Sujet Précédent Sujet Suivant

Infection

daniel5452 Messages postés 4 Statut Membre -  
jlpjlp Messages postés 52399 Statut Contributeur sécurité -
Bonjour,
Voila quelqu un peut il m aider,je l en remercie d avance.
Malwarebytes' Anti-Malware 1.42
Version de la base de données: 3432
Windows 5.1.2600 Service Pack 3
Internet Explorer 7.0.5730.13

26/12/2009 12:08:47
mbam-log-2009-12-26 (12-08-12).txt

Type de recherche: Examen complet (C:\|)
Eléments examinés: 188828
Temps écoulé: 35 minute(s), 56 second(s)

Processus mémoire infecté(s): 4
Module(s) mémoire infecté(s): 1
Clé(s) du Registre infectée(s): 13
Valeur(s) du Registre infectée(s): 4
Elément(s) de données du Registre infecté(s): 3
Dossier(s) infecté(s): 452
Fichier(s) infecté(s): 802

Processus mémoire infecté(s):
C:\documents and settings\PC\local settings\application data\dohwh.exe (Adware.Navipromo.H) -> No action taken.
C:\Documents and Settings\PC\Application Data\EoRezo\SoftwareUpdate\SoftwareUpdateHP.exe (Rogue.Eorezo) -> No action taken.
C:\Program Files\Winsudate\gibusr.exe (Adware.Gibmedia) -> No action taken.
C:\Program Files\Winsudate\gibsvc.exe (Adware.Gibmedia) -> No action taken.

Module(s) mémoire infecté(s):
C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (Rogue.Eorezo) -> No action taken.

Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\winsvc (Adware.Gibmedia) -> No action taken.
HKEY_CLASSES_ROOT\TypeLib\{b6acb3f1-6a83-432c-b854-3e1056f87f4e} (Rogue.Eorezo) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{819db72d-1c28-4387-9778-e2ff3dc86f74} (Rogue.Eorezo) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{c7b76b90-3455-4ae6-a752-eac4d19689e5} (Rogue.Eorezo) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{c7b76b90-3455-4ae6-a752-eac4d19689e5} (Rogue.Eorezo) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c7b76b90-3455-4ae6-a752-eac4d19689e5} (Rogue.Eorezo) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{df1c8e21-4045-4d67-b528-335f1a4f0de9} (Adware.NaviPromo) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{df1c8e21-4045-4d67-b528-335f1a4f0de9} (Adware.NaviPromo) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{df1c8e21-4045-4d67-b528-335f1a4f0de9} (Adware.NaviPromo) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\egdhtml (Adware.EGDAccess) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\fcn (Rogue.Residue) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\EoRezo (Rogue.Eorezo) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Instant Access (Adware.EGDAccess) -> No action taken.

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\dohwh (Adware.Navipromo.H) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\softwarehelper (Rogue.Eorezo) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\winusr (Adware.Gibmedia) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\instant access (Adware.EGDAccess) -> No action taken.

Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken.

Dossier(s) infecté(s):
C:\Program Files\Instant Access (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Center (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Center\Icons (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1011991865 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1011991865\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1011991865\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1011991865\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1011991865\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1011991865\fp.pc-on-internet.com\50196 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1011991865\fp.pc-on-internet.com\50196\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1019085033 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1019085033\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1019085033\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1019085033\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1019085033\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1019085033\fp.pc-on-internet.com\50251 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1019085033\fp.pc-on-internet.com\50251\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1027819538 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1027819538\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1027819538\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1027819538\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1027819538\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1027819538\fp.pc-on-internet.com\50203 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1027819538\fp.pc-on-internet.com\50203\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1052027824 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1052027824\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1052027824\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1052027824\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1052027824\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1052027824\fp.pc-on-internet.com\50264 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1052027824\fp.pc-on-internet.com\50264\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1052392990 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1052392990\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1052392990\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1052392990\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1052392990\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1052392990\fp.pc-on-internet.com\50246 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1052392990\fp.pc-on-internet.com\50246\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1054677665 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1054677665\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1054677665\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1054677665\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1054677665\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1054677665\fp.pc-on-internet.com\50264 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1054677665\fp.pc-on-internet.com\50264\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1089906775 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1089906775\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1089906775\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1089906775\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1089906775\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1089906775\fp.pc-on-internet.com\50264 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1089906775\fp.pc-on-internet.com\50264\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1095520053 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1095520053\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1095520053\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1095520053\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1095520053\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1095520053\fp.pc-on-internet.com\50256 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1095520053\fp.pc-on-internet.com\50256\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1107436924 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1107436924\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1107436924\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1107436924\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1107436924\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1107436924\fp.pc-on-internet.com\50292 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1107436924\fp.pc-on-internet.com\50292\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1118516719 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1118516719\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1118516719\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1118516719\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1118516719\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1118516719\fp.pc-on-internet.com\50320 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1118516719\fp.pc-on-internet.com\50320\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1119683380 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1119683380\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1119683380\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1119683380\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1119683380\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1119683380\fp.pc-on-internet.com\50196 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1119683380\fp.pc-on-internet.com\50196\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1132963182 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1132963182\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1132963182\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1132963182\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1132963182\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1132963182\fp.pc-on-internet.com\50292 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1132963182\fp.pc-on-internet.com\50292\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1142398242 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1142398242\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1142398242\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1142398242\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1142398242\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1142398242\fp.pc-on-internet.com\50196 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1142398242\fp.pc-on-internet.com\50196\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1199109929 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1199109929\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1199109929\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1199109929\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1199109929\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1199109929\fp.pc-on-internet.com\50096 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1199109929\fp.pc-on-internet.com\50096\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\148371725 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\148371725\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\148371725\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\148371725\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\148371725\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\148371725\fp.pc-on-internet.com\50220 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\148371725\fp.pc-on-internet.com\50220\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\151281797 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\151281797\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\151281797\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\151281797\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\151281797\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\151281797\fp.pc-on-internet.com\50203 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\151281797\fp.pc-on-internet.com\50203\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\159888376 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\159888376\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\159888376\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\159888376\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\159888376\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\159888376\fp.pc-on-internet.com\50264 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\159888376\fp.pc-on-internet.com\50264\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\214550216 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\214550216\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\214550216\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\214550216\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\214550216\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\214550216\fp.pc-on-internet.com\50265 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\214550216\fp.pc-on-internet.com\50265\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\217339556 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\217339556\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\217339556\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\217339556\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\217339556\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\217339556\fp.pc-on-internet.com\50264 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\217339556\fp.pc-on-internet.com\50264\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\261185122 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\261185122\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\261185122\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\261185122\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\261185122\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\261185122\fp.pc-on-internet.com\50320 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\261185122\fp.pc-on-internet.com\50320\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\270523705 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\270523705\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\270523705\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\270523705\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\270523705\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\270523705\fp.pc-on-internet.com\50256 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\270523705\fp.pc-on-internet.com\50256\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\293807598 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\293807598\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\293807598\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\293807598\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\293807598\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\293807598\fp.pc-on-internet.com\50265 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\293807598\fp.pc-on-internet.com\50265\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\368012062 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\368012062\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\368012062\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\368012062\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\368012062\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\368012062\fp.pc-on-internet.com\50265 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\368012062\fp.pc-on-internet.com\50265\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\382259862 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\382259862\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\382259862\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\382259862\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\382259862\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\382259862\fp.pc-on-internet.com\50256 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\382259862\fp.pc-on-internet.com\50256\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\386054426 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\386054426\es6-external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\386054426\es6-external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\386054426\es6-scripts.nccgateway.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\386054426\es6-scripts.nccgateway.com\Common (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\386054426\es6-scripts.nccgateway.com\custom (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\386054426\es6-scripts.nccgateway.com\custom\1 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\386054426\es6-scripts.nccgateway.com\custom\3020 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\386054426\es6-scripts.nccgateway.com\custom\3020\FR (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\386054426\traffic.waypointcash.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\386054426\traffic.waypointcash.com\emoticonsplanet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\386054426\traffic.waypointcash.com\emoticonsplanet.com\enter (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\386054426\traffic.waypointcash.com\emoticonsplanet.com\enter\4 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\386054426\traffic.waypointcash.com\emoticonsplanet.com\enter\4\fr (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\386054426\www.rapid-pass.net (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\386054426\www.waypointcash.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\386054426\www.waypointcash.com\conversion (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\407382022 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\407382022\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\407382022\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\407382022\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\407382022\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\407382022\fp.pc-on-internet.com\50256 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\407382022\fp.pc-on-internet.com\50256\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\420778495 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\420778495\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\420778495\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\420778495\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\420778495\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\420778495\fp.pc-on-internet.com\50246 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\420778495\fp.pc-on-internet.com\50246\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\422117815 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\422117815\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\422117815\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\422117815\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\422117815\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\422117815\fp.pc-on-internet.com\50287 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\422117815\fp.pc-on-internet.com\50287\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\461674422 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\461674422\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\461674422\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\461674422\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\461674422\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\461674422\fp.pc-on-internet.com\50264 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\461674422\fp.pc-on-internet.com\50264\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\473848257 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\473848257\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\473848257\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\473848257\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\473848257\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\473848257\fp.pc-on-internet.com\50320 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\473848257\fp.pc-on-internet.com\50320\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\553711112 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\553711112\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\553711112\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\553711112\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\553711112\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\553711112\fp.pc-on-internet.com\50256 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\553711112\fp.pc-on-internet.com\50256\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\569652383 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\569652383\es6-external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\569652383\es6-external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\569652383\es6-scripts.nccgateway.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\569652383\es6-scripts.nccgateway.com\Common (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\569652383\es6-scripts.nccgateway.com\custom (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\569652383\es6-scripts.nccgateway.com\custom\1 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\569652383\es6-scripts.nccgateway.com\custom\3020 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\569652383\es6-scripts.nccgateway.com\custom\3020\FR (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\569652383\traffic.waypointcash.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\569652383\traffic.waypointcash.com\emoticonsplanet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\569652383\traffic.waypointcash.com\emoticonsplanet.com\enter (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\569652383\traffic.waypointcash.com\emoticonsplanet.com\enter\4 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\569652383\traffic.waypointcash.com\emoticonsplanet.com\enter\4\fr (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\569652383\www.rapid-pass.net (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\569652383\www.waypointcash.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\569652383\www.waypointcash.com\conversion (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\583397500 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\583397500\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\583397500\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\583397500\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\583397500\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\583397500\fp.pc-on-internet.com\50331 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\583397500\fp.pc-on-internet.com\50331\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\586018099 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\586018099\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\586018099\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\586018099\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\586018099\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\586018099\fp.pc-on-internet.com\50196 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\586018099\fp.pc-on-internet.com\50196\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\592190136 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\592190136\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\592190136\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\592190136\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\592190136\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\592190136\fp.pc-on-internet.com\50256 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\592190136\fp.pc-on-internet.com\50256\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\595109230 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\595109230\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\595109230\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\595109230\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\595109230\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\595109230\fp.pc-on-internet.com\50203 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\595109230\fp.pc-on-internet.com\50203\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\629715410 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\629715410\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\629715410\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\629715410\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\629715410\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\629715410\fp.pc-on-internet.com\50256 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\629715410\fp.pc-on-internet.com\50256\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\636054149 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\636054149\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\636054149\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\636054149\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\636054149\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\636054149\fp.pc-on-internet.com\50292 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\636054149\fp.pc-on-internet.com\50292\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\642730642 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\642730642\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\642730642\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\642730642\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\642730642\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\642730642\fp.pc-on-internet.com\50256 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\642730642\fp.pc-on-internet.com\50256\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\645638796 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\645638796\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\645638796\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\645638796\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\645638796\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\645638796\fp.pc-on-internet.com\50265 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\645638796\fp.pc-on-internet.com\50265\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\648965308 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\648965308\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\648965308\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\648965308\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\648965308\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\648965308\fp.pc-on-internet.com\50196 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\648965308\fp.pc-on-internet.com\50196\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\664053780 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\664053780\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\664053780\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\664053780\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\664053780\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\664053780\fp.pc-on-internet.com\50264 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\664053780\fp.pc-on-internet.com\50264\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\667714838 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\667714838\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\667714838\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\667714838\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\667714838\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\667714838\fp.pc-on-internet.com\50287 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\667714838\fp.pc-on-internet.com\50287\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\723313896 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\723313896\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\723313896\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\723313896\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\723313896\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\723313896\fp.pc-on-internet.com\50256 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\723313896\fp.pc-on-internet.com\50256\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\752378652 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\752378652\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\752378652\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\752378652\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\752378652\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\752378652\fp.pc-on-internet.com\50196 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\752378652\fp.pc-on-internet.com\50196\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\761725659 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\761725659\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\761725659\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\761725659\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\761725659\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\761725659\fp.pc-on-internet.com\50320 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\761725659\fp.pc-on-internet.com\50320\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\767130979 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\767130979\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\767130979\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\767130979\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\767130979\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\767130979\fp.pc-on-internet.com\50322 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\767130979\fp.pc-on-internet.com\50322\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\785553197 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\785553197\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\785553197\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\785553197\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\785553197\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\785553197\fp.pc-on-internet.com\50296 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\785553197\fp.pc-on-internet.com\50296\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\789228898 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\789228898\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\789228898\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\789228898\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\789228898\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\789228898\fp.pc-on-internet.com\50292 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\789228898\fp.pc-on-internet.com\50292\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\799736239 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\799736239\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\799736239\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\799736239\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\799736239\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\799736239\fp.pc-on-internet.com\50292 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\799736239\fp.pc-on-internet.com\50292\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\817335792 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\817335792\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\817335792\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\817335792\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\817335792\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\817335792\fp.pc-on-internet.com\50196 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\817335792\fp.pc-on-internet.com\50196\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\84202296 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\84202296\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\84202296\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\84202296\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\84202296\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\84202296\fp.pc-on-internet.com\50292 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\84202296\fp.pc-on-internet.com\50292\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\845616716 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\845616716\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\845616716\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\845616716\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\845616716\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\845616716\fp.pc-on-internet.com\50264 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\845616716\fp.pc-on-internet.com\50264\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\846924686 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\846924686\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\846924686\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\846924686\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\846924686\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\846924686\fp.pc-on-internet.com\50255 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\846924686\fp.pc-on-internet.com\50255\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\856923766 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\856923766\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\856923766\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\856923766\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\856923766\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\856923766\fp.pc-on-internet.com\50264 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\856923766\fp.pc-on-internet.com\50264\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\871929538 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\871929538\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\871929538\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\871929538\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\871929538\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\871929538\fp.pc-on-internet.com\50246 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\871929538\fp.pc-on-internet.com\50246\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\907670286 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\907670286\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\907670286\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\907670286\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\907670286\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\907670286\fp.pc-on-internet.com\50246 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\907670286\fp.pc-on-internet.com\50246\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\914936336 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\914936336\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\914936336\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\914936336\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\914936336\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\914936336\fp.pc-on-internet.com\50292 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\914936336\fp.pc-on-internet.com\50292\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\929136262 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\929136262\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\929136262\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\929136262\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\929136262\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\929136262\fp.pc-on-internet.com\50331 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\929136262\fp.pc-on-internet.com\50331\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\947753167 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\947753167\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\947753167\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\947753167\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\947753167\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\947753167\fp.pc-on-internet.com\50292 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\947753167\fp.pc-on-internet.com\50292\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\964038196 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\964038196\external-api.dlv4.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\964038196\external-api.dlv4.com\hits (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\964038196\external-api.dlv4.com\js (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\964038196\fp.pc-on-internet.com (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\964038196\fp.pc-on-internet.com\50320 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\964038196\fp.pc-on-internet.com\50320\images (Adware.EGDAccess) -> No action taken.
C:\Program Files\Winsudate (Adware.Gibmedia) -> No action taken.

Fichier(s) infecté(s):
C:\Documents and Settings\PC\Local Settings\Application Data\dohwh_navps.dat (Adware.Navipromo.H) -> No action taken.
C:\Documents and Settings\PC\Local Settings\Application Data\dohwh_nav.dat (Adware.Navipromo.H) -> No action taken.
C:\Documents and Settings\PC\Local Settings\Application Data\dohwh.dat (Adware.Navipromo.H) -> No action taken.
C:\Documents and Settings\PC\Local Settings\Application Data\dohwh.exe (Adware.Navipromo.H) -> No action taken.
C:\Documents and Settings\PC\Application Data\EoRezo\SoftwareUpdate\SoftwareUpdateHP.exe (Rogue.Eorezo) -> No action taken.
C:\Program Files\Winsudate\gibusr.exe (Adware.Gibmedia) -> No action taken.
C:\Program Files\Winsudate\gibsvc.exe (Adware.Gibmedia) -> No action taken.
C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (Rogue.Eorezo) -> No action taken.
C:\Documents and Settings\PC\Application Data\EoRezo\SoftwareUpdate\SoftwareUpdate.exe (Rogue.Eorezo) -> No action taken.
C:\Program Files\EoRezo\EoEngine.exe (Rogue.Eorezo) -> No action taken.
C:\Program Files\EoRezo\EoAdv\EoAdv.dll (Rogue.Eorezo) -> No action taken.
C:\Program Files\Winsudate\gibcom.dll (Adware.Gibmedia) -> No action taken.
C:\Program Files\Winsudate\gibidl.dll (Adware.Gibmedia) -> No action taken.
C:\Program Files\Winsudate\gibupt.exe (Adware.Gibmedia) -> No action taken.
C:\Program Files\Instant Access\Center\CrazyGirls.upd (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Center\Fun-Games.upd (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Center\GamesDesktop.upd (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Center\LastSoftwares.upd (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Center\SerialPlayers.upd (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Center\tray1.ico (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Center\VideoZapping.upd (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Center\Icons\CrazyGirls.lnk (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Center\Icons\LastSoftwares.lnk (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Center\Icons\SerialPlayers.lnk (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1011991865\external-api.dlv4.com\hits\40aa45554a4c47c0aaf0cbb78d2436e0 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1011991865\external-api.dlv4.com\js\fe67adbfb410bc085e0b390f6bcca8dc (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1011991865\fp.pc-on-internet.com\b4edbb576a02b563758de71bd96eeae0.html (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1011991865\fp.pc-on-internet.com\b4edbb576a02b563758de71bd96eeae0.html_0.loginvis (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1011991865\fp.pc-on-internet.com\50196\images\button.gif (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1011991865\fp.pc-on-internet.com\50196\images\index_01.jpg (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1011991865\fp.pc-on-internet.com\50196\images\index_02.jpg (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1011991865\fp.pc-on-internet.com\50196\images\index_03.jpg (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1011991865\fp.pc-on-internet.com\50196\images\index_04.jpg (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1011991865\fp.pc-on-internet.com\50196\images\index_05.jpg (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1011991865\fp.pc-on-internet.com\50196\images\index_07.jpg (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1011991865\fp.pc-on-internet.com\50196\images\product.ico (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1019085033\external-api.dlv4.com\hits\73db5a9d812b951fcfc877f091254181 (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1019085033\external-api.dlv4.com\js\daa533b27ed9179b4433a5a93108701e (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1019085033\fp.pc-on-internet.com\f60308650cc840e1d9475e2ae2811d16.html (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1019085033\fp.pc-on-internet.com\f60308650cc840e1d9475e2ae2811d16.html_0.loginvis (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1019085033\fp.pc-on-internet.com\50251\images\button.gif (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1019085033\fp.pc-on-internet.com\50251\images\index_01.jpg (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1019085033\fp.pc-on-internet.com\50251\images\index_02.gif (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1019085033\fp.pc-on-internet.com\50251\images\index_03.gif (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1019085033\fp.pc-on-internet.com\50251\images\index_04.gif (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1019085033\fp.pc-on-internet.com\50251\images\index_05.gif (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1019085033\fp.pc-on-internet.com\50251\images\index_06.gif (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1019085033\fp.pc-on-internet.com\50251\images\index_07.gif (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1019085033\fp.pc-on-internet.com\50251\images\index_08.jpg (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1019085033\fp.pc-on-internet.com\50251\images\index_10.jpg (Adware.EGDAccess) -> No action taken.
C:\Program Files\Instant Access\Dialer\1019085033\fp.pc-on-internet.com\50251\images\product.ico (Adware.EGDAccess) -&gt

7 réponses

Réponse 1 / 7
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
slt

vure tout

puis

Telecharge genproc de Jean-Chrétien 1 et Narco 4.
http://www.alt-shift-return.org/Info/GenProc-HowTo.html
Poste le rapport .
0
Réponse 2 / 7
daniel5452 Messages postés 4 Statut Membre
 
merçi de ton aide, voila le rapport
Rapport GenProc 2.660 [1] - 26/12/2009 à 12:35:51
@ Windows XP Service Pack 3 - Mode normal
@ Internet Explorer 7.0.5730.13 [Navigateur par défaut]

~~ Eorezo : "C:\Documents and Settings\PC\Application Data\EoRezo\SoftwareUpdate\SoftwareUpdate.exe" ~~
~~ Eorezo : "C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll" ~~

Dans CCleaner, clique sur "Options", "Avancé" et décoche la case "Effacer uniquement les fichiers temporaires de Windows datant de plus de 24 heures" ; par la suite, laisse-le avec ses réglages par défaut. C'est tout.

# Etape 1/ Télécharge :

- Navilog1 http://il.mafioso.pagesperso-orange.fr/Navifix/Navilog1.exe (IL-MAFIOSO) sur ton Bureau.

- SmitfraudFix http://siri.urz.free.fr/Fix/SmitfraudFix.exe (S!Ri) sur le Bureau.

Redémarre en mode sans échec comme indiqué ici https://www.wekyo.com/demarrer-le-pc-en-mode-sans-echec-windows-7-et-8/ ; Choisis ta session courante *** PC *** (pour retrouver le rapport, clique sur le raccourci "Rapport GenProc[1]" sur ton bureau).

# Etape 2/

Double clique sur le raccourci Navilog1 sur le Bureau, et choisis l'option 1 ; valide et patiente jusqu'au message "Scan terminé le......".

# Etape 3/

Double-clique sur le fichier "SmitfraudFix.exe" et choisis l'option 2, réponds oui à tout et laisse-le procéder. Sauvegarde le rapport sur ton bureau.

# Etape 4/

Lance CCleaner : "Nettoyeur"/"lancer le nettoyage" et c'est tout.

# Etape 5/

Redémarre normalement et poste, dans la même réponse :

- Le contenu du rapport rapport.txt situé sur le Bureau ;
- Le contenu du rapport cleannavi.txt situé dans C:\ ;
- Un nouveau rapport GenProc ;

Précise les difficultés que tu as eu (ce que tu n'as pas pu faire...) ainsi que l'évolution de la situation.

~~ Arguments de la procédure ~~

# Détections [1] GenProc 2.660 26/12/2009 à 12:36:08
Navipromo:le 26/12/2009 à 12:36:42 "C:\Documents and Settings\PC\Local Settings\Application Data\*_nav??.dat"
SmitFraud:le 26/12/2009 à 12:36:44 "C:\Documents and Settings\PC\Favoris\Online Security Test.url"

----------------------------------------------------------------------
Sites officiels GenProc : www.alt-shift-return.org et www.genproc.com
----------------------------------------------------------------------

~~ Fin à 12:37:13 ~~
0
Réponse 3 / 7
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
ok fais tout et colle les rapports
0
Réponse 4 / 7
daniel5452 Messages postés 4 Statut Membre
 
voiçi tous les rapports
Fix Navipromo version 4.0.5 commencé le 26/12/2009 12:51:12,25

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!

Outil exécuté depuis C:\Program Files\navilog1

Mise à jour le 10.11.2009 à 18h00 par IL-MAFIOSO

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) Dual CPU E2200 @ 2.20GHz )
BIOS : Award Modular BIOS v6.00PG
USER : PC ( Administrator )
BOOT : Fail-safe with network boot

Antivirus : Kaspersky Anti-Virus 8.0.0.357 (Activated)

C:\ (Local Disk) - NTFS - Total:226 Go (Free:211 Go)
D:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)

Recherche executée en mode sans échec

Nettoyage executé en mode sans échec

C:\Program Files\Instant Access supprimé !
C:\WINDOWS\Downloaded Program Files\IaLdr32.inf supprimé !
C:\WINDOWS\system32\nsinet.exe supprimé !
c:\docume~1\pc\locals~1\applic~1\dohwh.exe supprimé !
c:\docume~1\pc\locals~1\applic~1\dohwh.dat supprimé !
c:\docume~1\pc\locals~1\applic~1\dohwh_nav.dat supprimé !
c:\docume~1\pc\locals~1\applic~1\dohwh_navps.dat supprimé !

Nettoyage contenu C:\WINDOWS\Temp effectué !
Nettoyage contenu C:\Documents and Settings\PC\locals~1\Temp effectué !

*** Sauvegarde du Registre vers dossier Safebackup ***

sauvegarde du Registre réalisée avec succès !

*** Nettoyage Registre ***

Nettoyage Registre Ok

Certificat Egroup supprimé !
Certificat Electronic-Group supprimé !
Certificat OOO-Favorit supprimé !

*** Scan terminé 26/12/2009 12:52:33,32 ***

SmitFraudFix v2.424

Rapport fait à 12:54:14,26, 26/12/2009
Executé à partir de C:\Documents and Settings\PC\Mes documents\Mes fichiers re‡us\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode sans echec

»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Avant SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» Arret des processus

»»»»»»»»»»»»»»»»»»»»»»»» hosts

127.0.0.1 localhost

»»»»»»»»»»»»»»»»»»»»»»»» VACFix

VACFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» Winsock2 Fix

S!Ri's WS2Fix: LSP not Found.

»»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix

GenericRenosFix by S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés

C:\DOCUME~1\PC\Favoris\Online Security Test.url supprimé

»»»»»»»»»»»»»»»»»»»»»»»» IEDFix

IEDFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» Agent.OMZ.Fix

Agent.OMZ.Fix
Credits: Malware Analysis & Diagnostic
Code: S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» 404Fix

404Fix
Credits: Malware Analysis & Diagnostic
Code: S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» RK

»»»»»»»»»»»»»»»»»»»»»»»» DNS

Description: Realtek RTL8168/8111 PCI-E Gigabit Ethernet NIC - Miniport d'ordonnancement de paquets
DNS Server Search Order: 192.168.1.1

HKLM\SYSTEM\CCS\Services\Tcpip\..\{0D540ECE-5AA8-4D88-A979-5A067AFCB1AD}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS1\Services\Tcpip\..\{0D540ECE-5AA8-4D88-A979-5A067AFCB1AD}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS3\Services\Tcpip\..\{0D540ECE-5AA8-4D88-A979-5A067AFCB1AD}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS3\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1

»»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires

»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

"System"=""

»»»»»»»»»»»»»»»»»»»»»»»» RK.2

»»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre

Nettoyage terminé.

»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Après SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» Fin

Rapport GenProc 2.660 [2] - 26/12/2009 à 13:08:05
@ Windows XP Service Pack 3 - Mode normal
@ Internet Explorer 7.0.5730.13 [Navigateur par défaut]

~~ Eorezo : "C:\Documents and Settings\PC\Application Data\EoRezo\SoftwareUpdate\SoftwareUpdate.exe" ~~
~~ Eorezo : "C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll" ~~

GenProc n'a détecté aucune infection caractéristique et suggère de suivre la procédure suivante :

# Etape 1/ Télécharge :
ToolsCleaner! http://pc-system.fr/ (A.Rothstein & Dj QUIOU) sur ton Bureau.

# Etape 2/
- Double-clique sur ToolsCleaner2.exe pour le lancer.
- Clique sur Recherche et laisse le scan agir.
- Clique sur Suppression pour finaliser.
- Tu peux, si tu le souhaites, te servir des Options Facultatives.
- Clique sur Quitter pour obtenir le rapport C:\TCleaner.txt

# Etape 3/
Poste un rapport Nod32 https://www.eset.com/ (il faut utiliser Internet Explorer)
- coche toutes les cases à chaque fois, et lorsque c'est terminé, colle le rapport :
C:\Program Files\EsetOnlineScanner\log.txt

~~~~ INFORMATION COMPLEMENTAIRE ~~~~

Rapport de ZHPDiag v1.24.39 par Nicolas Coolman
Run by PC at 26/12/2009 13:10:30
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Platform : Microsoft Windows XP (5.1.2600) Service Pack 3
MSIE: Internet Explorer v7.0.5730.13

Boot mode: Normal (Normal boot)
Total RAM: 2046 MB (75% free)
System drive C: has 212 GB (93%) free of 227 GB

---\\
[MD5.74254C4E0C54AA22BB4D93013CDD370A] - C:\WINDOWS\system32\igfxtray.exe
[MD5.8C88B9365939B3617786FDB47EC6FDC4] - C:\WINDOWS\system32\hkcmd.exe
[MD5.84F9A0A4E2C1544A3C473AD6CB7D1533] - C:\WINDOWS\system32\igfxpers.exe
[MD5.56F676060D70BA066459478824510BEA] - C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
[MD5.405D6C6C1D5D255CB4EF1BFD1CE305E8] - C:\Program Files\CyberLink\PowerDVD\Language\Language.exe
[MD5.8112D0DACAE746290FC87B3A980FA719] - C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
[MD5.1C5EF8D0098788926DF89390182BEA9F] - C:\Program Files\ZTE Corporation\ZXDSL852\CnxDslTb.exe
[MD5.988CA322B74DA65D85EC24D5CE230548] - C:\WINDOWS\V0220Mon.exe
[MD5.6CD5C3276C83F72677D647F27EE14ABD] - C:\Program Files\QuickTime\qttask.exe
[MD5.5ECD3C3B70B6B50F284DBAF6016B2DDF] - C:\Documents and Settings\PC\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe
[MD5.392845E8D49B5F0E81AAC4D795000A8C] - C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
[MD5.47FE9CEA9BB87EA5E0803E2846F7BF36] - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
[MD5.ECE648CDC3A09421E996DFFDA76F5C53] - C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
[MD5.59DC5BB82E4C8E0B3EADCFDBC44BA6E4] - C:\WINDOWS\system32\ctfmon.exe
[MD5.18B4B12358EFCF68D76812058A26181F] - C:\Program Files\Windows Live\Messenger\msnmsgr.exe
[MD5.97668AB47A2308CC5E9B4C99E20715BB] - C:\Program Files\Winsudate\gibusr.exe
[MD5.B8E865D24F2753A35CC2A9A6A3CE1AD4] - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
[MD5.E4BDF223CD75478BF44567B4D5C2634D] - C:\WINDOWS\System32\svchost.exe
[MD5.9EFE4236F8670846B6E7C5B0EFF6E715] - C:\Program Files\Bonjour\mDNSResponder.exe
[MD5.C3FB1D70CB88722267949694BA51759E] - C:\WINDOWS\system32\services.exe
[MD5.F96DF45CFBDC670584293E03C2AB602A] - C:\WINDOWS\system32\nvsvc32.exe
[MD5.91E6024D6D4DCDECDB36C43ECF9BBECB] - C:\WINDOWS\system32\lsass.exe
[MD5.BD517C7FB119997EFFBE39D5E4B37B05] - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
[MD5.271077B91D7AD1B616F8AFDFE8E3F981] - C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
[MD5.460E4CE148BD07218DA0B6A3D31885A9] - C:\WINDOWS\system32\spoolsv.exe
[MD5.C81B8635DEE0D3EF5F64B3DD643023A5] - C:\WINDOWS\system32\wdfmgr.exe
[MD5.B6029E8A17264E5CF71D3BE7997BE2A1] - C:\Program Files\Winsudate\gibsvc.exe

---\\
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home

---\\
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm

---\\
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll
R3 - URLSearchHook: Search Class - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

---\\
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\ievkbd.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\ievkbd.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: EoBHO - {C7B76B90-3455-4AE6-A752-EAC4D19689E5} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll

---\\
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

---\\
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [RemoteControl] C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
O4 - HKLM\..\Run: [LanguageShortcut] C:\Program Files\CyberLink\PowerDVD\Language\Language.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [CnxDslTaskBar] C:\Program Files\ZTE Corporation\ZXDSL852\CnxDslTb.exe ZTE Corporation\ZXDSL852
O4 - HKLM\..\Run: [V0220Mon.exe] C:\WINDOWS\V0220Mon.exe
O4 - HKLM\..\Run: [QuickTime Task] C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SoftwareHelper] C:\Documents and Settings\PC\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
O4 - HKLM\..\Run: [AVP] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [WinUsr] C:\Program Files\Winsudate\gibusr.exe
O4 - HKLM\..\policies\Explorer: [HonorAutoRunSetting] Data=1
O4 - HKCU\..\policies\Explorer: [NoDriveTypeAutoRun] Data=145
O4 - Global Startup: Outil de notification Live Search.lnk - C:\Documents and Settings\PC\Application Data\Microsoft\Live Search\Notification-LiveSearch.exe

---\\
O9 - Extra button: Statistiques de la protection du trafic Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\SCIEPlgn.dll,101
O9 - Extra button: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll,201

---\\
O10 - WLSP:\000000000001\Winsock LSP File - C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File - C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000003\Winsock LSP File - C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000004\Winsock LSP File - C:\Program Files\Bonjour\mdnsNSP.dll

---\\
O15 - Trusted Zone: [HKCU\...\Domains] mappy.com
O15 - Trusted Zone: [HKCU\...\Domains] orange.fr

---\\
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

---\\
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll
O18 - Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll
O18 - Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\system32\inetcomm.dll
O18 - Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL
O18 - Handler: sysimage - {76E67A63-06E9-11D2-A840-006008059382} - C:\Windows\system32\mshtml.dll
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll
O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll
O18 - Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll
O18 - Filter: Class Install Handler - {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINDOWS\system32\urlmon.dll
O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\Windows\system32\SHELL32.dll

---\\
O20 - Winlogon Notify: dimsntfy - C:\WINDOWS\System32\dimsntfy.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\System32\igfxdev.dll
O20 - Winlogon Notify: klogon - C:\WINDOWS\system32\klogon.dll

O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll

---\\
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - %SystemRoot%\system32\SHELL32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - %SystemRoot%\system32\SHELL32.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll

---\\
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} - %SystemRoot%\system32\browseui.dll

---\\
O23 - Service: Apple Mobile Device (Apple Mobile Device) - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Kaspersky Anti-Virus (AVP) - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe" -r
O23 - Service: Service Bonjour (Bonjour Service) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: SeaPort (SeaPort) - C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
O23 - Service: Spouleur d'impression (Spooler) - C:\WINDOWS\system32\spoolsv.exe
O23 - Service: Windows User Mode Driver Framework (UMWdf) - C:\WINDOWS\system32\wdfmgr.exe
O23 - Service: Gestionnaire de mise à jour Winsudate (WinSvc) - C:\Program Files\Winsudate\gibsvc.exe

---\\
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\AppleSoftwareUpdate.job

---\\
O41 - Driver: AFD (AFD) - C:\WINDOWS\System32\drivers\afd.sys
O41 - Driver: Pilote de CD-ROM (Cdrom) - C:\WINDOWS\system32\DRIVERS\cdrom.sys
O41 - Driver: Pilote pour clavier i8042 et souris sur port PS/2 (i8042prt) - C:\WINDOWS\system32\DRIVERS\i8042prt.sys
O41 - Driver: Pilote de filtre de gravure CD (Imapi) - C:\WINDOWS\system32\DRIVERS\imapi.sys
O41 - Driver: Pilote de processeur Intel (intelppm) - C:\WINDOWS\system32\DRIVERS\intelppm.sys
O41 - Driver: Pilote IPSEC (IPSec) - C:\WINDOWS\system32\DRIVERS\ipsec.sys
O41 - Driver: Pilote de la classe Clavier (Kbdclass) - C:\WINDOWS\system32\DRIVERS\kbdclass.sys
O41 - Driver: Pilote HID de clavier (kbdhid) - C:\WINDOWS\system32\DRIVERS\kbdhid.sys
O41 - Driver: Kaspersky Lab Driver (KLIF) - C:\WINDOWS\system32\DRIVERS\klif.sys
O41 - Driver: Pilote de la classe Souris (Mouclass) - C:\WINDOWS\system32\DRIVERS\mouclass.sys
O41 - Driver: MRXSMB (MRxSmb) - C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
O41 - Driver: Interface NetBIOS (NetBIOS) - C:\WINDOWS\system32\DRIVERS\netbios.sys
O41 - Driver: NetBIOS sur TCP/IP (NetBT) - C:\WINDOWS\system32\DRIVERS\netbt.sys
O41 - Driver: Pilote de connexion automatique d'accès distant (RasAcd) - C:\WINDOWS\system32\DRIVERS\rasacd.sys
O41 - Driver: Rdbss (Rdbss) - C:\WINDOWS\system32\DRIVERS\rdbss.sys
O41 - Driver: (no object) (RDPCDD) - C:\WINDOWS\System32\DRIVERS\RDPCDD.sys
O41 - Driver: Pilote de filtre de lecture digitale de CD audio (redbook) - C:\WINDOWS\system32\DRIVERS\redbook.sys
O41 - Driver: Pilote de port série (Serial) - C:\WINDOWS\system32\DRIVERS\serial.sys
O41 - Driver: Pilote du protocole TCP/IP (Tcpip) - C:\WINDOWS\system32\DRIVERS\tcpip.sys
O41 - Driver: Pilote de périphérique terminal (TermDD) - C:\WINDOWS\system32\DRIVERS\termdd.sys
O41 - Driver: Carte vidéo VGA. (VgaSave) - C:\WINDOWS\System32\drivers\vga.sys

---\\
O42 - Logiciel: Adobe Flash Player 10 ActiveX
O42 - Logiciel: Adobe Flash Player 9 ActiveX
O42 - Logiciel: Adobe Reader 8.1.3 - Français
O42 - Logiciel: Apple Application Support
O42 - Logiciel: Apple Mobile Device Support
O42 - Logiciel: Apple Software Update
O42 - Logiciel: Assistant de connexion Windows Live
O42 - Logiciel: Bonjour
O42 - Logiciel: CCleaner
O42 - Logiciel: Canon MP Navigator EX 1.0
O42 - Logiciel: Canon MP210 series
O42 - Logiciel: Creative Live! Cam Video IM Driver (1.01.01.00)
O42 - Logiciel: Creative Software AutoUpdate
O42 - Logiciel: Galerie de photos Windows Live
O42 - Logiciel: High Definition Audio Driver Package - KB888111
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
O42 - Logiciel: Hotfix for Windows XP (KB954550-v5)
O42 - Logiciel: Installation Windows Live
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver
O42 - Logiciel: Java(TM) 6 Update 3
O42 - Logiciel: Junk Mail filter update
O42 - Logiciel: Kaspersky Anti-Virus 2009
O42 - Logiciel: MSVCRT
O42 - Logiciel: MSXML 4.0 SP2 (KB936181)
O42 - Logiciel: MSXML 4.0 SP2 (KB954430)
O42 - Logiciel: MSXML 4.0 SP2 (KB973688)
O42 - Logiciel: Malwarebytes' Anti-Malware
O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2
O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1
O42 - Logiciel: Microsoft Choice Guard
O42 - Logiciel: Microsoft Internationalized Domain Names Mitigation APIs
O42 - Logiciel: Microsoft National Language Support Downlevel APIs
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU]
O42 - Logiciel: Microsoft Search Enhancement Pack
O42 - Logiciel: Microsoft Silverlight
O42 - Logiciel: Microsoft Sync Framework Runtime Native v1.0 (x86)
O42 - Logiciel: Microsoft Sync Framework Services Native v1.0 (x86)
O42 - Logiciel: NETGEAR XET1001 Powerline Encryption Utility
O42 - Logiciel: NVIDIA Drivers
O42 - Logiciel: NVIDIA PhysX v8.09.04
O42 - Logiciel: Nero 7 Essentials
O42 - Logiciel: OpenOffice.org 2.4
O42 - Logiciel: Outil de téléchargement Windows Live
O42 - Logiciel: PowerDVD
O42 - Logiciel: QuickTime
O42 - Logiciel: REALTEK GbE & FE Ethernet PCI-E NIC Driver
O42 - Logiciel: Realtek High Definition Audio Driver
O42 - Logiciel: Segoe UI
O42 - Logiciel: SoftwareUpdate 1.0
O42 - Logiciel: TELL ME MORE Junior
O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
O42 - Logiciel: Windows Genuine Advantage Validation Tool (KB892130)
O42 - Logiciel: Windows Internet Explorer 7
O42 - Logiciel: Windows Live Call
O42 - Logiciel: Windows Live Communications Platform
O42 - Logiciel: Windows Live Contrôle parental
O42 - Logiciel: Windows Live FolderShare
O42 - Logiciel: Windows Live Mail
O42 - Logiciel: Windows Live Messenger
O42 - Logiciel: Windows Live Toolbar
O42 - Logiciel: Windows Live Writer
O42 - Logiciel: Windows Media Format Runtime
O42 - Logiciel: Windows XP Service Pack 3
O42 - Logiciel: Yahoo! Toolbar
O42 - Logiciel: ZTE ZXDSL852
O42 - Logiciel: eMule
O42 - Logiciel: eoEngine 9.1
O42 - Logiciel: neroxml

---\\
O44 - LFC:Last File Created 26/12/2009 - 13:05:43 ---A- C:\WINDOWS\WindowsUpdate.log
O44 - LFC:Last File Created 26/12/2009 - 13:04:23 ---A- C:\WINDOWS\0.log
O44 - LFC:Last File Created 26/12/2009 - 13:04:21 ---A- C:\WINDOWS\wiadebug.log
O44 - LFC:Last File Created 26/12/2009 - 13:04:20 ---A- C:\WINDOWS\wiaservc.log
O44 - LFC:Last File Created 26/12/2009 - 13:04:11 ---A- C:\WINDOWS\System32\nvapps.xml
O44 - LFC:Last File Created 26/12/2009 - 13:04:07 -S-A- C:\WINDOWS\bootstat.dat
O44 - LFC:Last File Created 26/12/2009 - 12:59:55 ---A- C:\rapport.txt
O44 - LFC:Last File Created 26/12/2009 - 12:54:53 ---A- C:\WINDOWS\setupact.log
O44 - LFC:Last File Created 26/12/2009 - 12:54:22 ---A- C:\WINDOWS\System32\tmp.reg
O44 - LFC:Last File Created 26/12/2009 - 12:54:22 ---A- C:\WINDOWS\System32\tmp.txt
O44 - LFC:Last File Created 26/12/2009 - 12:52:33 ---A- C:\cleannavi.txt
O44 - LFC:Last File Created 26/12/2009 - 12:50:03 ---A- C:\WINDOWS\ntbtlog.txt
O44 - LFC:Last File Created 26/12/2009 - 12:48:27 ---A- C:\WINDOWS\SchedLgU.Txt
O44 - LFC:Last File Created 25/12/2009 - 14:54:31 ---A- C:\WINDOWS\System32\wpa.dbl
O44 - LFC:Last File Created 11/12/2009 - 16:58:58 ---A- C:\WINDOWS\System32\PerfStringBackup.INI
O44 - LFC:Last File Created 11/12/2009 - 16:58:58 ---A- C:\WINDOWS\System32\perfc009.dat
O44 - LFC:Last File Created 11/12/2009 - 16:58:58 ---A- C:\WINDOWS\System32\perfc00C.dat
O44 - LFC:Last File Created 11/12/2009 - 16:58:58 ---A- C:\WINDOWS\System32\perfh009.dat
O44 - LFC:Last File Created 11/12/2009 - 16:58:58 ---A- C:\WINDOWS\System32\perfh00C.dat
O44 - LFC:Last File Created 11/12/2009 - 11:01:38 ---A- C:\WINDOWS\FaxSetup.log
O44 - LFC:Last File Created 11/12/2009 - 11:01:38 ---A- C:\WINDOWS\KB970430.log
O44 - LFC:Last File Created 11/12/2009 - 11:01:38 ---A- C:\WINDOWS\comsetup.log
O44 - LFC:Last File Created 11/12/2009 - 11:01:38 ---A- C:\WINDOWS\iis6.log
O44 - LFC:Last File Created 11/12/2009 - 11:01:38 ---A- C:\WINDOWS\imsins.log
O44 - LFC:Last File Created 11/12/2009 - 11:01:38 ---A- C:\WINDOWS\msgsocm.log
O44 - LFC:Last File Created 11/12/2009 - 11:01:38 ---A- C:\WINDOWS\ntdtcsetup.log
O44 - LFC:Last File Created 11/12/2009 - 11:01:38 ---A- C:\WINDOWS\ocgen.log
O44 - LFC:Last File Created 11/12/2009 - 11:01:38 ---A- C:\WINDOWS\ocmsn.log
O44 - LFC:Last File Created 11/12/2009 - 11:01:38 ---A- C:\WINDOWS\setupapi.log
O44 - LFC:Last File Created 11/12/2009 - 11:01:38 ---A- C:\WINDOWS\tsoc.log
O44 - LFC:Last File Created 11/12/2009 - 11:01:37 ---A- C:\WINDOWS\updspapi.log
O44 - LFC:Last File Created 11/12/2009 - 11:01:32 ---A- C:\WINDOWS\KB974318.log
O44 - LFC:Last File Created 11/12/2009 - 11:01:32 ---A- C:\WINDOWS\imsins.BAK
O44 - LFC:Last File Created 11/12/2009 - 11:01:26 ---A- C:\WINDOWS\KB973904.log
O44 - LFC:Last File Created 11/12/2009 - 11:01:18 ---A- C:\WINDOWS\KB976325-IE7.log
O44 - LFC:Last File Created 11/12/2009 - 11:00:59 ---A- C:\WINDOWS\KB974392.log
O44 - LFC:Last File Created 11/12/2009 - 11:00:54 ---A- C:\WINDOWS\KB971737.log
O44 - LFC:Last File Created 04/12/2009 - 10:45:15 ---A- C:\trace.ini
O44 - LFC:Last File Created 03/12/2009 - 16:14:06 ---A- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
O44 - LFC:Last File Created 03/12/2009 - 16:13:56 ---A- C:\WINDOWS\System32\drivers\mbam.sys
O44 - LFC:Last File Created 03/12/2009 - 15:38:30 ---A- C:\WINDOWS\KB961503.log
O44 - LFC:Last File Created 03/12/2009 - 15:24:46 ---A- C:\WINDOWS\wmsetup.log
O44 - LFC:Last File Created 02/12/2009 - 14:25:47 ---A- C:\WINDOWS\DirectX.log
O44 - LFC:Last File Created 02/12/2009 - 14:25:39 ---A- C:\WINDOWS\KB954708.log
O44 - LFC:Last File Created 01/12/2009 - 21:06:19 ---A- C:\WINDOWS\System32\MRT.exe
O44 - LFC:Last File Created 01/12/2009 - 16:21:59 ---A- C:\WINDOWS\NeroDigital.ini

---\\
O51 - MPSK:{ce8a3c0c-34ef-11de-8737-00d0d07800b2}\Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL wscript.exe MS32DLL.dll.vbs
O51 - MPSK:{ce8a3c0f-34ef-11de-8737-00d0d07800b2}\Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL wscript.exe MS32DLL.dll.vbs
O51 - MPSK:{ce8a3c10-34ef-11de-8737-00d0d07800b2}\Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL wscript.exe MS32DLL.dll.vbs

---\\
O63 - Logiciel: HijackThis 2.0.2

End of the scan: 308 lines

----------------------------------------------------------------------
Sites officiels GenProc : www.alt-shift-return.org et www.genproc.com
----------------------------------------------------------------------

~~ Fin à 13:10:39 ~~
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 7
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
remets un rapport malwarebyte antimalware d'un scan rapide et vire tout et mets le rapport

puis

Télécharge ici :

http://images.malwareremoval.com/random/RSIT.exe

random's system information tool (RSIT) par andom/random et sauvegarde-le sur le Bureau.

Double-clique sur RSIT.exe afin de lancer RSIT.

Clique Continue à l'écran Disclaimer.

Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.

Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront.

Poste le contenu de log.txt (<<qui sera affiché)
ainsi que de info.txt (<<qui sera réduit dans la Barre des Tâches).

NB : Les rapports sont sauvegardés dans le dossier C:\rsit
0
Réponse 6 / 7
daniel5452 Messages postés 4 Statut Membre
 
ok,
Logfile of random's system information tool 1.06 (written by random/random)
Run by PC at 2009-12-26 16:08:36
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 217 GB (94%) free of 232 GB
Total RAM: 2046 MB (73% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:08:52, on 26/12/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16945)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\ZTE Corporation\ZXDSL852\CnxDslTb.exe
C:\WINDOWS\V0220Mon.exe
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Documents and Settings\PC\Bureau\RSIT.exe
C:\Program Files\trend micro\PC.exe

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = wmplayer.exe //ICWLaunch
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll (file missing)
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (file missing)
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\ievkbd.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [CnxDslTaskBar] "C:\Program Files\ZTE Corporation\ZXDSL852\CnxDslTb.exe" "ZTE Corporation\ZXDSL852"
O4 - HKLM\..\Run: [V0220Mon.exe] C:\WINDOWS\V0220Mon.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Statistiques de la protection du trafic Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\SCIEPlgn.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O15 - Trusted Zone: http://*.mappy.com
O15 - Trusted Zone: http://*.orange.fr
O15 - Trusted Zone: http://rw.search.ke.voila.fr
O15 - Trusted Zone: http://orange.weborama.fr
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Kaspersky Anti-Virus (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
0
Réponse 7 / 7
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
Mettre a jour java:
https://javara.fr.malavida.com/

Télécharge JavaRa.zip de Paul 'Prm753' McLain et Fred de Vries.
Décompresse le fichier sur ton bureau (clique droit > Extraire tout.)
Double-clique sur le répertoire JavaRa obtenu.
Puis double-clique sur le fichier JavaRa.exe (le .exe peut ne pas s'afficher)
Clique sur Search For Updates.
Sélectionne Update Using jucheck.exe puis clique sur Search.
Autorise le processus à se connecter s'il te le demande, clique sur Install et suis les instructions d'installation. Cela prendra quelques minutes.
Quand l'installation est terminée, revient à l'écran de JavaRa et clique sur Remove Older Versions.
Clique sur Oui pour confirmer. L'outil va travailler, clique ensuite sur Ok, puis une deuxième fois sur Ok.
Un rapport va s'ouvrir, copie-colle le dans ta prochaine réponse.
Note : le rapport se trouve aussi à la racine de la partition système, en général C:\ sous le nom JavaRa.log
(c:\JavaRa.log)
Ferme l'application.

si cela ne fonctionne pas

https://www.java.com/fr/download/windows_manual.jsp?locale=fr&host=www.java.com:80

tu peux désinstaller les vieilles versions.

_____________________________

• Télécharge et installe
http://pagesperso-orange.fr/NosTools/Chiquitine29/UsbFix.exe
https://www.androidworld.fr/

par Chiquitine29

(!) Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) susceptible d'avoir été infectées sans les ouvrir

• Double clic sur le raccourci UsbFix présent sur ton bureau .

• Au menu principal choisis l'option " F " pour français et tape sur [entrée] .

• Au second menu Choisis l'option " 2" nettoyage et tape sur [entrée]

• Laisse travailler l'outil.

• Ensuite poste le rapport UsbFix.txt qui apparaitra.

• Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque. ( C:\UsbFix.txt )

( CTRL+A Pour tout sélectionner , CTRL+C pour copier et CTRL+V pour coller )

• Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.

• Tuto : http://pagesperso-orange.fr/NosTools/usbfix.html
0

Discussions similaires

infection
gladiator1952 -
gladiator1952 -

6 réponses
Infection pc
Nanie24 -
Nanie24 -

22 réponses
[pnkbstra]infection
swazolie -
billou631 -

9 réponses
infection virus
Utilisateur anonyme -
Utilisateur anonyme -

3 réponses
Infection Bloom ?
ccm81 -
fabul -

8 réponses