83:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.

C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@ehg-nuruninc.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyé.

C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyé.

:mozilla.493:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Hitslink : Nettoyé.

:mozilla.212:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.I12 : Nettoyé.

:mozilla.215:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.I12 : Nettoyé.

:mozilla.216:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.I12 : Nettoyé.

:mozilla.217:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.I12 : Nettoyé.

:mozilla.219:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.I12 : Nettoyé.

:mozilla.220:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.I12 : Nettoyé.

:mozilla.194:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé.

:mozilla.195:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé.

:mozilla.41:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé.

:mozilla.42:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé.

:mozilla.624:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé.

:mozilla.625:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé.

:mozilla.261:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Information : Nettoyé.

:mozilla.484:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Information : Nettoyé.

:mozilla.6:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Ivwbox : Nettoyé.

C:\Documents and Settings\Adina\Cookies\adina@ivwbox[2].txt -> TrackingCookie.Ivwbox : Nettoyé.

:mozilla.35:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Komtrack : Nettoyé.

:mozilla.36:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Komtrack : Nettoyé.

:mozilla.482:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Liveperson : Nettoyé.

:mozilla.483:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Liveperson : Nettoyé.

:mozilla.484:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Liveperson : Nettoyé.

:mozilla.486:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Liveperson : Nettoyé.

:mozilla.13:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé.

:mozilla.16:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé.

:mozilla.17:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé.

:mozilla.88:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé.

C:\Documents and Settings\Adina\Cookies\adina@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyé.

C:\Documents and Settings\Adina\Cookies\adina@auto.search.msn[1].txt -> TrackingCookie.Msn : Nettoyé.

C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@auto.search.msn[1].txt -> TrackingCookie.Msn : Nettoyé.

C:\Documents and Settings\Gabriel\Cookies\gabriel@auto.search.msn[1].txt -> TrackingCookie.Msn : Nettoyé.

:mozilla.408:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.

:mozilla.409:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.

:mozilla.410:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.

:mozilla.497:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.

:mozilla.588:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.

:mozilla.92:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.

:mozilla.96:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.

C:\Documents and Settings\Adina\Cookies\adina@overture[1].txt -> TrackingCookie.Overture : Nettoyé.

:mozilla.146:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.

:mozilla.147:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.

:mozilla.148:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.

:mozilla.149:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.

:mozilla.150:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.

:mozilla.151:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.

:mozilla.152:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.

:mozilla.153:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.

:mozilla.154:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.

:mozilla.155:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.

:mozilla.349:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.

:mozilla.351:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.

:mozilla.352:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.

:mozilla.353:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.

:mozilla.354:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.

:mozilla.355:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.

:mozilla.356:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.

:mozilla.357:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Pointroll : Nettoyé.

:mozilla.168:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyé.

:mozilla.169:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyé.

:mozilla.52:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyé.

:mozilla.53:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyé.

:mozilla.615:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyé.

:mozilla.616:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyé.

:mozilla.207:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Realmedia : Nettoyé.

:mozilla.208:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Realmedia : Nettoyé.

:mozilla.209:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Realmedia : Nettoyé.

:mozilla.526:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Realmedia : Nettoyé.

:mozilla.560:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Realmedia : Nettoyé.

:mozilla.561:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Realmedia : Nettoyé.

:mozilla.562:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Realmedia : Nettoyé.

:mozilla.563:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Realmedia : Nettoyé.

:mozilla.564:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Realmedia : Nettoyé.

:mozilla.565:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Realmedia : Nettoyé.

:mozilla.566:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Realmedia : Nettoyé.

:mozilla.567:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Realmedia : Nettoyé.

:mozilla.568:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Realmedia : Nettoyé.

:mozilla.569:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Realmedia : Nettoyé.

:mozilla.255:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Revenue : Nettoyé.

:mozilla.256:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Revenue : Nettoyé.

:mozilla.483:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Revenue : Nettoyé.

:mozilla.322:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.

:mozilla.323:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.

:mozilla.324:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.

:mozilla.325:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.

:mozilla.394:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.

:mozilla.395:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.

:mozilla.396:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.

:mozilla.397:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.

:mozilla.594:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.

:mozilla.698:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.

:mozilla.699:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.

:mozilla.700:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.

:mozilla.701:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.

:mozilla.702:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.

:mozilla.704:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.

:mozilla.705:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.

:mozilla.706:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.

:mozilla.707:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.

:mozilla.708:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.

:mozilla.581:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Ru4 : Nettoyé.

:mozilla.121:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.

:mozilla.122:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.

:mozilla.123:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.

:mozilla.124:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.

:mozilla.125:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.

:mozilla.126:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.

:mozilla.127:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.

:mozilla.534:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.

:mozilla.535:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.

:mozilla.536:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.

:mozilla.537:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.

:mozilla.538:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.

:mozilla.539:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.

:mozilla.540:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.

:mozilla.93:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.

:mozilla.94:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.

:mozilla.95:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.

:mozilla.96:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.

:mozilla.97:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.

:mozilla.98:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.

:mozilla.99:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.

C:\Documents and Settings\Adina\Cookies\adina@bs.serving-sys[1].txt -> TrackingCookie.Serving-sys : Nettoyé.

C:\Documents and Settings\Adina\Cookies\adina@serving-sys[1].txt -> TrackingCookie.Serving-sys : Nettoyé.

C:\Documents and Settings\Gabriel\Cookies\gabriel@bs.serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé.

C:\Documents and Settings\Gabriel\Cookies\gabriel@serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé.

:mozilla.276:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.

:mozilla.277:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.

:mozilla.278:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.

:mozilla.283:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.

:mozilla.284:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.

:mozilla.285:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.

:mozilla.286:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.

:mozilla.371:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.

:mozilla.372:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.

:mozilla.373:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.

:mozilla.429:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.

:mozilla.430:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.

:mozilla.431:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.

C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyé.

C:\Documents and Settings\Gabriel\Cookies\gabriel@smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyé.

:mozilla.591:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Starware : Nettoyé.

:mozilla.309:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.

:mozilla.485:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.

:mozilla.486:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.

:mozilla.487:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.

:mozilla.488:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.

:mozilla.516:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.

:mozilla.523:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.

:mozilla.524:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.

:mozilla.525:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.

:mozilla.526:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.

:mozilla.527:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.

:mozilla.528:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.

:mozilla.529:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.

:mozilla.530:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.

:mozilla.531:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.

:mozilla.532:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.

:mozilla.545:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Statistik-gallup : Nettoyé.

:mozilla.546:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Statistik-gallup : Nettoyé.

:mozilla.142:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyé.

:mozilla.143:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyé.

:mozilla.144:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyé.

:mozilla.145:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyé.

:mozilla.263:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyé.

:mozilla.266:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyé.

:mozilla.267:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyé.

:mozilla.450:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyé.

:mozilla.451:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyé.

:mozilla.452:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyé.

:mozilla.453:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyé.

:mozilla.613:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Targetnet : Nettoyé.

:mozilla.754:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Tracking101 : Nettoyé.

:mozilla.186:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.

:mozilla.187:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.

:mozilla.370:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.

:mozilla.90:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.

:mozilla.91:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.

C:\Documents and Settings\Adina\Cookies\adina@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Nettoyé.

C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyé.

C:\Documents and Settings\Gabriel\Cookies\gabriel@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyé.

:mozilla.133:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Tribalfusion : Nettoyé.

:mozilla.225:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Tribalfusion : Nettoyé.

:mozilla.226:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Tribalfusion : Nettoyé.

:mozilla.227:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Tribalfusion : Nettoyé.

:mozilla.228:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Tribalfusion : Nettoyé.

:mozilla.546:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Tribalfusion : Nettoyé.

C:\Documents and Settings\Adina\Cookies\adina@tribalfusion[2].txt -> TrackingCookie.Tribalfusion : Nettoyé.

:mozilla.597:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Valuead : Nettoyé.

:mozilla.598:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Valuead : Nettoyé.

:mozilla.599:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Valuead : Nettoyé.

:mozilla.600:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Valuead : Nettoyé.

:mozilla.432:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.

:mozilla.433:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.

:mozilla.76:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.

:mozilla.77:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.

:mozilla.78:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.

C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@weborama[1].txt -> TrackingCookie.Weborama : Nettoyé.

C:\Documents and Settings\Gabriel\Cookies\gabriel@weborama[1].txt -> TrackingCookie.Weborama : Nettoyé.

:mozilla.568:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Webtrends : Nettoyé.

:mozilla.883:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Webtrends : Nettoyé.

:mozilla.479:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyé.

:mozilla.204:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.

:mozilla.205:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.

:mozilla.206:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.

:mozilla.207:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.

:mozilla.208:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.

:mozilla.209:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.

:mozilla.210:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.

:mozilla.211:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.

:mozilla.31:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.

:mozilla.32:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.

:mozilla.33:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.

:mozilla.34:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.

:mozilla.35:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.

:mozilla.36:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.

:mozilla.37:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.

:mozilla.38:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.

:mozilla.39:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.

:mozilla.40:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.

:mozilla.485:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.

:mozilla.486:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.

C:\Documents and Settings\Gabriel\Cookies\gabriel@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Nettoyé.

:mozilla.106:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.

:mozilla.107:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\97awli6w.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.

:mozilla.350:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.

:mozilla.351:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.

:mozilla.352:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.

:mozilla.353:C:\Documents and Settings\Gabriel\Application Data\Mozilla\Firefox\Profiles\dmgug30x.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.

:mozilla.547:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.

:mozilla.548:C:\Documents and Settings\Adina\Application Data\Mozilla\Firefox\Profiles\8vdo5lsg.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé.

 

 

Fin du rapport

 

Voici Hijack

 

Logfile of HijackThis v1.99.1

Scan saved at 22:02:15, on 2008-01-25

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe

N:\AntiVir PersonalEdition Classic\sched.exe

N:\AntiVir PersonalEdition Classic\avguard.exe

C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe

C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE

C:\Program Files\TRENDnet\TEW-424UB\SiSWLSvc.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\fxssvc.exe

C:\WINDOWS\System32\svchost.exe

N:\iPod\bin\iPodService.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\Program Files\MSN Messenger\usnsvc.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\Explorer.EXE

L:\QUICKENW2002\QAGENT.EXE

C:\Program Files\iTunes\iTunesHelper.exe

C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe

C:\WINDOWS\system32\ctfmon.exe

C:\WINDOWS\system32\mrtMngr.EXE

C:\Program Files\TRENDnet\TEW-424UB\TRENDnet.exe

N:\AntiVir PersonalEdition Classic\avgnt.exe

C:\Program Files\internet explorer\iexplore.exe

C:\WINDOWS\system32\NOTEPAD.EXE

C:\Documents and Settings\Compaq_Propriétaire\Bureau\HijackThis.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: BrowserCmp - {1D8282E6-BC4F-469B-AAED-7E4FF077AD93} - C:\WINDOWS\system32\iebrowserc.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll

O4 - HKLM\..\Run: [avgnt] "N:\AntiVir PersonalEdition Classic\avgnt.exe" /min

O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay

O4 - HKLM\..\Run: [QAGENT] L:\QUICKENW2002\QAGENT.EXE

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

O4 - Global Startup: Wireless Configuration Utility HW.32.lnk = ?

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll

O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL

O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm

O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE (file missing)

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE (file missing)

O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (HKCU)

O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (HKCU)

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1174783407203

O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSN Messenger\MSGRAP~1.DLL

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSN Messenger\MSGRAP~1.DLL

O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\

O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll

O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - N:\AntiVir PersonalEdition Classic\sched.exe

O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - N:\AntiVir PersonalEdition Classic\avguard.exe

O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe

O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe

O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe

O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - N:\iPod\bin\iPodService.exe

O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe

O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe

O23 - Service: SiS WirelessLan Service (SiSWLSvc) - Unknown owner - C:\Program Files\TRENDnet\TEW-424UB\SiSWLSvc.exe

 

Donc merci encore