Problème ac un virus
Forum Sécurité - Virus : Problème ac un virus
Bonjour à tous, voilà que j'allume mon ordinateur, et j'ai un programme (similaire à Mirc) qui s'ouvre tout seul...impossible de le désintallé, même avec des scans antivirus...(avast), il reste encore.
Merci pour votre aide si quelqun peut m'aider
ps: je vous donne mon log hijackThis
Logfile of HijackThis v1.99.1
Scan saved at 12:00:57, on 31/07/2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\LVCOMSX.EXE
C:\WINDOWS\vsnpstd3.exe
C:\WINDOWS\System32\winzip.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\WUAUMQR1.EXE
C:\WINDOWS\System32\ddoSygate.exe
C:\WINDOWS\System32\WMWPLAYER.EXE
C:\WINDOWS\System32\ctfmon.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\K-Lite Codec Pack\Media Player Classic\mplayerc.exe
C:\WINDOWS\System32\divxsm.exe
C:\WINDOWS\System32\zlip.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\windows.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Tibo\Bureau\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.korna.org
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer avec Club-Internet
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: phoneaccess Class - {5054F860-748D-4840-B7B4-DDDB428421AF} - C:\WINDOWS\DOWNLO~1\PHONEA~1.DLL
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Great Offers Displayer - {CE05B815-6F98-4ADD-AEB7-60BB2D4264F1} - c:\WINDOWS\bh.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [File Transfer Protocol XP] WinTemp.exe
O4 - HKLM\..\Run: [snpstd3] C:\WINDOWS\vsnpstd3.exe
O4 - HKLM\..\Run: [Windows USB 2.0 Driver] cpufanctrl.exe
O4 - HKLM\..\Run: [AdobeReaderPro] winzip.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [Microsoft Visual Saurce] cedl.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [Printer] C:\WINDOWS\System32\vmmon32.exe
O4 - HKLM\..\Run: [Microsoft Internet Explorer] lEXPLORE.EXE
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [qnjdgzku] c:\windows\system32\qnjdgzku.exe qnjdgzku
O4 - HKLM\..\Run: [Winsock2 wqr1s] WUAUMQR1.EXE
O4 - HKLM\..\Run: [Real0ne] C:\WINDOWS\System32\boys.exe
O4 - HKLM\..\Run: [Sygatedsa Personal Firewall] ddoSygate.exe
O4 - HKLM\..\Run: [REGEDIT] C:\WINDOWS\System32\zlip.exe
O4 - HKLM\..\Run: [Winsock2 driver] WMWPLAYER.EXE
O4 - HKLM\..\Run: [WinSmsFi] windows.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\RunServices: [File Transfer Protocol XP] WinTemp.exe
O4 - HKLM\..\RunServices: [Microsoft Media Manager] MedMan.exe
O4 - HKLM\..\RunServices: [Windows USB 2.0 Driver] cpufanctrl.exe
O4 - HKLM\..\RunServices: [AdobeReaderPro] winzip.exe
O4 - HKLM\..\RunServices: [Microsoft Visual Saurce] cedl.exe
O4 - HKLM\..\RunServices: [Printer] C:\WINDOWS\System32\vmmon32.exe
O4 - HKLM\..\RunServices: [Microsoft Internet Explorer] lEXPLORE.EXE
O4 - HKLM\..\RunServices: [Sygatedsa Personal Firewall] ddoSygate.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [File Transfer Protocol XP] WinTemp.exe
O4 - HKCU\..\Run: [Microsoft Media Manager] MedMan.exe
O4 - HKCU\..\Run: [Steam] "c:\program files\steam\steam.exe" -silent
O4 - HKCU\..\Run: [Internet Download Accelerator] C:\Program Files\IDA\ida.exe -autorun
O4 - HKCU\..\Run: [AIP] C:\WINDOWS\aip.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [Printer] C:\WINDOWS\System32\vmmon32.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Sygatedsa Personal Firewall] ddoSygate.exe
O4 - HKCU\..\Run: [REGEDIT] C:\WINDOWS\System32\zlip.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\RunServices: [Microsoft Media Manager] MedMan.exe
O4 - HKCU\..\RunOnce: [Winsock2 wqr1s] WUAUMQR1.EXE
O4 - HKCU\..\RunOnce: [Winsock2 driver] WMWPLAYER.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {9819CC0E-9669-4D01-9CD7-2C66DA43AC6C} - (no file)
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O16 - DPF: {09F1ADAC-76D8-4D0F-99A5-5C907DADB988} - http://fr.systemdoctor.com/downloa [...] all_fr.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by15fd.bay15.hotmail.msn.co [...] nPUpld.cab
O16 - DPF: {5054F860-748D-4840-B7B4-DDDB428421AF} (phoneaccess Class) - http://ipdata.phoneaccess.com/dial [...] access.cab
O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} - http://software-dl.real.com/19ec5f [...] 601_fr.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537 [...] scan53.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b31267.cab
O16 - DPF: {AED98630-0251-4E83-917D-43A23D66D507} (Download Helper Class) - http://activex.microgaming.com/DLH [...] Helper.cab
O16 - DPF: {E68718BB-5451-4F6F-B8B8-41B4AB672747} (IgbInstall Class) - http://www.internetgamebox.com/content/AxInst.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: Win32Sr - Unknown owner - C:\WINDOWS\win32ssr.exe (file missing)
Malware
---------------------
WUAUMQR1.EXE
WMWPLAYER.EXE
divxsm.exe
Trojan
---------------------
zlip.exe
windows.exe
Termine ces 4 processus ensuite supprime les manuellement.
et pour finir tappe msconfig dans l invite de commande, va dans l onglet programmes et décoche les si ils sont encore activer.
bon courage
tappe aussi regedit dans l invite de commande et supprime ces clés:
O4 - HKLM\..\Run: [qnjdgzku] c:\windows\system32\qnjdgzku.exe qnjdgzku
O4 - HKLM\..\Run: [Winsock2 wqr1s] WUAUMQR1.EXE
O4 - HKLM\..\Run: [REGEDIT] C:\WINDOWS\System32\zlip.exe
O4 - HKLM\..\Run: [WinSmsFi] windows.exe
O4 - HKLM\..\Run: [Microsoft Visual Saurce] cedl.exe
O4 - HKCU\..\Run: [AIP] C:\WINDOWS\aip.exe
O4 - HKCU\..\Run: [REGEDIT] C:\WINDOWS\System32\zlip.exe
O4 - HKLM\..\Run: [Winsock2 driver] WMWPLAYER.EXE
O4 - HKLM\..\Run: [WinSmsFi] windows.exe
O4 - HKLM\..\RunServices: [Microsoft Visual Saurce] cedl.exe
t'en a un sacré paquet 
je sais pas comment t a réussi a chopper tout ca.
et ton anti-virus ? t'en a un ?
heuuu, nan, j'ai pas d'antivirus je vais faire ce que tu m'as dis, et tu me conseil quoi comme antivirus ?
ps: quand je tape regedit dans executé, la page s'ouvre, mais ce referme automatiquement 
Comme antivirus gratuit je te conseil avast ! Sinon il y a kaspersky mais payant !!
ok,je vais reprendre avast
J'ai reussit à supprimer ce que tu m'as dis de supprimer, je poste mon nouveau rapport HijackThis:
Logfile of HijackThis v1.99.1
Scan saved at 12:46:31, on 31/07/2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\System32\LVCOMSX.EXE
C:\WINDOWS\vsnpstd3.exe
C:\WINDOWS\System32\winzip.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\ddoSygate.exe
C:\WINDOWS\System32\ctfmon.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\K-Lite Codec Pack\Media Player Classic\mplayerc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\explorer.exe
C:\Program Files\eMule\eMule.exe
C:\Program Files\Winamp\Winamp.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Documents and Settings\Tibo\Bureau\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.korna.org
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer avec Club-Internet
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: phoneaccess Class - {5054F860-748D-4840-B7B4-DDDB428421AF} - C:\WINDOWS\DOWNLO~1\PHONEA~1.DLL
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Great Offers Displayer - {CE05B815-6F98-4ADD-AEB7-60BB2D4264F1} - c:\WINDOWS\bh.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [File Transfer Protocol XP] WinTemp.exe
O4 - HKLM\..\Run: [snpstd3] C:\WINDOWS\vsnpstd3.exe
O4 - HKLM\..\Run: [Windows USB 2.0 Driver] cpufanctrl.exe
O4 - HKLM\..\Run: [AdobeReaderPro] winzip.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [Printer] C:\WINDOWS\System32\vmmon32.exe
O4 - HKLM\..\Run: [Microsoft Internet Explorer] lEXPLORE.EXE
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [Sygatedsa Personal Firewall] ddoSygate.exe
O4 - HKLM\..\Run: [Winsock2 driver] WMWPLAYER.EXE
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\RunServices: [File Transfer Protocol XP] WinTemp.exe
O4 - HKLM\..\RunServices: [Microsoft Media Manager] MedMan.exe
O4 - HKLM\..\RunServices: [Windows USB 2.0 Driver] cpufanctrl.exe
O4 - HKLM\..\RunServices: [AdobeReaderPro] winzip.exe
O4 - HKLM\..\RunServices: [Printer] C:\WINDOWS\System32\vmmon32.exe
O4 - HKLM\..\RunServices: [Microsoft Internet Explorer] lEXPLORE.EXE
O4 - HKLM\..\RunServices: [Sygatedsa Personal Firewall] ddoSygate.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [File Transfer Protocol XP] WinTemp.exe
O4 - HKCU\..\Run: [Microsoft Media Manager] MedMan.exe
O4 - HKCU\..\Run: [Steam] "c:\program files\steam\steam.exe" -silent
O4 - HKCU\..\Run: [Internet Download Accelerator] C:\Program Files\IDA\ida.exe -autorun
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [Printer] C:\WINDOWS\System32\vmmon32.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Sygatedsa Personal Firewall] ddoSygate.exe
O4 - HKCU\..\Run: [REGEDIT] C:\WINDOWS\System32\zlip.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\RunServices: [Microsoft Media Manager] MedMan.exe
O4 - HKCU\..\RunOnce: [Winsock2 wqr1s] WUAUMQR1.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {9819CC0E-9669-4D01-9CD7-2C66DA43AC6C} - (no file)
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O16 - DPF: {09F1ADAC-76D8-4D0F-99A5-5C907DADB988} - http://fr.systemdoctor.com/downloa [...] all_fr.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by15fd.bay15.hotmail.msn.co [...] nPUpld.cab
O16 - DPF: {5054F860-748D-4840-B7B4-DDDB428421AF} (phoneaccess Class) - http://ipdata.phoneaccess.com/dial [...] access.cab
O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} - http://software-dl.real.com/19ec5f [...] 601_fr.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537 [...] scan53.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b31267.cab
O16 - DPF: {AED98630-0251-4E83-917D-43A23D66D507} (Download Helper Class) - http://activex.microgaming.com/DLH [...] Helper.cab
O16 - DPF: {E68718BB-5451-4F6F-B8B8-41B4AB672747} (IgbInstall Class) - http://www.internetgamebox.com/content/AxInst.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: Win32Sr - Unknown owner - C:\WINDOWS\win32ssr.exe (file missing)
ps: si quelqun trouver d'autre trojan, ou problème, merci de m'aider :-)
Bonjour,
Tu est encore multi-infecté !!
Dans un premier temps il te faut un anti-virus et un pare-feu sinon tu vas toujours te faire réinfecter !!
- 1 (et 1 seul) pare-feu bien paramétré, gratuit
par exemple ZoneAlarm
http://www.zonelabs.com/
et son tutorial
http://speedweb1.free.fr/frames2.php?page=tuto1
- 1 (et 1 seul) antivirus résident bien paramétré et mis à jour régulièrement (quotidiennement s'il le faut) avec un scan complet régulier (journalier s'il le faut), gratuit
par exemple AVAST Home Edition FREE
http://www.avast.com/eng/down_home.html
avec inscription obligatoire
http://www.avast.com/i_kat_207.php?lang=ENG
et son tutorial
http://www.pcentraide.com/index.php?showtopic=120
Ensuite on va commencer la désinfection qui commencera avec Ewido et après on finira le travaille à la main :
Télécharge la version d'évaluation d'Ewido:
http://www.ewido.net/en/download/
Installe le sur ton bureau
Démarre Ewido avec l'icône qui se trouve sur ton Bureau.
Clique sur Update Now,
attend la fin de cette mise à jour,
puis ferme le programme.
Redémarre en mode Sans Échec
(au démarrage, tapote immédiatement la touche F8), puis tu verras un écran avec choix de démarrages :
choisis Mode sans échecavec les flèches du clavier, puis valide avec Entrée.
Choisis ton compte usuel (et non Administrateur).
Relance Ewido et clique sur Scanner
Puis sur l'onglets Settings, pour How to Act sélèctionne Quarantine.
Reviens a l'onglet Scan cliques Complete system Scan.
Le scan démarre.
A la fin cliquer sur Apply all actions
Puis sur Save report et pour finir Save report asposte le rapport dans ta réponse et poste un rapport HijackThis[/b].
Avec tout ce que t'as , peut etre qu'un formatage sera plus rapide :-?
Il n'y en aucun cas besoin de formater maintenant !!!
Voilà mon rapport HijackThis + ewido en mode sans echec
Logfile of HijackThis v1.99.1
Scan saved at 17:07:05, on 31/07/2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\LVCOMSX.EXE
C:\WINDOWS\vsnpstd3.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\WINDOWS\System32\ctfmon.exe
C:\program files\steam\steam.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Winamp\Winamp.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Documents and Settings\Tibo\Bureau\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.korna.org
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer avec Club-Internet
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [File Transfer Protocol XP] WinTemp.exe
O4 - HKLM\..\Run: [snpstd3] C:\WINDOWS\vsnpstd3.exe
O4 - HKLM\..\Run: [Windows USB 2.0 Driver] cpufanctrl.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [Microsoft Internet Explorer] lEXPLORE.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [AdobeReaderPro] winzip.exe
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKLM\..\RunServices: [File Transfer Protocol XP] WinTemp.exe
O4 - HKLM\..\RunServices: [Microsoft Media Manager] MedMan.exe
O4 - HKLM\..\RunServices: [Windows USB 2.0 Driver] cpufanctrl.exe
O4 - HKLM\..\RunServices: [Microsoft Internet Explorer] lEXPLORE.EXE
O4 - HKLM\..\RunServices: [AdobeReaderPro] winzip.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [File Transfer Protocol XP] WinTemp.exe
O4 - HKCU\..\Run: [Microsoft Media Manager] MedMan.exe
O4 - HKCU\..\Run: [Steam] "c:\program files\steam\steam.exe" -silent
O4 - HKCU\..\Run: [Internet Download Accelerator] C:\Program Files\IDA\ida.exe -autorun
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [REGEDIT] C:\WINDOWS\System32\zlip.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\RunServices: [Microsoft Media Manager] MedMan.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {9819CC0E-9669-4D01-9CD7-2C66DA43AC6C} - (no file)
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O16 - DPF: {09F1ADAC-76D8-4D0F-99A5-5C907DADB988} - http://fr.systemdoctor.com/downloa [...] all_fr.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by15fd.bay15.hotmail.msn.co [...] nPUpld.cab
O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} - http://software-dl.real.com/19ec5f [...] 601_fr.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537 [...] scan53.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b31267.cab
O16 - DPF: {AED98630-0251-4E83-917D-43A23D66D507} (Download Helper Class) - http://activex.microgaming.com/DLH [...] Helper.cab
O16 - DPF: {E68718BB-5451-4F6F-B8B8-41B4AB672747} (IgbInstall Class) - http://www.internetgamebox.com/content/AxInst.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: Win32Sr - Unknown owner - C:\WINDOWS\win32ssr.exe (file missing)
---------------------------------------------------------
ewido anti-spyware - Scan Report
---------------------------------------------------------
+ Created at: 16:55:03 31/07/2006
+ Scan result:
HKLM\SOFTWARE\Classes\CLSID\{5054F860-748D-4840-B7B4-DDDB428421AF} -> Adware.Generic : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{5054F860-748D-4840-B7B4-DDDB428421AF} -> Adware.Generic : Cleaned with backup (quarantined).
C:\Program Files\Alcohol Soft\Alcohol 120% Toolbar\a120_tb.dll -> Adware.Softomate : Cleaned with backup (quarantined).
C:\Program Files\SystemDoctor 2006 Free -> Adware.SystemDoctor2006 : Cleaned with backup (quarantined).
C:\Program Files\SystemDoctor 2006 Free\lock.dat -> Adware.SystemDoctor2006 : Cleaned with backup (quarantined).
C:\WINDOWS\system32\xt34m5 -> Backdoor.Flood.bc : Cleaned with backup (quarantined).
C:\WINDOWS\system32\xt34m7 -> Backdoor.Flood.bc : Cleaned with backup (quarantined).
C:\WINDOWS\system32\xt34m9 -> Backdoor.Tagort.14 : Cleaned with backup (quarantined).
:mozilla.130:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned with backup (quarantined).
:mozilla.131:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@247realmedia[1].txt -> TrackingCookie.247realmedia : Cleaned with backup (quarantined).
:mozilla.245:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.255:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.257:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.258:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.259:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.260:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.261:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.262:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.263:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.264:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.265:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.266:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.267:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.268:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.269:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.593:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.603:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.604:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.629:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.675:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.695:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@2o7[2].txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@aolfr.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@microsofteup.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@msninvite.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@msnuk.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@partygaming.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@redcats.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@sfr.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Local Settings\Temp\Cookies\tibo@2o7[2].txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.884:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Adjuggler : Cleaned with backup (quarantined).
:mozilla.885:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Adjuggler : Cleaned with backup (quarantined).
:mozilla.126:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Adtech : Cleaned with backup (quarantined).
:mozilla.127:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Adtech : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@adtech[2].txt -> TrackingCookie.Adtech : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Local Settings\Temp\Cookies\tibo@adtech[1].txt -> TrackingCookie.Adtech : Cleaned with backup (quarantined).
:mozilla.110:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup (quarantined).
:mozilla.111:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Local Settings\Temp\Cookies\tibo@advertising[1].txt -> TrackingCookie.Advertising : Cleaned with backup (quarantined).
:mozilla.153:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Local Settings\Temp\Cookies\tibo@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned with backup (quarantined).
:mozilla.92:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Bluestreak : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@bluestreak[1].txt -> TrackingCookie.Bluestreak : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@iv2.bluestreak[1].txt -> TrackingCookie.Bluestreak : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Local Settings\Temp\Cookies\tibo@bluestreak[1].txt -> TrackingCookie.Bluestreak : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@burstnet[2].txt -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@www.burstnet[1].txt -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@casalemedia[1].txt -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Local Settings\Temp\Cookies\tibo@casalemedia[2].txt -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@promo.casinotropez[1].txt -> TrackingCookie.Casinotropez : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Local Settings\Temp\Cookies\tibo@promo.casinotropez[1].txt -> TrackingCookie.Casinotropez : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@clickbank[2].txt -> TrackingCookie.Clickbank : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@cz4.clickzs[2].txt -> TrackingCookie.Clickzs : Cleaned with backup (quarantined).
:mozilla.397:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Com : Cleaned with backup (quarantined).
:mozilla.398:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Com : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@com[2].txt -> TrackingCookie.Com : Cleaned with backup (quarantined).
:mozilla.859:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Comclick : Cleaned with backup (quarantined).
:mozilla.860:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Comclick : Cleaned with backup (quarantined).
:mozilla.861:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Comclick : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Local Settings\Temp\Cookies\tibo@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : Cleaned with backup (quarantined).
:mozilla.106:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@doubleclick[1].txt -> TrackingCookie.Doubleclick : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Local Settings\Temp\Cookies\tibo@doubleclick[1].txt -> TrackingCookie.Doubleclick : Cleaned with backup (quarantined).
:mozilla.107:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Estat : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@estat[2].txt -> TrackingCookie.Estat : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Local Settings\Temp\Cookies\tibo@estat[1].txt -> TrackingCookie.Estat : Cleaned with backup (quarantined).
:mozilla.324:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@adopt.euroclick[2].txt -> TrackingCookie.Euroclick : Cleaned with backup (quarantined).
:mozilla.20:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup (quarantined).
:mozilla.21:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup (quarantined).
:mozilla.22:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup (quarantined).
:mozilla.23:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup (quarantined).
:mozilla.353:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup (quarantined).
:mozilla.834:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup (quarantined).
:mozilla.835:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup (quarantined).
:mozilla.836:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup (quarantined).
:mozilla.837:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup (quarantined).
:mozilla.838:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@as-eu.falkag[2].txt -> TrackingCookie.Falkag : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@as1.falkag[1].txt -> TrackingCookie.Falkag : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@sel.as-us.falkag[1].txt -> TrackingCookie.Falkag : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Local Settings\Temp\Cookies\tibo@as1.falkag[2].txt -> TrackingCookie.Falkag : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@fastclick[1].txt -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Local Settings\Temp\Cookies\tibo@fastclick[2].txt -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
:mozilla.921:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup (quarantined).
:mozilla.922:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup (quarantined).
:mozilla.923:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup (quarantined).
:mozilla.295:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup (quarantined).
:mozilla.296:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Local Settings\Temp\Cookies\tibo@ehg-neuftelecom.hitbox[2].txt -> TrackingCookie.Hitbox : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Local Settings\Temp\Cookies\tibo@ehg-warnerbrothers.hitbox[2].txt -> TrackingCookie.Hitbox : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Local Settings\Temp\Cookies\tibo@hitbox[1].txt -> TrackingCookie.Hitbox : Cleaned with backup (quarantined).
:mozilla.519:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Hotlog : Cleaned with backup (quarantined).
:mozilla.544:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Ivwbox : Cleaned with backup (quarantined).
:mozilla.887:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned with backup (quarantined).
:mozilla.888:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned with backup (quarantined).
:mozilla.889:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@server.iad.liveperson[2].txt -> TrackingCookie.Liveperson : Cleaned with backup (quarantined).
:mozilla.128:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@mediaplex[1].txt -> TrackingCookie.Mediaplex : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Local Settings\Temp\Cookies\tibo@mediaplex[1].txt -> TrackingCookie.Mediaplex : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@stat.onestat[1].txt -> TrackingCookie.Onestat : Cleaned with backup (quarantined).
:mozilla.328:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup (quarantined).
:mozilla.329:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup (quarantined).
:mozilla.330:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup (quarantined).
:mozilla.331:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@ads.pointroll[1].txt -> TrackingCookie.Pointroll : Cleaned with backup (quarantined).
:mozilla.660:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned with backup (quarantined).
:mozilla.661:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@stats1.reliablestats[2].txt -> TrackingCookie.Reliablestats : Cleaned with backup (quarantined).
:mozilla.679:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Revenue : Cleaned with backup (quarantined).
:mozilla.210:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup (quarantined).
:mozilla.211:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup (quarantined).
:mozilla.212:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup (quarantined).
:mozilla.213:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup (quarantined).
:mozilla.214:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup (quarantined).
:mozilla.215:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@serving-sys[1].txt -> TrackingCookie.Serving-sys : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Local Settings\Temp\Cookies\tibo@serving-sys[2].txt -> TrackingCookie.Serving-sys : Cleaned with backup (quarantined).
:mozilla.404:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.405:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.406:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.407:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.408:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.409:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.410:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.411:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.412:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.413:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.414:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.415:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.416:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.417:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@cs.sexcounter[2].txt -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.871:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Sitestat : Cleaned with backup (quarantined).
:mozilla.872:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Sitestat : Cleaned with backup (quarantined).
:mozilla.873:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Sitestat : Cleaned with backup (quarantined).
:mozilla.874:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Sitestat : Cleaned with backup (quarantined).
:mozilla.100:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned with backup (quarantined).
:mozilla.101:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned with backup (quarantined).
:mozilla.103:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned with backup (quarantined).
:mozilla.96:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned with backup (quarantined).
:mozilla.97:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@smartadserver[1].txt -> TrackingCookie.Smartadserver : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Local Settings\Temp\Cookies\tibo@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Cleaned with backup (quarantined).
:mozilla.325:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@adopt.specificclick[2].txt -> TrackingCookie.Specificclick : Cleaned with backup (quarantined).
:mozilla.707:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Spylog : Cleaned with backup (quarantined).
:mozilla.172:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup (quarantined).
:mozilla.173:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup (quarantined).
:mozilla.174:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup (quarantined).
:mozilla.175:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup (quarantined).
:mozilla.176:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@statcounter[2].txt -> TrackingCookie.Statcounter : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Local Settings\Temp\Cookies\tibo@statcounter[1].txt -> TrackingCookie.Statcounter : Cleaned with backup (quarantined).
:mozilla.718:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup (quarantined).
:mozilla.719:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@tacoda[1].txt -> TrackingCookie.Tacoda : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@login.tracking101[1].txt -> TrackingCookie.Tracking101 : Cleaned with backup (quarantined).
:mozilla.51:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.52:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.53:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.54:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.55:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.56:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.57:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.58:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.59:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.61:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.62:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Local Settings\Temp\Cookies\tibo@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.732:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup (quarantined).
:mozilla.733:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@trafficmp[1].txt -> TrackingCookie.Trafficmp : Cleaned with backup (quarantined).
:mozilla.734:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@tribalfusion[2].txt -> TrackingCookie.Tribalfusion : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Local Settings\Temp\Cookies\tibo@tribalfusion[2].txt -> TrackingCookie.Tribalfusion : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Local Settings\Temp\Cookies\tibo@valueclick[2].txt -> TrackingCookie.Valueclick : Cleaned with backup (quarantined).
:mozilla.102:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Weborama : Cleaned with backup (quarantined).
:mozilla.95:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Weborama : Cleaned with backup (quarantined).
:mozilla.98:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Weborama : Cleaned with backup (quarantined).
:mozilla.99:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Weborama : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@weborama[1].txt -> TrackingCookie.Weborama : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Local Settings\Temp\Cookies\tibo@weborama[1].txt -> TrackingCookie.Weborama : Cleaned with backup (quarantined).
:mozilla.401:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Xhit : Cleaned with backup (quarantined).
:mozilla.177:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup (quarantined).
:mozilla.178:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup (quarantined).
:mozilla.179:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup (quarantined).
:mozilla.180:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup (quarantined).
:mozilla.181:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup (quarantined).
:mozilla.182:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup (quarantined).
:mozilla.183:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup (quarantined).
:mozilla.184:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup (quarantined).
:mozilla.185:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Local Settings\Temp\Cookies\tibo@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Cleaned with backup (quarantined).
:mozilla.792:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup (quarantined).
:mozilla.793:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup (quarantined).
:mozilla.794:C:\Documents and Settings\Tibo\Application Data\Mozilla\Firefox\Profiles\q5lp7xpb.default\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup (quarantined).
C:\Documents and Settings\Tibo\Cookies\tibo@zedo[2].txt -> TrackingCookie.Zedo : Cleaned with backup (quarantined).
C:\WINDOWS\aip.exe -> Trojan.Delf.px : Cleaned with backup (quarantined).
C:\105516\Accès.exe -> Trojan.Dialer.fu : Cleaned with backup (quarantined).
C:\WINDOWS\system32\xt34m6 -> Worm.Randon.ar : Cleaned with backup (quarantined).
C:\WINDOWS\system32\wmwplayer.exe -> Worm.SpyBot.63 : Cleaned with backup (quarantined).
::Report end
Voilà
Il y a 627 utilisateurs connus et inconnus. Pour voir la liste des connectés connus, cliquez ici.
