Virus Win32 : Agent Re impossible à supprimer.
Forum Sécurité - Virus : Virus Win32 : Agent Re impossible à supprimer.
Bonjour à tous et à toutes :-) Donc voila j'ai le Virus Win32 : Agent Re sur mon ordinateur et impossible de le supprimer, j'ai lu plusieurs postes à propos de ce virus et je poste ci-dessous mon rapport Hijackthis :
Logfile of HijackThis v1.99.1
Scan saved at 19:40:31, on 16/05/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\system32\pctspk.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\PROGRA~1\MESSAG~1\StartMessager.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\HP\HP Software Update\HPWuSchd.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe
C:\Program Files\Ahead\InCD\InCD.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\rundll32.exe
C:\program files\mailskinner\mailskinner.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\valve\steam\steam.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\wkcalrem.exe
C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.exe
C:\Program Files\Shareaza\Shareaza.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\DOCUME~1\ANTHONY\LOCALS~1\Temp\Rar$EX00.141\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.mcgcqdvpryuzlynkg.com/k [...] C9INK5.jsp
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/i [...] .yahoo.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {008DB894-99ED-445D-8547-0E7C9808898D} - (no file)
O2 - BHO: MyWebSearch Search Assistant BHO - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL (file missing)
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\ycomp5_6_2_0.dll
O2 - BHO: myBar BHO - {0494D0D1-F8E0-41ad-92A3-14154ECE70AC} - C:\Program Files\MyWay\myBar\1.bin\MYBAR.DLL (file missing)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: mwsBar BHO - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\1.bin\MWSBAR.DLL
O2 - BHO: SWEETIE - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
O2 - BHO: URLLink - {4A2AACF3-ADF6-11D5-98A9-00E018981B9E} - C:\Program Files\NewDotNet\newdotnet7_22.dll
O2 - BHO: Toolbar Wanadoo - {4E7BD74F-2B8D-469E-8FB0-B921F5DBF922} - C:\PROGRA~1\WANADO~2\WANADO~1.DLL
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll
O3 - Toolbar: My &Search Bar - {0494D0D9-F8E0-41ad-92A3-14154ECE70AC} - C:\Program Files\MyWay\myBar\1.bin\MYBAR.DLL (file missing)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\ycomp5_6_2_0.dll
O3 - Toolbar: Metabar - {C94158E1-6151-4442-ABE6-FD53D6534CCB} - C:\Program Files\Metabar\metamoteur.dll
O3 - Toolbar: Toolbar Wanadoo - {4E7BD74F-2B8D-469E-8FB0-B921F5DBF922} - C:\PROGRA~1\WANADO~2\WANADO~1.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [WorksFUD] C:\Program Files\Microsoft Works\wkfud.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe
O4 - HKLM\..\Run: [Microsoft Works Portfolio] C:\Program Files\Microsoft Works\WksSb.exe /AllUsers
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [MessagerStarter Wanadoo] C:\PROGRA~1\MESSAG~1\StartMessager.exe Messager Wanadoo
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd.exe"
O4 - HKLM\..\Run: [CrocPopup+ ] C:\PROGRA~1\CROCPO~1\CROCPO~1.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [New.net Startup] rundll32 C:\PROGRA~1\NEWDOT~1\NEWDOT~2.DLL,ClientStartup -s
O4 - HKLM\..\Run: [lqdwdih] C:\WINDOWS\lqdwdih.exe
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
O4 - HKLM\..\Run: [sdgbxoywpt] c:\windows\system32\sdgbxoywpt.exe sdgbxoywpt
O4 - HKLM\..\Run: [P2P Networking] C:\WINDOWS\System32\P2P Networking\P2P Networking.exe /AUTOSTART
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Instant Access] rundll32.exe EGACCESS4_1060.dll,InstantAccess
O4 - HKCU\..\Run: [MailSkinner] c:\program files\mailskinner\mailskinner.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [Steam] "c:\valve\steam\steam.exe" -silent
O4 - HKCU\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe
O4 - Startup: Stardock ObjectDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
O4 - Startup: Y'z ToolBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: MyWebSearch Email Plugin.lnk = C:\Program Files\MyWebSearch\bar\1.bin\MWSOEMON.EXE
O4 - Global Startup: Rappels du Calendrier Microsoft Works.lnk = ?
O8 - Extra context menu item: &Search - http://bar.mywebsearch.com/menusea [...] xdm414YYFR
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Rechercher avec Voila - file://C:\Program Files\WANADOO_TOOLBAR\Cache\SelectedContextSearch.htm
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\PROGRA~1\Yahoo!\Common\yhexbmesfr.dll
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\PROGRA~1\Yahoo!\Common\yhexbmesfr.dll
O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {04CCFF26-7D52-4E42-BF6A-F8ECE0896EB7} - http://scripts.downloadv3.com/bina [...] 071_XP.cab
O16 - DPF: {0594AF7E-573B-40DF-8165-E47AB2EAEFE8} - http://akamai.downloadv3.com/binar [...] _FR_XP.cab
O16 - DPF: {0D1011B3-89C8-4F8E-8693-BB970E2E81E0} - http://scripts.downloadv3.com/bina [...] IV4_XP.cab
O16 - DPF: {1604DF98-D1A5-44FE-844A-98D6FD0518D0} - http://akamai.downloadv3.com/binar [...] 060_XP.cab
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.imgfarm.com/images/nocac [...] .0.8-2.cab
O16 - DPF: {1D6711C8-7154-40BB-8380-3DEA45B69CBF} (Web P2P Installer) -
O16 - DPF: {2A3DFC59-8A87-49A1-85D1-42903410911F} - http://scripts.dlv4.com/binaries/e [...] 058_XP.cab
O16 - DPF: {3616F4B5-F6AD-4E67-966A-C218673648A0} - http://scripts.downloadv3.com/bina [...] IV4_XP.cab
O16 - DPF: {3DAD912E-D2B9-4323-B7C9-7F2C5CC0C57B} - http://scripts.downloadv3.com/bina [...] 070_XP.cab
O16 - DPF: {469C7080-8EC8-43A6-AD97-45848113743C} - http://akamai.downloadv3.com/binar [...] _FR_XP.cab
O16 - DPF: {50AD557E-3426-41FD-AFDD-2AF39BB1C387} - http://akamai.downloadv3.com/binar [...] _FR_XP.cab
O16 - DPF: {62475759-9E84-458E-A1AB-5D2C442ADFDE} - http://a1540.g.akamai.net/7/1540/5 [...] taller.exe
O16 - DPF: {7504F0D5-644A-4103-9D02-95488B6CB9A1} - http://scripts.downloadv3.com/bina [...] IV4_XP.cab
O16 - DPF: {78F584DF-BBF5-4296-839C-31DE60914DBC} - http://scripts.downloadv3.com/bina [...] IV4_XP.cab
O16 - DPF: {87C1805D-C5AE-4455-AB39-E245BB516136} - http://scripts.dlv4.com/binaries/e [...] 059_XP.cab
O16 - DPF: {8D8BAF56-B581-4B90-A549-C4AC6B03F1BB} - http://scripts.downloadv3.com/bina [...] 074_XP.cab
O16 - DPF: {95460ABD-946A-46FF-9F56-268718323EEE} - http://scripts.downloadv3.com/bina [...] 068_XP.cab
O16 - DPF: {AF7410C1-FBA3-415E-800A-4110CED40536} - http://scripts.dlv4.com/binaries/e [...] 060_XP.cab
O16 - DPF: {B2B0AEDF-7CDF-4792-BB67-7654AD1E1B13} - http://scripts.downloadv3.com/bina [...] _FR_XP.cab
O16 - DPF: {BA749BC1-143E-430D-B1DA-1D2AF67A3658} - http://scripts.downloadv3.com/bina [...] 069_XP.cab
O16 - DPF: {C2481ED1-9896-4D49-AE90-69858DFDE446} - http://scripts.downloadv3.com/bina [...] 073_XP.cab
O16 - DPF: {C6760A07-A574-4705-B113-7856315922C3} - http://akamai.downloadv3.com/binar [...] _FR_XP.cab
O16 - DPF: {EC4AFBF3-4540-4306-AF10-4CAC509EA16B} - http://scripts.downloadv3.com/bina [...] IV4_XP.cab
O18 - Protocol: bw+0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: PCTEL Speaker Phone (Pctspk) - PCtel, Inc. - C:\WINDOWS\system32\pctspk.exe
Voila le Raport est finit :-) Que faire ? :-(
Merci d'avance
Cordialement
Alors... Eh ben !! Ton ordinateur est un véritable nid !
Efface ça :
C:\program files\mailskinner\mailskinner.exe
(car nocif!)
O2 - BHO: (no name) - {008DB894-99ED-445D-8547-0E7C9808898D} - (no file)
(car inutile)
O2 - BHO: MyWebSearch Search Assistant BHO - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL (file missing)
(car inutile)
O2 - BHO: myBar BHO - {0494D0D1-F8E0-41ad-92A3-14154ECE70AC} - C:\Program Files\MyWay\myBar\1.bin\MYBAR.DLL (file missing)
(car inutile)
O2 - BHO: mwsBar BHO - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\1.bin\MWSBAR.DLL
(car vraiment nocif !!)
O2 - BHO: URLLink - {4A2AACF3-ADF6-11D5-98A9-00E018981B9E} - C:\Program Files\NewDotNet\newdotnet7_22.dll
(car vraiment nocif !!)
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
(car vraiment nocif !!)
O3 - Toolbar: My &Search Bar - {0494D0D9-F8E0-41ad-92A3-14154ECE70AC} - C:\Program Files\MyWay\myBar\1.bin\MYBAR.DLL (file missing)
(car inutile)
O4 - HKLM\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe
(car vraiment nocif !!)
O4 - HKLM\..\Run: [New.net Startup] rundll32 C:\PROGRA~1\NEWDOT~1\NEWDOT~2.DLL,ClientStartup -s
(car vraiment nocif !!)
O4 - Global Startup: MyWebSearch Email Plugin.lnk = C:\Program Files\MyWebSearch\bar\1.bin\MWSOEMON.EXE
O8 - Extra context menu item: &Search - http://bar.mywebsearch.com/menusea [...] xdm414YYFR
O8 - Extra context menu item: Rechercher avec Voila - file://C:\Program Files\WANADOO_TOOLBAR\Cache\SelectedContextSearch.htm
O10 - Hijacked Internet access by New.Net
O16 - DPF: {04CCFF26-7D52-4E42-BF6A-F8ECE0896EB7} - http://scripts.downloadv3.com/bina [...] 071_XP.cab
O16 - DPF: {0594AF7E-573B-40DF-8165-E47AB2EAEFE8} - http://akamai.downloadv3.com/binar [...] _FR_XP.cab
O16 - DPF: {0D1011B3-89C8-4F8E-8693-BB970E2E81E0} - http://scripts.downloadv3.com/bina [...] IV4_XP.cab
O16 - DPF: {1604DF98-D1A5-44FE-844A-98D6FD0518D0} - http://akamai.downloadv3.com/binar [...] 060_XP.cab
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.imgfarm.com/images/nocac [...] FWBInitial Setup1.0.0.8-2.cab
O16 - DPF: {1D6711C8-7154-40BB-8380-3DEA45B69CBF} (Web P2P Installer) -
O16 - DPF: {2A3DFC59-8A87-49A1-85D1-42903410911F} - http://scripts.dlv4.com/binaries/e [...] 058_XP.cab
O16 - DPF: {3616F4B5-F6AD-4E67-966A-C218673648A0} - http://scripts.downloadv3.com/bina [...] IV4_XP.cab
O16 - DPF: {3DAD912E-D2B9-4323-B7C9-7F2C5CC0C57B} - http://scripts.downloadv3.com/bina [...] 070_XP.cab
O16 - DPF: {469C7080-8EC8-43A6-AD97-45848113743C} - http://akamai.downloadv3.com/binar [...] _FR_XP.cab
O16 - DPF: {50AD557E-3426-41FD-AFDD-2AF39BB1C387} - http://akamai.downloadv3.com/binar [...] _FR_XP.cab
O16 - DPF: {7504F0D5-644A-4103-9D02-95488B6CB9A1} - http://scripts.downloadv3.com/bina [...] IV4_XP.cab
O16 - DPF: {78F584DF-BBF5-4296-839C-31DE60914DBC} - http://scripts.downloadv3.com/bina [...] IV4_XP.cab
Et d'autres encore. Donc ce que tu as à faire au plus vite avant de ne plus pouvoir démarrer ta machine c'est :
- Débranche ton PC d'internet.
- Télécharge. les logiciels de mon site catégorie "sécurité".
- Fait des analyses et des désinfections avec ces derniers.
- Re post un log Hijack This. Si il faut, envoie-moi un MP.
Bonne éradication !! ;-)
Salut à toi et merci de ta réponse ! Ce que je trouve bizarre c'est que mon pc bug pas ! :-? Je vais faire ce que tu me conseilles ;-) merci encore
Merci de ne pas analyser les logs sur Hijackthis.de, pas fiable du tout.
On commence par:
Télécharge:
Ccleaner
Installe le dans un répertoire dédié.
Ewido
Installe le puis mets le à jour.
LSPfix
1/ Redémarre en mode sans échec
/!\ Tu n'as pas accès à Internet dans ce mode, note bien les instructions /!\
Desinstalle si possible
NewdotNet (New.Net)
2/ Lance Hijackthis ->Do a system scan only
->Coche les lignes puis Fix checked
O2 - BHO: URLLink - {4A2AACF3-ADF6-11D5-98A9-00E018981B9E} - C:\Program Files\NewDotNet\newdotnet7_22.dll
O4 - HKLM\..\Run: [New.net Startup] rundll32 C:\PROGRA~1\NEWDOT~1\NEWDOT~2.DLL,ClientStartup -s
O18 - Protocol: bw+0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
3/ Lance LSPfix
Coche la case "I know what I'm doing"
Sélectionne la ou les dll suivantes
UNIQUEMENT CELLES QUI SONT INDIQUÉES CI-DESSOUS, ne touche pas aux autres !
Newdotnet*_**.dll
* = numero
Glisse les du panneau de gauche [b]"Keep" au panneau "Remove".
Clique sur "Finish".
(Si elles sont déjà dans le panneau "Remove" alors clique directement sur le bouton "Finish".)
Assure toi d'avoir accès au dossier/fichiers caches
->Panneau de configuration
->Options dossiers
->Coche Afficher les dossiers cachés
Decoche Masquer les extensions...
Decoche Masquer les fichiers protégés...
4/ Suppime ces fichiers/dossiers si existe:
C:\Program Files\Newdotnet
5/ Lance un nettoyage Ccleaner
6/ Lance un scan complet avec Ewido
Sauvegarde puis colle le rapport
Redémarre normalement
7/ Poste un nouveau rapport Hijackthis
Salut :-) merci pour ta réponse, j'ai donc fais tout ce que tu m'as dis de faire.Je post les rapports Ewindo et HikackThis:
(désolé le rapport est très long :-?
---------------------------------------------------------
ewido anti-malware - Rapport de scan
---------------------------------------------------------
+ Créé le: 18:54:30, 19/05/2006
+ Somme de contrôle: FFAA29F
+ Résultats du scan:
HKLM\SOFTWARE\Altnet -> Adware.Altnet : Erreur durant le nettoyage
HKLM\SOFTWARE\Altnet\Dashboard -> Adware.Altnet : Erreur durant le nettoyage
HKLM\SOFTWARE\Altnet\Dashboard\Messages -> Adware.Altnet : Erreur durant le nettoyage
HKLM\SOFTWARE\Altnet\Dashboard\Settings -> Adware.Altnet : Erreur durant le nettoyage
HKLM\SOFTWARE\PerfectNav -> Adware.KeenValue : Nettoyer et sauvegarder
[468] C:\Program Files\NewDotNet\newdotnet7_22.dll -> Adware.NewDotNet : Nettoyer et sauvegarder
:mozilla.6:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.7:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.8:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.9:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.10:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
:mozilla.11:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
:mozilla.12:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
:mozilla.20:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
:mozilla.38:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Yadro : Nettoyer et sauvegarder
:mozilla.44:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder
:mozilla.55:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Adserver : Nettoyer et sauvegarder
:mozilla.56:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Adserver : Nettoyer et sauvegarder
:mozilla.57:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Adserver : Nettoyer et sauvegarder
:mozilla.58:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Adserver : Nettoyer et sauvegarder
:mozilla.59:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Adserver : Nettoyer et sauvegarder
:mozilla.60:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Adserver : Nettoyer et sauvegarder
:mozilla.102:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Goldenpalace : Nettoyer et sauvegarder
:mozilla.108:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Casinotropez : Nettoyer et sauvegarder
:mozilla.116:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Targetnet : Nettoyer et sauvegarder
:mozilla.117:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Tribalfusion : Nettoyer et sauvegarder
:mozilla.139:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Revenue : Nettoyer et sauvegarder
:mozilla.146:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyer et sauvegarder
:mozilla.156:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Targetnet : Nettoyer et sauvegarder
:mozilla.159:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyer et sauvegarder
:mozilla.160:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyer et sauvegarder
:mozilla.161:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Liveperson : Nettoyer et sauvegarder
:mozilla.179:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Valueclick : Nettoyer et sauvegarder
:mozilla.184:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder
:mozilla.185:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder
:mozilla.186:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder
:mozilla.228:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Casinotropez : Nettoyer et sauvegarder
:mozilla.229:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Casinotropez : Nettoyer et sauvegarder
:mozilla.230:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Casinotropez : Nettoyer et sauvegarder
:mozilla.232:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Casinotropez : Nettoyer et sauvegarder
:mozilla.233:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Overture : Nettoyer et sauvegarder
:mozilla.234:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Overture : Nettoyer et sauvegarder
:mozilla.235:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyer et sauvegarder
:mozilla.244:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyer et sauvegarder
:mozilla.246:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyer et sauvegarder
:mozilla.282:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Hotlog : Nettoyer et sauvegarder
:mozilla.299:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyer et sauvegarder
:mozilla.300:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder
:mozilla.301:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder
:mozilla.302:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder
:mozilla.305:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Estat : Nettoyer et sauvegarder
:mozilla.306:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Lop : Nettoyer et sauvegarder
:mozilla.317:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder
:mozilla.332:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyer et sauvegarder
:mozilla.333:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Euniverseads : Nettoyer et sauvegarder
:mozilla.334:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Euniverseads : Nettoyer et sauvegarder
:mozilla.342:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Com : Nettoyer et sauvegarder
:mozilla.349:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Com : Nettoyer et sauvegarder
:mozilla.350:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyer et sauvegarder
:mozilla.351:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder
:mozilla.354:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Dbbsrv : Nettoyer et sauvegarder
:mozilla.365:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder
:mozilla.366:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Casinotropez : Nettoyer et sauvegarder
:mozilla.367:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Casinotropez : Nettoyer et sauvegarder
:mozilla.368:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Casinotropez : Nettoyer et sauvegarder
:mozilla.369:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Casinotropez : Nettoyer et sauvegarder
:mozilla.375:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Burstnet : Nettoyer et sauvegarder
:mozilla.378:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
:mozilla.381:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyer et sauvegarder
:mozilla.387:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Centrport : Nettoyer et sauvegarder
:mozilla.395:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyer et sauvegarder
:mozilla.400:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
:mozilla.404:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Bfast : Nettoyer et sauvegarder
:mozilla.406:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyer et sauvegarder
:mozilla.409:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder
:mozilla.434:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder
:mozilla.435:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder
:mozilla.436:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder
:mozilla.437:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder
:mozilla.439:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Ad-logics : Nettoyer et sauvegarder
:mozilla.441:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder
:mozilla.442:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder
:mozilla.446:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyer et sauvegarder
:mozilla.460:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyer et sauvegarder
:mozilla.471:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.472:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.473:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.474:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.475:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.480:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder
:mozilla.481:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder
:mozilla.488:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder
:mozilla.491:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder
:mozilla.496:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder
:mozilla.497:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Liveperson : Nettoyer et sauvegarder
:mozilla.499:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.Liveperson : Nettoyer et sauvegarder
:mozilla.500:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.502:C:\Documents and Settings\ALEXANDRA\Application Data\Mozilla\Firefox\Profiles\vbry8wh0.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@112.2o7[2].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@247realmedia[2].txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@2o7[1].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@ad-logics[1].txt -> TrackingCookie.Ad-logics : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@adopt.euroclick[1].txt -> TrackingCookie.Euroclick : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@ads.realcastmedia[2].txt -> TrackingCookie.Realcastmedia : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@ads08.bpath[1].txt -> TrackingCookie.Bpath : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@adtech[2].txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@advertising[1].txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@as-us.falkag[2].txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@as1.falkag[1].txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@banner.clubdicecasino[2].txt -> TrackingCookie.Clubdicecasino : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@banner.goldenpalace[2].txt -> TrackingCookie.Goldenpalace : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@bfast[2].txt -> TrackingCookie.Bfast : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@burstnet[1].txt -> TrackingCookie.Burstnet : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@casalemedia[1].txt -> TrackingCookie.Casalemedia : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@casinopays[1].txt -> TrackingCookie.Casinopays : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@casinotropez[1].txt -> TrackingCookie.Casinotropez : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@centrport[1].txt -> TrackingCookie.Centrport : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@clubdicecasino[2].txt -> TrackingCookie.Clubdicecasino : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@com[2].txt -> TrackingCookie.Com : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@crbanner.casinopays[2].txt -> TrackingCookie.Casinopays : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@dbbsrv[2].txt -> TrackingCookie.Dbbsrv : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@ehg-bestwestern.hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@estat[1].txt -> TrackingCookie.Estat : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@euniverseads[1].txt -> TrackingCookie.Euniverseads : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@fastclick[1].txt -> TrackingCookie.Fastclick : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@goldenpalace[2].txt -> TrackingCookie.Goldenpalace : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@hotlog[1].txt -> TrackingCookie.Hotlog : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@images.lop[2].txt -> TrackingCookie.Lop : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@iv2.bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@linksynergy[1].txt -> TrackingCookie.Linksynergy : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@lop[2].txt -> TrackingCookie.Lop : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@mediaplex[2].txt -> TrackingCookie.Mediaplex : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@overture[2].txt -> TrackingCookie.Overture : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@paypopup[1].txt -> TrackingCookie.Paypopup : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@questionmarket[1].txt -> TrackingCookie.Questionmarket : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@revenue[1].txt -> TrackingCookie.Revenue : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@sales.liveperson[2].txt -> TrackingCookie.Liveperson : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@servedby.advertising[1].txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@spylog[1].txt -> TrackingCookie.Spylog : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@statcounter[1].txt -> TrackingCookie.Statcounter : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@targetnet[1].txt -> TrackingCookie.Targetnet : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@tribalfusion[1].txt -> TrackingCookie.Tribalfusion : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@valueclick[2].txt -> TrackingCookie.Valueclick : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@weborama[1].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@www.casinotropez[2].txt -> TrackingCookie.Casinotropez : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@www.goldenpalace[1].txt -> TrackingCookie.Goldenpalace : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@yadro[1].txt -> TrackingCookie.Yadro : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@z1.adserver[1].txt -> TrackingCookie.Adserver : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Cookies\alexandra@zedo[1].txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Local Settings\Temporary Internet Files\Content.IE5\AVYRQ1U3\ibar[1].js -> Downloader.IstBar.ad : Nettoyer et sauvegarder
C:\Documents and Settings\ALEXANDRA\Local Settings\Temporary Internet Files\Content.IE5\JVTNRT0W\wanadoo_toolbar[1].zip/wanadoo_toolbar.dll -> Adware.BHO : Nettoyer et sauvegarder
:mozilla.6:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Yadro : Nettoyer et sauvegarder
:mozilla.7:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Yadro : Nettoyer et sauvegarder
:mozilla.26:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.27:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.28:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.29:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder
:mozilla.30:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder
:mozilla.32:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder
:mozilla.33:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder
:mozilla.34:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder
:mozilla.40:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder
:mozilla.48:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
:mozilla.50:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
:mozilla.51:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
:mozilla.54:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder
:mozilla.62:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyer et sauvegarder
:mozilla.64:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Estat : Nettoyer et sauvegarder
:mozilla.71:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder
:mozilla.72:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder
:mozilla.73:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder
:mozilla.77:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder
:mozilla.100:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyer et sauvegarder
:mozilla.101:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyer et sauvegarder
:mozilla.105:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder
:mozilla.106:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder
:mozilla.107:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyer et sauvegarder
:mozilla.118:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.137:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder
:mozilla.138:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder
:mozilla.139:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder
:mozilla.140:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder
:mozilla.145:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
:mozilla.168:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Valueclick : Nettoyer et sauvegarder
:mozilla.231:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder
:mozilla.250:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Casinotropez : Nettoyer et sauvegarder
:mozilla.271:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyer et sauvegarder
:mozilla.272:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyer et sauvegarder
-> : Erreur durant le nettoyage
:mozilla.275:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyer et sauvegarder
:mozilla.276:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyer et sauvegarder
:mozilla.277:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder
:mozilla.279:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Tribalfusion : Nettoyer et sauvegarder
:mozilla.286:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
:mozilla.287:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
:mozilla.288:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
:mozilla.289:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
:mozilla.303:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder
:mozilla.304:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder
:mozilla.305:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder
:mozilla.307:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
C:\Documents and Settings\Invité\Bureau\Copie de xtofscript\NukeNabber\nukenabber.exe -> Not-A-Virus.NetTool.Win32.NukeNabber.21 : Nettoyer et sauvegarder
C:\Documents and Settings\Invité\Bureau\xtofscript\NukeNabber\nukenabber.exe -> Not-A-Virus.NetTool.Win32.NukeNabber.21 : Nettoyer et sauvegarder
C:\Documents and Settings\Invité\Cookies\invité@247realmedia[2].txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder
C:\Documents and Settings\Invité\Cookies\invité@2o7[2].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
C:\Documents and Settings\Invité\Cookies\invité@ads.pointroll[1].txt -> TrackingCookie.Pointroll : Nettoyer et sauvegarder
C:\Documents and Settings\Invité\Cookies\invité@advertising[1].txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder
C:\Documents and Settings\Invité\Cookies\invité@as1.falkag[1].txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
C:\Documents and Settings\Invité\Cookies\invité@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder
C:\Documents and Settings\Invité\Cookies\invité@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder
C:\Documents and Settings\Invité\Cookies\invité@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder
C:\Documents and Settings\Invité\Cookies\invité@estat[1].txt -> TrackingCookie.Estat : Nettoyer et sauvegarder
C:\Documents and Settings\Invité\Cookies\invité@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder
C:\Documents and Settings\Invité\Cookies\invité@images.lop[1].txt -> TrackingCookie.Lop : Nettoyer et sauvegarder
C:\Documents and Settings\Invité\Cookies\invité@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyer et sauvegarder
C:\Documents and Settings\Invité\Cookies\invité@revenue[1].txt -> TrackingCookie.Revenue : Nettoyer et sauvegarder
C:\Documents and Settings\Invité\Cookies\invité@smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
C:\Documents and Settings\Invité\Cookies\invité@trafficmp[2].txt -> TrackingCookie.Trafficmp : Nettoyer et sauvegarder
C:\Documents and Settings\Invité\Cookies\invité@weborama[1].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
C:\Documents and Settings\Invité\Cookies\invité@webpdp.gator[1].txt -> TrackingCookie.Gator : Nettoyer et sauvegarder
C:\Documents and Settings\Invité\Cookies\invité@wreport.weborama[1].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
C:\Documents and Settings\Invité\Cookies\invité@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
C:\Documents and Settings\Invité\Local Settings\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\Cache\F2B134EEd01/NukeNabber/nukenabber.exe -> Not-A-Virus.NetTool.Win32.NukeNabber.21 : Nettoyer et sauvegarder
C:\Documents and Settings\Invité\Mes documents\Copie de xtofscript\NukeNabber\nukenabber.exe -> Not-A-Virus.NetTool.Win32.NukeNabber.21 : Nettoyer et sauvegarder
:mozilla.11:C:\Documents and Settings\Wquizz\Application Data\Mozilla\Firefox\Profiles\hof0zeaz.default\cookies.txt -> TrackingCookie.Com : Nettoyer et sauvegarder
:mozilla.12:C:\Documents and Settings\Wquizz\Application Data\Mozilla\Firefox\Profiles\hof0zeaz.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder
:mozilla.15:C:\Documents and Settings\Wquizz\Application Data\Mozilla\Firefox\Profiles\hof0zeaz.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.16:C:\Documents and Settings\Wquizz\Application Data\Mozilla\Firefox\Profiles\hof0zeaz.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.17:C:\Documents and Settings\Wquizz\Application Data\Mozilla\Firefox\Profiles\hof0zeaz.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.18:C:\Documents and Settings\Wquizz\Application Data\Mozilla\Firefox\Profiles\hof0zeaz.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder
:mozilla.22:C:\Documents and Settings\Wquizz\Application Data\Mozilla\Firefox\Profiles\hof0zeaz.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
:mozilla.23:C:\Documents and Settings\Wquizz\Application Data\Mozilla\Firefox\Profiles\hof0zeaz.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
:mozilla.25:C:\Documents and Settings\Wquizz\Application Data\Mozilla\Firefox\Profiles\hof0zeaz.default\cookies.txt -> TrackingCookie.Estat : Nettoyer et sauvegarder
C:\Documents and Settings\Wquizz\Cookies\wquizz@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder
C:\Documents and Settings\Wquizz\Local Settings\Temporary Internet Files\Content.IE5\UJP41RR1\wanadoo_toolbar[1].zip/wanadoo_toolbar.dll -> Adware.BHO : Nettoyer et sauvegarder
C:\Program Files\Masta\TeensFilm.exe -> Dialer.Masta.a : Nettoyer et sauvegarder
C:\Program Files\NewDotNet -> Adware.NewDotNet : Nettoyer et sauvegarder
C:\Program Files\NewDotNet\newdotnet7_22.dll -> Adware.NewDotNet : Nettoyer et sauvegarder
C:\Program Files\RealVNC\VNC4\winvnc4.exe -> Not-A-Virus.RemoteAdmin.Win32.WinVNC.4110 : Nettoyer et sauvegarder
C:\Program Files\wanadoo_toolbar\wanadoo_toolbar.dll -> Adware.BHO : Nettoyer et sauvegarder
C:\Program Files\wanadoo_toolbar\WANADO~11.old -> Adware.BHO : Nettoyer et sauvegarder
C:\WINDOWS\lqdwdih.exe -> Adware.180Solutions : Nettoyer et sauvegarder
C:\WINDOWS\NDNuninstall6_38.exe -> Adware.NewDotNet : Nettoyer et sauvegarder
C:\WINDOWS\NDNuninstall7_22.exe -> Adware.NewDotNet : Nettoyer et sauvegarder
C:\WINDOWS\system32\EGACCESS.dll -> Dialer.InstantAccess.r : Nettoyer et sauvegarder
C:\WINDOWS\system32\egaccess4_1059.dll -> Trojan.Dialer.pc : Nettoyer et sauvegarder
C:\WINDOWS\system32\egaccess4_1060.dll -> Dialer.InstantAccess.r : Nettoyer et sauvegarder
C:\WINDOWS\system32\msclock32.dll -> Adware.NaviPromo : Nettoyer et sauvegarder
C:\WINDOWS\system32\P2P Networking -> Adware.P2PNetworking : Nettoyer et sauvegarder
C:\WINDOWS\system32\P2P Networking\Cache -> Adware.P2PNetworking : Nettoyer et sauvegarder
C:\WINDOWS\system32\P2P Networking\Cache\Database -> Adware.P2PNetworking : Nettoyer et sauvegarder
C:\WINDOWS\system32\P2P Networking\Cache\Database\index256.dbb -> Adware.P2PNetworking : Nettoyer et sauvegarder
C:\WINDOWS\system32\P2P Networking\MARSHAL.DLL -> Adware.P2PNetworking : Nettoyer et sauvegarder
C:\WINDOWS\system32\P2P Networking\MARSHAL2.DLL -> Adware.P2PNetworking : Nettoyer et sauvegarder
C:\WINDOWS\system32\P2P Networking\P2P Networking.eng -> Adware.P2PNetworking : Nettoyer et sauvegarder
C:\WINDOWS\system32\P2P Networking\P2P Networking.LOG -> Adware.P2PNetworking : Nettoyer et sauvegarder
C:\WINDOWS\system32\P2P Networking\P2P Networking2.ENG -> Adware.P2PNetworking : Nettoyer et sauvegarder
C:\WINDOWS\system32\wxpjay.exe -> Adware.NaviPromo : Nettoyer et sauvegarder
C:\WINDOWS\system32\ytjzxergkm.exe -> Adware.NaviPromo : Nettoyer et sauvegarder
::Fin du rapport
--------------------------------
Rapport HijackThis :
Logfile of HijackThis v1.99.1
Scan saved at 19:14:18, on 19/05/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\PROGRA~1\MESSAG~1\StartMessager.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\HP\HP Software Update\HPWuSchd.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe
C:\Program Files\Ahead\InCD\InCD.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\ctfmon.exe
C:\program files\mailskinner\mailskinner.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\ewido anti-malware\ewidoguard.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\wkcalrem.exe
C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\system32\pctspk.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\ANTHONY\LOCALS~1\Temp\Rar$EX00.765\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.mcgcqdvpryuzlynkg.com/k [...] C9INK5.jsp
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/i [...] .yahoo.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {008DB894-99ED-445D-8547-0E7C9808898D} - (no file)
O2 - BHO: (no name) - {00A6FAF1-072E-44cf-8957-5838F569A31D} - (no file)
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\ycomp5_6_2_0.dll
O2 - BHO: (no name) - {0494D0D1-F8E0-41ad-92A3-14154ECE70AC} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: mwsBar BHO - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\1.bin\MWSBAR.DLL
O2 - BHO: SWEETIE - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
O2 - BHO: Toolbar Wanadoo - {4E7BD74F-2B8D-469E-8FB0-B921F5DBF922} - C:\PROGRA~1\WANADO~2\WANADO~1.DLL (file missing)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll
O3 - Toolbar: (no name) - {0494D0D9-F8E0-41ad-92A3-14154ECE70AC} - (no file)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\ycomp5_6_2_0.dll
O3 - Toolbar: Metabar - {C94158E1-6151-4442-ABE6-FD53D6534CCB} - C:\Program Files\Metabar\metamoteur.dll
O3 - Toolbar: Toolbar Wanadoo - {4E7BD74F-2B8D-469E-8FB0-B921F5DBF922} - C:\PROGRA~1\WANADO~2\WANADO~1.DLL (file missing)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [WorksFUD] C:\Program Files\Microsoft Works\wkfud.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe
O4 - HKLM\..\Run: [Microsoft Works Portfolio] C:\Program Files\Microsoft Works\WksSb.exe /AllUsers
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [MessagerStarter Wanadoo] C:\PROGRA~1\MESSAG~1\StartMessager.exe Messager Wanadoo
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
O4 - HKLM\..\Run: [sdgbxoywpt] c:\windows\system32\sdgbxoywpt.exe sdgbxoywpt
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MailSkinner] c:\program files\mailskinner\mailskinner.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [Steam] "c:\valve\steam\steam.exe" -silent
O4 - HKCU\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\ccleaner.exe" /AUTO
O4 - Startup: Stardock ObjectDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: MyWebSearch Email Plugin.lnk = C:\Program Files\MyWebSearch\bar\1.bin\MWSOEMON.EXE
O4 - Global Startup: Rappels du Calendrier Microsoft Works.lnk = ?
O8 - Extra context menu item: &Search - http://bar.mywebsearch.com/menusea [...] xdm414YYFR
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Rechercher avec Voila - file://C:\Program Files\WANADOO_TOOLBAR\Cache\SelectedContextSearch.htm
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\PROGRA~1\Yahoo!\Common\yhexbmesfr.dll
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\PROGRA~1\Yahoo!\Common\yhexbmesfr.dll
O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {04CCFF26-7D52-4E42-BF6A-F8ECE0896EB7} - http://scripts.downloadv3.com/bina [...] 071_XP.cab
O16 - DPF: {0594AF7E-573B-40DF-8165-E47AB2EAEFE8} - http://akamai.downloadv3.com/binar [...] _FR_XP.cab
O16 - DPF: {0D1011B3-89C8-4F8E-8693-BB970E2E81E0} - http://scripts.downloadv3.com/bina [...] IV4_XP.cab
O16 - DPF: {1604DF98-D1A5-44FE-844A-98D6FD0518D0} - http://akamai.downloadv3.com/binar [...] 060_XP.cab
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.imgfarm.com/images/nocac [...] .0.8-2.cab
O16 - DPF: {1D6711C8-7154-40BB-8380-3DEA45B69CBF} -
O16 - DPF: {2A3DFC59-8A87-49A1-85D1-42903410911F} - http://scripts.dlv4.com/binaries/e [...] 058_XP.cab
O16 - DPF: {3616F4B5-F6AD-4E67-966A-C218673648A0} - http://scripts.downloadv3.com/bina [...] IV4_XP.cab
O16 - DPF: {3DAD912E-D2B9-4323-B7C9-7F2C5CC0C57B} - http://scripts.downloadv3.com/bina [...] 070_XP.cab
O16 - DPF: {469C7080-8EC8-43A6-AD97-45848113743C} - http://akamai.downloadv3.com/binar [...] _FR_XP.cab
O16 - DPF: {50AD557E-3426-41FD-AFDD-2AF39BB1C387} - http://akamai.downloadv3.com/binar [...] _FR_XP.cab
O16 - DPF: {62475759-9E84-458E-A1AB-5D2C442ADFDE} - http://a1540.g.akamai.net/7/1540/5 [...] taller.exe
O16 - DPF: {7504F0D5-644A-4103-9D02-95488B6CB9A1} - http://scripts.downloadv3.com/bina [...] IV4_XP.cab
O16 - DPF: {78F584DF-BBF5-4296-839C-31DE60914DBC} - http://scripts.downloadv3.com/bina [...] IV4_XP.cab
O16 - DPF: {87C1805D-C5AE-4455-AB39-E245BB516136} - http://scripts.dlv4.com/binaries/e [...] 059_XP.cab
O16 - DPF: {8D8BAF56-B581-4B90-A549-C4AC6B03F1BB} - http://scripts.downloadv3.com/bina [...] 074_XP.cab
O16 - DPF: {95460ABD-946A-46FF-9F56-268718323EEE} - http://scripts.downloadv3.com/bina [...] 068_XP.cab
O16 - DPF: {AF7410C1-FBA3-415E-800A-4110CED40536} - http://scripts.dlv4.com/binaries/e [...] 060_XP.cab
O16 - DPF: {B2B0AEDF-7CDF-4792-BB67-7654AD1E1B13} - http://scripts.downloadv3.com/bina [...] _FR_XP.cab
O16 - DPF: {BA749BC1-143E-430D-B1DA-1D2AF67A3658} - http://scripts.downloadv3.com/bina [...] 069_XP.cab
O16 - DPF: {C2481ED1-9896-4D49-AE90-69858DFDE446} - http://scripts.downloadv3.com/bina [...] 073_XP.cab
O16 - DPF: {C6760A07-A574-4705-B113-7856315922C3} - http://akamai.downloadv3.com/binar [...] _FR_XP.cab
O16 - DPF: {EC4AFBF3-4540-4306-AF10-4CAC509EA16B} - http://scripts.downloadv3.com/bina [...] IV4_XP.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido anti-malware\ewidoguard.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: PCTEL Speaker Phone (Pctspk) - PCtel, Inc. - C:\WINDOWS\system32\pctspk.exe
Voila j'ai l'impression que j'ai fais un bon nettoyage j'attend ton avis :-)
Encore Merci ;-)
petite astuce, ce serait bien de virer tous tes cookies chaque fois que tu utilises ton ordinateur. Pour cela, cliques sur outils / options internet / supprime les cookies. Tes rapports de scan seraient plus clairs.... Bon courage pour la suite
- [url=http://forum.telecharger.com/index.php?forum=telecharger&category=16&page=forum3&topic=387297&post=5357596&referer=forum2search&refererid=4086&refererpage=1#post5357596
]Redémarre en mode sans échec.[/url]
/!\ Tu n'as pas accès à Internet dans ce mode, note bien les instructions /!\
Desinstalle si possible
MailSkinner
SweetIM-> pas tres clean
MyWebSearch
- Lance Hijackthis ->Do a system scan only
->Coche les lignes puis Fix checked
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.mcgcqdvpryuzlynkg.com/k [...] C9INK5.jsp
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
O2 - BHO: (no name) - {008DB894-99ED-445D-8547-0E7C9808898D} - (no file)
O2 - BHO: (no name) - {00A6FAF1-072E-44cf-8957-5838F569A31D} - (no file)
O2 - BHO: (no name) - {0494D0D1-F8E0-41ad-92A3-14154ECE70AC} - (no file)
O2 - BHO: mwsBar BHO - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\1.bin\MWSBAR.DLL
O2 - BHO: SWEETIE - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
O2 - BHO: Toolbar Wanadoo - {4E7BD74F-2B8D-469E-8FB0-B921F5DBF922} - C:\PROGRA~1\WANADO~2\WANADO~1.DLL (file missing)
O3 - Toolbar: (no name) - {0494D0D9-F8E0-41ad-92A3-14154ECE70AC} - (no file)
O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
O4 - HKLM\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
O4 - HKLM\..\Run: [sdgbxoywpt] c:\windows\system32\sdgbxoywpt.exe sdgbxoywpt
O4 - HKCU\..\Run: [MailSkinner] c:\program files\mailskinner\mailskinner.exe
O4 - HKCU\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
O4 - Global Startup: MyWebSearch Email Plugin.lnk = C:\Program Files\MyWebSearch\bar\1.bin\MWSOEMON.EXE
O8 - Extra context menu item: &Search - http://bar.mywebsearch.com/menusea [...] xdm414YYFR
O16 - DPF: {04CCFF26-7D52-4E42-BF6A-F8ECE0896EB7} - http://scripts.downloadv3.com/bina [...] 071_XP.cab
O16 - DPF: {0594AF7E-573B-40DF-8165-E47AB2EAEFE8} - http://akamai.downloadv3.com/binar [...] _FR_XP.cab
O16 - DPF: {0D1011B3-89C8-4F8E-8693-BB970E2E81E0} - http://scripts.downloadv3.com/bina [...] IV4_XP.cab
O16 - DPF: {1604DF98-D1A5-44FE-844A-98D6FD0518D0} - http://akamai.downloadv3.com/binar [...] 060_XP.cab
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.imgfarm.com/images/nocac [...] .0.8-2.cab
O16 - DPF: {1D6711C8-7154-40BB-8380-3DEA45B69CBF} -
O16 - DPF: {2A3DFC59-8A87-49A1-85D1-42903410911F} - http://scripts.dlv4.com/binaries/e [...] 058_XP.cab
O16 - DPF: {3616F4B5-F6AD-4E67-966A-C218673648A0} - http://scripts.downloadv3.com/bina [...] IV4_XP.cab
O16 - DPF: {3DAD912E-D2B9-4323-B7C9-7F2C5CC0C57B} - http://scripts.downloadv3.com/bina [...] 070_XP.cab
O16 - DPF: {469C7080-8EC8-43A6-AD97-45848113743C} - http://akamai.downloadv3.com/binar [...] _FR_XP.cab
O16 - DPF: {50AD557E-3426-41FD-AFDD-2AF39BB1C387} - http://akamai.downloadv3.com/binar [...] _FR_XP.cab
O16 - DPF: {62475759-9E84-458E-A1AB-5D2C442ADFDE} - http://a1540.g.akamai.net/7/1540/5 [...] taller.exe
O16 - DPF: {7504F0D5-644A-4103-9D02-95488B6CB9A1} - http://scripts.downloadv3.com/bina [...] IV4_XP.cab
O16 - DPF: {78F584DF-BBF5-4296-839C-31DE60914DBC} - http://scripts.downloadv3.com/bina [...] IV4_XP.cab
O16 - DPF: {87C1805D-C5AE-4455-AB39-E245BB516136} - http://scripts.dlv4.com/binaries/e [...] 059_XP.cab
O16 - DPF: {8D8BAF56-B581-4B90-A549-C4AC6B03F1BB} - http://scripts.downloadv3.com/bina [...] 074_XP.cab
O16 - DPF: {95460ABD-946A-46FF-9F56-268718323EEE} - http://scripts.downloadv3.com/bina [...] 068_XP.cab
O16 - DPF: {AF7410C1-FBA3-415E-800A-4110CED40536} - http://scripts.dlv4.com/binaries/e [...] 060_XP.cab
O16 - DPF: {B2B0AEDF-7CDF-4792-BB67-7654AD1E1B13} - http://scripts.downloadv3.com/bina [...] _FR_XP.cab
O16 - DPF: {BA749BC1-143E-430D-B1DA-1D2AF67A3658} - http://scripts.downloadv3.com/bina [...] 069_XP.cab
O16 - DPF: {C2481ED1-9896-4D49-AE90-69858DFDE446} - http://scripts.downloadv3.com/bina [...] 073_XP.cab
O16 - DPF: {C6760A07-A574-4705-B113-7856315922C3} - http://akamai.downloadv3.com/binar [...] _FR_XP.cab
O16 - DPF: {EC4AFBF3-4540-4306-AF10-4CAC509EA16B} - http://scripts.downloadv3.com/bina [...] IV4_XP.cab
Assure toi d'avoir accès au dossier/fichiers caches
->Panneau de configuration
->Options dossiers
->Coche Afficher les dossiers cachés
Decoche Masquer les extensions...
Decoche Masquer les fichiers protégés...
- Suppime ces fichiers/dossiers si existe:
C:\Program Files\Macrogaming\
C:\Program Files\MyWebSearch\
C:\windows\system32\sdgbxoywpt.exe
C:\program files\mailskinner\
- Lance un nettoyage Ccleaner
- Lance un scan complet avec Ewido
Sauvegarde puis colle le rapport
Redémarre normalement
- Fais un scan en ligne Kaspersky
Sauvegarde puis colle le rapport
- Poste un nouveau rapport Hijackthis
Ok je vais faire cela mais sinon je suis moins infecté qu'au départ ? :-? Merci :-)
A la base tu etais beaucoup infecte...
on va dire que ca s'ameliore ;-)
Ok j'espere que je vais bientôt être clean :-D enfin le pc :-)
Voici les rapports :
---------------------------------------------------------
ewido anti-malware - Rapport de scan
---------------------------------------------------------
+ Créé le: 11:43:18, 20/05/2006
+ Somme de contrôle: 3380FA9
+ Résultats du scan:
HKLM\SOFTWARE\Altnet -> Adware.Altnet : Erreur durant le nettoyage
HKLM\SOFTWARE\Altnet\Dashboard -> Adware.Altnet : Erreur durant le nettoyage
HKLM\SOFTWARE\Altnet\Dashboard\Messages -> Adware.Altnet : Erreur durant le nettoyage
HKLM\SOFTWARE\Altnet\Dashboard\Settings -> Adware.Altnet : Erreur durant le nettoyage
:mozilla.236:C:\Documents and Settings\Invité\Application Data\Mozilla\Firefox\Profiles\cvcoiv9e.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyer et sauvegarder
C:\Program Files\NewDotNet -> Adware.NewDotNet : Nettoyer et sauvegarder
::Fin du rapport
-----------------------------------------
Logfile of HijackThis v1.99.1
Scan saved at 12:01:22, on 20/05/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\PROGRA~1\MESSAG~1\StartMessager.exe
C:\Program Files\HP\HP Software Update\HPWuSchd.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\wkcalrem.exe
C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\ewido anti-malware\ewidoguard.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\system32\pctspk.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\ANTHONY\LOCALS~1\Temp\Rar$EX00.187\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/i [...] .yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\ycomp5_6_2_0.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\ycomp5_6_2_0.dll
O3 - Toolbar: Metabar - {C94158E1-6151-4442-ABE6-FD53D6534CCB} - C:\Program Files\Metabar\metamoteur.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe
O4 - HKLM\..\Run: [Microsoft Works Portfolio] C:\Program Files\Microsoft Works\WksSb.exe /AllUsers
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [MessagerStarter Wanadoo] C:\PROGRA~1\MESSAG~1\StartMessager.exe Messager Wanadoo
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\ccleaner.exe" /AUTO
O4 - Startup: Stardock ObjectDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
O4 - Global Startup: Rappels du Calendrier Microsoft Works.lnk = ?
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Rechercher avec Voila - file://C:\Program Files\WANADOO_TOOLBAR\Cache\SelectedContextSearch.htm
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\PROGRA~1\Yahoo!\Common\yhexbmesfr.dll
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\PROGRA~1\Yahoo!\Common\yhexbmesfr.dll
O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {291543B4-4822-4FBE-B23F-A1984BCC2707} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido anti-malware\ewidoguard.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: PCTEL Speaker Phone (Pctspk) - PCtel, Inc. - C:\WINDOWS\system32\pctspk.exe
LOL ! Anthony ton rapport du virus Win32 !
Et maintenant je fais quoi ? C'est bon ou pas encore :-?
telecharge ad-aware et fais un scan puis repost le nouveau log ewido:
www.infos-du-net.com/telecharger/A [...] sonal.html
Ok par contre encore ewido ou hijackthis ?? Je vais faire ce que dis :-)
refais un scan ewido et post le log
Il y a 2719 utilisateurs connus et inconnus. Pour voir la liste des connectés connus, cliquez ici.
