infecte par system doctor

Question

bonsoir a tous   assez de system doctor et pub en tous genre!!!! j'ai vu quelque astuce dans le forum je voudrai savoir si je suis infecter par un virus  comment faire pour envoyer rapport hijacthis je suis debutant merci

Regis59 · Answer

Salut

Non ce n est pas un virus.

1-télécharge HijackThis ici:
https://www.01net.com/telecharger/windows/Securite/anti-spyware/fiches/29061.html

Dézippe le dans un dossier prévu à cet effet.
Par exemple C:\hijackthis < Enregistre le bien dans c : !
Démo : (Merci a Balltrap34 pour cette réalisation)
http://pageperso.aol.fr/balltrap34/Hijenr.gif

Lance le puis:
clique sur "do a system scan and save logfile" (cf démo)
faire un copier coller du log entier sur le forum

Démo : (Merci a Balltrap34 pour cette réalisation)
http://pageperso.aol.fr/balltrap34/demohijack.htm

2-Télécharge Blacklight (de F-Secure) a l’une des 2 adresses :
https://www.f-secure.com/en
https://www.f-secure.com/en

et sauvegarde le sur ton Bureau.

Double-clique blbeta.exe et accepte la licence ; laisse [X]scan through Windows Explorer activé ; clique Scan puis Next

Tu verras une liste de fichiers détectés apparaître. Tu verras également un rapport, sur ton Bureau, nommé fsbl.xxxxxxx.log (les xxxxxxx sont des chiffres).

Copie et colle le contenu de ce rapport dans ta prochaine réponse

Bon courage

A+

rike47 · Answer

ok comment je t'envoi le rapport

Regis59 · Answer

SalutTu selectionne tout, tu clik droit et fais copierTu viens dans un message, clik droit et collera demain pour la suite et rassure toi ce n est pas si grave que ca en a l aira+

rike47 · Answer

merci a regis 59 pour son aide

Regis59 · Answer

saluttu t en sors?a+

Regis59 · Answer

salut

desole je ne l avais pas vu:Tu es pas mal infecté.

Peux tu faire ceci stp

1-Télécharge ceci: (merci a S!RI pour ce programme).
http://siri.urz.free.fr/Fix/SmitfraudFix.zip
Exécute le, Double click sur Smitfraudfix.cmd choisit l’option 1, il va générer un rapport
Copie/colle le sur le poste stp.

2-Télécharge Blacklight (de F-Secure) a l’une des 2 adresses :
https://www.f-secure.com/en
https://www.f-secure.com/en

et sauvegarde le sur ton Bureau.

Double-clique blbeta.exe et accepte la licence ; laisse [X]scan through Windows Explorer activé ; clique Scan puis Next

Tu verras une liste de fichiers détectés apparaître. Tu verras également un rapport, sur ton Bureau, nommé fsbl.xxxxxxx.log (les xxxxxxx sont des chiffres).

Copie et colle le contenu de ce rapport dans ta prochaine réponse

Bon courage

A+

Regis59 · Answer

ReOk je vois l infection deja.Pour smitfraudfix, tu le telecharge, clik droit sur le fichier telechargé et extraire tout.Un fichier est extrait, ouvre le et lance le.a+

Regis59 · Answer

Salut ;

Télécharge Brute Force Uninstaller (de Merijn) ici:
http://www.merijn.org/files/bfu.zip
Créé un nouveau dossier directement à la racine de ton disque dur ou l'endroit qui te convient, nomme ce dossier BFU.
Décompresse le fichier téléchargé dans ce nouveau dossier (par exemple C:\BFU)

Ensuite, télécharge EGDACCESS.bfu (de Metallica) :

Fais un clik droit ici : http://metallica.geekstogo.com/EGDACCESS.bfu et choisis "Enregistrer la cible sous..." afin de télécharger EGDACCESS.bfu (de Metallica). Sauvegarde dans le dossier créé (C:\BFU). **Note : si tu utlises Internet Explorer ; lors de la sauvegarde, assure-toi que le champs "Type :" affiche "Tous les fichiers". Tu dois maintenant avoir deux fichiers dans le dossier C:\BFU : EGDACCESS.bfu et BFU.exe (très important).

Si tu utilises Internet Explorer, assure-toi lors de la sauvegarde que le champs "Type :" affiche "Tous les fichiers".
Tu dois maintenant avoir deux fichiers dans le dossier C:\BFU : EGDACCESS.bfu et BFU.exe (très important).

-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-

Lance "Brute Force Uninstaller" en double-cliquant BFU.exe (Dans le dossier C:\BFU)
- Clique sur le petit dossier jaune, et clique sur : EGDACCESS.bfu
- Coches la case Show log after script ends
- Clique sur Execute pour que le fix fasse son boulot :-)

Attends que le message Complete script execution apparaîsse et clique sur OK.
Un rapport va s'afficher dans la fenetre du programme, copie et colle dans le bloc-notes, puis sauvegardes le, tu le posteras plus tard sur le forum.
Clique Exit pour fermer le programme BFU.

-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-

Ensuite, lance Blacklight en double cliquant sur blbeta.exe et accepte la licence.
Clique sur Scan pour lancer l'analyse.
Une fois fait, selectionnes chaques fichiers trouvés et clic sur "RENAME"
Puis valide.
Réponds oui aux messages d'avertissements et te demandant si tu autorises le reboot du pc.

-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-

Après le reboot du pc, les fichiers :

c:\WINDOWS\system32\werfcjmlg_nav.dat
c:\WINDOWS\system32\werfcjmlg.dat
C:\windows\system32\werfcjmlg.exe
c:\WINDOWS\system32\werfcjmlg_navps.dat

devraient être visible et pouvoir être supprimés sans aucuns soucis.
Blacklight ne les supprimes pas, il les renommes simplement et il va falloir que tu les vires toi même:
Va dans C:\windows\system32\ et recherches et effaces:

werfcjmlg_nav.dat.ren
werfcjmlg.dat.ren
werfcjmlg.exe.ren
werfcjmlg_navps.dat.ren

Une fois fait, reposte un rapport hijackthis + le rapport de BFU que tu auras sauvegardé et un nouveau rapport de blacklight.
Juste pour info, tu as eu installé le logiciel mailskinner ? (emoticone pour la messagerie)
Tu peux verifier s il est dans ajout/suppression de programme?

bon nettoyage et bon courage ;-)

rike47 · Answer

Logfile of HijackThis v1.99.1Scan saved at 00:07:19, on 08/08/2006Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Acer\Acer eConsole\MediaServerService.exeC:\Program Files\Alwil Software\Avast4\aswUpdSv.exeC:\Program Files\Alwil Software\Avast4\ashServ.exeC:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exeC:\WINDOWS\Explorer.EXEC:\Program Files\Alwil Software\Avast4\ashMaiSv.exeC:\Program Files\Alwil Software\Avast4\ashWebSv.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\ctfmon.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\AntiVir PersonalEdition Classic\avguard.exeC:\Program Files\AntiVir PersonalEdition Classic\sched.exeC:\WINDOWS\system32
otepad.exeC:\Program Files\Hbtools\HBTV\HBTV.exeC:\WINDOWS\system32\NOTEPAD.EXEC:\WINDOWS\system32\NOTEPAD.EXEC:\WINDOWS\system32\NOTEPAD.EXEC:\Program Files\Internet Explorer\iexplore.exeC:\Program Files\HbTools\Bin\4.8.0.0\HbtSrv.exeC:\WINDOWS\system32\NOTEPAD.EXEC:\Program Files\Microsoft Money\System\urlmap.exeC:\HijackThis.exeR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECCR1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECCR0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = LiensO2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dllO2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dllO2 - BHO: TVEngine Helper /fleok=1D8A83A5C2E6107C91A475760EA83FA5EF80752B94E3D67F5F75452038C6 - {4B18DD50-C996-44fc-AC52-0FECFF82ED58} - c:\program files\hbtools\hbtv\hbtvhelper.dllO2 - BHO: HbTools - {74CC49F7-EB32-4A08-B204-948962A6E3DB} - C:\Program Files\HbTools\Bin\4.8.0.0\HbtHostIE.dllO2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dllO2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dllO2 - BHO: Barre d'outils MSN Search Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dllO2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - C:\Program Files\Microsoft Money\System\mnyviewer.dllO3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dllO3 - Toolbar: Barre d'outils MSN Search - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dllO3 - Toolbar: H&otbar - {74CC49F7-EB32-4A08-B204-948962A6E3DB} - C:\Program Files\HbTools\Bin\4.8.0.0\HbtHostIE.dllO4 - HKLM\..\Run: [LaunchApp] AlaunchO4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXEO4 - HKLM\..\Run: [ntiMUI] c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7
tiMUI.exeO4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exeO4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNCO4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNCO4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMENameO4 - HKLM\..\Run: [VTTimer] VTTimer.exeO4 - HKLM\..\Run: [VTTrayp] VTtrayp.exeO4 - HKLM\..\Run: [AspireService] C:\Program Files\Acer\Acer eMode Management\AspireService.exeO4 - HKLM\..\Run: [MediaSync] C:\Program Files\Acer\Acer eConsole\MediaSync.exeO4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\Monitor.exeO4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /minO4 - HKLM\..\Run: [MoneyStartUp10.0] "C:\Program Files\Microsoft Money\System\Activation.exe"O4 - HKLM\..\Run: [Register MediaRing Talk] C:\Program Files\MediaRing Talkegister.exeO4 - HKLM\..\Run: [PowerDVD] C:\Program Files\CyberLink\PowerDVD\powerdvd.exe /autostartO4 - HKLM\..\Run: [werfcjmlg] c:\windows\system32\werfcjmlg.exe werfcjmlgO4 - HKLM\..\Run: [HbTools] C:\Program Files\HbTools\Bin\4.8.0.0\HbtOEAddOn.exeO4 - HKLM\..\Run: [mbunzakq] C:\WINDOWS\system32\vfzbnisg.exeO4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeO4 - HKLM\..\Run: [NI.UWA6PV_0001_N91M2107] "C:\Documents and Settings\matt\Bureau\WinAntiVirusPro2006FreeInstall_fr.exe" -nag O4 - HKLM\..\Run: [WeatherOnTray] C:\Program Files\HbTools\Bin\4.8.0.0\HbtWeatherOnTray.exeO4 - HKLM\..\Run: [gohwmvaxc] c:\windows\system32\gohwmvaxc.exe gohwmvaxcO4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exeO4 - HKCU\..\Run: [MoneyAgent] ""C:\Program Files\Microsoft Money\System\Money Express.exe""O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /backgroundO4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Readereader_sl.exeO4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXEO4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\fr-fr\bin\WindowsSearch.exeO8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll/search.htmO8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/229?39208bbce13c48daa832bb1bb88ab835O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/230?39208bbce13c48daa832bb1bb88ab835O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dllO9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dllO9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyviewer.dllO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO16 - DPF: {9D190AE6-C81E-4039-8061-978EBAD10073} (F-Secure Online Scanner 3.0) - https://www.f-secure.com/en/home/supportO18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLLO18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLLO20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dllO21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dllO23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\Acer\Acer eConsole\MediaServerService.exeO23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exeO23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exeO23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exeO23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exeO23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)BFU v1.00.9Windows XP SP2 (WinNT 5.01.2600 SP2)Script started at 22:45:40, on 07/08/2006Failed: DllUnregister C:\WINDOWS\system32\MSWBM32.DLL|1 (file not found)Failed: DllUnregister C:\Program Files\MailSkinner\OESkinner.dll|1 (file not found)Failed: FolderDelete C:\Program Files\dialpass (folder not found)Failed: FolderDelete C:\Program Files\eghtmldialer (folder not found)Failed: FolderDelete C:\Program Files\egroup (folder not found)Failed: FolderDelete C:\Program Files\Instant Access (folder not found)Failed: FolderDelete C:\Program Files\MailSkinner (folder not found)Failed: DllUnregister C:\WINDOWS\mslagent\2_mslagent.dll|1 (file not found)Failed: DllUnregister C:\WINDOWS
avmpc\2_navmpc.dll|1 (file not found)Failed: FolderDelete C:\WINDOWS\mslagent (folder not found)Failed: FolderDelete C:\WINDOWS
avmpc (folder not found)Failed: FileDelete C:\DOCUME~1\admin\LOCALS~1\Temp\JET4F05.tmp (operation failed)Failed: FileDelete C:\DOCUME~1\admin\LOCALS~1\Temp\JET9AA9.tmp (operation failed)Failed: FileDelete C:\DOCUME~1\admin\LOCALS~1\Temp\~DF2449.tmp (operation failed)Failed: FileDelete C:\DOCUME~1\admin\LOCALS~1\Temp\~DF5C91.tmp (operation failed)Failed: FileDelete C:\DOCUME~1\admin\LOCALS~1\Temp\~DF7D76.tmp (operation failed)Failed: FileDelete C:\DOCUME~1\admin\LOCALS~1\Temp\~DF8F66.tmp (operation failed)Failed: FileDelete C:\DOCUME~1\admin\LOCALS~1\Temp\~DFBC37.tmp (operation failed)Failed: FileDelete C:\DOCUME~1\admin\LOCALS~1\Temp\~DFBC98.tmp (operation failed)Failed: FileDelete C:\DOCUME~1\admin\LOCALS~1\Temp\~DFF5B.tmp (operation failed)Failed: FileDelete C:\DOCUME~1\admin\LOCALS~1\Temp\~DFF73.tmp (operation failed)Failed: FileDelete C:\WINDOWS\Temp\JET84DF.tmp (operation failed)Failed: FileDelete C:\WINDOWS\Temp\Perflib_Perfdata_590.dat (operation failed)Failed: FolderDelete C:\WINDOWS\Temp\_avast4_ (operation failed)Failed: FolderCreate C:\WINDOWS\system32\bfubackups (folder already exists)Script completed.08/07/06 23:45:18 [Info]: BlackLight Engine 1.0.42 initialized08/07/06 23:45:18 [Info]: OS: 5.1 build 2600 (Service Pack 2)08/07/06 23:45:18 [Note]: 7019 408/07/06 23:45:18 [Note]: 7005 008/07/06 23:45:22 [Note]: 7006 008/07/06 23:45:22 [Note]: 7011 34408/07/06 23:45:22 [Note]: 7026 008/07/06 23:45:22 [Note]: 7026 008/07/06 23:45:24 [Note]: FSRAW library version 1.7.101908/07/06 23:46:36 [Info]: Hidden file: c:\WINDOWS\system32\gohwmvaxc_nav.dat08/07/06 23:46:36 [Note]: 10002 108/07/06 23:46:36 [Info]: Hidden file: c:\WINDOWS\system32\gohwmvaxc.dat08/07/06 23:46:36 [Note]: 10002 108/07/06 23:46:36 [Info]: Hidden file: c:\WINDOWS\system32\gohwmvaxc.exe08/07/06 23:46:36 [Note]: 10002 108/07/06 23:46:36 [Info]: Hidden file: c:\WINDOWS\system32\gohwmvaxc_navps.dat08/07/06 23:46:36 [Note]: 10002 108/07/06 23:46:53 [Note]: 2000 1006en ce qui consiste mail skinner il n'est pas dans ajout /supressiondur dur mais on y arrive lol   merci pour ton aide

rike47 · Answer

tout dernier rapport je ne sai08/07/06 23:45:18 [Info]: BlackLight Engine 1.0.42 initialized
08/07/06 23:45:18 [Info]: OS: 5.1 build 2600 (Service Pack 2)
08/07/06 23:45:18 [Note]: 7019 4
08/07/06 23:45:18 [Note]: 7005 0
08/07/06 23:45:22 [Note]: 7006 0
08/07/06 23:45:22 [Note]: 7011 344
08/07/06 23:45:22 [Note]: 7026 0
08/07/06 23:45:22 [Note]: 7026 0
08/07/06 23:45:24 [Note]: FSRAW library version 1.7.1019
08/07/06 23:46:36 [Info]: Hidden file: c:\WINDOWS\system32\gohwmvaxc_nav.dat
08/07/06 23:46:36 [Note]: 10002 1
08/07/06 23:46:36 [Info]: Hidden file: c:\WINDOWS\system32\gohwmvaxc.dat
08/07/06 23:46:36 [Note]: 10002 1
08/07/06 23:46:36 [Info]: Hidden file: c:\WINDOWS\system32\gohwmvaxc.exe
08/07/06 23:46:36 [Note]: 10002 1
08/07/06 23:46:36 [Info]: Hidden file: c:\WINDOWS\system32\gohwmvaxc_navps.dat
08/07/06 23:46:36 [Note]: 10002 1
08/07/06 23:46:53 [Note]: 2000 1006
08/08/06 00:06:54 [Note]: 7007 0
s pas si il est important pour toi????

rike47 · Answer

salut regis59 t'a vu les rapport j'espere que tout est bon      a+

Regis59 · Answer

Salut

Télécharge: Pocket Killbox ici
http://www.downloads.subratam.org/KillBox.exe

:: Démo d utilisation (merci a Balltrap34 pour cette réalisation) ::
http://pageperso.aol.fr/balltrap34/killbox.htm

Regarde la video et la methode du bloc note, voici la liste

c:\WINDOWS\system32\gohwmvaxc_nav.dat
c:\WINDOWS\system32\gohwmvaxc.dat
c:\WINDOWS\system32\gohwmvaxc.exe
c:\WINDOWS\system32\gohwmvaxc_navps.dat

et remet un rapport apres

a+

rike47 · Answer

est ce que c'est normal que le pc s'eteingne a chaque foi ??

rike47 · Answer

08/10/06 14:03:26 [Info]: BlackLight Engine 1.0.42 initialized
08/10/06 14:03:26 [Info]: OS: 5.1 build 2600 (Service Pack 2)
08/10/06 14:03:26 [Note]: 7019 4
08/10/06 14:03:26 [Note]: 7005 0
08/10/06 14:03:30 [Note]: 7006 0
08/10/06 14:03:30 [Note]: 7011 1592
08/10/06 14:03:30 [Note]: 7026 0
08/10/06 14:03:30 [Note]: 7026 0
08/10/06 14:03:35 [Note]: FSRAW library version 1.7.1019
08/10/06 14:04:53 [Note]: 2000 1006
08/10/06 14:05:18 [Note]: 7007 0

Regis59 · Answer

SalutQue le PC s eteigne a chaque fois que tu utilises kill box?Desinstalles ceci WinAntiVirusPro2006a+

Regis59 · Answer

Salut

Non, enfin ta question est difficile.
Ce sont deux tres bons antivirus mais faut savoir qu un antivirus ne fait pas tout. Si tu ne maitrises pas du tout l anglais, prend avast.Sinon peu importe.

Non il n est pas desinfecter, tu as desinstaller winantivirus et tu peux me remettre un hijack this

a+

Regis59 · Answer

okscan ton pc avec ewido et donne le rapporthttp://perso.orange.fr/entraide-hijackthis/Ewido/A+

rike47 · Answer

---------------------------------------------------------
ewido anti-spyware - Scan Report
---------------------------------------------------------

+ Created at: 22:17:45 10/08/2006

+ Scan result:

C:\Program Files\HbTools\Bin\4.8.0.0\HbtGuard.exe -> Adware.HotBar : No action taken.
C:\Program Files\HbTools\Bin\4.8.0.0\HbtHostIE.VIR -> Adware.HotBar : No action taken.
C:\Program Files\HbTools\Bin\4.8.0.0\HbtHostIE.dll -> Adware.HotBar : No action taken.
C:\Program Files\HbTools\Bin\4.8.0.0\HbtOEAddOn.exe -> Adware.HotBar : No action taken.
C:\Program Files\HbTools\Bin\4.8.0.0\HbtSrv.exe -> Adware.HotBar : No action taken.
C:\Program Files\HbTools\Bin\4.8.0.0\HbtWeatherOnTray.exe -> Adware.Hotbar : No action taken.
C:\Program Files\HbTools\Bin\4.8.0.0\__delete_on_reboot__H_b_t_H_o_s_t_O_E_._d_l_l_ -> Adware.Hotbar : No action taken.
C:\Program Files\HbTools\HBTV\HBTVHelper.dll -> Adware.Hotbar : No action taken.
C:\WINDOWS\system32\vfzbnisg.exe -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\AppID\WeatherOnTray.EXE -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbCoreSrv.DynamicProp -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbCoreSrv.DynamicProp.1 -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbCoreSrv.DynamicProp\CLSID -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbCoreSrv.DynamicProp\CurVer -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbTools.HbtCommBand -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbTools.HbtCommBand.1 -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbTools.HbtCommBand\CLSID -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbTools.HbtCommBand\CurVer -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbTools.HbtTravelCompareBar -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbTools.HbtTravelCompareBar.1 -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbTools.HbtTravelCompareBar\CLSID -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbTools.HbtTravelCompareBar\CurVer -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtCoreSrv.HbtCoreServices -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtCoreSrv.HbtCoreServices.1 -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtCoreSrv.HbtCoreServices\CLSID -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtCoreSrv.HbtCoreServices\CurVer -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtCoreSrv.LfgAx -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtCoreSrv.LfgAx.1 -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtCoreSrv.LfgAx\CLSID -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtCoreSrv.LfgAx\CurVer -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtHostIE.Bho -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtHostIE.Bho.1 -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtHostIE.Bho\CLSID -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtHostIE.Bho\CurVer -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtHostOL.HbtMailAnim -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtHostOL.HbtMailAnim.1 -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtHostOL.HbtMailAnim\CLSID -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtHostOL.HbtMailAnim\CurVer -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtHostOL.HbtWebmailSend -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtHostOL.HbtWebmailSend.1 -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtHostOL.HbtWebmailSend\CLSID -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtHostOL.HbtWebmailSend\CurVer -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtSrv.HbtCoreServices -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtSrv.HbtCoreServices.1 -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtSrv.HbtCoreServices\CLSID -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtSrv.HbtCoreServices\CurVer -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtToolbar.HbtHtmlMenuUI -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtToolbar.HbtHtmlMenuUI.1 -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtToolbar.HbtHtmlMenuUI\CLSID -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtToolbar.HbtHtmlMenuUI\CurVer -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtToolbar.HbtToolbarCtl -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtToolbar.HbtToolbarCtl.1 -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtToolbar.HbtToolbarCtl\CLSID -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtToolbar.HbtToolbarCtl\CurVer -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtTools.HbMain -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtTools.HbMain.1 -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtTools.HbMain\CLSID -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\HbtTools.HbMain\CurVer -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\Wallpaper.WallpaperManager -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\Wallpaper.WallpaperManager.1 -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\Wallpaper.WallpaperManager\CLSID -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Classes\Wallpaper.WallpaperManager\CurVer -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\HbTools -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\HbTools\HbTools -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\HbTools\HbTools\Install -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\HbTools\HbTools\MachineInfo -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\HbTools\HbTools\Mail -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\HbTools\HbTools\PI -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\HbTools\HbTools\PI\3.2 -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\HbTools\HbTools\Updates -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\HbTools\HbTools\Upgrade -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\HbTools\HostOI -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\HbTools\HostOI\Mail -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\HbTools\HostOI\Updates -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\HbTools\HostOL -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\HbTools\HostOL\Mail -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\HbTools\HostOL\Updates -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\HbTools\Hotbar -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\HbTools\Hotbar\Install -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\HbTools\Install -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\HbTools\Install\CmpMap -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\HbToolsOutlookTools -> Adware.HotBar : No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\HbToolsWebTools -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\Common -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\Common\Time -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\Common\Updates -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools\EUI -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools\HtmlPPP -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools\ImagesHistory -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools\Install -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools\Local -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools\MachineInfo -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools\MultiUrl -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools\PI -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools\PI\3.2 -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools\Sample -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools\Sample\Hist -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools\Sample\Hist\sg860 -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools\Sample\Hist\sg861 -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools\Sample\Hist\sg887 -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools\Sample\Hist\sg888 -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools\Sample\Hist\sg889 -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools\Sample\Hist\sg910 -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools\Sample\Hist\sg914 -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools\Sample\Hist\sg915 -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools\UserInfo -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools\Weather -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools\dynamic -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools\links -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools\mail -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools\options -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools\updates -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HostOI -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HostOI\Updates -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HostOI\links -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\Install -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\Install\Icons -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\Install\Links -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\Time -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\Time\HostIE -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\Time\HostIE\Updates -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\Time\HostOE -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\Time\HostOE\Updates -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\Time\HostOI -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\Time\HostOI\Updates -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\Time\HostOL -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\Time\HostOL\Updates -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\hostol -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\hostol\Mail -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\hostol\Updates -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\hostol\links -> Adware.HotBar : No action taken.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\hostol\soho -> Adware.HotBar : No action taken.
[1760] C:\Program Files\HbTools\Bin\4.8.0.0\HbtHostOE.dll -> Adware.Hotbar : No action taken.
[2296] C:\Program Files\HbTools\Bin\4.8.0.0\HbtHostOE.dll -> Adware.Hotbar : No action taken.
[2320] c:\program files\hbtools\hbtv\hbtvhelper.dll -> Adware.Hotbar : No action taken.
[2344] C:\Program Files\HbTools\Bin\4.8.0.0\HbtHostOE.dll -> Adware.Hotbar : No action taken.
[2380] C:\Program Files\HbTools\Bin\4.8.0.0\HbtHostOE.dll -> Adware.Hotbar : No action taken.
[2572] C:\Program Files\HbTools\Bin\4.8.0.0\HbtHostOE.dll -> Adware.Hotbar : No action taken.
[2580] C:\Program Files\HbTools\Bin\4.8.0.0\HbtHostOE.dll -> Adware.Hotbar : No action taken.
[2588] C:\Program Files\HbTools\Bin\4.8.0.0\HbtHostOE.dll -> Adware.Hotbar : No action taken.
[2596] C:\Program Files\HbTools\Bin\4.8.0.0\HbtHostOE.dll -> Adware.Hotbar : No action taken.
[2612] C:\Program Files\HbTools\Bin\4.8.0.0\HbtHostOE.dll -> Adware.Hotbar : No action taken.
[2716] C:\Program Files\HbTools\Bin\4.8.0.0\HbtOEAddOn.exe -> Adware.HotBar : No action taken.
[2764] C:\Program Files\HbTools\Bin\4.8.0.0\HbtHostOE.dll -> Adware.Hotbar : No action taken.
[2844] C:\Program Files\HbTools\Bin\4.8.0.0\HbtWeatherOnTray.exe -> Adware.Hotbar : No action taken.
[2864] C:\Program Files\HbTools\Bin\4.8.0.0\HbtHostOE.dll -> Adware.Hotbar : No action taken.
[2904] C:\Program Files\HbTools\Bin\4.8.0.0\HbtHostOE.dll -> Adware.Hotbar : No action taken.
[2916] c:\program files\hbtools\hbtv\hbtvhelper.dll -> Adware.Hotbar : No action taken.
[3020] C:\Program Files\HbTools\Bin\4.8.0.0\HbtHostOE.dll -> Adware.Hotbar : No action taken.
[3816] C:\Program Files\HbTools\Bin\4.8.0.0\HbtHostOE.dll -> Adware.Hotbar : No action taken.
[3868] c:\program files\hbtools\hbtv\hbtvhelper.dll -> Adware.Hotbar : No action taken.
[3968] C:\Program Files\HbTools\Bin\4.8.0.0\HbtSrv.exe -> Adware.HotBar : No action taken.
C:\Program Files\SystemDoctor 2006 Free -> Adware.SystemDoctor2006 : No action taken.
C:\Program Files\SystemDoctor 2006 Free\lock.dat -> Adware.SystemDoctor2006 : No action taken.
C:\Documents and Settings\matt\Local Settings\Temp\oUltraf.sys -> Backdoor.Genlot.DX : No action taken.
:mozilla.468:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.469:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
C:\Documents and Settings\admin\Cookies\admin@247realmedia[1].txt -> TrackingCookie.247realmedia : No action taken.
C:\Documents and Settings\matt\Cookies\matt@247realmedia[2].txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.101:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.111:C:\Documents and Settings\matt\Application Data\Mozilla\Firefox\Profiles\9zbvaejp.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.112:C:\Documents and Settings\matt\Application Data\Mozilla\Firefox\Profiles\9zbvaejp.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.157:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.200:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.43:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.443:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.444:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.445:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.446:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.447:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.451:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.452:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.453:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.463:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.464:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.46:C:\Documents and Settings\matt\Application Data\Mozilla\Firefox\Profiles\9zbvaejp.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\admin\Cookies\admin@microsofteup.112.2o7[2].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\admin\Cookies\admin@microsoftwlmessengermkt.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\admin\Cookies\admin@msninvite.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\admin\Cookies\admin@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\admin\Cookies\admin@sfr.122.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\admin\Cookies\admin@usatoday1.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\matt\Cookies\matt@2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\matt\Cookies\matt@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\matt\Cookies\matt@partygaming.122.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\matt\Local Settings\Temp\Cookies\matt@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
:mozilla.434:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Adtech : No action taken.
:mozilla.435:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Adtech : No action taken.
C:\Documents and Settings\admin\Cookies\admin@adtech[2].txt -> TrackingCookie.Adtech : No action taken.
C:\Documents and Settings\matt\Cookies\matt@adtech[2].txt -> TrackingCookie.Adtech : No action taken.
:mozilla.33:C:\Documents and Settings\matt\Application Data\Mozilla\Firefox\Profiles\9zbvaejp.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.34:C:\Documents and Settings\matt\Application Data\Mozilla\Firefox\Profiles\9zbvaejp.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.35:C:\Documents and Settings\matt\Application Data\Mozilla\Firefox\Profiles\9zbvaejp.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.458:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.459:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.460:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.461:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.462:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
C:\Documents and Settings\matt\Cookies\matt@advertising[1].txt -> TrackingCookie.Advertising : No action taken.
C:\Documents and Settings\matt\Local Settings\Temp\Cookies\matt@advertising[1].txt -> TrackingCookie.Advertising : No action taken.
:mozilla.110:C:\Documents and Settings\matt\Application Data\Mozilla\Firefox\Profiles\9zbvaejp.default\cookies.txt -> TrackingCookie.Atdmt : No action taken.
:mozilla.241:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Atdmt : No action taken.
C:\Documents and Settings\admin\Cookies\admin@atdmt[2].txt -> TrackingCookie.Atdmt : No action taken.
C:\Documents and Settings\matt\Cookies\matt@atdmt[2].txt -> TrackingCookie.Atdmt : No action taken.
C:\Documents and Settings\matt\Local Settings\Temp\Cookies\matt@atdmt[2].txt -> TrackingCookie.Atdmt : No action taken.
:mozilla.115:C:\Documents and Settings\matt\Application Data\Mozilla\Firefox\Profiles\9zbvaejp.default\cookies.txt -> TrackingCookie.Bluestreak : No action taken.
:mozilla.244:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Bluestreak : No action taken.
:mozilla.54:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Bluestreak : No action taken.
C:\Documents and Settings\admin\Cookies\admin@bluestreak[1].txt -> TrackingCookie.Bluestreak : No action taken.
C:\Documents and Settings\matt\Cookies\matt@bluestreak[1].txt -> TrackingCookie.Bluestreak : No action taken.
C:\Documents and Settings\matt\Cookies\matt@casalemedia[2].txt -> TrackingCookie.Casalemedia : No action taken.
C:\Documents and Settings\admin\Cookies\admin@casinotropez[1].txt -> TrackingCookie.Casinotropez : No action taken.
C:\Documents and Settings\admin\Cookies\admin@www.casinotropez[1].txt -> TrackingCookie.Casinotropez : No action taken.
C:\Documents and Settings\matt\Cookies\matt@casinotropez[1].txt -> TrackingCookie.Casinotropez : No action taken.
C:\Documents and Settings\matt\Cookies\matt@www.casinotropez[1].txt -> TrackingCookie.Casinotropez : No action taken.
:mozilla.403:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Centrport : No action taken.
:mozilla.66:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Clickbank : No action taken.
C:\Documents and Settings\matt\Cookies\matt@clickbank[1].txt -> TrackingCookie.Clickbank : No action taken.
C:\Documents and Settings\admin\Cookies\admin@banner.clubdicecasino[2].txt -> TrackingCookie.Clubdicecasino : No action taken.
C:\Documents and Settings\admin\Cookies\admin@clubdicecasino[1].txt -> TrackingCookie.Clubdicecasino : No action taken.
C:\Documents and Settings\matt\Cookies\matt@banner.clubdicecasino[2].txt -> TrackingCookie.Clubdicecasino : No action taken.
C:\Documents and Settings\matt\Cookies\matt@clubdicecasino[1].txt -> TrackingCookie.Clubdicecasino : No action taken.
C:\Documents and Settings\matt\Cookies\matt@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : No action taken.
:mozilla.117:C:\Documents and Settings\matt\Application Data\Mozilla\Firefox\Profiles\9zbvaejp.default\cookies.txt -> TrackingCookie.Doubleclick : No action taken.
:mozilla.70:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Doubleclick : No action taken.
C:\Documents and Settings\admin\Cookies\admin@doubleclick[1].txt -> TrackingCookie.Doubleclick : No action taken.
C:\Documents and Settings\matt\Cookies\matt@doubleclick[2].txt -> TrackingCookie.Doubleclick : No action taken.
C:\Documents and Settings\matt\Local Settings\Temp\Cookies\matt@doubleclick[1].txt -> TrackingCookie.Doubleclick : No action taken.
C:\Documents and Settings\admin\Cookies\admin@c.enhance[1].txt -> TrackingCookie.Enhance : No action taken.
:mozilla.12:C:\Documents and Settings\matt\Application Data\Mozilla\Firefox\Profiles\9zbvaejp.default\cookies.txt -> TrackingCookie.Estat : No action taken.
:mozilla.325:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Estat : No action taken.
C:\Documents and Settings\admin\Cookies\admin@estat[1].txt -> TrackingCookie.Estat : No action taken.
C:\Documents and Settings\matt\Cookies\matt@estat[1].txt -> TrackingCookie.Estat : No action taken.
:mozilla.442:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.465:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.477:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.478:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.479:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.482:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.483:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.484:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.486:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.487:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
C:\Documents and Settings\matt\Cookies\matt@as1.falkag[2].txt -> TrackingCookie.Falkag : No action taken.
C:\Documents and Settings\matt\Cookies\matt@fastclick[1].txt -> TrackingCookie.Fastclick : No action taken.
:mozilla.156:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Findwhat : No action taken.
C:\Documents and Settings\admin\Cookies\admin@cityclub.gamingpromo[2].txt -> TrackingCookie.Gamingpromo : No action taken.
C:\Documents and Settings\admin\Cookies\admin@gamingpromo[1].txt -> TrackingCookie.Gamingpromo : No action taken.
C:\Documents and Settings\admin\Cookies\admin@c.goclick[1].txt -> TrackingCookie.Goclick : No action taken.
C:\Documents and Settings\matt\Cookies\matt@c.goclick[2].txt -> TrackingCookie.Goclick : No action taken.
:mozilla.390:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Goldenpalace : No action taken.
C:\Documents and Settings\admin\Cookies\admin@goldenpalace[1].txt -> TrackingCookie.Goldenpalace : No action taken.
:mozilla.105:C:\Documents and Settings\matt\Application Data\Mozilla\Firefox\Profiles\9zbvaejp.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.119:C:\Documents and Settings\matt\Application Data\Mozilla\Firefox\Profiles\9zbvaejp.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.120:C:\Documents and Settings\matt\Application Data\Mozilla\Firefox\Profiles\9zbvaejp.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.466:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.470:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.472:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.473:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.476:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.142:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.165:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.166:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
C:\Documents and Settings\matt\Cookies\matt@ehg-nfusiongroup.hitbox[1].txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.259:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Mediaplex : No action taken.
C:\Documents and Settings\admin\Cookies\admin@mediaplex[1].txt -> TrackingCookie.Mediaplex : No action taken.
C:\Documents and Settings\matt\Cookies\matt@mediaplex[1].txt -> TrackingCookie.Mediaplex : No action taken.
C:\Documents and Settings\admin\Cookies\admin@www.myaffiliateprogram[2].txt -> TrackingCookie.Myaffiliateprogram : No action taken.
C:\Documents and Settings\matt\Cookies\matt@stat.onestat[1].txt -> TrackingCookie.Onestat : No action taken.
:mozilla.367:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Overture : No action taken.
:mozilla.368:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Overture : No action taken.
:mozilla.80:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Overture : No action taken.
C:\Documents and Settings\matt\Cookies\matt@overture[2].txt -> TrackingCookie.Overture : No action taken.
:mozilla.106:C:\Documents and Settings\matt\Application Data\Mozilla\Firefox\Profiles\9zbvaejp.default\cookies.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.107:C:\Documents and Settings\matt\Application Data\Mozilla\Firefox\Profiles\9zbvaejp.default\cookies.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.108:C:\Documents and Settings\matt\Application Data\Mozilla\Firefox\Profiles\9zbvaejp.default\cookies.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.109:C:\Documents and Settings\matt\Application Data\Mozilla\Firefox\Profiles\9zbvaejp.default\cookies.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.454:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.455:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.456:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.457:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Pointroll : No action taken.
C:\Documents and Settings\matt\Cookies\matt@ads.pointroll[2].txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.33:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.34:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.35:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.36:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.37:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.38:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.39:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.40:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
C:\Documents and Settings\admin\Cookies\admin@stats1.reliablestats[2].txt -> TrackingCookie.Reliablestats : No action taken.
C:\Documents and Settings\matt\Cookies\matt@stats1.reliablestats[2].txt -> TrackingCookie.Reliablestats : No action taken.
C:\Documents and Settings\matt\Local Settings\Temp\Cookies\matt@stats1.reliablestats[2].txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.404:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.405:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.406:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.407:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.50:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.82:C:\Documents and Settings\matt\Application Data\Mozilla\Firefox\Profiles\9zbvaejp.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.83:C:\Documents and Settings\matt\Application Data\Mozilla\Firefox\Profiles\9zbvaejp.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.84:C:\Documents and Settings\matt\Application Data\Mozilla\Firefox\Profiles\9zbvaejp.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.85:C:\Documents and Settings\matt\Application Data\Mozilla\Firefox\Profiles\9zbvaejp.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
C:\Documents and Settings\matt\Cookies\matt@serving-sys[1].txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.90:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.91:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.92:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.93:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.136:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Sexlist : No action taken.
:mozilla.160:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Sitestat : No action taken.
:mozilla.260:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.261:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.262:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.263:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.78:C:\Documents and Settings\matt\Application Data\Mozilla\Firefox\Profiles\9zbvaejp.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.79:C:\Documents and Settings\matt\Application Data\Mozilla\Firefox\Profiles\9zbvaejp.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.80:C:\Documents and Settings\matt\Application Data\Mozilla\Firefox\Profiles\9zbvaejp.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.81:C:\Documents and Settings\matt\Application Data\Mozilla\Firefox\Profiles\9zbvaejp.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
C:\Documents and Settings\admin\Cookies\admin@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : No action taken.
C:\Documents and Settings\matt\Cookies\matt@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : No action taken.
C:\Documents and Settings\matt\Local Settings\Temp\Cookies\matt@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.268:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Spylog : No action taken.
:mozilla.134:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.135:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
C:\Documents and Settings\matt\Cookies\matt@statcounter[2].txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.353:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.354:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.355:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.88:C:\Documents and Settings\matt\Application Data\Mozilla\Firefox\Profiles\9zbvaejp.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
C:\Documents and Settings\matt\Cookies\matt@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : No action taken.
C:\Documents and Settings\matt\Local Settings\Temp\Cookies\matt@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : No action taken.
C:\Documents and Settings\matt\Cookies\matt@trafic[1].txt -> TrackingCookie.Trafic : No action taken.
C:\Documents and Settings\matt\Cookies\matt@tribalfusion[1].txt -> TrackingCookie.Tribalfusion : No action taken.
:mozilla.83:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Valueclick : No action taken.
:mozilla.84:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Valueclick : No action taken.
C:\Documents and Settings\matt\Cookies\matt@valueclick[2].txt -> TrackingCookie.Valueclick : No action taken.
C:\Documents and Settings\admin\Cookies\admin@vegasred[2].txt -> TrackingCookie.Vegasred : No action taken.
C:\Documents and Settings\admin\Cookies\admin@www.vegasred[2].txt -> TrackingCookie.Vegasred : No action taken.
C:\Documents and Settings\admin\Cookies\admin@webstat[1].txt -> TrackingCookie.Web-stat : No action taken.
:mozilla.17:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Weborama : No action taken.
:mozilla.18:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Weborama : No action taken.
:mozilla.19:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Weborama : No action taken.
:mozilla.20:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Weborama : No action taken.
:mozilla.21:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Weborama : No action taken.
:mozilla.43:C:\Documents and Settings\matt\Application Data\Mozilla\Firefox\Profiles\9zbvaejp.default\cookies.txt -> TrackingCookie.Weborama : No action taken.
:mozilla.44:C:\Documents and Settings\matt\Application Data\Mozilla\Firefox\Profiles\9zbvaejp.default\cookies.txt -> TrackingCookie.Weborama : No action taken.
:mozilla.96:C:\Documents and Settings\matt\Application Data\Mozilla\Firefox\Profiles\9zbvaejp.default\cookies.txt -> TrackingCookie.Weborama : No action taken.
C:\Documents and Settings\admin\Cookies\admin@weborama[1].txt -> TrackingCookie.Weborama : No action taken.
C:\Documents and Settings\matt\Cookies\matt@weborama[1].txt -> TrackingCookie.Weborama : No action taken.
C:\Documents and Settings\matt\Local Settings\Temp\Cookies\matt@weborama[2].txt -> TrackingCookie.Weborama : No action taken.
C:\Documents and Settings\matt\Local Settings\Temp\Cookies\matt@statse.webtrendslive[2].txt -> TrackingCookie.Webtrendslive : No action taken.
:mozilla.467:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Yieldmanager : No action taken.
C:\Documents and Settings\admin\Cookies\admin@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : No action taken.
C:\Documents and Settings\matt\Cookies\matt@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : No action taken.
:mozilla.26:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Zedo : No action taken.
:mozilla.27:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Zedo : No action taken.
:mozilla.28:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Zedo : No action taken.
:mozilla.29:C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\scqvqedu.default\cookies.txt -> TrackingCookie.Zedo : No action taken.
C:\Documents and Settings\matt\Cookies\matt@c5.zedo[2].txt -> TrackingCookie.Zedo : No action taken.
C:\Documents and Settings\matt\Cookies\matt@zedo[2].txt -> TrackingCookie.Zedo : No action taken.
C:\Documents and Settings\matt\Local Settings\Temp\NI.UWA6PV_0001_N91M2107\setup.exe -> Trojan.Fakealert : No action taken.

::Report end

Regis59 · Answer

rerelance le et supprime tout ce qu il trouve stpa+

rike47 · Answer

probleme avec adware.hotbar je n'arrive a l'effacer dernier rapport---------------------------------------------------------
ewido anti-spyware - Scan Report
---------------------------------------------------------

+ Created at: 23:26:21 10/08/2006

+ Scan result:

C:\Program Files\HbTools\Bin\4.8.0.0\HbtHostIE.dll -> Adware.HotBar : Cleaned.
C:\Program Files\HbTools\Bin\4.8.0.0\__delete_on_reboot__H_b_t_O_E_A_d_d_O_n_._e_x_e_ -> Adware.HotBar : Cleaned.
C:\Program Files\HbTools\Bin\4.8.0.0\__delete_on_reboot__H_b_t_S_r_v_._e_x_e_ -> Adware.HotBar : Cleaned.
C:\Program Files\HbTools\Bin\4.8.0.0\__delete_on_reboot__H_b_t_W_e_a_t_h_e_r_O_n_T_r_a_y_._e_x_e_ -> Adware.Hotbar : Cleaned.
C:\Program Files\HbTools\Bin\4.8.0.0\__delete_on_reboot__h_b_t_h_o_s_t_o_e_._d_l_l_ -> Adware.Hotbar : Cleaned.
C:\Program Files\HbTools\HBTV\__delete_on_reboot__H_B_T_V_H_e_l_p_e_r_._d_l_l_ -> Adware.Hotbar : Cleaned.
HKLM\SOFTWARE\HbTools -> Adware.HotBar : Cleaned.
HKLM\SOFTWARE\HbTools\HbTools -> Adware.HotBar : Cleaned.
HKLM\SOFTWARE\HbTools\HbTools\Upgrade -> Adware.HotBar : Cleaned.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools -> Adware.HotBar : Cleaned.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\Common -> Adware.HotBar : Cleaned.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\Common\Updates -> Adware.HotBar : Cleaned.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools -> Adware.HotBar : Cleaned.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools\EUI -> Adware.HotBar : Cleaned.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools\dynamic -> Adware.HotBar : Cleaned.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools\dynamicFail -> Adware.HotBar : Cleaned.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\HbTools\updates -> Adware.HotBar : Cleaned.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\Time -> Adware.HotBar : Cleaned.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\Time\HostIE -> Adware.HotBar : Cleaned.
HKU\S-1-5-21-1595622378-3432182778-3034342541-1006\Software\HbTools\Time\HostIE\Updates -> Adware.HotBar : Cleaned.
[1760] C:\Program Files\HbTools\Bin\4.8.0.0\HbtHostIE.dll -> Adware.HotBar : Cleaned.
[2320] c:\program files\hbtools\hbtv\hbtvhelper.dll -> Adware.Hotbar : Cleaned.
[2344] C:\Program Files\HbTools\Bin\4.8.0.0\HbtHostOE.dll -> Adware.Hotbar : Error during cleaning.
[2380] C:\Program Files\HbTools\Bin\4.8.0.0\HbtHostOE.dll -> Adware.Hotbar : Error during cleaning.
[2596] C:\Program Files\HbTools\Bin\4.8.0.0\HbtHostOE.dll -> Adware.Hotbar : Error during cleaning.
[3868] c:\program files\hbtools\hbtv\hbtvhelper.dll -> Adware.Hotbar : Cleaned.

::Report end

Regis59 · Answer

SalutSupprime ceci C:\Program Files\HbToolsRelance ewidoa+

Regis59 · Answer

Reremet un hijack thisa+

Regis59 · Answer

Refixe ceciO2 - BHO: HbTools - {74CC49F7-EB32-4A08-B204-948962A6E3DB} - C:\Program Files\HbTools\Bin\4.8.0.0\HbtHostIE.dll (file missing) O4 - HKLM\..\Run: [werfcjmlg] c:\windows\system32\werfcjmlg.exe werfcjmlg O4 - HKLM\..\Run: [HbTools] C:\Program Files\HbTools\Bin\4.8.0.0\HbtOEAddOn.exe O4 - HKLM\..\Run: [NI.UWA6PV_0001_N91M2107] "C:\Documents and Settings\matt\Bureau\WinAntiVirusPro2006FreeInstall_fr.exe" -nag O4 - HKLM\..\Run: [WeatherOnTray] C:\Program Files\HbTools\Bin\4.8.0.0\HbtWeatherOnTray.exe O4 - HKLM\..\Run: [gohwmvaxc] c:\windows\system32\gohwmvaxc.exe gohwmvaxc Supprime:C:\Program Files\HbToolsC:\Documents and Settings\matt\Bureau\WinAntiVirusPro2006FreeInstall_fr.exeredemarre et remet un loga+

rike47 · Answer

Logfile of HijackThis v1.99.1Scan saved at 16:24:12, on 11/08/2006Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Acer\Acer eConsole\MediaServerService.exeC:\Program Files\Alwil Software\Avast4\aswUpdSv.exeC:\Program Files\Alwil Software\Avast4\ashServ.exeC:\Program Files\ewido anti-spyware 4.0\guard.exeC:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exeC:\WINDOWS\Explorer.EXEC:\Program Files\Alwil Software\Avast4\ashMaiSv.exeC:\Program Files\Alwil Software\Avast4\ashWebSv.exeC:\Acer\Empowering Technology\eRecovery\Monitor.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\SOUNDMAN.EXEC:\Program Files\CyberLink\PowerDVD\PDVDServ.exeC:\Program Files\Java\jre1.5.0_06\bin\jusched.exeC:\WINDOWS\system32\VTTimer.exeC:\WINDOWS\system32\VTtrayp.exeC:\Program Files\Acer\Acer eMode Management\AspireService.exeC:\Program Files\Acer\Acer eConsole\MediaSync.exeC:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeC:\Program Files\ewido anti-spyware 4.0\ewido.exeC:\WINDOWS\system32\ctfmon.exeC:\Program Files\MSN Messenger\MsnMsgr.ExeC:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\fr-fr\bin\WindowsSearch.exeC:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\fr-fr\bin\WindowsSearchIndexer.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\system32\svchost.exeC:\Documents and Settings\admin\Mes documents\LimeWire\LimeWire.exeC:\Program Files\Windows Media Player\wmplayer.exeC:\Documents and Settings\admin\Bureau\HijackThis.exeR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECCR1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECCR0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = LiensO2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dllO2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dllO2 - BHO: HbTools - {74CC49F7-EB32-4A08-B204-948962A6E3DB} - C:\Program Files\HbTools\Bin\4.8.0.0\HbtHostIE.dll (file missing)O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dllO2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dllO2 - BHO: Barre d'outils MSN Search Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dllO2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - C:\Program Files\Microsoft Money\System\mnyviewer.dllO3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dllO3 - Toolbar: Barre d'outils MSN Search - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dllO3 - Toolbar: H&otbar - {74CC49F7-EB32-4A08-B204-948962A6E3DB} - C:\Program Files\HbTools\Bin\4.8.0.0\HbtHostIE.dll (file missing)O4 - HKLM\..\Run: [LaunchApp] AlaunchO4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXEO4 - HKLM\..\Run: [ntiMUI] c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7
tiMUI.exeO4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exeO4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNCO4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNCO4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMENameO4 - HKLM\..\Run: [VTTimer] VTTimer.exeO4 - HKLM\..\Run: [VTTrayp] VTtrayp.exeO4 - HKLM\..\Run: [AspireService] C:\Program Files\Acer\Acer eMode Management\AspireService.exeO4 - HKLM\..\Run: [MediaSync] C:\Program Files\Acer\Acer eConsole\MediaSync.exeO4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\Monitor.exeO4 - HKLM\..\Run: [MoneyStartUp10.0] "C:\Program Files\Microsoft Money\System\Activation.exe"O4 - HKLM\..\Run: [Register MediaRing Talk] C:\Program Files\MediaRing Talkegister.exeO4 - HKLM\..\Run: [PowerDVD] C:\Program Files\CyberLink\PowerDVD\powerdvd.exe /autostartO4 - HKLM\..\Run: [werfcjmlg] c:\windows\system32\werfcjmlg.exe werfcjmlgO4 - HKLM\..\Run: [HbTools] C:\Program Files\HbTools\Bin\4.8.0.0\HbtOEAddOn.exeO4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeO4 - HKLM\..\Run: [NI.UWA6PV_0001_N91M2107] "C:\Documents and Settings\matt\Bureau\WinAntiVirusPro2006FreeInstall_fr.exe" -nag O4 - HKLM\..\Run: [WeatherOnTray] C:\Program Files\HbTools\Bin\4.8.0.0\HbtWeatherOnTray.exeO4 - HKLM\..\Run: [gohwmvaxc] c:\windows\system32\gohwmvaxc.exe gohwmvaxcO4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimizedO4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exeO4 - HKCU\..\Run: [MoneyAgent] ""C:\Program Files\Microsoft Money\System\Money Express.exe""O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /backgroundO4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Readereader_sl.exeO4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXEO4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\fr-fr\bin\WindowsSearch.exeO8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll/search.htmO8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/229?39208bbce13c48daa832bb1bb88ab835O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/230?39208bbce13c48daa832bb1bb88ab835O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dllO9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dllO9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyviewer.dllO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO16 - DPF: {9D190AE6-C81E-4039-8061-978EBAD10073} (F-Secure Online Scanner 3.0) - https://www.f-secure.com/en/home/supportO18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLLO18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLLO20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dllO21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dllO23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\Acer\Acer eConsole\MediaServerService.exeO23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exeO23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exeO23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              merci de ton aide mais je ne sais pas si j'ai tout bien fait  dit moi si j'ai fait une erreur????

rike47 · Answer

erreur hLogfile of HijackThis v1.99.1Scan saved at 00:42:53, on 12/08/2006Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Acer\Acer eConsole\MediaServerService.exeC:\Program Files\Alwil Software\Avast4\aswUpdSv.exeC:\Program Files\Alwil Software\Avast4\ashServ.exeC:\Program Files\ewido anti-spyware 4.0\guard.exeC:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exeC:\Program Files\Alwil Software\Avast4\ashMaiSv.exeC:\Program Files\Alwil Software\Avast4\ashWebSv.exeC:\Acer\Empowering Technology\eRecovery\Monitor.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\SOUNDMAN.EXEC:\Program Files\CyberLink\PowerDVD\PDVDServ.exeC:\Program Files\Java\jre1.5.0_06\bin\jusched.exeC:\WINDOWS\system32\VTTimer.exeC:\WINDOWS\system32\VTtrayp.exeC:\Program Files\Acer\Acer eMode Management\AspireService.exeC:\Program Files\Acer\Acer eConsole\MediaSync.exeC:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeC:\Program Files\ewido anti-spyware 4.0\ewido.exeC:\WINDOWS\system32\ctfmon.exeC:\Program Files\MSN Messenger\MsnMsgr.ExeC:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\fr-fr\bin\WindowsSearch.exeC:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\fr-fr\bin\WindowsSearchIndexer.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\system32\svchost.exeC:\Documents and Settings\admin\Mes documents\LimeWire\LimeWire.exeC:\Program Files\Internet Explorer\iexplore.exeC:\WINDOWS\explorer.exeC:\Program Files\Microsoft Money\System\urlmap.exeC:\Documents and Settings\admin\Bureau\HijackThis.exeR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECCR1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECCR0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = LiensO2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dllO2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dllO2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dllO2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dllO2 - BHO: Barre d'outils MSN Search Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dllO2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - C:\Program Files\Microsoft Money\System\mnyviewer.dllO3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dllO3 - Toolbar: Barre d'outils MSN Search - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dllO3 - Toolbar: (no name) - {74CC49F7-EB32-4A08-B204-948962A6E3DB} - (no file)O4 - HKLM\..\Run: [LaunchApp] AlaunchO4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXEO4 - HKLM\..\Run: [ntiMUI] c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7
tiMUI.exeO4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exeO4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNCO4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNCO4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMENameO4 - HKLM\..\Run: [VTTimer] VTTimer.exeO4 - HKLM\..\Run: [VTTrayp] VTtrayp.exeO4 - HKLM\..\Run: [AspireService] C:\Program Files\Acer\Acer eMode Management\AspireService.exeO4 - HKLM\..\Run: [MediaSync] C:\Program Files\Acer\Acer eConsole\MediaSync.exeO4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\Monitor.exeO4 - HKLM\..\Run: [MoneyStartUp10.0] "C:\Program Files\Microsoft Money\System\Activation.exe"O4 - HKLM\..\Run: [Register MediaRing Talk] C:\Program Files\MediaRing Talkegister.exeO4 - HKLM\..\Run: [PowerDVD] C:\Program Files\CyberLink\PowerDVD\powerdvd.exe /autostartO4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeO4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimizedO4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exeO4 - HKCU\..\Run: [MoneyAgent] ""C:\Program Files\Microsoft Money\System\Money Express.exe""O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /backgroundO4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Readereader_sl.exeO4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXEO4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\fr-fr\bin\WindowsSearch.exeO8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll/search.htmO8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/229?39208bbce13c48daa832bb1bb88ab835O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/230?39208bbce13c48daa832bb1bb88ab835O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dllO9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dllO9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyviewer.dllO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO16 - DPF: {9D190AE6-C81E-4039-8061-978EBAD10073} (F-Secure Online Scanner 3.0) - https://www.f-secure.com/en/home/supportO18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLLO18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLLO20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dllO21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dllO23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\Acer\Acer eConsole\MediaServerService.exeO23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exeO23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exeO23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exeijackthis le dernier est le bon excuse moi

Regis59 · Answer

SalutOu en sont tes soucis?Pour ta protection, il serait bien d installer un pare feu:S%E9curit%E9 Prot%E9ger un ordinateur contre les malwares d%27Interneta+

Regis59 · Answer

SalutA moi de le dire? lolC est marrant ce que tu dis lolD'apres ce que tu me dis, tout est clean.Apres on peut pousser l analyse et multiplier les scans.On peut eventuellement faire un scan en ligne pour s assurer que tout est ok.Etant donné que tu me demande totalement desinfecté,  on va voir:Lance ce scan en ligne: http://www.bitdefender.fr/scan8/ie.html  Copie/colle le rapportLe pare feu windows n est pas un veritable pare feu puisqu il ne controle pas les entrees/sorties sur ton pc. Oui tu devrais en telecharger un et l installer.A tout a l heure, la, je vais scanner mon pc, et le desinfecter aussi, ca va faire quelques mois que je ne m en suis pas occupé...A +

Regis59 · Answer

salutPerso je te conseillerais zone alarme.relance un scan et remet le rapporta+

rike47 · Answer

plus rien ne marche avec zone alarme en conflit avec avast et aucune page internet ne s'ouvre???

rike47 · Answer

Logfile of HijackThis v1.99.1Scan saved at 22:49:47, on 12/08/2006Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\ZoneLabs\vsmon.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Acer\Acer eConsole\MediaServerService.exeC:\Program Files\Alwil Software\Avast4\aswUpdSv.exeC:\Program Files\Alwil Software\Avast4\ashServ.exeC:\WINDOWS\Explorer.EXEC:\Program Files\ewido anti-spyware 4.0\guard.exeC:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exeC:\Program Files\Alwil Software\Avast4\ashMaiSv.exeC:\WINDOWS\SOUNDMAN.EXEC:\Program Files\CyberLink\PowerDVD\PDVDServ.exeC:\Acer\Empowering Technology\eRecovery\Monitor.exeC:\Program Files\Java\jre1.5.0_06\bin\jusched.exeC:\Program Files\Alwil Software\Avast4\ashWebSv.exeC:\WINDOWS\system32\VTTimer.exeC:\WINDOWS\system32\VTtrayp.exeC:\Program Files\Acer\Acer eMode Management\AspireService.exeC:\Program Files\Acer\Acer eConsole\MediaSync.exeC:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeC:\Program Files\ewido anti-spyware 4.0\ewido.exeC:\Program Files\Zone Labs\ZoneAlarm\zlclient.exeC:\WINDOWS\system32\ctfmon.exeC:\Program Files\MSN Messenger\MsnMsgr.ExeC:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\fr-fr\bin\WindowsSearch.exeC:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\fr-fr\bin\WindowsSearchIndexer.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Internet Explorer\iexplore.exeC:\Program Files\Internet Explorer\iexplore.exeC:\Program Files\Internet Explorer\iexplore.exeC:\Program Files\Microsoft Money\System\urlmap.exeC:\Documents and Settings\admin\Bureau\HijackThis.exeR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECCR1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECCR0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = LiensO2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dllO2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dllO2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dllO2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dllO2 - BHO: Barre d'outils MSN Search Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dllO2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - C:\Program Files\Microsoft Money\System\mnyviewer.dllO3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dllO3 - Toolbar: Barre d'outils MSN Search - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dllO3 - Toolbar: (no name) - {74CC49F7-EB32-4A08-B204-948962A6E3DB} - (no file)O4 - HKLM\..\Run: [LaunchApp] AlaunchO4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXEO4 - HKLM\..\Run: [ntiMUI] c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7
tiMUI.exeO4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exeO4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNCO4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNCO4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMENameO4 - HKLM\..\Run: [VTTimer] VTTimer.exeO4 - HKLM\..\Run: [VTTrayp] VTtrayp.exeO4 - HKLM\..\Run: [AspireService] C:\Program Files\Acer\Acer eMode Management\AspireService.exeO4 - HKLM\..\Run: [MediaSync] C:\Program Files\Acer\Acer eConsole\MediaSync.exeO4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\Monitor.exeO4 - HKLM\..\Run: [MoneyStartUp10.0] "C:\Program Files\Microsoft Money\System\Activation.exe"O4 - HKLM\..\Run: [Register MediaRing Talk] C:\Program Files\MediaRing Talkegister.exeO4 - HKLM\..\Run: [PowerDVD] C:\Program Files\CyberLink\PowerDVD\powerdvd.exe /autostartO4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeO4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimizedO4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exeO4 - HKCU\..\Run: [MoneyAgent] ""C:\Program Files\Microsoft Money\System\Money Express.exe""O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /backgroundO4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Readereader_sl.exeO4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXEO4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\fr-fr\bin\WindowsSearch.exeO8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll/search.htmO8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/229?39208bbce13c48daa832bb1bb88ab835O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/230?39208bbce13c48daa832bb1bb88ab835O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dllO9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dllO9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyviewer.dllO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cabO16 - DPF: {9D190AE6-C81E-4039-8061-978EBAD10073} (F-Secure Online Scanner 3.0) - https://www.f-secure.com/en/home/supportO18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLLO18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLLO20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dllO21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dllO23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\Acer\Acer eConsole\MediaServerService.exeO23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exeO23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exeO23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exeO23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

Regis59 · Answer

salutle conflit est inexistant, il l indique mais t auras pas de problemesPour surfer, autorises tu tout ce qui concerne ton FAI, ton navigateur mais aussi generic host process for win32 a acceder a internet?a+

rike47 · Answer

salut a tu vu le rapport hijacthis  et bitdefender  d'apres le rapport je serai encore infecter

Regis59 · Answer

Rerelance un scan bitdefender et donne le rapporta+

Regis59 · Answer

SalutTelecharge Chaos Shredder:https://www.01net.com/telecharger/windows/Utilitaire/cryptage_et_securite/fiches/23822.html Démo d’utilisation ici (merci à Balltrap34 pour cette réalisation)http://pageperso.aol.fr/balltrap34/demochaos.swfComme sur la vidéo, supprime ceci:C:\RECYCLER\S-1-5-21-1595622378-3432182778-3034342541-1006\Dc2663\hbtools[1].exeC:\WINDOWS\system32\aekbiyqq.exeRedemarre ton PC et relance un scan Bitdefender Online.A+

Regis59 · Answer

Salut¤Désactive ta restauration système (uniquement si tu es sous XP): Clic droit sur poste de travail puis, propriété, tu cliques sur onglet restauration système tu coches la case « désactiver la restauration » et applique.Puis,¤Réactive ta restauration système (uniquement si tu es sous XP): Clic droit sur poste de travail puis, propriété, tu cliques sur onglet restauration système tu décoches la case « désactiver la restauration » et applique.Dis moi ensuite ou en sont tes soucis?A+

rike47 · Answer

tous mes soucis on l'air resolu rapport  bit defender nickel aucun virus trouver plus de pubs intempestive pour le pare feu j'ai choisi kirio qui a l' air un peu moins compliquer que zone alarm; merci pour ton aide t'ai un pros de l'imformatique  si j'ai d'autre soucis je te recontacterer     merci encore    bravo regis 59

Regis59 · Answer

Salut Rike,content que tes soucis soient résolus !!!!Vraiment !Bon surfs et si tu as besoin passe nous voira+

Infecte par system doctor

37 réponses

Votre réponse

Discussions similaires

Newsletters