Se connecter avec
S'enregistrer | Connectez-vous

Encore un dialer italien ...

Dernière réponse : dans Sécurité

Bonjour tout le monde,
J'ai fait quelques recherches sur internet et me suis rendu compte que je ne suis pas la seule victime de ces dialers italiens .
Une premiere fenetre s'affiche trés rapidement puis disparait et quelques secondes aprés un messages me dit que la connexion est impossible et que le programme sera terminé ( en italien ) .
J'ai trouvé plusieurs posts en traitant mais pas qui correspondaient à mon cas .
Je post le rapport hijack this :
Logfile of HijackThis v1.99.1
Scan saved at 18:01:37, on 28/06/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
C:\Program Files\Sygate\SPF\smc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Panda Software\Panda Antivirus Platinum\pavsrv51.exe
C:\Program Files\Panda Software\Panda Antivirus Platinum\AVENGINE.EXE
C:\WINDOWS\System32\svchost.exe
C:\ATI-CPanel\atiptaxx.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\Program Files\Club-Internet\Agent Wifi\AgentWifi.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Panda Software\Panda Antivirus Platinum\APVXDWIN.EXE
C:\Program Files\Club-Internet\Lanceur\lanceur.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Panda Software\Panda Antivirus Platinum\pavProxy.exe
C:\WINDOWS\TEMP\idd98A.tmp.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\TEMP\iddEAB.tmp.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\TEMP\iddEC3.tmp.exe
C:\PROGRA~1\DAP\DAP.EXE
C:\Documents and Settings\LE Client de la Fnac\Bureau\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.club-internet.fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.hsreegbmyolqvlwrplzaopve.com/1Q3uucKosk_Vteq...
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.club-internet.fr/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer avec Club-Internet
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O3 - Toolbar: DAP Bar - {62999427-33FC-4baf-9C9C-BCE6BD127F08} - C:\Program Files\DAP\DAPIEBar.dll
O4 - HKLM\..\Run: [ATIPTA] C:\ATI-CPanel\atiptaxx.exe
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [MPSWiFiManager] C:\Program Files\Club-Internet\Agent Wifi\AgentWifi.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SCANINICIO] "C:\Program Files\Panda Software\Panda Antivirus Platinum\Inicio.exe"
O4 - HKLM\..\Run: [APVXDWIN] "C:\Program Files\Panda Software\Panda Antivirus Platinum\APVXDWIN.EXE" /s
O4 - HKCU\..\Run: [winview] C:\DOCUME~1\LECLIE~1\APPLIC~1\DOWNLO~1\Mess log.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [b070b975.exe] C:\Documents and Settings\LE Client de la Fnac\Local Settings\Application Data\b070b975.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - Startup: Club Internet.lnk = C:\Program Files\Club-Internet\Lanceur\lanceur.exe
O8 - Extra context menu item: &Download with &DAP - C:\PROGRA~1\DAP\dapextie.htm
O8 - Extra context menu item: &Télécharger avec NetTransport - C:\Program Files\Xi\NetTransport 2\NTAddLink.html
O8 - Extra context menu item: Download &all with DAP - C:\PROGRA~1\DAP\dapextie2.htm
O8 - Extra context menu item: Tout t&élécharger avec NetTransport - C:\Program Files\Xi\NetTransport 2\NTAddList.html
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab30149....
O16 - DPF: {04E214E5-63AF-4236-83C6-A7ADCBF9BD02} (HouseCall Control) - http://housecall60.trendmicro.com/housecall/xscan60.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab312...
O16 - DPF: {45E83043-1F6F-4D22-A5E7-0138EA171B49} (FileSharingCtrl Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Ap...
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8....
O16 - DPF: {87AF076E-D86D-4E87-ADDD-F05804E1F150} (VirginMega DownloadManager) - http://www.virginmega.fr/DownloadManager/Release/Prod/D...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst....
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab30149.ca...
O16 - DPF: {E6187999-9FEC-46A1-A20F-F4CA977D5643} (ZoneChess Object) - http://messenger.zone.msn.com/binary/Chess.cab30149.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown....
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: License Management Service ESD - Unknown owner - C:\Program Files\Fichiers communs\element5 Shared\Service\Licence Manager ESD.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Panda anti-virus service (PAVSRV) - Panda Software - C:\Program Files\Panda Software\Panda Antivirus Platinum\pavsrv51.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: StyleXPService - Unknown owner - C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe

Merci bcp si vous m'aidez !

Autres pages sur : dialer italien

Lassé par la pub ? Créez un compte

Quelques infections, on fait un petit nettoyage avant de passer a l'action:

Installe Ewido
Lance Ewido puis mets le à jour en cliquant sur " Update Now "
Ferme le programme.
Aide sur Ewido de Rub_Mic

Redémarre en mode sans échec

Relance Ewido puis choisis l'onglet " Scanner "
Fais un " Complete System Scan "
** Si un fichier est infecté, choisis l'option " Apply All Actions " en fin d'analyse **
Clique sur " Save Report " puis sur " Save Report As "
Enregistre ce fichier .txt sur ton bureau, Copie/Colle le ici en mode normal.

Merci pour le coup de main , rapport ewido :
+ Created at: 19:24:10 28/06/2006

+ Scan result:



HKLM\SOFTWARE\Classes\CLSID\{C7CF1142-0785-4B12-A280-B64681E4D45E} -> Adware.Generic : Cleaned with backup (quarantined).
C:\Program Files\Cowabanga\Cowabanga.exe -> Adware.MediaTicket : Cleaned with backup (quarantined).
C:\Program Files\themexp\Themexp.org File\NNEZTA388.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
C:\Program Files\themexp\Themexp.org File\TBEZA127Q.exe -> Adware.Quick : Cleaned with backup (quarantined).
C:\Documents and Settings\LE Client de la Fnac\Local Settings\Temporary Internet Files\Content.IE5\FQGZZ985\anti4[1].exe -> Adware.Virtumonde : Cleaned with backup (quarantined).
C:\WINDOWS\system32\ljjjhed.dll -> Adware.Virtumonde : Cleaned with backup (quarantined).
C:\Team17\Worms World Party\wwp-patch.exe -> Backdoor.Theef.111 : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl104.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl18.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl25.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl2C.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl2F.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl35.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl37.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl41.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl42.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl4C.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl4F.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl52.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl6C3.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl6D7.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl6E6.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl755.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl988.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl989.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl98E.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddl993.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddlE6E.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddlE7F.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddlEB4.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddlEC.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddlEC1.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddlEC7.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddlEC9.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddlECE.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddlED9.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddlF5.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddlF8.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\ddlFE.tmp.exe -> Dialer.Agent.z : Cleaned with backup (quarantined).
C:\WINDOWS\cpblpbc1.log -> Downloader.Delf.lh : Cleaned with backup (quarantined).
C:\WINDOWS\cpblpbc5.log -> Downloader.Delf.lh : Cleaned with backup (quarantined).
C:\WINDOWS\cpblpbc6.log -> Downloader.Delf.lh : Cleaned with backup (quarantined).
C:\Team17\Worms World Party\cracker.exe -> Downloader.INService.ja : Cleaned with backup (quarantined).
C:\Documents and Settings\LE Client de la Fnac\Local Settings\Temp\winF16.tmp.exe -> Downloader.Obfuscated.a : Cleaned with backup (quarantined).
C:\Documents and Settings\LE Client de la Fnac\Local Settings\Temporary Internet Files\Content.IE5\DGX93PPR\wlzip32[1].exe -> Downloader.Obfuscated.a : Cleaned with backup (quarantined).
C:\RECYCLER\S-1-5-21-2733750000-1990129656-1003878233-1006\Dc10.exe -> Downloader.Obfuscated.a : Cleaned with backup (quarantined).
C:\Documents and Settings\LE Client de la Fnac\Local Settings\Temp\OA.exe -> Downloader.PurityScan.cq : Cleaned with backup (quarantined).
C:\Program Files\Fichiers communs\Y1123OA.exe -> Downloader.PurityScan.cq : Cleaned with backup (quarantined).
C:\Documents and Settings\LE Client de la Fnac\Local Settings\Temporary Internet Files\Content.IE5\J79P5L5U\L[1].exe -> Downloader.Small.cvw : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\win21.tmp.exe -> Downloader.Small.cvw : Cleaned with backup (quarantined).
C:\Documents and Settings\LE Client de la Fnac\Bureau\elka\setup\setup\MsgPlus-301.exe/Sponsor.exe -> Downloader.Swizzor.bt : Cleaned with backup (quarantined).
C:\WINDOWS\system32\regperf.exe -> Downloader.Zlob.ti : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\win34.tmp.exe -> Dropper.Agent.ajc : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\winEB.tmp.exe -> Dropper.Agent.ajc : Cleaned with backup (quarantined).
C:\WINDOWS\Temp\winF4.tmp.exe -> Dropper.Agent.ajc : Cleaned with backup (quarantined).
C:\WINDOWS\cpblpbc3.log -> Hijacker.Delf.dr : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\CLSID\{D4DFC1D8-2D2E-4962-B0D0-389FBA0F76B5} -> Hijacker.Generic : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4DFC1D8-2D2E-4962-B0D0-389FBA0F76B5} -> Hijacker.Generic : Cleaned with backup (quarantined).
C:\Documents and Settings\LE Client de la Fnac\Local Settings\Temporary Internet Files\Content.IE5\0X23CXEB\wizip32[1].exe -> Hijacker.Small.kx : Cleaned with backup (quarantined).
:mozilla.324:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.325:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.326:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.327:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.328:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.329:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.378:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.379:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.380:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.381:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.382:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.383:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.384:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.385:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.386:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.387:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.388:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.624:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.625:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.684:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\LE Client de la Fnac\Cookies\le client de la fnac@msninvite.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.838:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Adjuggler : Cleaned.
:mozilla.839:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Adjuggler : Cleaned.
C:\Documents and Settings\LE Client de la Fnac\Cookies\le client de la fnac@rotator.adjuggler[1].txt -> TrackingCookie.Adjuggler : Cleaned.
:mozilla.12:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.13:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Adtech : Cleaned.
C:\Documents and Settings\LE Client de la Fnac\Cookies\le client de la fnac@adtech[2].txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.364:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.365:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.366:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.70:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.902:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Belstat : Cleaned.
:mozilla.903:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Belstat : Cleaned.
:mozilla.904:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Belstat : Cleaned.
:mozilla.905:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Belstat : Cleaned.
:mozilla.69:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Bluestreak : Cleaned.
:mozilla.828:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Bluestreak : Cleaned.
:mozilla.136:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.139:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.171:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.172:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.173:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.835:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Casinotropez : Cleaned.
:mozilla.780:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Clickhype : Cleaned.
:mozilla.470:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.370:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.371:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.372:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.373:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.374:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Comclick : Cleaned.
C:\Documents and Settings\LE Client de la Fnac\Cookies\le client de la fnac@cpvfeed[1].txt -> TrackingCookie.Cpvfeed : Cleaned.
:mozilla.85:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.289:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Estat : Cleaned.
C:\Documents and Settings\LE Client de la Fnac\Cookies\le client de la fnac@estat[1].txt -> TrackingCookie.Estat : Cleaned.
:mozilla.408:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.409:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.410:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.411:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
C:\Documents and Settings\LE Client de la Fnac\Cookies\le client de la fnac@adopt.euroclick[1].txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.166:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.167:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.168:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.169:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.170:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.27:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.28:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.29:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.806:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.807:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.808:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.809:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Falkag : Cleaned.
C:\Documents and Settings\LE Client de la Fnac\Cookies\le client de la fnac@as1.falkag[2].txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.126:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.127:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.128:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.129:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.130:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.131:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.239:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.935:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.936:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.545:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Hotlog : Cleaned.
C:\Documents and Settings\LE Client de la Fnac\Cookies\le client de la fnac@hypertracker[2].txt -> TrackingCookie.Hypertracker : Cleaned.
:mozilla.825:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Itrack : Cleaned.
:mozilla.826:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Itrack : Cleaned.
:mozilla.827:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Itrack : Cleaned.
:mozilla.840:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.841:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.842:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.40:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.853:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.854:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.855:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.151:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.152:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.153:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.856:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.857:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.858:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.859:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.860:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.861:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.862:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.863:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
C:\Documents and Settings\LE Client de la Fnac\Cookies\le client de la fnac@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.670:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Revenue : Cleaned.
:mozilla.342:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.343:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.344:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.345:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.346:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.473:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.474:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.475:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.476:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.477:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.478:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.479:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.480:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.481:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.482:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.483:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.484:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.485:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.486:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.881:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Sitestat : Cleaned.
:mozilla.14:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.15:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.16:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.17:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.693:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Spylog : Cleaned.
:mozilla.259:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.260:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.261:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.262:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.263:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.264:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.265:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.266:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.267:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.268:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.269:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.270:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.271:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.272:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.273:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.274:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.275:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.276:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.137:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.138:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
C:\Documents and Settings\LE Client de la Fnac\Cookies\le client de la fnac@tacoda[1].txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.174:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Targetnet : Cleaned.
:mozilla.175:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Targetnet : Cleaned.
:mozilla.196:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.197:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.198:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.199:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.200:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.201:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.202:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.299:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.300:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.301:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.302:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.303:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.304:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.709:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Trafic : Cleaned.
:mozilla.159:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
C:\Documents and Settings\LE Client de la Fnac\Cookies\le client de la fnac@tribalfusion[1].txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.355:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Valueclick : Cleaned.
:mozilla.356:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Valueclick : Cleaned.
:mozilla.104:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Weborama : Cleaned.
:mozilla.105:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Weborama : Cleaned.
:mozilla.106:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Weborama : Cleaned.
C:\Documents and Settings\LE Client de la Fnac\Cookies\le client de la fnac@weborama[1].txt -> TrackingCookie.Weborama : Cleaned.
:mozilla.756:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Yadro : Cleaned.
:mozilla.293:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.294:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.763:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.764:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.765:C:\Documents and Settings\LE Client de la Fnac\Application Data\Mozilla\Firefox\Profiles\default.rzh\cookies.txt -> TrackingCookie.Zedo : Cleaned.
C:\WINDOWS\cmdex.dll.tmp -> Trojan.Agent.cl : Cleaned with backup (quarantined).
C:\WINDOWS\dd.dll.tmp -> Trojan.Agent.cl : Cleaned with backup (quarantined).
C:\WINDOWS\dd.exe -> Trojan.Agent.cl : Cleaned with backup (quarantined).
C:\WINDOWS\gegre.dll -> Trojan.Agent.cl : Cleaned with backup (quarantined).
C:\WINDOWS\smssrs.dll.tmp -> Trojan.Agent.cl : Cleaned with backup (quarantined).
C:\Documents and Settings\LE Client de la Fnac\Local Settings\Temp\cliF06.tmp -> Trojan.Agent.vg : Cleaned with backup (quarantined).
C:\Documents and Settings\LE Client de la Fnac\Local Settings\Temp\cliF11.tmp -> Trojan.Agent.vg : Cleaned with backup (quarantined).
C:\Documents and Settings\LE Client de la Fnac\Local Settings\Temp\winF08.tmp.exe -> Trojan.Dialer.oy : Cleaned with backup (quarantined).
C:\Documents and Settings\LE Client de la Fnac\Local Settings\Temporary Internet Files\Content.IE5\GHQJOH2B\mulbin32[1].exe -> Trojan.Dialer.oy : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024 -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld1302.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld1413.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld16ED.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld1974.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld1D59.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld1E3B.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld2395.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld23DC.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld2A09.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld2ABC.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld2CB.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld2EEE.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld34BD.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld3552.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld3994.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld3B19.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld3B50.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld4633.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld4AEB.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld4C8F.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld4CB6.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld5222.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld527E.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld577.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld5CA0.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld5D98.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld6359.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld6404.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld6576.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld669F.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld6977.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld6C7.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld6D2E.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld7491.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld756A.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld7798.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld7806.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld7881.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld7A9F.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld7CB8.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld7DC5.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld7E62.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld80B8.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld80FA.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld8704.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld88B.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld892E.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld896C.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld89A9.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld8C05.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld8E3D.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld8EAF.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld8F1C.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld9005.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld91EF.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld9213.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld94EC.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld9559.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld9584.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld97FD.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld985F.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld9B5E.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld9E59.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld9FA4.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldA025.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldA083.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldA11E.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldA3A8.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldA691.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldA777.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldA973.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldAA52.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldAC60.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldADC3.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldAFCF.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldB60C.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldB7F7.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldB8BE.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldBD2A.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldBD3.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldBF78.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldC145.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldC376.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldC595.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldC6D6.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldCC5.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldCC91.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldCD22.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldCE91.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldD0DE.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldD48F.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldD6DC.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldD84C.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldDA6E.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldDCFA.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldDE4A.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldE487.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldE605.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldE852.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldEB38.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldEEBE.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldEFC0.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldF174.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldF44F.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldF551.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldFB8E.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldFCAE.tmp -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ldFF79.tmp -> Trojan.Small : Cleaned with backup (quarantined).


::Report end

j'attends la suite des instructions

re , je trouve pas ça trés long :
SmitFraudFix v2.65

Rapport fait à 19:49:09,84, 28/06/2006
Executé à partir de C:\Documents and Settings\LE Client de la Fnac\Bureau\Nouveau dossier\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Fix executé en mode normal

»»»»»»»»»»»»»»»»»»»»»»»» C:\

C:\uniq PRESENT !

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32

C:\WINDOWS\system32\ld????.tmp PRESENT !

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles


»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\LE Client de la Fnac\Application Data


»»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer


»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\LECLIE~1\Favoris


»»»»»»»»»»»»»»»»»»»»»»»» Bureau


»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files

SmitFraudFix v2.65

Rapport fait à 20:07:16,25, 28/06/2006
Executé à partir de C:\Documents and Settings\LE Client de la Fnac\Bureau\Nouveau dossier\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Fix executé en mode sans echec

»»»»»»»»»»»»»»»»»»»»»»»» Avant SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
"{FCADDC14-BD46-408A-9842-CDBE1C6D37EB}"="z"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
"{1B68470C-2DEF-493B-8A4A-8E2D81BE4EA5}"="st3"


»»»»»»»»»»»»»»»»»»»»»»»» Arret des processus


»»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix

GenericRenosFix by S!Ri


»»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés

C:\uniq supprimé
C:\WINDOWS\system32\ld????.tmp supprimé
C:\Program Files\secure32.html supprimé

»»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires


»»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre

Nettoyage terminé.

»»»»»»»»»»»»»»»»»»»»»»»» Après SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll


»»»»»»»»»»»»»»»»»»»»»»»» Fin

Voilà le rapport !

voilà pour ce qui est du rapport hjt :
Logfile of HijackThis v1.99.1
Scan saved at 20:31:19, on 28/06/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
C:\Program Files\Sygate\SPF\smc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\Panda Software\Panda Antivirus Platinum\pavsrv51.exe
C:\Program Files\Panda Software\Panda Antivirus Platinum\AVENGINE.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Panda Software\Panda Antivirus Platinum\apvxdwin.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Panda Software\Panda Antivirus Platinum\pavProxy.exe
C:\ATI-CPanel\atiptaxx.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\Program Files\Club-Internet\Agent Wifi\AgentWifi.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Club-Internet\Lanceur\lanceur.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Project64 v1.5\Project64.exe
C:\Documents and Settings\LE Client de la Fnac\Bureau\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.club-internet.fr
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.club-internet.fr/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer avec Club-Internet
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O3 - Toolbar: DAP Bar - {62999427-33FC-4baf-9C9C-BCE6BD127F08} - C:\Program Files\DAP\DAPIEBar.dll
O4 - HKLM\..\Run: [ATIPTA] C:\ATI-CPanel\atiptaxx.exe
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [MPSWiFiManager] C:\Program Files\Club-Internet\Agent Wifi\AgentWifi.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SCANINICIO] "C:\Program Files\Panda Software\Panda Antivirus Platinum\Inicio.exe"
O4 - HKLM\..\Run: [APVXDWIN] "C:\Program Files\Panda Software\Panda Antivirus Platinum\APVXDWIN.EXE" /s
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKLM\..\Run: [ThrustTSR] C:\Program Files\Thrustmaster\Thrustmapper\TMTMTSR.exe
O4 - HKCU\..\Run: [winview] C:\DOCUME~1\LECLIE~1\APPLIC~1\DOWNLO~1\Mess log.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [b070b975.exe] C:\Documents and Settings\LE Client de la Fnac\Local Settings\Application Data\b070b975.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - Startup: Club Internet.lnk = C:\Program Files\Club-Internet\Lanceur\lanceur.exe
O8 - Extra context menu item: &Download with &DAP - C:\PROGRA~1\DAP\dapextie.htm
O8 - Extra context menu item: &Télécharger avec NetTransport - C:\Program Files\Xi\NetTransport 2\NTAddLink.html
O8 - Extra context menu item: Download &all with DAP - C:\PROGRA~1\DAP\dapextie2.htm
O8 - Extra context menu item: Tout t&élécharger avec NetTransport - C:\Program Files\Xi\NetTransport 2\NTAddList.html
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab30149....
O16 - DPF: {04E214E5-63AF-4236-83C6-A7ADCBF9BD02} (HouseCall Control) - http://housecall60.trendmicro.com/housecall/xscan60.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab312...
O16 - DPF: {45E83043-1F6F-4D22-A5E7-0138EA171B49} (FileSharingCtrl Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Ap...
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8....
O16 - DPF: {87AF076E-D86D-4E87-ADDD-F05804E1F150} (VirginMega DownloadManager) - http://www.virginmega.fr/DownloadManager/Release/Prod/D...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst....
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab30149.ca...
O16 - DPF: {E6187999-9FEC-46A1-A20F-F4CA977D5643} (ZoneChess Object) - http://messenger.zone.msn.com/binary/Chess.cab30149.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown....
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: License Management Service ESD - Unknown owner - C:\Program Files\Fichiers communs\element5 Shared\Service\Licence Manager ESD.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Panda anti-virus service (PAVSRV) - Panda Software - C:\Program Files\Panda Software\Panda Antivirus Platinum\pavsrv51.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: StyleXPService - Unknown owner - C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe

je fais le scan kaspersky et je re

Le rapport kasp :

-------------------------------------------------------------------------------
KASPERSKY ON-LINE SCANNER - RAPPORT
mercredi 28 juin 2006 22:19:23
Système d'exploitation : Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
Version de Kaspersky On-line Scanner: 5.0.78.0
Dernière mise à jour de la base antivirus Kaspersky : 28/06/2006
Enregistrements dans la base antivirus Kaspersky : 191320
-------------------------------------------------------------------------------

Paramètres d'analyse:
Analyser avec la base antivirus suivante: standard
Analyser les archives: vrai
Analyser les bases de messagerie.: vrai

Cible de l'analyse - Dossiers:
C:\

Statistiques de l'analyse:
Total d'objets analysés :: 75390
Nombre de virus trouvés: 4
Nombre d'objets infectés: 21
Nombre d'objets suspects: 0
Durée de l'analyse: 01:28:58

Nom de l'objet infecté / Nom du virus / Dernière action
C:\Documents and Settings\LE Client de la Fnac\Application Data\Download option fork\Vcgreatskippile.exe Infecté: Trojan-Downloader.Win32.Swizzor.eu ignoré
C:\Documents and Settings\LE Client de la Fnac\Local Settings\Temporary Internet Files\Content.IE5\1J7F1HKE\cat_100[1].enc Infecté: Backdoor.Win32.Webdor.aa ignoré
C:\WINDOWS\Temp\mst12E.tmp Infecté: Trojan.Win32.Agent.vg ignoré
C:\WINDOWS\Temp\mst137.tmp Infecté: Trojan.Win32.Agent.vg ignoré
C:\WINDOWS\Temp\mst64.tmp Infecté: Trojan.Win32.Agent.vg ignoré
C:\WINDOWS\Temp\mst8A.tmp Infecté: Trojan.Win32.Agent.vg ignoré
C:\WINDOWS\Temp\mstA0.tmp Infecté: Trojan.Win32.Agent.vg ignoré
C:\WINDOWS\Temp\mstA3.tmp Infecté: Trojan.Win32.Agent.vg ignoré
C:\WINDOWS\Temp\mstA7.tmp Infecté: Trojan.Win32.Agent.vg ignoré
C:\WINDOWS\Temp\mstAC.tmp Infecté: Trojan.Win32.Agent.vg ignoré
C:\WINDOWS\Temp\mstB6.tmp Infecté: Trojan.Win32.Agent.vg ignoré
C:\WINDOWS\Temp\mstBE.tmp Infecté: Trojan.Win32.Agent.vg ignoré
C:\WINDOWS\Temp\mstC9.tmp Infecté: Trojan.Win32.Agent.vg ignoré
C:\WINDOWS\Temp\mstE7F.tmp Infecté: Trojan.Win32.Agent.vg ignoré
C:\WINDOWS\Temp\mstE8E.tmp Infecté: Trojan.Win32.Agent.vg ignoré
C:\WINDOWS\Temp\mstE9D.tmp Infecté: Trojan.Win32.Agent.vg ignoré
C:\WINDOWS\Temp\mstEA4.tmp Infecté: Trojan.Win32.Agent.vg ignoré
C:\WINDOWS\Temp\mstEB3.tmp Infecté: Trojan.Win32.Agent.vg ignoré
C:\WINDOWS\Temp\mstFD.tmp Infecté: Trojan.Win32.Agent.vg ignoré
C:\WINDOWS\Temp\winE92.tmp.exe/data0006 Infecté: Trojan-Dropper.Win32.VB.nn ignoré
C:\WINDOWS\Temp\winE92.tmp.exe NSIS: infecté - 1 ignoré

Analyse terminée.

Re,

La procédure est longue et en partie en mode sans échec,
imprime ou mets dans un fichier texte les instructions.

Télécharge:

Ccleaner
Installe le dans un répertoire dédié.
Lors de l'installation décoche: "Ajouter la Barre d'Outils Yahoo! Ccleaner"
Aide sur Ccleaner de Rub_Mic

Redémarre en mode sans échec

- Lance Hijackthis ->Do a system scan only
->Coche les lignes puis clique sur Fix checked:

O4 - HKCU\..\Run: [winview] C:\DOCUME~1\LECLIE~1\APPLIC~1\DOWNLO~1\Mess log.exe
O4 - HKCU\..\Run: [b070b975.exe] C:\Documents and Settings\LE Client de la Fnac\Local Settings\Application Data\b070b975.exe

- Assure toi d'avoir accès aux dossiers/fichiers cachés
-> Démarrer
-> Panneau de configuration
-> Options des Dossiers, onglet Affichage :
. Clique sur Afficher les dossiers cachés
. Décoche Masquer les extensions des fichiers dont le type est connu
. Décoche Masquer les fichiers protégés du système d'exploitation

- Suppime ces fichiers ou dossiers s'ils existent encore:
~1 = abreviation

C:\DOCUME~1\LECLIE~1\APPLIC~1\DOWNLO~1\Mess log.exe
C:\Documents and Settings\LE Client de la Fnac\Local Settings\Application Data\b070b975.exe

- Lance un nettoyage Ccleaner
. Clique sur l'onglet " Options " puis décoche:
" Effacer uniquement les fichiers, du dossier Temp de Windows, plus vieux que 48 heures "
. Reviens dans la section " Nettoyeur "
. Clique sur le bouton "Analyse" puis "Lancer le Néttoyage"

Redémarre normalement.
Lassé par la pub ? Créez un compte

Créer un nouveau sujet

Tom's guide dans le monde