Tom's Guide > Forum > Sécurité - Virus > Infecté par adware.Virtumonde [RESOLU]

Infecté par adware.Virtumonde [RESOLU]

Forum Sécurité - Virus : Infecté par adware.Virtumonde [RESOLU]

TomsGuide.com : 800 000 inscrits répondent à toutes vos questions high-tech et informatique. Pour obtenir de l'aide, inscrivez-vous gratuitement !
Créer un nouveau sujet Répondre
Mot :    Pseudo :           
 
darthy01   16-07-2006 à 12:22:34

Bonjour,
Depuis trois jours j'ai l'adware Virtumonde qui me cause des soucis car il revient toujours après plusieurs scans (spybot, ewido, avast!, ad-aware, etc...). J'ai des alertes de Ewido plusieurs fois par heure ça devient agaçant, même après l'avoir mis en quarantaine.

J'espère que vous pourrez m'aider.

Voici mon log HijackThis

Logfile of HijackThis v1.99.1
Scan saved at 12:20:05, on 16/07/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Prevx1\PXAgent.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\Program Files\Prevx1\PXConsole.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\Rundll32.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\AnBSoft\Wallpaper Mate\WallpaperMate.exe
C:\Program Files\WIDCOMM\Logiciel Bluetooth\BTTray.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\TEMP\Bureau\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Malicious Scripts Scanner - {55EA1964-F5E4-4D6A-B9B2-125B37655FCB} - C:\Documents and Settings\All Users\Application Data\Prevx\pxbho.dll
O2 - BHO: (no name) - {6D794CB4-C7CD-4c6f-BFDC-9B77AFBDC02C} - C:\WINDOWS\system32\yaywwuv.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [PrevxOne] C:\Program Files\Prevx1\PXConsole.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [P17Helper] Rundll32 P17.dll,P17Helper
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [Wallpaper Mate] C:\Program Files\AnBSoft\Wallpaper Mate\WallpaperMate.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - Global Startup: BTTray.lnk = ?
O8 - Extra context menu item: Envoyer à &Bluetooth - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~2\tools\iesdpb.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Translate - {87680762-4A83-11B4-885B-0000E8ECA40F} - C:\Program Files\GoldText\Translator.lnk (file missing)
O9 - Extra 'Tools' menuitem: LingoWare Translator... - {87680762-4A83-11B4-885B-0000E8ECA40F} - C:\Program Files\GoldText\Translator.lnk (file missing)
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activ [...] asinst.cab
O16 - DPF: {AA33C66F-71DB-43E9-B559-3CBE4398E9A9} (BugsGameStarts Class) - http://au.bugsgames.net/game/GBugsGameStart.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/ [...] loader.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: widimg - {EE7C2AFF-5742-44FF-BD0E-E521B0D3C3BA} - C:\WINDOWS\system32\btxppanel.dll
O20 - AppInit_DLLs: wowexec.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: winpdc32 - C:\WINDOWS\SYSTEM32\winpdc32.dll
O20 - Winlogon Notify: WRNotifier - C:\WINDOWS\SYSTEM32\WRLogonNTF.dll
O20 - Winlogon Notify: yaywwuv - C:\WINDOWS\SYSTEM32\yaywwuv.dll
O21 - SSODL: cinnamomum - {93ac7c30-3878-4eaa-9420-7977285df5b1} - (no file)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation - C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Prevx Agent (PREVXAgent) - Unknown owner - C:\Program Files\Prevx1\PXAgent.exe" -f (file missing)
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe
O23 - Service: Webroot Spy Sweeper Engine (svcWRSSSDK) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2004\WinStylerThemeSvc.exe

Merci et à bientôt =)

Répondre
Liens sponsorisés
Inscrivez-vous ou connectez-vous pour masquer ceci.
rocket_270@IDN   16-07-2006 à 12:36:37
- 0 +

bonjour commence par faire ceci:
1/Télécharger VundoFix :
http://www.atribune.org/ccount/click.php?id=4
Mettez le sur le bureau.
* Double-clique VundoFix.exe afin de le lancer.
* Coche Run VundoFix as a task
* Un message t'avertira que l'outil va se fermer et s'ouvrir à nouveau : clique Ok
* Clique sur le bouton Scan for Vundo.
* Lorsque le scan est complété, clique sur le bouton Remove Vundo.
* Une invite te demandera si tu veux supprimer les fichiers, clique YES
* Après avoir cliqué "Yes", le Bureau disparaîtra un moment lors de la suppression des fichiers.
* Tu verras une invite qui t'annonce que ton PC va s'éteindre ("shutdown" ); clique OK
* Démarre ton PC à nouveau.
* Copie/colle le contenu du rapport situé dans C:\vundofix.txt

2/CCleaner

Telecharge ccleaner sur ce site:
CCleaner
Il nettoie ton ordi de tout les fichiers temporaires inutiles.
Fais une analyse puis lance le nettoyage.

3/Ewido

Telecharge ewido sur ce site:
Ewido-Anti-Malware
Fais les mise a jour puis fais un scan , post le rapport et appuie sur Apply all actions pour supprimer les menaces.

4/ Poster le log Hijackthis:

Répondre à rocket_270@IDN
darthy01   16-07-2006 à 14:35:33
- 0 +

Merci pour ta réponse :-), j'ai suivi tout ce que tu m'a indiqué, voici les logs :

Rapport Vundo Fix :

VundoFix V5.1.4

Running as SYSTEM
from c:\windows\system32\VundoFix.exe

Checking Java version...

Java version is 1.5.0.6

Scan started at 12:59:12 16/07/2006

Listing files found while scanning....

C:\windows\system32\yaywwuv.dll

Beginning removal...

The process smss.exe was successfully stopped

The process winlogon.exe could not be stopped
Vundofix may not be able to delete some files that were found.

The process explorer.exe was successfully stopped

The process iexplore.exe was successfully stopped

The process rundll32.exe was successfully stopped

Attempting to delete C:\windows\system32\yaywwuv.dll
C:\windows\system32\yaywwuv.dll Could not be deleted.

Performing Repairs to the registry.
Done!

Rapport Ewido :
---------------------------------------------------------
ewido anti-spyware - Scan Report
---------------------------------------------------------

+ Created at: 14:25:17 16/07/2006

+ Scan result:



C:\Program Files\Fichiers communs\Real\WeatherBug\MiniBugTransporter.dll -> Adware.Minibug : Cleaned with backup (quarantined).
F:\Program Files\Fichiers communs\Real\WeatherBug\MiniBugTransporter.dll -> Adware.Minibug : Cleaned with backup (quarantined).
C:\VundoFix Backups\yaywwuv.dll -> Adware.Virtumonde : Cleaned with backup (quarantined).
C:\Program Files\BitLord\Downloads\Essential.Apps.Pack\Dvdremake.Pro.V2.6.4-Ssg\DvdReMake.Pro.v2.6.4-SSG.rar/DvdReMake Pro.exe -> Heuristic.Win32.Morphine-Crypted : Ignored.
C:\WINDOWS\system32\components\flx6.dll -> Not-A-Virus.Hoax.Win32.Renos.dw : Ignored.
:mozilla.648:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.427:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.429:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.430:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.431:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.432:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.433:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\UTILISATEUR\Cookies\utilisateur@microsoftwga.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.577:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Adocean : Cleaned.
:mozilla.578:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Adocean : Cleaned.
:mozilla.579:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Adocean : Cleaned.
:mozilla.580:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Adocean : Cleaned.
:mozilla.970:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Adocean : Cleaned.
:mozilla.971:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Adocean : Cleaned.
:mozilla.645:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Adserver : Cleaned.
:mozilla.646:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Adserver : Cleaned.
:mozilla.647:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Adserver : Cleaned.
:mozilla.68:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.69:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.245:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.246:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.247:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.248:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.249:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.250:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.251:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.252:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.253:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.254:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.255:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.256:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.257:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.258:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.259:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.260:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.261:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.262:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.263:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.264:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.265:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.266:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.267:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.268:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.269:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.270:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.271:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.272:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.273:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.274:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.275:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.276:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.277:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.278:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.279:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.280:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.281:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.282:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.283:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.284:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.285:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.286:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.287:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.288:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.289:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.290:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.291:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.292:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.293:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.294:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
F:\Documents and Settings\Manu\Cookies\manu@advertising[1].txt -> TrackingCookie.Advertising : Cleaned.
F:\Documents and Settings\Manu\Cookies\manu@servedby.advertising[1].txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.334:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
F:\Documents and Settings\Manu\Cookies\manu@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.13:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Bluestreak : Cleaned.
F:\Documents and Settings\Manu\Cookies\manu@bluestreak[1].txt -> TrackingCookie.Bluestreak : Cleaned.
:mozilla.543:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.544:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.71:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.72:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.73:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.74:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.75:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.77:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.724:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Clickhype : Cleaned.
:mozilla.942:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned.
:mozilla.943:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned.
:mozilla.963:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned.
:mozilla.964:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned.
:mozilla.584:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.585:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Com : Cleaned.
C:\Documents and Settings\UTILISATEUR\Cookies\utilisateur@com[1].txt -> TrackingCookie.Com : Cleaned.
:mozilla.327:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.328:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.329:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.330:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Comclick : Cleaned.
:mozilla.784:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Cqcounter : Cleaned.
:mozilla.14:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
F:\Documents and Settings\Manu\Cookies\manu@doubleclick[2].txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.236:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Estat : Cleaned.
F:\Documents and Settings\Manu\Cookies\manu@estat[1].txt -> TrackingCookie.Estat : Cleaned.
:mozilla.932:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.371:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.372:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.373:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.374:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.375:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.40:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.41:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.42:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.43:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
F:\Documents and Settings\Manu\Cookies\manu@as1.falkag[1].txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.36:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.37:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.38:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.39:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
F:\Documents and Settings\Manu\Cookies\manu@fastclick[2].txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.702:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.712:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.713:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
F:\Documents and Settings\Manu\Cookies\manu@ehg-nvidia.hitbox[2].txt -> TrackingCookie.Hitbox : Cleaned.
F:\Documents and Settings\Manu\Cookies\manu@hitbox[1].txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.350:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Ivwbox : Cleaned.
C:\Documents and Settings\UTILISATEUR\Cookies\utilisateur@ivwbox[1].txt -> TrackingCookie.Ivwbox : Cleaned.
:mozilla.902:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Kmpads : Cleaned.
:mozilla.903:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Kmpads : Cleaned.
:mozilla.905:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Kmpads : Cleaned.
:mozilla.636:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.637:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.638:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.734:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Masterstats : Cleaned.
C:\Documents and Settings\UTILISATEUR\Cookies\utilisateur@image.masterstats[1].txt -> TrackingCookie.Masterstats : Cleaned.
:mozilla.426:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.735:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Oewabox : Cleaned.
:mozilla.50:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.51:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.52:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.53:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.482:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.200:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Paycounter : Cleaned.
F:\Documents and Settings\Manu\Cookies\manu@ads.pointroll[1].txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.515:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned.
:mozilla.516:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned.
:mozilla.404:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.829:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.830:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.831:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.832:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.833:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.361:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Revenue : Cleaned.
:mozilla.548:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.549:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.550:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.551:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.552:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.553:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.160:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.161:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.162:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.163:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.164:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.165:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.166:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.167:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.168:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.169:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.170:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.171:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.172:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.173:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.174:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.175:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.176:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.177:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.184:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Sexlist : Cleaned.
:mozilla.185:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Sexlist : Cleaned.
:mozilla.186:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Sexlist : Cleaned.
:mozilla.187:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Sexlist : Cleaned.
:mozilla.212:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Sextracker : Cleaned.
:mozilla.213:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Sextracker : Cleaned.
:mozilla.148:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Sitestat : Cleaned.
:mozilla.324:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.325:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.326:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
F:\Documents and Settings\Manu\Cookies\manu@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.405:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.406:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.407:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.408:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.409:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.340:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Spylog : Cleaned.
:mozilla.100:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.101:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.102:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.103:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.81:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.82:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.83:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.84:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.85:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.86:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.87:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.88:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.89:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.90:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.91:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.92:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.93:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.94:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.95:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.96:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.97:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.98:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.99:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
F:\Documents and Settings\Manu\Cookies\manu@statcounter[1].txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.665:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.666:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.360:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Targetnet : Cleaned.
:mozilla.15:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.16:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.17:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.18:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.19:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.20:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.21:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
F:\Documents and Settings\Manu\Cookies\manu@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.523:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.524:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.525:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.526:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.527:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.528:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.78:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.79:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
F:\Documents and Settings\Manu\Cookies\manu@tribalfusion[1].txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.680:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.681:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.682:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.683:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.685:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.629:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Valueclick : Cleaned.
:mozilla.630:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Valueclick : Cleaned.
:mozilla.357:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Weborama : Cleaned.
:mozilla.358:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Weborama : Cleaned.
:mozilla.359:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Weborama : Cleaned.
F:\Documents and Settings\Manu\Cookies\manu@weborama[1].txt -> TrackingCookie.Weborama : Cleaned.
:mozilla.744:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.863:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.342:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Xxxtoolbar : Cleaned.
:mozilla.613:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Yadro : Cleaned.
:mozilla.64:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.65:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.66:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.67:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\Documents and Settings\UTILISATEUR\Cookies\utilisateur@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Cleaned.
F:\Documents and Settings\Manu\Cookies\manu@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.314:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.315:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.316:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.317:F:\Documents and Settings\Manu\Application Data\Mozilla\Firefox\Profiles\59sg3xjq.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.


::Report end



Rapport HijackThis :

Logfile of HijackThis v1.99.1
Scan saved at 14:26:10, on 16/07/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\Program Files\Prevx1\PXConsole.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\Rundll32.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\AnBSoft\Wallpaper Mate\WallpaperMate.exe
C:\Program Files\WIDCOMM\Logiciel Bluetooth\BTTray.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Prevx1\PXAgent.exe
C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Documents and Settings\TEMP\Bureau\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Malicious Scripts Scanner - {55EA1964-F5E4-4D6A-B9B2-125B37655FCB} - C:\Documents and Settings\All Users\Application Data\Prevx\pxbho.dll
O2 - BHO: (no name) - {6D794CB4-C7CD-4c6f-BFDC-9B77AFBDC02C} - C:\WINDOWS\system32\yaywwuv.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [PrevxOne] C:\Program Files\Prevx1\PXConsole.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [P17Helper] Rundll32 P17.dll,P17Helper
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [Wallpaper Mate] C:\Program Files\AnBSoft\Wallpaper Mate\WallpaperMate.exe
O4 - Global Startup: BTTray.lnk = ?
O8 - Extra context menu item: Envoyer à &Bluetooth - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~2\tools\iesdpb.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Translate - {87680762-4A83-11B4-885B-0000E8ECA40F} - C:\Program Files\GoldText\Translator.lnk (file missing)
O9 - Extra 'Tools' menuitem: LingoWare Translator... - {87680762-4A83-11B4-885B-0000E8ECA40F} - C:\Program Files\GoldText\Translator.lnk (file missing)
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activ [...] asinst.cab
O16 - DPF: {AA33C66F-71DB-43E9-B559-3CBE4398E9A9} (BugsGameStarts Class) - http://au.bugsgames.net/game/GBugsGameStart.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/ [...] loader.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: widimg - {EE7C2AFF-5742-44FF-BD0E-E521B0D3C3BA} - C:\WINDOWS\system32\btxppanel.dll
O20 - AppInit_DLLs: wowexec.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: winpdc32 - C:\WINDOWS\SYSTEM32\winpdc32.dll
O20 - Winlogon Notify: WRNotifier - C:\WINDOWS\SYSTEM32\WRLogonNTF.dll
O21 - SSODL: cinnamomum - {93ac7c30-3878-4eaa-9420-7977285df5b1} - (no file)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation - C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Prevx Agent (PREVXAgent) - Unknown owner - C:\Program Files\Prevx1\PXAgent.exe" -f (file missing)
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe
O23 - Service: Webroot Spy Sweeper Engine (svcWRSSSDK) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2004\WinStylerThemeSvc.exe

Répondre à darthy01
chercheur_   16-07-2006 à 23:39:32
- 0 +

Bonsoir


1 Redémarre en mode sans echec. Attention, tu n'as pas accès à internet dans ce mode, note bien ce que tu as à faire.
Démarre l'ordinateur.
Une fois le chargement du BIOS terminé, il y a un écran noir. Appuye sur la touche F8 jusqu'à l'affichage du menu des options avancées de Windows.
En utilisant les touches du curseur, sélectionne Mode sans échec et appuye sur Entrée.

2 Relance un scan HijackThis et coche les lignes ci-dessous :

R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: (no name) - {6D794CB4-C7CD-4c6f-BFDC-9B77AFBDC02C} - C:\WINDOWS\system32\yaywwuv.dll (file missing)
O20 - AppInit_DLLs: wowexec.dll
O20 - Winlogon Notify: winpdc32 - C:\WINDOWS\SYSTEM32\winpdc32.dll
O21 - SSODL: cinnamomum - {93ac7c30-3878-4eaa-9420-7977285df5b1} - (no file)

Ferme toutes les fenêtres Windows, Internet explorer, Outlook,sauf le logiciel Hijackthis et clique sur « Fix checked »

3 Assure toi d'avoir accés à tous les fichiers.
Démarrer, Poste de travail ou autre dossier, Menu Outils, Option des dossiers, onglet Affichage :
Activer la case : Afficher les fichiers et dossiers cachés
Désactiver la case : Masquer les extensions des fichiers dont le type est connu
Désactiver la case : Masquer les fichiers protégés du système d'exploitation
Puis Appliquer

4 Supprime les fichiers/dossiers incriminés (s'ils existent encore) :

C:\WINDOWS\SYSTEM32\winpdc32.dll

Recache les fichiers systeme afin de ne pas faire d'erreur à l'avenir en sélectionnant ne pas afficher les fichiers cachés ou les fichiers système.

5 Lance le nettoyage avec CCleaner.

6 Redémarre normalement et poste un nouveau log HijackThis.

Répondre à chercheur_
darthy01   17-07-2006 à 01:20:21
- 0 +

Merci beaucoup pour ta réponse chercheurPCA, tout s'est bien déroulé excepté une étape, je n'arrive pas à supprimer ce fichier :

C:\WINDOWS\SYSTEM32\winpdc32.dll

Ce message d'erreur s'affiche
http://img97.imageshack.us/img97/2482/image1pe2.gif

Que faire ?

Je poste néanmoins le rapport de HijackThis :

Rapport HijackThis :

Logfile of HijackThis v1.99.1
Scan saved at 01:12:24, on 17/07/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\Program Files\Prevx1\PXConsole.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\Rundll32.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\AnBSoft\Wallpaper Mate\WallpaperMate.exe
C:\Program Files\WIDCOMM\Logiciel Bluetooth\BTTray.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Prevx1\PXAgent.exe
C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\TEMP\Bureau\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Malicious Scripts Scanner - {55EA1964-F5E4-4D6A-B9B2-125B37655FCB} - C:\Documents and Settings\All Users\Application Data\Prevx\pxbho.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [PrevxOne] C:\Program Files\Prevx1\PXConsole.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [P17Helper] Rundll32 P17.dll,P17Helper
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [Wallpaper Mate] C:\Program Files\AnBSoft\Wallpaper Mate\WallpaperMate.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - Global Startup: BTTray.lnk = ?
O8 - Extra context menu item: Envoyer à &Bluetooth - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~2\tools\iesdpb.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Translate - {87680762-4A83-11B4-885B-0000E8ECA40F} - C:\Program Files\GoldText\Translator.lnk (file missing)
O9 - Extra 'Tools' menuitem: LingoWare Translator... - {87680762-4A83-11B4-885B-0000E8ECA40F} - C:\Program Files\GoldText\Translator.lnk (file missing)
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activ [...] asinst.cab
O16 - DPF: {AA33C66F-71DB-43E9-B559-3CBE4398E9A9} (BugsGameStarts Class) - http://au.bugsgames.net/game/GBugsGameStart.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/ [...] loader.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: widimg - {EE7C2AFF-5742-44FF-BD0E-E521B0D3C3BA} - C:\WINDOWS\system32\btxppanel.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: winpdc32 - C:\WINDOWS\SYSTEM32\winpdc32.dll
O20 - Winlogon Notify: WRNotifier - C:\WINDOWS\SYSTEM32\WRLogonNTF.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation - C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Prevx Agent (PREVXAgent) - Unknown owner - C:\Program Files\Prevx1\PXAgent.exe" -f (file missing)
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe
O23 - Service: Webroot Spy Sweeper Engine (svcWRSSSDK) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2004\WinStylerThemeSvc.exe

Bonne nuit :D

Répondre à darthy01
chercheur_   17-07-2006 à 01:26:11
- 0 +

On passe à la manière forte.

1. Télécharger The Avenger par Swandog46 sur votre Bureau
http://swandog46.geekstogo.com/avenger.zip

  • Click sur Avenger.zip pour ouvrir le fichier
  • Extraire avenger.exe sur votre bureau


2. Copier tout le texte de la boîte ci-dessous : mettre en surbrillance et appuyer sur les touches(Ctrl+C):

Files to delete:
C:\WINDOWS\SYSTEM32\winpdc32.dll

IMPORTANT: Le code ci-dessus a été intentionnellement rédigé pour CET utilisateur.
si vous n'êtes pas CET utilisateur, NE PAS appliquer ces directives : elles pourraient endommager votre système.[/i]

3. Maintenant, lancer The Avenger en cliquant sur son icône du bureau.

  • Sous "Script file to execute" choisir "Input Script Manually".
  • Puis cliquer sur l'icône en forme de loupe qui va ouvrir une nouvelle fenêtre "View/edit script"
  • Dans cette fenêtre, coller le texte précedemment copié sur le bureau par les touches (Ctrl+V).
  • Cliquer Done
  • ensuite cliquer sur l'icône en forme de Feu Vert pour démarrer l'exécution du script
  • Répondre "Yes" deux fois quand demandé.


4. The Avenger va automatiquement faire ce qui suit:

  • Il va Re-démarrer le système. ( Dans les cas où le script contient un/des "Drivers to Unload", The Avenger re-démarrera votre système 2 fois.)
  • Pendant le re-démarrage, il apparaitra brièvement une fenêtre de commande de windows noire sur votre bureau, ceci est NORMAL.
  • Après le re-démarrage, il crée un fichier log qui s'ouvrira, faisant apparaitre les actions exécutées par The Avenger. Ce fichier log se trouve ici : C:\avenger.txt
  • The Avenger aura également sauvegardé tous les fichiers, etc., que vous lui avez demandé de supprimer, les aura compactés (zipped) et tranféré l'archive zip ici C:\avenger\backup.zip.


5. Pour finir copier/coller le contenu du ficher c:\avenger.txt dans votre réponse avec un nouveau log HijackThis en utilisant REPONDRE

Répondre à chercheur_
darthy01   17-07-2006 à 11:40:24
- 0 +

C'était agréable de se réveiller le matin avec sa réponse :D, bon cette fois le fichier semble bien supprimé !! :). Voici les rapports demandés :

Rapport Avenger :

Logfile of The Avenger version 1, by Swandog46
Running from registry key:
\Registry\Machine\System\CurrentControlSet\Services\vbjoeejv

*******************

Script file located at: \??\C:\Program Files\fmygueyb.txt
Script file opened successfully.

Script file read successfully

Backups directory opened successfully at C:\Avenger

*******************


Beginning to process script file:

File C:\WINDOWS\SYSTEM32\winpdc32.dll deleted successfully.

Completed script processing.

*******************

Finished! Terminate.


Rapport HijackThis :

Logfile of HijackThis v1.99.1
Scan saved at 11:37:14, on 17/07/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\Program Files\Prevx1\PXConsole.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\Rundll32.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\AnBSoft\Wallpaper Mate\WallpaperMate.exe
C:\Program Files\WIDCOMM\Logiciel Bluetooth\BTTray.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Prevx1\PXAgent.exe
C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\TEMP\Bureau\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Malicious Scripts Scanner - {55EA1964-F5E4-4D6A-B9B2-125B37655FCB} - C:\Documents and Settings\All Users\Application Data\Prevx\pxbho.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [PrevxOne] C:\Program Files\Prevx1\PXConsole.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [P17Helper] Rundll32 P17.dll,P17Helper
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [Wallpaper Mate] C:\Program Files\AnBSoft\Wallpaper Mate\WallpaperMate.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - Global Startup: BTTray.lnk = ?
O8 - Extra context menu item: Envoyer à &Bluetooth - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~2\tools\iesdpb.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Translate - {87680762-4A83-11B4-885B-0000E8ECA40F} - C:\Program Files\GoldText\Translator.lnk (file missing)
O9 - Extra 'Tools' menuitem: LingoWare Translator... - {87680762-4A83-11B4-885B-0000E8ECA40F} - C:\Program Files\GoldText\Translator.lnk (file missing)
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activ [...] asinst.cab
O16 - DPF: {AA33C66F-71DB-43E9-B559-3CBE4398E9A9} (BugsGameStarts Class) - http://au.bugsgames.net/game/GBugsGameStart.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/ [...] loader.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: widimg - {EE7C2AFF-5742-44FF-BD0E-E521B0D3C3BA} - C:\WINDOWS\system32\btxppanel.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: winpdc32 - winpdc32.dll (file missing)
O20 - Winlogon Notify: WRNotifier - C:\WINDOWS\SYSTEM32\WRLogonNTF.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation - C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Prevx Agent (PREVXAgent) - Unknown owner - C:\Program Files\Prevx1\PXAgent.exe" -f (file missing)
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe
O23 - Service: Webroot Spy Sweeper Engine (svcWRSSSDK) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2004\WinStylerThemeSvc.exe

A bientôt !

Répondre à darthy01
chercheur_   17-07-2006 à 16:11:13
- 0 +

Bien
Relance un scan HijackThis et coche les lignes ci-dessous :

O20 - Winlogon Notify: winpdc32 - winpdc32.dll (file missing)

Ferme toutes les fenêtres Windows, Internet explorer, Outlook,sauf le logiciel Hijackthis et clique sur « Fix checked »

As tu encore des dysfonctionnements ?

Répondre à chercheur_
darthy01   17-07-2006 à 17:22:49
- 0 +

Je n'ai plus d'alertes depuis ce matin, merci beaucoup chercheurPCA et rocket_270 :-D. J'ai eu peur d'avoir à formater au départ.

Répondre à darthy01
Créer un nouveau sujet Répondre
Tom's Guide > Forum > Sécurité - Virus > Infecté par adware.Virtumonde [RESOLU]
Aller à :

Il y a 1504 utilisateurs connus et inconnus. Pour voir la liste des connectés connus, cliquez ici.

Plan du forum
Forum Bestofmedia ©
2000-2009 Bestofmedia Group
Page générée en 0,259 secondes
Attention

Vous allez répondre sur un sujet resté inactif pendant plus de 6 mois.
Assurez-vous d'apporter des éléments nouveaux à la discussion avant de poursuivre.

Répondre Annuler
Liens