[virus] iexplore qui se cache en sans echec
Tykkle2
Messages postés
60
Statut
Membre
-
Tykkle2 Messages postés 60 Statut Membre -
Tykkle2 Messages postés 60 Statut Membre -
salut salut, apparament il y a plusieur personne infecté par iexplore mais je n'ai pas vu quelqu'un parler de ce qu'il m'arrive :
en mode sans echec le processus "iexplore.exe" apparait dans le gestionnaire et disparair puis réaparait a l infini, le pointeur se transforme a la meme vitesse du pointeur normal au sablier :S
j'ai dèja :
ad-aware
spybot
ewido
ccleaner
smitfraudfix
hijackthis
je vais vous poster le log de hijackthis car ewdo et smifraud n'ont rien trouver:
Logfile of HijackThis v1.99.1
Scan saved at 17:00:35, on 18/08/2006
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\System32\ctfmon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\explorer.exe
C:\Documents and Settings\Léo\Bureau\hijack et smit\HijackThis.exe
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: (no name) - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: NTIECatcher Class - {C56CB6B0-0D96-11D6-8C65-B2868B609932} - C:\Program Files\Xi\NetTransport 2\NTIEHelper.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\System32\ctfmon.exe
O8 - Extra context menu item: &Télécharger avec NetTransport - C:\Program Files\Xi\NetTransport 2\NTAddLink.html
O8 - Extra context menu item: Tout t&élécharger avec NetTransport - C:\Program Files\Xi\NetTransport 2\NTAddList.html
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site....
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - AppInit_DLLs: wmspfsus.dll lprhwmpl.dll dspglv.dll wdmconf.dll
O20 - Winlogon Notify: artm_newreg - C:\Documents and Settings\All Users\Documents\Settings\artm_new.dll
O20 - Winlogon Notify: msrdusrc - C:\WINDOWS\System32\msrdusrc.dll
O21 - SSODL: DCOM Server 2236 - {2C1CD3D7-86AC-4068-93BC-A02304BB2236} - (no file)
O21 - SSODL: vrTfcZHDn - {F893FCB7-5239-561D-5398-BC1EC5E0012D} - (no file)
O23 - Service: MS Software Shadow Download Provider (dnlsvc) - Unknown owner - C:\DOCUME~1\LO4751~1\LOCALS~1\Temp\dnlsvc.exe (file missing)
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
voila j'espere que vous allez trouvez une solution a mon probleme :S
en mode sans echec le processus "iexplore.exe" apparait dans le gestionnaire et disparair puis réaparait a l infini, le pointeur se transforme a la meme vitesse du pointeur normal au sablier :S
j'ai dèja :
ad-aware
spybot
ewido
ccleaner
smitfraudfix
hijackthis
je vais vous poster le log de hijackthis car ewdo et smifraud n'ont rien trouver:
Logfile of HijackThis v1.99.1
Scan saved at 17:00:35, on 18/08/2006
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\System32\ctfmon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\explorer.exe
C:\Documents and Settings\Léo\Bureau\hijack et smit\HijackThis.exe
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: (no name) - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: NTIECatcher Class - {C56CB6B0-0D96-11D6-8C65-B2868B609932} - C:\Program Files\Xi\NetTransport 2\NTIEHelper.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\System32\ctfmon.exe
O8 - Extra context menu item: &Télécharger avec NetTransport - C:\Program Files\Xi\NetTransport 2\NTAddLink.html
O8 - Extra context menu item: Tout t&élécharger avec NetTransport - C:\Program Files\Xi\NetTransport 2\NTAddList.html
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site....
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - AppInit_DLLs: wmspfsus.dll lprhwmpl.dll dspglv.dll wdmconf.dll
O20 - Winlogon Notify: artm_newreg - C:\Documents and Settings\All Users\Documents\Settings\artm_new.dll
O20 - Winlogon Notify: msrdusrc - C:\WINDOWS\System32\msrdusrc.dll
O21 - SSODL: DCOM Server 2236 - {2C1CD3D7-86AC-4068-93BC-A02304BB2236} - (no file)
O21 - SSODL: vrTfcZHDn - {F893FCB7-5239-561D-5398-BC1EC5E0012D} - (no file)
O23 - Service: MS Software Shadow Download Provider (dnlsvc) - Unknown owner - C:\DOCUME~1\LO4751~1\LOCALS~1\Temp\dnlsvc.exe (file missing)
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
voila j'espere que vous allez trouvez une solution a mon probleme :S
A voir également:
- [virus] iexplore qui se cache en sans echec
- Mode sans echec ps4 - Guide
- Copie caché - Guide
- Démarrage sans échec - Guide
- Numéro caché - Guide
- Jeux google caché - Guide
14 réponses
Salut,
il te manque un anti-virus et un pare-feu à premiere vue, de plus, ton systeme est très loin d'être à jour..
Relance HijackThis, choisis "do a scan only" coche la case devant les lignes ci-dessous et clic en bas sur "fix checked"
O2 - BHO: (no name) - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - (no file)
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\System32\ctfmon.exe
O20 - AppInit_DLLs: wmspfsus.dll lprhwmpl.dll dspglv.dll wdmconf.dll
O20 - Winlogon Notify: artm_newreg - C:\Documents and Settings\All Users\Documents\Settings\artm_new.dll
O20 - Winlogon Notify: msrdusrc - C:\WINDOWS\System32\msrdusrc.dll
O21 - SSODL: DCOM Server 2236 - {2C1CD3D7-86AC-4068-93BC-A02304BB2236} - (no file)
O21 - SSODL: vrTfcZHDn - {F893FCB7-5239-561D-5398-BC1EC5E0012D} - (no file)
O23 - Service: MS Software Shadow Download Provider (dnlsvc) - Unknown owner - C:\DOCUME~1\LO4751~1\LOCALS~1\Temp\dnlsvc.exe (file missing)
clic sur demarrer, executer, tape: services.msc puis cherche cette ligne et regle la sur "manuel"
MS Software Shadow Download Provider
Refais un nettoyage complet avec Ccleaner(jte le met au cas ou)
Fais ce nettoyage: (à faire réguliérement)
¤Telecharges et installes ceci:
CCleaner:
Ccleaner
dans la colonne de gauche clic sur "erreurs" coches toutes les cases, puis cliques en bas sur "chercher des erreurs" une fois finit, cliques sur "reparer les erreurs" et tu aura un message pour sauvegarder ta base de registre tu dis "oui" puis tu recommences jusqu'a ce qu'il te trouve plus d'erreurs.
Les sauvegardes que tu aura faites tu pourra les supprimer si ton ordinateur n'a plus de problémes
¤Relance Ccleaner, vas dans l'onglet "nettoyeur" present sur la gauche, decoches la derniere case (Avancé si elle est cochée) puis clic sur "lancer le nettoyage"
Maintenant, installes cet anti-virus et ce pare-feu gratuit pour etre proteger
Kerio: (pare-feu, qui reste gratuit après la periode d'essai de 21 jours!)
Pare-feu Kerio
-tutorial: pour configurer et comprendre l'utilisation de Kerio
https://www.vulgarisation-informatique.com/kerio.php
Avast: (anti-virus gratuit en français!)
Avast Antivirus
Mets à jour tous tes logiciels puis scan completement ton PC.
Dès que c'est fait mets à jour ton systeme puis remets un rapport hijackthis
*¤ Mises à jours ¤
Clic sur "demarrer", "tous les programmes", tout en haut "Windows Update" puis telecharge toutes les mises à jour qu'il te trouve, tu peux refaire cette opération plusieurs fois à la suite, même si ton PC aura redemarrer, car ton systèe est loin d'être à jour ;-)
A++
il te manque un anti-virus et un pare-feu à premiere vue, de plus, ton systeme est très loin d'être à jour..
Relance HijackThis, choisis "do a scan only" coche la case devant les lignes ci-dessous et clic en bas sur "fix checked"
O2 - BHO: (no name) - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - (no file)
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\System32\ctfmon.exe
O20 - AppInit_DLLs: wmspfsus.dll lprhwmpl.dll dspglv.dll wdmconf.dll
O20 - Winlogon Notify: artm_newreg - C:\Documents and Settings\All Users\Documents\Settings\artm_new.dll
O20 - Winlogon Notify: msrdusrc - C:\WINDOWS\System32\msrdusrc.dll
O21 - SSODL: DCOM Server 2236 - {2C1CD3D7-86AC-4068-93BC-A02304BB2236} - (no file)
O21 - SSODL: vrTfcZHDn - {F893FCB7-5239-561D-5398-BC1EC5E0012D} - (no file)
O23 - Service: MS Software Shadow Download Provider (dnlsvc) - Unknown owner - C:\DOCUME~1\LO4751~1\LOCALS~1\Temp\dnlsvc.exe (file missing)
clic sur demarrer, executer, tape: services.msc puis cherche cette ligne et regle la sur "manuel"
MS Software Shadow Download Provider
Refais un nettoyage complet avec Ccleaner(jte le met au cas ou)
Fais ce nettoyage: (à faire réguliérement)
¤Telecharges et installes ceci:
CCleaner:
Ccleaner
dans la colonne de gauche clic sur "erreurs" coches toutes les cases, puis cliques en bas sur "chercher des erreurs" une fois finit, cliques sur "reparer les erreurs" et tu aura un message pour sauvegarder ta base de registre tu dis "oui" puis tu recommences jusqu'a ce qu'il te trouve plus d'erreurs.
Les sauvegardes que tu aura faites tu pourra les supprimer si ton ordinateur n'a plus de problémes
¤Relance Ccleaner, vas dans l'onglet "nettoyeur" present sur la gauche, decoches la derniere case (Avancé si elle est cochée) puis clic sur "lancer le nettoyage"
Maintenant, installes cet anti-virus et ce pare-feu gratuit pour etre proteger
Kerio: (pare-feu, qui reste gratuit après la periode d'essai de 21 jours!)
Pare-feu Kerio
-tutorial: pour configurer et comprendre l'utilisation de Kerio
https://www.vulgarisation-informatique.com/kerio.php
Avast: (anti-virus gratuit en français!)
Avast Antivirus
Mets à jour tous tes logiciels puis scan completement ton PC.
Dès que c'est fait mets à jour ton systeme puis remets un rapport hijackthis
*¤ Mises à jours ¤
Clic sur "demarrer", "tous les programmes", tout en haut "Windows Update" puis telecharge toutes les mises à jour qu'il te trouve, tu peux refaire cette opération plusieurs fois à la suite, même si ton PC aura redemarrer, car ton systèe est loin d'être à jour ;-)
A++
mmh désolé mais je peut pas mettre metre windows a jour avec windows update puisqu'on m'a refilé une version piraté de windows ;(...
mais bon je vais faire le reste sauf enlever la ligne de hijackthis :
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
enfin peut etre que je me trompe mais si j'enleve cette ligne, tout les programme que j'ai décoché au démarrage dans le msconfig vont revenir au démarrage non ?
edit : ah et aussi, j'ai dèja ewido comme anti-virus enfin si je me trompe pas c'est un antivirus, amoins que ca soit juste un anti spyware ? o_O
edit2:pour le firewall ca va pas etre vraiment vraiment dur a configurer si y a un routeur ? avec 5 pc en comptant le mien ?
et aussi pour créer des serveur sur des jeux ?
mais bon je vais faire le reste sauf enlever la ligne de hijackthis :
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
enfin peut etre que je me trompe mais si j'enleve cette ligne, tout les programme que j'ai décoché au démarrage dans le msconfig vont revenir au démarrage non ?
edit : ah et aussi, j'ai dèja ewido comme anti-virus enfin si je me trompe pas c'est un antivirus, amoins que ca soit juste un anti spyware ? o_O
edit2:pour le firewall ca va pas etre vraiment vraiment dur a configurer si y a un routeur ? avec 5 pc en comptant le mien ?
et aussi pour créer des serveur sur des jeux ?
cette ligne:
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
apparait dès que l'on modifi le demarrage donc tu peux l'enlever sans soucis.
Ewido est bien qu'un anti-spywares donc pense à rajouter Avast ;-)
pour le firewall ca va pas etre vraiment vraiment dur a configurer si y a un routeur ?je pense pas non surtout s'il sont tous en réseau ça devrait aller la meilleur solution de le savoir c'est d'essayer :-)
Fait ce scan anti-virus en ligne avec Internet Explorer, accepte l'active X; la barre anti-popup du SP (en haut) va se mettre à clignoter, clic dessus et choisis "accepter l'active X" pour faire fonctionner le scan anti-virus.
Une fois qu'il a terminé colle le rapport ici stp
https://www.bitdefender.com/toolbox/
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
apparait dès que l'on modifi le demarrage donc tu peux l'enlever sans soucis.
Ewido est bien qu'un anti-spywares donc pense à rajouter Avast ;-)
pour le firewall ca va pas etre vraiment vraiment dur a configurer si y a un routeur ?je pense pas non surtout s'il sont tous en réseau ça devrait aller la meilleur solution de le savoir c'est d'essayer :-)
Fait ce scan anti-virus en ligne avec Internet Explorer, accepte l'active X; la barre anti-popup du SP (en haut) va se mettre à clignoter, clic dessus et choisis "accepter l'active X" pour faire fonctionner le scan anti-virus.
Une fois qu'il a terminé colle le rapport ici stp
https://www.bitdefender.com/toolbox/
okidoki mais je ferais le scan bitdefender pendant la nuit vu qu'il me dit : estimated time: 4heure :S
hummm j ai bien l'impression que bitdefender a beaucoup de mal avec les fichier torrent mais ewido bloquait dessus aussi...
je vais devoir attendre que les telechargement soit fini avant de faire le scan :S soit environ dans 2 ou 3 jours
je suis pas completement sur que bitdefender est completement bloqué, ptete qu'il reste juste loooooonnnngggtemp dessus, je me recouche et je verai bien apres :D (m'enfin le estimated time left augmente toutes les secondes, d' environ +5secondes)
je vais devoir attendre que les telechargement soit fini avant de faire le scan :S soit environ dans 2 ou 3 jours
je suis pas completement sur que bitdefender est completement bloqué, ptete qu'il reste juste loooooonnnngggtemp dessus, je me recouche et je verai bien apres :D (m'enfin le estimated time left augmente toutes les secondes, d' environ +5secondes)
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
oulala y a du monde dans le rapport :
BitDefender Online Scanner
Scan report generated at: Sat, Aug 19, 2006 - 08:42:11
Scan path: A:\;C:\;D:\;E:\;G:\;
Statistics
Time
05:32:03
Files
558387
Folders
8866
Boot Sectors
3
Archives
3430
Packed Files
41653
Results
Identified Viruses
13
Infected Files
34
Suspect Files
0
Warnings
0
Disinfected
1
Deleted Files
28
Engines Info
Virus Definitions
449795
Engine build
AVCORE v1.0 (build 2310) (i386) (Apr 17 2006 16:24:38)
Scan plugins
13
Archive plugins
39
Unpack plugins
5
E-mail plugins
6
System plugins
1
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\Documents and Settings\Léo\Local Settings\Application Data\a6e2a627.exe
Infected with: BehavesLike:Win32.ExplorerHijack
C:\Documents and Settings\Léo\Local Settings\Application Data\a6e2a627.exe
Disinfection failed
C:\Documents and Settings\Léo\Local Settings\Application Data\a6e2a627.exe
Deleted
C:\Program Files\Bodom-Child - RaBBi\Bodom-Child - RaBBi\RGSS\Furries\AIO_Tools\Tools\Porn Tools AIO\AutoPlay\formfinal\form.exe
Infected with: Trojan.Hacktool.Webhack.A
C:\Program Files\Bodom-Child - RaBBi\Bodom-Child - RaBBi\RGSS\Furries\AIO_Tools\Tools\Porn Tools AIO\AutoPlay\formfinal\form.exe
Disinfection failed
C:\Program Files\Bodom-Child - RaBBi\Bodom-Child - RaBBi\RGSS\Furries\AIO_Tools\Tools\Porn Tools AIO\AutoPlay\formfinal\form.exe
Deleted
C:\Program Files\Bodom-Child - RaBBi\Bodom-Child - RaBBi\RGSS\Standard\fatalrelations.zip=>fatalrelations/fatalrelation/RELATION.VIR
Infected with: Win95.CIH.Gen
C:\Program Files\Bodom-Child - RaBBi\Bodom-Child - RaBBi\RGSS\Standard\fatalrelations.zip=>fatalrelations/fatalrelation/RELATION.VIR
Disinfected
C:\Program Files\Bodom-Child - RaBBi\Bodom-Child - RaBBi\RGSS\Standard\fatalrelations.zip
Updated
C:\SWAT 4 keygen by HAANDI.exe=>(ZIP Sfx o)=>run.exe=>(NSIS o)=>lzma_nsis0006
Infected with: Generic.Zlob.47703FD7
C:\SWAT 4 keygen by HAANDI.exe=>(ZIP Sfx o)=>run.exe=>(NSIS o)=>lzma_nsis0006
Disinfection failed
C:\SWAT 4 keygen by HAANDI.exe=>(ZIP Sfx o)=>run.exe=>(NSIS o)=>lzma_nsis0006
Deleted
C:\SWAT 4 keygen by HAANDI.exe=>(ZIP Sfx o)=>run.exe=>(NSIS o)
Update failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP364\A0125670.exe
Infected with: Trojan.Prizafos.A
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP364\A0125670.exe
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP364\A0125670.exe
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP364\A0125682.exe
Infected with: Backdoor.Agent.TA
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP364\A0125682.exe
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP364\A0125682.exe
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP364\A0125686.exe
Infected with: Trojan.Prizafos.A
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP364\A0125686.exe
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP364\A0125686.exe
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP364\A0125687.exe
Infected with: Trojan.Hiddenpatch.A
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP364\A0125687.exe
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP364\A0125687.exe
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126019.exe
Infected with: Backdoor.Agent.TA
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126019.exe
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126019.exe
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126025.exe
Infected with: Trojan.Prizafos.A
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126025.exe
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126025.exe
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126688.exe
Infected with: Trojan.Apea.A
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126688.exe
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126688.exe
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126689.dll
Infected with: Trojan.Apea.A
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126689.dll
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126689.dll
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126691.dll
Infected with: Trojan.Antiav.3.9
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126691.dll
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126691.dll
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126692.sys
Infected with: Backdoor.ForBot.M
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126692.sys
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126692.sys
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP366\A0126699.exe
Infected with: Trojan.Prizafos.A
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP366\A0126699.exe
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP366\A0126699.exe
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126706.exe
Infected with: Backdoor.Agent.TA
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126706.exe
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126706.exe
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126707.dll
Infected with: Trojan.Prizafos.A
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126707.dll
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126707.dll
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126708.exe
Infected with: Trojan.Prizafos.A
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126708.exe
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126708.exe
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126709.dll
Infected with: Trojan.Prizafos.A
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126709.dll
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126709.dll
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126710.exe
Infected with: Trojan.Prizafos.A
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126710.exe
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126710.exe
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126733.exe
Infected with: Backdoor.Agent.TA
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126733.exe
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126733.exe
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0127107.exe
Infected with: Trojan.Prizafos.A
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0127107.exe
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0127107.exe
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0127110.exe
Infected with: BehavesLike:Win32.ExplorerHijack
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0127110.exe
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0127110.exe
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0127111.exe
Infected with: Trojan.Hacktool.Webhack.A
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0127111.exe
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0127111.exe
Deleted
C:\WINDOWS\sysmm4.exe
Infected with: Trojan.Prizafos.A
C:\WINDOWS\sysmm4.exe
Disinfection failed
C:\WINDOWS\sysmm4.exe
Delete failed
C:\WINDOWS\system32\a6e2a627.exe
Infected with: BehavesLike:Win32.ExplorerHijack
C:\WINDOWS\system32\a6e2a627.exe
Disinfection failed
C:\WINDOWS\system32\a6e2a627.exe
Deleted
C:\WINDOWS\system32\aclaud.dll
Infected with: Trojan.Prizafos.A
C:\WINDOWS\system32\aclaud.dll
Disinfection failed
C:\WINDOWS\system32\aclaud.dll
Delete failed
C:\WINDOWS\system32\drivers\etc\hosts.20060808-180451.backup
Infected with: Generic.Qhost.FDA5AEEA
C:\WINDOWS\system32\drivers\etc\hosts.20060808-180451.backup
Disinfection failed
C:\WINDOWS\system32\drivers\etc\hosts.20060808-180451.backup
Deleted
C:\WINDOWS\system32\msrdusrc.exe
Infected with: Backdoor.Agent.TA
C:\WINDOWS\system32\msrdusrc.exe
Disinfection failed
C:\WINDOWS\system32\msrdusrc.exe
Delete failed
C:\WINDOWS\system32\spoolsvv.exe
Infected with: Win32.FpuJunk.2
C:\WINDOWS\system32\spoolsvv.exe
Disinfection failed
C:\WINDOWS\system32\spoolsvv.exe
Deleted
C:\WINDOWS\system32\w32stat.exe
Infected with: Trojan.Prizafos.A
C:\WINDOWS\system32\w32stat.exe
Disinfection failed
C:\WINDOWS\system32\w32stat.exe
Deleted
C:\WINDOWS\system32\wdmconf.dll
Infected with: Trojan.Prizafos.A
C:\WINDOWS\system32\wdmconf.dll
Disinfection failed
C:\WINDOWS\system32\wdmconf.dll
Delete failed
C:\WINDOWS\Temp\__delete_on_reboot__a_r_t_7_3_D_2_._t_m_p_
Infected with: Win32.FpuJunk.2
C:\WINDOWS\Temp\__delete_on_reboot__a_r_t_7_3_D_2_._t_m_p_
Disinfection failed
C:\WINDOWS\Temp\__delete_on_reboot__a_r_t_7_3_D_2_._t_m_p_
Deleted
C:\WINDOWS\__delete_on_reboot__c_o_m_d_l_j_3_2_._d_l_l_
Infected with: Trojan.Proxy.Agent.JI
C:\WINDOWS\__delete_on_reboot__c_o_m_d_l_j_3_2_._d_l_l_
Disinfection failed
C:\WINDOWS\__delete_on_reboot__c_o_m_d_l_j_3_2_._d_l_l_
Delete failed
BitDefender Online Scanner
Scan report generated at: Sat, Aug 19, 2006 - 08:42:11
Scan path: A:\;C:\;D:\;E:\;G:\;
Statistics
Time
05:32:03
Files
558387
Folders
8866
Boot Sectors
3
Archives
3430
Packed Files
41653
Results
Identified Viruses
13
Infected Files
34
Suspect Files
0
Warnings
0
Disinfected
1
Deleted Files
28
Engines Info
Virus Definitions
449795
Engine build
AVCORE v1.0 (build 2310) (i386) (Apr 17 2006 16:24:38)
Scan plugins
13
Archive plugins
39
Unpack plugins
5
E-mail plugins
6
System plugins
1
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\Documents and Settings\Léo\Local Settings\Application Data\a6e2a627.exe
Infected with: BehavesLike:Win32.ExplorerHijack
C:\Documents and Settings\Léo\Local Settings\Application Data\a6e2a627.exe
Disinfection failed
C:\Documents and Settings\Léo\Local Settings\Application Data\a6e2a627.exe
Deleted
C:\Program Files\Bodom-Child - RaBBi\Bodom-Child - RaBBi\RGSS\Furries\AIO_Tools\Tools\Porn Tools AIO\AutoPlay\formfinal\form.exe
Infected with: Trojan.Hacktool.Webhack.A
C:\Program Files\Bodom-Child - RaBBi\Bodom-Child - RaBBi\RGSS\Furries\AIO_Tools\Tools\Porn Tools AIO\AutoPlay\formfinal\form.exe
Disinfection failed
C:\Program Files\Bodom-Child - RaBBi\Bodom-Child - RaBBi\RGSS\Furries\AIO_Tools\Tools\Porn Tools AIO\AutoPlay\formfinal\form.exe
Deleted
C:\Program Files\Bodom-Child - RaBBi\Bodom-Child - RaBBi\RGSS\Standard\fatalrelations.zip=>fatalrelations/fatalrelation/RELATION.VIR
Infected with: Win95.CIH.Gen
C:\Program Files\Bodom-Child - RaBBi\Bodom-Child - RaBBi\RGSS\Standard\fatalrelations.zip=>fatalrelations/fatalrelation/RELATION.VIR
Disinfected
C:\Program Files\Bodom-Child - RaBBi\Bodom-Child - RaBBi\RGSS\Standard\fatalrelations.zip
Updated
C:\SWAT 4 keygen by HAANDI.exe=>(ZIP Sfx o)=>run.exe=>(NSIS o)=>lzma_nsis0006
Infected with: Generic.Zlob.47703FD7
C:\SWAT 4 keygen by HAANDI.exe=>(ZIP Sfx o)=>run.exe=>(NSIS o)=>lzma_nsis0006
Disinfection failed
C:\SWAT 4 keygen by HAANDI.exe=>(ZIP Sfx o)=>run.exe=>(NSIS o)=>lzma_nsis0006
Deleted
C:\SWAT 4 keygen by HAANDI.exe=>(ZIP Sfx o)=>run.exe=>(NSIS o)
Update failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP364\A0125670.exe
Infected with: Trojan.Prizafos.A
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP364\A0125670.exe
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP364\A0125670.exe
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP364\A0125682.exe
Infected with: Backdoor.Agent.TA
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP364\A0125682.exe
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP364\A0125682.exe
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP364\A0125686.exe
Infected with: Trojan.Prizafos.A
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP364\A0125686.exe
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP364\A0125686.exe
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP364\A0125687.exe
Infected with: Trojan.Hiddenpatch.A
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP364\A0125687.exe
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP364\A0125687.exe
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126019.exe
Infected with: Backdoor.Agent.TA
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126019.exe
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126019.exe
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126025.exe
Infected with: Trojan.Prizafos.A
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126025.exe
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126025.exe
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126688.exe
Infected with: Trojan.Apea.A
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126688.exe
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126688.exe
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126689.dll
Infected with: Trojan.Apea.A
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126689.dll
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126689.dll
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126691.dll
Infected with: Trojan.Antiav.3.9
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126691.dll
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126691.dll
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126692.sys
Infected with: Backdoor.ForBot.M
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126692.sys
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP365\A0126692.sys
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP366\A0126699.exe
Infected with: Trojan.Prizafos.A
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP366\A0126699.exe
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP366\A0126699.exe
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126706.exe
Infected with: Backdoor.Agent.TA
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126706.exe
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126706.exe
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126707.dll
Infected with: Trojan.Prizafos.A
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126707.dll
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126707.dll
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126708.exe
Infected with: Trojan.Prizafos.A
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126708.exe
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126708.exe
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126709.dll
Infected with: Trojan.Prizafos.A
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126709.dll
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126709.dll
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126710.exe
Infected with: Trojan.Prizafos.A
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126710.exe
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126710.exe
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126733.exe
Infected with: Backdoor.Agent.TA
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126733.exe
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0126733.exe
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0127107.exe
Infected with: Trojan.Prizafos.A
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0127107.exe
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0127107.exe
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0127110.exe
Infected with: BehavesLike:Win32.ExplorerHijack
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0127110.exe
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0127110.exe
Deleted
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0127111.exe
Infected with: Trojan.Hacktool.Webhack.A
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0127111.exe
Disinfection failed
C:\System Volume Information\_restore{3A2EFDD5-82A2-45D0-B24A-9C07537BFDAF}\RP367\A0127111.exe
Deleted
C:\WINDOWS\sysmm4.exe
Infected with: Trojan.Prizafos.A
C:\WINDOWS\sysmm4.exe
Disinfection failed
C:\WINDOWS\sysmm4.exe
Delete failed
C:\WINDOWS\system32\a6e2a627.exe
Infected with: BehavesLike:Win32.ExplorerHijack
C:\WINDOWS\system32\a6e2a627.exe
Disinfection failed
C:\WINDOWS\system32\a6e2a627.exe
Deleted
C:\WINDOWS\system32\aclaud.dll
Infected with: Trojan.Prizafos.A
C:\WINDOWS\system32\aclaud.dll
Disinfection failed
C:\WINDOWS\system32\aclaud.dll
Delete failed
C:\WINDOWS\system32\drivers\etc\hosts.20060808-180451.backup
Infected with: Generic.Qhost.FDA5AEEA
C:\WINDOWS\system32\drivers\etc\hosts.20060808-180451.backup
Disinfection failed
C:\WINDOWS\system32\drivers\etc\hosts.20060808-180451.backup
Deleted
C:\WINDOWS\system32\msrdusrc.exe
Infected with: Backdoor.Agent.TA
C:\WINDOWS\system32\msrdusrc.exe
Disinfection failed
C:\WINDOWS\system32\msrdusrc.exe
Delete failed
C:\WINDOWS\system32\spoolsvv.exe
Infected with: Win32.FpuJunk.2
C:\WINDOWS\system32\spoolsvv.exe
Disinfection failed
C:\WINDOWS\system32\spoolsvv.exe
Deleted
C:\WINDOWS\system32\w32stat.exe
Infected with: Trojan.Prizafos.A
C:\WINDOWS\system32\w32stat.exe
Disinfection failed
C:\WINDOWS\system32\w32stat.exe
Deleted
C:\WINDOWS\system32\wdmconf.dll
Infected with: Trojan.Prizafos.A
C:\WINDOWS\system32\wdmconf.dll
Disinfection failed
C:\WINDOWS\system32\wdmconf.dll
Delete failed
C:\WINDOWS\Temp\__delete_on_reboot__a_r_t_7_3_D_2_._t_m_p_
Infected with: Win32.FpuJunk.2
C:\WINDOWS\Temp\__delete_on_reboot__a_r_t_7_3_D_2_._t_m_p_
Disinfection failed
C:\WINDOWS\Temp\__delete_on_reboot__a_r_t_7_3_D_2_._t_m_p_
Deleted
C:\WINDOWS\__delete_on_reboot__c_o_m_d_l_j_3_2_._d_l_l_
Infected with: Trojan.Proxy.Agent.JI
C:\WINDOWS\__delete_on_reboot__c_o_m_d_l_j_3_2_._d_l_l_
Disinfection failed
C:\WINDOWS\__delete_on_reboot__c_o_m_d_l_j_3_2_._d_l_l_
Delete failed
bon apres sinon avast a trouver quelque truc, y a plus sysmm4.exe (dont je parlais dans l'autre topic) mais y a toujour iexplore.exe
et bitdefender disais :
C:\WINDOWS\__delete_on_reboot__c_o_m_d_l_j_3_2_._d_l_l_
mais au redémarrage j ai rien vu de bitdefender mais ca l a ptete fait kan meme
et bitdefender disais :
C:\WINDOWS\__delete_on_reboot__c_o_m_d_l_j_3_2_._d_l_l_
mais au redémarrage j ai rien vu de bitdefender mais ca l a ptete fait kan meme
mmmh j'ai l'impression que depui que j'ai mis avast!, azureus télécharge beaucoup plus lentement meme apres avoir coupé la protection peer to peer :S je vais couper avast! le temp de finir les dls...
edit: en fait c'est juste qu'il prenne du temp a ce lancer les dl :D
edit: en fait c'est juste qu'il prenne du temp a ce lancer les dl :D
ah bah faut choisir les virus ou la protection! :-/
Alors ceci; C:\System Volume Information\_restore" indique que ta restauration du systeme etait infecté, pour être sûr, nous allons créer un point propre.
Clic sur "demarrer", cliques droit sur "poste de travail", "propriétés", onglet "restauration du systeme"
¤ coches la case "desactiver la Restauration du systéme sur tous les lecteurs", puis clic ur "appliquer"
¤ decoches la case et clic sur "appliquer" puis "ok".
Maintenant, que l'ont à effacés les point infectés, nous allons créer un point propre:
Clic sur "demarrer", "tous les programmes", "accessoires", "outils système", "restauration du système", choisis "créer un point de restauration" nommes le " ccm" par exemple, cliques sur "créer" puis "ok".
Voilà, maintenant le point de restauration est créer si un jour tu décides tu pourra revenir en arriere à la date que tu l'as créer donc à ce jour; en fesant la marche arriére tu pourra remettre ton ordinateur à la date ou l'on à créer ce point de restauration mais tu perdra les modifications que tu aura faites entre deux.
A++
Alors ceci; C:\System Volume Information\_restore" indique que ta restauration du systeme etait infecté, pour être sûr, nous allons créer un point propre.
Clic sur "demarrer", cliques droit sur "poste de travail", "propriétés", onglet "restauration du systeme"
¤ coches la case "desactiver la Restauration du systéme sur tous les lecteurs", puis clic ur "appliquer"
¤ decoches la case et clic sur "appliquer" puis "ok".
Maintenant, que l'ont à effacés les point infectés, nous allons créer un point propre:
Clic sur "demarrer", "tous les programmes", "accessoires", "outils système", "restauration du système", choisis "créer un point de restauration" nommes le " ccm" par exemple, cliques sur "créer" puis "ok".
Voilà, maintenant le point de restauration est créer si un jour tu décides tu pourra revenir en arriere à la date que tu l'as créer donc à ce jour; en fesant la marche arriére tu pourra remettre ton ordinateur à la date ou l'on à créer ce point de restauration mais tu perdra les modifications que tu aura faites entre deux.
A++
ouai mais le probleme :
la c'est pas propre mais alors pas propre du tout :
msrdusrc.exe
sysmm5.exe
iexplore.exe
tout ca est dans mes processus, je vais refaire des analyse avec tout mes programme et apres je poste un log hijack et ptet bitdefender aussi
la c'est pas propre mais alors pas propre du tout :
msrdusrc.exe
sysmm5.exe
iexplore.exe
tout ca est dans mes processus, je vais refaire des analyse avec tout mes programme et apres je poste un log hijack et ptet bitdefender aussi
je m'en doute bien, mais ton systéme est très loin d'être à jour, sachant que tu ne peux le mettre à jour, n'arrete plus Avast laisse le pare-feu et telecharge comme ça, de toute les manieres tu continuera à être infecté si tu gardes cette politique d'eteindre ton anti-virus et/ou pare-feu pour telecharger
Refais tourné toutes tes applications; anti-virus anti-spywares puis refais un scan avec Bitdefender c'est préférable.
Bon courage
Refais tourné toutes tes applications; anti-virus anti-spywares puis refais un scan avec Bitdefender c'est préférable.
Bon courage
Salut , moi aussi j'ai un probleme avec le IEXPLORE.EXE que j'arrive pas a effacer , et qui fait bugger msn et internet explorer .
voila mon log(au passage si on pouvait m'indiquer ce qui va pas , vu que j'y connais rien ça serait sympa merci ^^ ) :
Logfile of HijackThis v1.99.1
Scan saved at 05:35:54, on 21/08/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\twain_32\SiPix\SCBlink2\Srvany.exe
C:\WINDOWS\twain_32\SiPix\SCBlink2\USBPNP.exe
C:\WINDOWS\$NtUninstallKB833987$\IEXPLORE.EXE
C:\Program Files\Alias\Maya 7.0 Personal Learning Edition\docs\wrapper.exe
C:\WINDOWS\system32\oodag.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Trend Micro\Internet Security\Tmntsrv.exe
C:\Program Files\Alias\Maya 7.0 Personal Learning Edition\docs\jre\bin\java.exe
C:\Program Files\Trend Micro\Internet Security\tmproxy.exe
C:\Program Files\Softex\winroute\WinRServ.exe
C:\Program Files\Softex\winroute\WinRoute.exe
C:\Program Files\Trend Micro\Internet Security\PccPfw.exe
C:\Program Files\NuCam\CamCheck\CamCheck.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\Trend Micro\Internet Security\pccguide.exe
C:\Program Files\Trend Micro\Internet Security\PCClient.exe
C:\Program Files\Trend Micro\Internet Security\TMOAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Microsoft IntelliPoint\point32.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe
C:\Program Files\Valve\Steam\Steam.exe
C:\Program Files\WiFiConnector\NintendoWFCReg.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\wkcalrem.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Documents and Settings\florence DEVERT\Bureau\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.presario.net/scripts/redirectors/presario/srchredir2.dll?c=1c02&lc=...
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL
O2 - BHO: MyWebSearch Search Assistant BHO - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: mwsBar BHO - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\1.bin\MWSBAR.DLL
O2 - BHO: (no name) - {59879FA4-4790-461c-A1CC-4EC4DE4CA483} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - C:\PROGRA~1\FlashGet\jccatch.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\fgiebar.dll
O4 - HKLM\..\Run: [WCOLOREAL] "C:\Program Files\COMPAQ\Coloreal\coloreal.exe"
O4 - HKLM\..\Run: [srmclean] C:\Cpqs\Scom\srmclean.exe
O4 - HKLM\..\Run: [Microsoft Works Portfolio] C:\Program Files\Microsoft Works\WksSb.exe /AllUsers
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe
O4 - HKLM\..\Run: [PrinTray] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\printray.exe
O4 - HKLM\..\Run: [CamCheck] C:\Program Files\NuCam\CamCheck\CamCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [pccguide.exe] "C:\Program Files\Trend Micro\Internet Security\pccguide.exe"
O4 - HKLM\..\Run: [PCClient.exe] "C:\Program Files\Trend Micro\Internet Security\PCClient.exe"
O4 - HKLM\..\Run: [TM Outbreak Agent] "C:\Program Files\Trend Micro\Internet Security\TMOAgent.exe" /run
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\point32.exe"
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe
O4 - HKCU\..\Run: [Steam] C:\Program Files\Valve\Steam\Steam.exe -silent
O4 - Global Startup: Lancer l'utilitaire d'enregistrement.lnk = C:\Program Files\WiFiConnector\NintendoWFCReg.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Rappels du Calendrier Microsoft Works.lnk = ?
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/menusearch.jhtml?p=ZNxmk879YYFR
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Télécharger avec FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Télécharger tout avec FlashGet - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O9 - Extra button: Sites Perso - {06FE5D05-8F11-11d2-804F-00105A133818} - http://compaqnet.ifrance.com/heberg/accueil (file missing)
O9 - Extra 'Tools' menuitem: Compaq France - {06FE5D05-8F11-11d2-804F-00105A133818} - http://compaqnet.ifrance.com/heberg/accueil (file missing)
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O14 - IERESET.INF: START_PAGE_URL=https://www.orange.fr/portail
O15 - Trusted Zone: https://www.google.fr/?gws_rd=ssl
O15 - Trusted Zone: http://www.gunzonline.com
O15 - Trusted Zone: https://www.jeuxvideo.com/
O15 - Trusted Zone: https://mapletip.com/
O15 - Trusted Zone: http://gunz.netmarble.jp
O15 - Trusted Zone: http://gunz.netmarble.net
O15 - Trusted Zone: http://www.netmarble.net/
O15 - Trusted Zone: http://www.warrock.net
O16 - DPF: Interface Chat Voila - http://chat7.x-echo.com/version5/Applet/vchatsign.cab
O16 - DPF: RaptisoftGameLoader - http://www.miniclip.com/hamsterball/raptisoftgameloader.cab
O16 - DPF: teleir_cert - https://static.ir.dgi.minefi.gouv.fr/secure/connexion/archives/ie4n4/teleir_cert.cab
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab
O16 - DPF: {09CC593B-E8A9-4491-927D-A3E33534DDD4} (InstallerObj Class) - http://m6video.m6.fr/1click/install/files/installer2.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=36467&clcid=0x409
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocache/funwebproducts/ei/SmileyCentralFWBInitia...
O16 - DPF: {20050325-D35A-4233-926E-2E801AE25949} (NMJPStarter15 Class) - http://www.netmarble.co.jp/_common/cab/NMStarterJP5.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {2D2BEE6E-3C9A-4D58-B9EC-458EDB28D0F6} - https://www.afternic.com/domains/drivecleaner.com
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by15fd.bay15.hotmail.msn.com/resources/MsnPUpld.cab
O16 - DPF: {6FC19219-C47E-4880-9A79-D218A1C374F9} (NMJTransX Control) - http://file.netmarble.jp/Control/NMJTransX.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B64F4A7C-97C9-11DA-8BDE-F66BAD1E3F3A} - https://www.afternic.com/domains/errorsafe.com
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
O16 - DPF: {C45B1500-7B63-47C2-AB25-C28CB46AFDEE} (M6music player) - http://sib1.od2.com/common/musicmanager/installation/MusicManagerPlugin.CAB
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Filter: text/html - {2AB289AE-4B90-4281-B2AE-1F4BB034B647} - (no file)
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Automatic LiveUpdate Scheduler - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing)
O23 - Service: Blink2PnP - Unknown owner - C:\WINDOWS\twain_32\SiPix\SCBlink2\Srvany.exe
O23 - Service: DirectX Service (DirectService) - Unknown owner - c:\windows\system32\directx.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LiveUpdate - Unknown owner - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE (file missing)
O23 - Service: Maya 7 PLE Documentation Server (mple7docserver) - Unknown owner - C:\Program Files\Alias\Maya 7.0 Personal Learning Edition\docs\wrapper.exe" -s "C:\Program Files\Alias\Maya 7.0 Personal Learning Edition\docs\Wrapper.conf (file missing)
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: Trend Micro Personal Firewall (PccPfw) - Trend Micro Incorporated. - C:\Program Files\Trend Micro\Internet Security\PccPfw.exe
O23 - Service: Trend NT Realtime Service (Tmntsrv) - Trend Micro Incorporated. - C:\Program Files\Trend Micro\Internet Security\Tmntsrv.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Incorporated. - C:\Program Files\Trend Micro\Internet Security\tmproxy.exe
O23 - Service: Softex WinRoute Service (WinRServ) - Unknown owner - C:\Program Files\Softex\winroute\WinRServ.exe
voila mon log(au passage si on pouvait m'indiquer ce qui va pas , vu que j'y connais rien ça serait sympa merci ^^ ) :
Logfile of HijackThis v1.99.1
Scan saved at 05:35:54, on 21/08/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\twain_32\SiPix\SCBlink2\Srvany.exe
C:\WINDOWS\twain_32\SiPix\SCBlink2\USBPNP.exe
C:\WINDOWS\$NtUninstallKB833987$\IEXPLORE.EXE
C:\Program Files\Alias\Maya 7.0 Personal Learning Edition\docs\wrapper.exe
C:\WINDOWS\system32\oodag.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Trend Micro\Internet Security\Tmntsrv.exe
C:\Program Files\Alias\Maya 7.0 Personal Learning Edition\docs\jre\bin\java.exe
C:\Program Files\Trend Micro\Internet Security\tmproxy.exe
C:\Program Files\Softex\winroute\WinRServ.exe
C:\Program Files\Softex\winroute\WinRoute.exe
C:\Program Files\Trend Micro\Internet Security\PccPfw.exe
C:\Program Files\NuCam\CamCheck\CamCheck.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\Trend Micro\Internet Security\pccguide.exe
C:\Program Files\Trend Micro\Internet Security\PCClient.exe
C:\Program Files\Trend Micro\Internet Security\TMOAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Microsoft IntelliPoint\point32.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe
C:\Program Files\Valve\Steam\Steam.exe
C:\Program Files\WiFiConnector\NintendoWFCReg.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\wkcalrem.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Documents and Settings\florence DEVERT\Bureau\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.presario.net/scripts/redirectors/presario/srchredir2.dll?c=1c02&lc=...
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL
O2 - BHO: MyWebSearch Search Assistant BHO - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: mwsBar BHO - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\1.bin\MWSBAR.DLL
O2 - BHO: (no name) - {59879FA4-4790-461c-A1CC-4EC4DE4CA483} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - C:\PROGRA~1\FlashGet\jccatch.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\fgiebar.dll
O4 - HKLM\..\Run: [WCOLOREAL] "C:\Program Files\COMPAQ\Coloreal\coloreal.exe"
O4 - HKLM\..\Run: [srmclean] C:\Cpqs\Scom\srmclean.exe
O4 - HKLM\..\Run: [Microsoft Works Portfolio] C:\Program Files\Microsoft Works\WksSb.exe /AllUsers
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe
O4 - HKLM\..\Run: [PrinTray] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\printray.exe
O4 - HKLM\..\Run: [CamCheck] C:\Program Files\NuCam\CamCheck\CamCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [pccguide.exe] "C:\Program Files\Trend Micro\Internet Security\pccguide.exe"
O4 - HKLM\..\Run: [PCClient.exe] "C:\Program Files\Trend Micro\Internet Security\PCClient.exe"
O4 - HKLM\..\Run: [TM Outbreak Agent] "C:\Program Files\Trend Micro\Internet Security\TMOAgent.exe" /run
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\point32.exe"
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe
O4 - HKCU\..\Run: [Steam] C:\Program Files\Valve\Steam\Steam.exe -silent
O4 - Global Startup: Lancer l'utilitaire d'enregistrement.lnk = C:\Program Files\WiFiConnector\NintendoWFCReg.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Rappels du Calendrier Microsoft Works.lnk = ?
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/menusearch.jhtml?p=ZNxmk879YYFR
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Télécharger avec FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Télécharger tout avec FlashGet - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O9 - Extra button: Sites Perso - {06FE5D05-8F11-11d2-804F-00105A133818} - http://compaqnet.ifrance.com/heberg/accueil (file missing)
O9 - Extra 'Tools' menuitem: Compaq France - {06FE5D05-8F11-11d2-804F-00105A133818} - http://compaqnet.ifrance.com/heberg/accueil (file missing)
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O14 - IERESET.INF: START_PAGE_URL=https://www.orange.fr/portail
O15 - Trusted Zone: https://www.google.fr/?gws_rd=ssl
O15 - Trusted Zone: http://www.gunzonline.com
O15 - Trusted Zone: https://www.jeuxvideo.com/
O15 - Trusted Zone: https://mapletip.com/
O15 - Trusted Zone: http://gunz.netmarble.jp
O15 - Trusted Zone: http://gunz.netmarble.net
O15 - Trusted Zone: http://www.netmarble.net/
O15 - Trusted Zone: http://www.warrock.net
O16 - DPF: Interface Chat Voila - http://chat7.x-echo.com/version5/Applet/vchatsign.cab
O16 - DPF: RaptisoftGameLoader - http://www.miniclip.com/hamsterball/raptisoftgameloader.cab
O16 - DPF: teleir_cert - https://static.ir.dgi.minefi.gouv.fr/secure/connexion/archives/ie4n4/teleir_cert.cab
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab
O16 - DPF: {09CC593B-E8A9-4491-927D-A3E33534DDD4} (InstallerObj Class) - http://m6video.m6.fr/1click/install/files/installer2.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=36467&clcid=0x409
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocache/funwebproducts/ei/SmileyCentralFWBInitia...
O16 - DPF: {20050325-D35A-4233-926E-2E801AE25949} (NMJPStarter15 Class) - http://www.netmarble.co.jp/_common/cab/NMStarterJP5.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {2D2BEE6E-3C9A-4D58-B9EC-458EDB28D0F6} - https://www.afternic.com/domains/drivecleaner.com
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by15fd.bay15.hotmail.msn.com/resources/MsnPUpld.cab
O16 - DPF: {6FC19219-C47E-4880-9A79-D218A1C374F9} (NMJTransX Control) - http://file.netmarble.jp/Control/NMJTransX.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B64F4A7C-97C9-11DA-8BDE-F66BAD1E3F3A} - https://www.afternic.com/domains/errorsafe.com
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
O16 - DPF: {C45B1500-7B63-47C2-AB25-C28CB46AFDEE} (M6music player) - http://sib1.od2.com/common/musicmanager/installation/MusicManagerPlugin.CAB
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Filter: text/html - {2AB289AE-4B90-4281-B2AE-1F4BB034B647} - (no file)
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Automatic LiveUpdate Scheduler - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing)
O23 - Service: Blink2PnP - Unknown owner - C:\WINDOWS\twain_32\SiPix\SCBlink2\Srvany.exe
O23 - Service: DirectX Service (DirectService) - Unknown owner - c:\windows\system32\directx.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LiveUpdate - Unknown owner - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE (file missing)
O23 - Service: Maya 7 PLE Documentation Server (mple7docserver) - Unknown owner - C:\Program Files\Alias\Maya 7.0 Personal Learning Edition\docs\wrapper.exe" -s "C:\Program Files\Alias\Maya 7.0 Personal Learning Edition\docs\Wrapper.conf (file missing)
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: Trend Micro Personal Firewall (PccPfw) - Trend Micro Incorporated. - C:\Program Files\Trend Micro\Internet Security\PccPfw.exe
O23 - Service: Trend NT Realtime Service (Tmntsrv) - Trend Micro Incorporated. - C:\Program Files\Trend Micro\Internet Security\Tmntsrv.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Incorporated. - C:\Program Files\Trend Micro\Internet Security\tmproxy.exe
O23 - Service: Softex WinRoute Service (WinRServ) - Unknown owner - C:\Program Files\Softex\winroute\WinRServ.exe
Salut,
Relance HijackThis, choisis "do a scan only" coche la case devant les lignes ci-dessous et clic en bas sur "fix checked"
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL
O2 - BHO: MyWebSearch Search Assistant BHO - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL
O2 - BHO: mwsBar BHO - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\1.bin\MWSBAR.DLL
O2 - BHO: (no name) - {59879FA4-4790-461c-A1CC-4EC4DE4CA483} - (no file)
O2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - C:\PROGRA~1\FlashGet\jccatch.dll
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\fgiebar.dll
O4 - HKCU\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/menusearch.jhtml?p=ZNxmk879YYFR
O16 - DPF: Interface Chat Voila - http://chat7.x-echo.com/version5/Applet/vchatsign.cab
O16 - DPF: RaptisoftGameLoader - http://www.miniclip.com/hamsterball/raptisoftgameloader.cab
O16 - DPF: teleir_cert - https://static.ir.dgi.minefi.gouv.fr/secure/connexion/archives/ie4n4/teleir_cert.cab
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab
O16 - DPF: {09CC593B-E8A9-4491-927D-A3E33534DDD4} (InstallerObj Class) - http://m6video.m6.fr/1click/install/files/installer2.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=36467&clcid=0x409
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocache/funwebproducts/ei/SmileyCentralFWBInitia...
O16 - DPF: {20050325-D35A-4233-926E-2E801AE25949} (NMJPStarter15 Class) - http://www.netmarble.co.jp/_common/cab/NMStarterJP5.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {2D2BEE6E-3C9A-4D58-B9EC-458EDB28D0F6} - https://www.afternic.com/domains/drivecleaner.com
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by15fd.bay15.hotmail.msn.com/resources/MsnPUpld.cab
O16 - DPF: {6FC19219-C47E-4880-9A79-D218A1C374F9} (NMJTransX Control) - http://file.netmarble.jp/Control/NMJTransX.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B64F4A7C-97C9-11DA-8BDE-F66BAD1E3F3A} - https://www.afternic.com/domains/errorsafe.com
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
O16 - DPF: {C45B1500-7B63-47C2-AB25-C28CB46AFDEE} (M6music player) - http://sib1.od2.com/common/musicmanager/installation/MusicManagerPlugin.CAB
O18 - Filter: text/html - {2AB289AE-4B90-4281-B2AE-1F4BB034B647} - (no file)
désinstalle FlashGet il contient un spyware
Telecharge, installe puis mets à jour ce logiciel(Ewido), une fois que c'est fait, fais un scan complet de ton système et colle le rapport ici avec un nouveau rapport hijackthis
Ewido: (installe le en anglais il passera en français, reste gratuit après la période d'essai)
Télécharger Ewido Security Suite
tu es infecté ..on continuera la marche après ça
A++
Relance HijackThis, choisis "do a scan only" coche la case devant les lignes ci-dessous et clic en bas sur "fix checked"
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL
O2 - BHO: MyWebSearch Search Assistant BHO - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL
O2 - BHO: mwsBar BHO - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\1.bin\MWSBAR.DLL
O2 - BHO: (no name) - {59879FA4-4790-461c-A1CC-4EC4DE4CA483} - (no file)
O2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - C:\PROGRA~1\FlashGet\jccatch.dll
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\fgiebar.dll
O4 - HKCU\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/menusearch.jhtml?p=ZNxmk879YYFR
O16 - DPF: Interface Chat Voila - http://chat7.x-echo.com/version5/Applet/vchatsign.cab
O16 - DPF: RaptisoftGameLoader - http://www.miniclip.com/hamsterball/raptisoftgameloader.cab
O16 - DPF: teleir_cert - https://static.ir.dgi.minefi.gouv.fr/secure/connexion/archives/ie4n4/teleir_cert.cab
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab
O16 - DPF: {09CC593B-E8A9-4491-927D-A3E33534DDD4} (InstallerObj Class) - http://m6video.m6.fr/1click/install/files/installer2.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=36467&clcid=0x409
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocache/funwebproducts/ei/SmileyCentralFWBInitia...
O16 - DPF: {20050325-D35A-4233-926E-2E801AE25949} (NMJPStarter15 Class) - http://www.netmarble.co.jp/_common/cab/NMStarterJP5.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {2D2BEE6E-3C9A-4D58-B9EC-458EDB28D0F6} - https://www.afternic.com/domains/drivecleaner.com
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by15fd.bay15.hotmail.msn.com/resources/MsnPUpld.cab
O16 - DPF: {6FC19219-C47E-4880-9A79-D218A1C374F9} (NMJTransX Control) - http://file.netmarble.jp/Control/NMJTransX.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B64F4A7C-97C9-11DA-8BDE-F66BAD1E3F3A} - https://www.afternic.com/domains/errorsafe.com
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
O16 - DPF: {C45B1500-7B63-47C2-AB25-C28CB46AFDEE} (M6music player) - http://sib1.od2.com/common/musicmanager/installation/MusicManagerPlugin.CAB
O18 - Filter: text/html - {2AB289AE-4B90-4281-B2AE-1F4BB034B647} - (no file)
désinstalle FlashGet il contient un spyware
Telecharge, installe puis mets à jour ce logiciel(Ewido), une fois que c'est fait, fais un scan complet de ton système et colle le rapport ici avec un nouveau rapport hijackthis
Ewido: (installe le en anglais il passera en français, reste gratuit après la période d'essai)
Télécharger Ewido Security Suite
tu es infecté ..on continuera la marche après ça
A++
---------------------------------------------------------
ewido anti-spyware - Scan Report
---------------------------------------------------------
+ Created at: 08:15:47 21/08/2006
+ Scan result:
C:\Documents and Settings\florence DEVERT\Bureau\Jeux\Isos\kazaa_setup.exe -> Adware.Altnet : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP418\A1097865.exe -> Adware.Background : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP353\A0889525.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP353\A0889557.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP353\A0890557.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP353\A0891557.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP353\A0892557.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP353\A0892585.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP353\A0893585.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP353\A0894585.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP353\A0895585.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP354\A0895789.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP354\A0895827.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP354\A0895843.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP355\A0895892.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP355\A0895920.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP355\A0895949.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP355\A0895965.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP355\A0896965.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP355\A0897965.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP356\A0898024.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP356\A0899024.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP356\A0900024.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP356\A0901024.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP356\A0901056.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP356\A0902056.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP357\A0902101.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP357\A0903101.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP357\A0904101.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP358\A0905101.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP361\A0906104.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP361\A0907101.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP361\A0908101.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP361\A0909101.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP361\A0909129.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP361\A0909157.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP361\A0910158.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP361\A0911157.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP364\A0912158.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP365\A0912197.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP365\A0912230.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP365\A0913230.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP365\A0914230.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP365\A0915230.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP365\A0916230.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP365\A0917230.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP365\A0917246.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP365\A0917262.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP365\A0918262.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP365\A0919262.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP365\A0919292.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP367\A0919364.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP367\A0920364.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP367\A0920379.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP367\A0921379.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP367\A0922379.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP367\A0923379.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP367\A0923408.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP367\A0924407.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP367\A0926407.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP367\A0927407.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP367\A0928407.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP367\A0929407.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP368\A0930407.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP374\A0930474.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP374\A0931474.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP374\A0932474.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP374\A0933474.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP374\A0934474.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP375\A0935474.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP375\A0935508.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP375\A0936508.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP375\A0937508.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP375\A0938508.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP375\A0939508.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP375\A0940508.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP375\A0941508.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP375\A0942508.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP375\A0943508.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP375\A0944508.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP375\A0945509.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP375\A0945539.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP375\A0946539.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP376\A0947539.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP376\A0948539.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP376\A0949539.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP376\A0949571.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP376\A0950571.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP376\A0951571.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP376\A0951601.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP376\A0952601.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP376\A0953601.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP376\A0954601.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP376\A0955601.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP376\A0955633.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP376\A0956636.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP376\A0957633.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP376\A0958633.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP377\A0958731.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP377\A0959722.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP377\A0960722.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP377\A0961722.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP377\A0962723.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP377\A0962754.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP377\A0963754.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP377\A0963787.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP378\A0963839.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP378\A0963857.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP378\A0964857.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP378\A0964887.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP378\A0964917.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP378\A0964949.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP378\A0964969.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP378\A0965002.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP378\A0966002.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP378\A0967002.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP378\A0968002.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP378\A0968032.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP378\A0969032.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP378\A0970032.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP378\A0970051.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP379\A0971051.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP379\A0972051.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP379\A0973051.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP379\A0973085.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP379\A0974085.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP379\A0975085.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP379\A0975106.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP379\A0976106.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP379\A0976124.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP379\A0976142.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP379\A0977142.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP379\A0978142.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP379\A0979142.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP379\A0979160.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP379\A0980160.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP380\A0981160.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP380\A0982161.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP380\A0983160.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP381\A0983192.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP381\A0983210.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP381\A0983228.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP381\A0984228.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP381\A0985228.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP381\A0985246.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP381\A0985265.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP386\A0986265.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP387\A0987264.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP387\A0988264.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP387\A0989264.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP387\A0989283.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP387\A0990282.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP387\A0990301.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP387\A0991301.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP387\A0991319.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP387\A0992319.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP387\A0993319.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP387\A0993337.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP387\A0993358.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP387\A0993377.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP389\A0993431.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP389\A0994431.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP389\A0994449.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP389\A0994470.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP389\A0995470.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP389\A0996470.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP389\A0997470.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP389\A0997487.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP390\A0998487.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP390\A0999487.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP390\A1000488.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP390\A1001488.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP390\A1002487.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP390\A1003487.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP390\A1004487.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP390\A1005488.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP390\A1005505.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP391\A1005532.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP391\A1005646.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP391\A1005660.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP391\A1006660.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP391\A1006678.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP391\A1006696.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP391\A1007696.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP391\A1007717.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP391\A1007735.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP391\A1007761.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP391\A1007779.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP391\A1007808.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP391\A1008808.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP391\A1008826.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP392\A1009826.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP393\A1010826.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP393\A1011826.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP393\A1012826.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP393\A1012844.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP393\A1013844.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP393\A1014844.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP394\A1015844.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP394\A1015862.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP395\A1015893.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP395\A1016893.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP395\A1017893.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP395\A1018893.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP395\A1019893.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP395\A1020893.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP395\A1021893.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP395\A1022894.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP395\A1022910.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP396\A1023910.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP396\A1024910.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP396\A1025910.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP396\A1026910.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP396\A1027911.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP396\A1028911.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP397\A1029910.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP398\A1030911.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP399\A1030950.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP400\A1031946.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP400\A1031970.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP400\A1031986.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP400\A1032002.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP400\A1032019.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP400\A1032035.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP400\A1033035.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP400\A1033053.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP400\A1033072.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP400\A1033087.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP401\A1033131.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP401\A1034128.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP401\A1034153.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP401\A1035152.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP401\A1036152.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP401\A1036168.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP402\A1036216.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP402\A1037216.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP402\A1038216.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP402\A1038233.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP403\A1038260.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP403\A1039260.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP403\A1040260.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP403\A1040285.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP403\A1040305.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP403\A1041306.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP403\A1042305.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP403\A1043306.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP403\A1044305.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP404\A1045305.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP404\A1045322.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP404\A1046322.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP404\A1046339.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP405\A1046370.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP405\A1046386.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP405\A1046403.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP405\A1046429.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP405\A1046452.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP405\A1047451.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP405\A1048451.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP405\A1048475.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP405\A1049475.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP405\A1049496.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP407\A1050496.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP407\A1050518.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP407\A1051518.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP407\A1051542.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP407\A1051560.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP407\A1052560.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP407\A1052602.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP407\A1052640.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP407\A1053639.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP408\A1054639.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP408\A1054658.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP408\A1054681.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP408\A1055681.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP408\A1056681.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP408\A1056706.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP408\A1056764.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP408\A1057764.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1058764.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1058837.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1059837.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1060837.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1061837.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1062837.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1063853.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1064837.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1064862.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1065861.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1066861.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1067861.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1068861.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1068880.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1069880.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1070880.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1071880.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1072880.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1073881.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1073899.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1073916.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1073968.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1074968.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1075000.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1075027.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1075045.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1076045.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1077045.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP410\A1077148.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP410\A1078143.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP410\A1079143.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP410\A1080143.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP410\A1081144.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP410\A1081163.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP411\A1081187.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP412\A1082187.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP412\A1083187.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP412\A1084187.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP412\A1085187.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP412\A1086187.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP412\A1086205.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP412\A1086223.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP412\A1087223.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP413\A1088223.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP414\A1088266.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP414\A1089265.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP414\A1090265.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP414\A1090281.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP414\A1090298.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP415\A1091298.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP415\A1092298.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP415\A1092317.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP415\A1092335.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP415\A1092356.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP415\A1093356.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP415\A1094356.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP415\A1094402.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP415\A1094421.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP415\A1095421.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP415\A1096421.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP415\A1096439.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP415\A1097439.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP415\A1097497.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP418\A1097616.exe -> Adware.Bestofer : No action taken.
C:\Program Files\TBONBin -> Adware.BetterInternet : No action taken.
C:\Program Files\TBONBin\TBONUnst.htm -> Adware.BetterInternet : No action taken.
C:\Program Files\TBONBin\TBONWnd.EXE -> Adware.BetterInternet : No action taken.
C:\Program Files\TBONBin\Uninstall.exe -> Adware.BetterInternet : No action taken.
C:\Program Files\TBONBin\tbon.exe -> Adware.BetterInternet : No action taken.
C:\Program Files\TBONBin\tboninst.cfg -> Adware.BetterInternet : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_0 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_0\Level_0 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_0\Level_0\Seqn_1068 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_0\Level_0\Seqn_1074 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_1 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_1\Level_0 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_1\Level_0\Seqn_4492 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_1\Level_0\Seqn_4496 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_1\Level_0\Seqn_4543 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_2 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_2\Level_0 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_2\Level_0\Seqn_1068 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_2\Level_0\Seqn_1074 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_3 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_3\Level_0 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_3\Level_0\Seqn_1068 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_3\Level_0\Seqn_1074 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_4 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_4\Level_0 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_4\Level_0\Seqn_1116 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_4\Level_0\Seqn_1524 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_4\Level_0\Seqn_1553 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_4\Level_0\Seqn_1641 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Services -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Services\Queue -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Services\Status -> Adware.Cydoor : No action taken.
C:\WINDOWS\system32\ATPartners.dll -> Adware.F1Organizer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP399\A1030945.DLL -> Adware.FunWeb : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{59879FA4-4790-461C-A1CC-4EC4DE4CA483} -> Adware.RXToolbar : No action taken.
C:\Program Files\Fichiers communs\Sandlot Shared\slghex.dll -> Adware.SpywareStorm : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2178F3FB-2560-458F-BDEE-631E2FE0DFE4} -> Adware.WinAntiVirus : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP418\A1097863.dll -> Adware.Winfixer : No action taken.
C:\Documents and Settings\florence DEVERT\Local Settings\Temporary Internet Files\Content.IE5\K56N85UF\popup[1].htm -> Hijacker.Agent.a : No action taken.
C:\Documents and Settings\florence DEVERT\Local Settings\Temporary Internet Files\Content.IE5\S5U38PEV\popup[1].htm -> Hijacker.Agent.a : No action taken.
C:\WINDOWS\Downloaded Program Files\UWFX5V_0001_N57M1212NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.b : No action taken.
:mozilla.22:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.23:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.24:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.25:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@247realmedia[1].txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.388:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@2o7[2].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@aolfr.122.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
:mozilla.142:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.143:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.144:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.145:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.122:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Addynamix : No action taken.
:mozilla.335:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Adserver : No action taken.
:mozilla.336:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Adserver : No action taken.
:mozilla.30:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Adtech : No action taken.
:mozilla.31:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Adtech : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@adtech[2].txt -> TrackingCookie.Adtech : No action taken.
:mozilla.244:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.245:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.246:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@advertising[1].txt -> TrackingCookie.Advertising : No action taken.
:mozilla.226:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Atdmt : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@atdmt[2].txt -> TrackingCookie.Atdmt : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@bestoffersnetworks[1].txt -> TrackingCookie.Bestoffersnetworks : No action taken.
:mozilla.35:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Bluestreak : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@bluestreak[1].txt -> TrackingCookie.Bluestreak : No action taken.
:mozilla.140:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Burstnet : No action taken.
:mozilla.141:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Burstnet : No action taken.
:mozilla.146:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Burstnet : No action taken.
:mozilla.124:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.125:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.126:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.133:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.134:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.135:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.136:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.138:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.139:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@www.casinotropez[1].txt -> TrackingCookie.Casinotropez : No action taken.
:mozilla.40:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Clickbank : No action taken.
:mozilla.319:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.320:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Clickzs : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@cliks[1].txt -> TrackingCookie.Cliks : No action taken.
C:\Documents and Settings\Amelie DUTHIL\Cookies\amelie duthil@com[2].txt -> TrackingCookie.Com : No action taken.
:mozilla.247:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.248:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.249:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Comclick : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : No action taken.
:mozilla.161:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Doubleclick : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@doubleclick[1].txt -> TrackingCookie.Doubleclick : No action taken.
:mozilla.87:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Estat : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@estat[1].txt -> TrackingCookie.Estat : No action taken.
:mozilla.123:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Euroclick : No action taken.
:mozilla.127:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Euroclick : No action taken.
:mozilla.128:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Euroclick : No action taken.
:mozilla.129:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Euroclick : No action taken.
:mozilla.130:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Euroclick : No action taken.
:mozilla.65:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.66:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.67:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.68:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.41:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.254:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.255:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.256:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@ehg-neuftelecom.hitbox[2].txt -> TrackingCookie.Hitbox : No action taken.
ewido anti-spyware - Scan Report
---------------------------------------------------------
+ Created at: 08:15:47 21/08/2006
+ Scan result:
C:\Documents and Settings\florence DEVERT\Bureau\Jeux\Isos\kazaa_setup.exe -> Adware.Altnet : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP418\A1097865.exe -> Adware.Background : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP353\A0889525.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP353\A0889557.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP353\A0890557.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP353\A0891557.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP353\A0892557.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP353\A0892585.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP353\A0893585.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP353\A0894585.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP353\A0895585.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP354\A0895789.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP354\A0895827.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP354\A0895843.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP355\A0895892.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP355\A0895920.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP355\A0895949.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP355\A0895965.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP355\A0896965.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP355\A0897965.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP356\A0898024.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP356\A0899024.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP356\A0900024.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP356\A0901024.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP356\A0901056.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP356\A0902056.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP357\A0902101.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP357\A0903101.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP357\A0904101.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP358\A0905101.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP361\A0906104.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP361\A0907101.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP361\A0908101.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP361\A0909101.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP361\A0909129.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP361\A0909157.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP361\A0910158.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP361\A0911157.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP364\A0912158.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP365\A0912197.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP365\A0912230.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP365\A0913230.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP365\A0914230.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP365\A0915230.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP365\A0916230.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP365\A0917230.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP365\A0917246.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP365\A0917262.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP365\A0918262.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP365\A0919262.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP365\A0919292.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP367\A0919364.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP367\A0920364.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP367\A0920379.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP367\A0921379.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP367\A0922379.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP367\A0923379.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP367\A0923408.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP367\A0924407.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP367\A0926407.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP367\A0927407.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP367\A0928407.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP367\A0929407.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP368\A0930407.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP374\A0930474.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP374\A0931474.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP374\A0932474.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP374\A0933474.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP374\A0934474.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP375\A0935474.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP375\A0935508.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP375\A0936508.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP375\A0937508.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP375\A0938508.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP375\A0939508.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP375\A0940508.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP375\A0941508.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP375\A0942508.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP375\A0943508.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP375\A0944508.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP375\A0945509.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP375\A0945539.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP375\A0946539.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP376\A0947539.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP376\A0948539.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP376\A0949539.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP376\A0949571.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP376\A0950571.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP376\A0951571.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP376\A0951601.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP376\A0952601.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP376\A0953601.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP376\A0954601.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP376\A0955601.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP376\A0955633.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP376\A0956636.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP376\A0957633.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP376\A0958633.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP377\A0958731.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP377\A0959722.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP377\A0960722.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP377\A0961722.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP377\A0962723.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP377\A0962754.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP377\A0963754.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP377\A0963787.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP378\A0963839.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP378\A0963857.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP378\A0964857.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP378\A0964887.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP378\A0964917.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP378\A0964949.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP378\A0964969.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP378\A0965002.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP378\A0966002.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP378\A0967002.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP378\A0968002.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP378\A0968032.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP378\A0969032.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP378\A0970032.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP378\A0970051.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP379\A0971051.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP379\A0972051.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP379\A0973051.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP379\A0973085.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP379\A0974085.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP379\A0975085.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP379\A0975106.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP379\A0976106.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP379\A0976124.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP379\A0976142.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP379\A0977142.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP379\A0978142.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP379\A0979142.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP379\A0979160.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP379\A0980160.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP380\A0981160.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP380\A0982161.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP380\A0983160.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP381\A0983192.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP381\A0983210.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP381\A0983228.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP381\A0984228.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP381\A0985228.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP381\A0985246.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP381\A0985265.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP386\A0986265.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP387\A0987264.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP387\A0988264.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP387\A0989264.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP387\A0989283.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP387\A0990282.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP387\A0990301.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP387\A0991301.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP387\A0991319.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP387\A0992319.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP387\A0993319.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP387\A0993337.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP387\A0993358.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP387\A0993377.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP389\A0993431.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP389\A0994431.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP389\A0994449.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP389\A0994470.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP389\A0995470.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP389\A0996470.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP389\A0997470.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP389\A0997487.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP390\A0998487.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP390\A0999487.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP390\A1000488.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP390\A1001488.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP390\A1002487.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP390\A1003487.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP390\A1004487.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP390\A1005488.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP390\A1005505.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP391\A1005532.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP391\A1005646.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP391\A1005660.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP391\A1006660.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP391\A1006678.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP391\A1006696.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP391\A1007696.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP391\A1007717.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP391\A1007735.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP391\A1007761.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP391\A1007779.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP391\A1007808.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP391\A1008808.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP391\A1008826.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP392\A1009826.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP393\A1010826.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP393\A1011826.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP393\A1012826.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP393\A1012844.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP393\A1013844.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP393\A1014844.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP394\A1015844.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP394\A1015862.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP395\A1015893.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP395\A1016893.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP395\A1017893.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP395\A1018893.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP395\A1019893.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP395\A1020893.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP395\A1021893.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP395\A1022894.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP395\A1022910.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP396\A1023910.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP396\A1024910.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP396\A1025910.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP396\A1026910.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP396\A1027911.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP396\A1028911.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP397\A1029910.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP398\A1030911.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP399\A1030950.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP400\A1031946.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP400\A1031970.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP400\A1031986.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP400\A1032002.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP400\A1032019.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP400\A1032035.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP400\A1033035.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP400\A1033053.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP400\A1033072.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP400\A1033087.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP401\A1033131.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP401\A1034128.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP401\A1034153.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP401\A1035152.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP401\A1036152.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP401\A1036168.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP402\A1036216.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP402\A1037216.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP402\A1038216.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP402\A1038233.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP403\A1038260.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP403\A1039260.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP403\A1040260.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP403\A1040285.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP403\A1040305.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP403\A1041306.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP403\A1042305.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP403\A1043306.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP403\A1044305.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP404\A1045305.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP404\A1045322.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP404\A1046322.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP404\A1046339.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP405\A1046370.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP405\A1046386.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP405\A1046403.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP405\A1046429.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP405\A1046452.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP405\A1047451.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP405\A1048451.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP405\A1048475.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP405\A1049475.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP405\A1049496.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP407\A1050496.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP407\A1050518.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP407\A1051518.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP407\A1051542.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP407\A1051560.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP407\A1052560.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP407\A1052602.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP407\A1052640.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP407\A1053639.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP408\A1054639.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP408\A1054658.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP408\A1054681.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP408\A1055681.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP408\A1056681.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP408\A1056706.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP408\A1056764.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP408\A1057764.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1058764.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1058837.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1059837.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1060837.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1061837.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1062837.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1063853.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1064837.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1064862.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1065861.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1066861.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1067861.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1068861.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1068880.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1069880.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1070880.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1071880.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1072880.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1073881.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1073899.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1073916.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1073968.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1074968.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1075000.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1075027.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1075045.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1076045.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP409\A1077045.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP410\A1077148.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP410\A1078143.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP410\A1079143.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP410\A1080143.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP410\A1081144.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP410\A1081163.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP411\A1081187.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP412\A1082187.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP412\A1083187.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP412\A1084187.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP412\A1085187.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP412\A1086187.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP412\A1086205.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP412\A1086223.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP412\A1087223.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP413\A1088223.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP414\A1088266.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP414\A1089265.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP414\A1090265.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP414\A1090281.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP414\A1090298.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP415\A1091298.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP415\A1092298.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP415\A1092317.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP415\A1092335.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP415\A1092356.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP415\A1093356.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP415\A1094356.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP415\A1094402.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP415\A1094421.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP415\A1095421.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP415\A1096421.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP415\A1096439.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP415\A1097439.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP415\A1097497.exe -> Adware.Bestofer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP418\A1097616.exe -> Adware.Bestofer : No action taken.
C:\Program Files\TBONBin -> Adware.BetterInternet : No action taken.
C:\Program Files\TBONBin\TBONUnst.htm -> Adware.BetterInternet : No action taken.
C:\Program Files\TBONBin\TBONWnd.EXE -> Adware.BetterInternet : No action taken.
C:\Program Files\TBONBin\Uninstall.exe -> Adware.BetterInternet : No action taken.
C:\Program Files\TBONBin\tbon.exe -> Adware.BetterInternet : No action taken.
C:\Program Files\TBONBin\tboninst.cfg -> Adware.BetterInternet : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_0 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_0\Level_0 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_0\Level_0\Seqn_1068 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_0\Level_0\Seqn_1074 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_1 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_1\Level_0 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_1\Level_0\Seqn_4492 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_1\Level_0\Seqn_4496 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_1\Level_0\Seqn_4543 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_2 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_2\Level_0 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_2\Level_0\Seqn_1068 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_2\Level_0\Seqn_1074 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_3 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_3\Level_0 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_3\Level_0\Seqn_1068 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_3\Level_0\Seqn_1074 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_4 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_4\Level_0 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_4\Level_0\Seqn_1116 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_4\Level_0\Seqn_1524 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_4\Level_0\Seqn_1553 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Loct_4\Level_0\Seqn_1641 -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Services -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Services\Queue -> Adware.Cydoor : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Kazaa\Promotions\Cydoor\Adwr_329\Services\Status -> Adware.Cydoor : No action taken.
C:\WINDOWS\system32\ATPartners.dll -> Adware.F1Organizer : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP399\A1030945.DLL -> Adware.FunWeb : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{59879FA4-4790-461C-A1CC-4EC4DE4CA483} -> Adware.RXToolbar : No action taken.
C:\Program Files\Fichiers communs\Sandlot Shared\slghex.dll -> Adware.SpywareStorm : No action taken.
HKU\S-1-5-21-590260106-104724495-1602489464-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2178F3FB-2560-458F-BDEE-631E2FE0DFE4} -> Adware.WinAntiVirus : No action taken.
C:\System Volume Information\_restore{2B12FACB-0235-45B2-B29E-125F40896912}\RP418\A1097863.dll -> Adware.Winfixer : No action taken.
C:\Documents and Settings\florence DEVERT\Local Settings\Temporary Internet Files\Content.IE5\K56N85UF\popup[1].htm -> Hijacker.Agent.a : No action taken.
C:\Documents and Settings\florence DEVERT\Local Settings\Temporary Internet Files\Content.IE5\S5U38PEV\popup[1].htm -> Hijacker.Agent.a : No action taken.
C:\WINDOWS\Downloaded Program Files\UWFX5V_0001_N57M1212NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.b : No action taken.
:mozilla.22:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.23:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.24:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.25:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@247realmedia[1].txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.388:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@2o7[2].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@aolfr.122.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
:mozilla.142:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.143:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.144:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.145:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.122:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Addynamix : No action taken.
:mozilla.335:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Adserver : No action taken.
:mozilla.336:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Adserver : No action taken.
:mozilla.30:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Adtech : No action taken.
:mozilla.31:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Adtech : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@adtech[2].txt -> TrackingCookie.Adtech : No action taken.
:mozilla.244:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.245:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.246:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@advertising[1].txt -> TrackingCookie.Advertising : No action taken.
:mozilla.226:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Atdmt : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@atdmt[2].txt -> TrackingCookie.Atdmt : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@bestoffersnetworks[1].txt -> TrackingCookie.Bestoffersnetworks : No action taken.
:mozilla.35:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Bluestreak : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@bluestreak[1].txt -> TrackingCookie.Bluestreak : No action taken.
:mozilla.140:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Burstnet : No action taken.
:mozilla.141:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Burstnet : No action taken.
:mozilla.146:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Burstnet : No action taken.
:mozilla.124:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.125:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.126:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.133:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.134:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.135:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.136:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.138:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.139:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@www.casinotropez[1].txt -> TrackingCookie.Casinotropez : No action taken.
:mozilla.40:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Clickbank : No action taken.
:mozilla.319:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.320:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Clickzs : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@cliks[1].txt -> TrackingCookie.Cliks : No action taken.
C:\Documents and Settings\Amelie DUTHIL\Cookies\amelie duthil@com[2].txt -> TrackingCookie.Com : No action taken.
:mozilla.247:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.248:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Comclick : No action taken.
:mozilla.249:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Comclick : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : No action taken.
:mozilla.161:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Doubleclick : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@doubleclick[1].txt -> TrackingCookie.Doubleclick : No action taken.
:mozilla.87:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Estat : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@estat[1].txt -> TrackingCookie.Estat : No action taken.
:mozilla.123:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Euroclick : No action taken.
:mozilla.127:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Euroclick : No action taken.
:mozilla.128:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Euroclick : No action taken.
:mozilla.129:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Euroclick : No action taken.
:mozilla.130:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Euroclick : No action taken.
:mozilla.65:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.66:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.67:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.68:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.41:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.254:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.255:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.256:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Hitbox : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@ehg-neuftelecom.hitbox[2].txt -> TrackingCookie.Hitbox : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@hitbox[2].txt -> TrackingCookie.Hitbox : No action taken.
:mozilla.82:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Mediaplex : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@mediaplex[1].txt -> TrackingCookie.Mediaplex : No action taken.
:mozilla.215:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Overture : No action taken.
:mozilla.195:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.197:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.198:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.199:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.200:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.201:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.202:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.203:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.156:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.157:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.158:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.159:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.160:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.268:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.269:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.6:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.7:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.8:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.375:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.56:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.58:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.131:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Tribalfusion : No action taken.
:mozilla.132:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Tribalfusion : No action taken.
:mozilla.259:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Valueclick : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@valueclick[1].txt -> TrackingCookie.Valueclick : No action taken.
:mozilla.71:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Weborama : No action taken.
:mozilla.72:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Weborama : No action taken.
:mozilla.73:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Weborama : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@weborama[1].txt -> TrackingCookie.Weborama : No action taken.
:mozilla.332:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Webtrendslive : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@statse.webtrendslive[2].txt -> TrackingCookie.Webtrendslive : No action taken.
:mozilla.147:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Yieldmanager : No action taken.
:mozilla.148:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Yieldmanager : No action taken.
:mozilla.149:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Yieldmanager : No action taken.
:mozilla.150:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Yieldmanager : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : No action taken.
::Report end
suite et fin , je poste l'autre rapport ^^
:mozilla.82:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Mediaplex : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@mediaplex[1].txt -> TrackingCookie.Mediaplex : No action taken.
:mozilla.215:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Overture : No action taken.
:mozilla.195:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.197:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.198:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.199:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.200:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.201:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.202:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.203:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Reliablestats : No action taken.
:mozilla.156:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.157:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.158:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.159:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.160:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.268:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.269:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.6:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.7:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.8:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.375:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.56:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.58:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.131:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Tribalfusion : No action taken.
:mozilla.132:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Tribalfusion : No action taken.
:mozilla.259:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Valueclick : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@valueclick[1].txt -> TrackingCookie.Valueclick : No action taken.
:mozilla.71:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Weborama : No action taken.
:mozilla.72:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Weborama : No action taken.
:mozilla.73:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Weborama : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@weborama[1].txt -> TrackingCookie.Weborama : No action taken.
:mozilla.332:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Webtrendslive : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@statse.webtrendslive[2].txt -> TrackingCookie.Webtrendslive : No action taken.
:mozilla.147:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Yieldmanager : No action taken.
:mozilla.148:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Yieldmanager : No action taken.
:mozilla.149:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Yieldmanager : No action taken.
:mozilla.150:C:\Documents and Settings\florence DEVERT\Application Data\Mozilla\Firefox\Profiles\x0a4udtg.default\cookies.txt -> TrackingCookie.Yieldmanager : No action taken.
C:\Documents and Settings\florence DEVERT\Cookies\florence devert@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : No action taken.
::Report end
suite et fin , je poste l'autre rapport ^^
Logfile of HijackThis v1.99.1
Scan saved at 08:20:56, on 21/08/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\twain_32\SiPix\SCBlink2\Srvany.exe
C:\WINDOWS\twain_32\SiPix\SCBlink2\USBPNP.exe
C:\WINDOWS\$NtUninstallKB893086$\IEXPLORE.EXE
C:\Program Files\Alias\Maya 7.0 Personal Learning Edition\docs\wrapper.exe
C:\WINDOWS\system32\oodag.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alias\Maya 7.0 Personal Learning Edition\docs\jre\bin\java.exe
C:\Program Files\Trend Micro\Internet Security\Tmntsrv.exe
C:\Program Files\Trend Micro\Internet Security\tmproxy.exe
C:\Program Files\Softex\winroute\WinRServ.exe
C:\Program Files\Softex\winroute\WinRoute.exe
C:\Program Files\Trend Micro\Internet Security\PccPfw.exe
C:\Program Files\NuCam\CamCheck\CamCheck.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\Trend Micro\Internet Security\pccguide.exe
C:\Program Files\Trend Micro\Internet Security\PCClient.exe
C:\Program Files\Trend Micro\Internet Security\TMOAgent.exe
C:\Program Files\Microsoft IntelliPoint\point32.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
C:\Program Files\Valve\Steam\Steam.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\WiFiConnector\NintendoWFCReg.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\wkcalrem.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\florence DEVERT\Bureau\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.presario.net/scripts/redirectors/presario/srchredir2.dll?c=1c02&lc=...
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O4 - HKLM\..\Run: [WCOLOREAL] "C:\Program Files\COMPAQ\Coloreal\coloreal.exe"
O4 - HKLM\..\Run: [srmclean] C:\Cpqs\Scom\srmclean.exe
O4 - HKLM\..\Run: [Microsoft Works Portfolio] C:\Program Files\Microsoft Works\WksSb.exe /AllUsers
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe
O4 - HKLM\..\Run: [PrinTray] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\printray.exe
O4 - HKLM\..\Run: [CamCheck] C:\Program Files\NuCam\CamCheck\CamCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [pccguide.exe] "C:\Program Files\Trend Micro\Internet Security\pccguide.exe"
O4 - HKLM\..\Run: [PCClient.exe] "C:\Program Files\Trend Micro\Internet Security\PCClient.exe"
O4 - HKLM\..\Run: [TM Outbreak Agent] "C:\Program Files\Trend Micro\Internet Security\TMOAgent.exe" /run
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\point32.exe"
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Steam] C:\Program Files\Valve\Steam\Steam.exe -silent
O4 - Global Startup: Lancer l'utilitaire d'enregistrement.lnk = C:\Program Files\WiFiConnector\NintendoWFCReg.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Rappels du Calendrier Microsoft Works.lnk = ?
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Télécharger avec FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Télécharger tout avec FlashGet - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O9 - Extra button: Sites Perso - {06FE5D05-8F11-11d2-804F-00105A133818} - http://compaqnet.ifrance.com/heberg/accueil (file missing)
O9 - Extra 'Tools' menuitem: Compaq France - {06FE5D05-8F11-11d2-804F-00105A133818} - http://compaqnet.ifrance.com/heberg/accueil (file missing)
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe (file missing)
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O14 - IERESET.INF: START_PAGE_URL=https://www.orange.fr/portail
O15 - Trusted Zone: https://www.google.fr/?gws_rd=ssl
O15 - Trusted Zone: http://www.gunzonline.com
O15 - Trusted Zone: https://www.jeuxvideo.com/
O15 - Trusted Zone: https://mapletip.com/
O15 - Trusted Zone: http://gunz.netmarble.jp
O15 - Trusted Zone: http://gunz.netmarble.net
O15 - Trusted Zone: http://www.netmarble.net/
O15 - Trusted Zone: http://www.warrock.net
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Automatic LiveUpdate Scheduler - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing)
O23 - Service: Blink2PnP - Unknown owner - C:\WINDOWS\twain_32\SiPix\SCBlink2\Srvany.exe
O23 - Service: DirectX Service (DirectService) - Unknown owner - c:\windows\system32\directx.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LiveUpdate - Unknown owner - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE (file missing)
O23 - Service: Maya 7 PLE Documentation Server (mple7docserver) - Unknown owner - C:\Program Files\Alias\Maya 7.0 Personal Learning Edition\docs\wrapper.exe" -s "C:\Program Files\Alias\Maya 7.0 Personal Learning Edition\docs\Wrapper.conf (file missing)
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: Trend Micro Personal Firewall (PccPfw) - Trend Micro Incorporated. - C:\Program Files\Trend Micro\Internet Security\PccPfw.exe
O23 - Service: Trend NT Realtime Service (Tmntsrv) - Trend Micro Incorporated. - C:\Program Files\Trend Micro\Internet Security\Tmntsrv.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Incorporated. - C:\Program Files\Trend Micro\Internet Security\tmproxy.exe
O23 - Service: Softex WinRoute Service (WinRServ) - Unknown owner - C:\Program Files\Softex\winroute\WinRServ.exe
voila j'espere que tu vas t'y retrouver , et merci pour ton aide ^^
Scan saved at 08:20:56, on 21/08/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\twain_32\SiPix\SCBlink2\Srvany.exe
C:\WINDOWS\twain_32\SiPix\SCBlink2\USBPNP.exe
C:\WINDOWS\$NtUninstallKB893086$\IEXPLORE.EXE
C:\Program Files\Alias\Maya 7.0 Personal Learning Edition\docs\wrapper.exe
C:\WINDOWS\system32\oodag.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alias\Maya 7.0 Personal Learning Edition\docs\jre\bin\java.exe
C:\Program Files\Trend Micro\Internet Security\Tmntsrv.exe
C:\Program Files\Trend Micro\Internet Security\tmproxy.exe
C:\Program Files\Softex\winroute\WinRServ.exe
C:\Program Files\Softex\winroute\WinRoute.exe
C:\Program Files\Trend Micro\Internet Security\PccPfw.exe
C:\Program Files\NuCam\CamCheck\CamCheck.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\Trend Micro\Internet Security\pccguide.exe
C:\Program Files\Trend Micro\Internet Security\PCClient.exe
C:\Program Files\Trend Micro\Internet Security\TMOAgent.exe
C:\Program Files\Microsoft IntelliPoint\point32.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
C:\Program Files\Valve\Steam\Steam.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\WiFiConnector\NintendoWFCReg.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\wkcalrem.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\florence DEVERT\Bureau\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.presario.net/scripts/redirectors/presario/srchredir2.dll?c=1c02&lc=...
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O4 - HKLM\..\Run: [WCOLOREAL] "C:\Program Files\COMPAQ\Coloreal\coloreal.exe"
O4 - HKLM\..\Run: [srmclean] C:\Cpqs\Scom\srmclean.exe
O4 - HKLM\..\Run: [Microsoft Works Portfolio] C:\Program Files\Microsoft Works\WksSb.exe /AllUsers
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe
O4 - HKLM\..\Run: [PrinTray] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\printray.exe
O4 - HKLM\..\Run: [CamCheck] C:\Program Files\NuCam\CamCheck\CamCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [pccguide.exe] "C:\Program Files\Trend Micro\Internet Security\pccguide.exe"
O4 - HKLM\..\Run: [PCClient.exe] "C:\Program Files\Trend Micro\Internet Security\PCClient.exe"
O4 - HKLM\..\Run: [TM Outbreak Agent] "C:\Program Files\Trend Micro\Internet Security\TMOAgent.exe" /run
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\point32.exe"
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Steam] C:\Program Files\Valve\Steam\Steam.exe -silent
O4 - Global Startup: Lancer l'utilitaire d'enregistrement.lnk = C:\Program Files\WiFiConnector\NintendoWFCReg.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Rappels du Calendrier Microsoft Works.lnk = ?
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Télécharger avec FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Télécharger tout avec FlashGet - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O9 - Extra button: Sites Perso - {06FE5D05-8F11-11d2-804F-00105A133818} - http://compaqnet.ifrance.com/heberg/accueil (file missing)
O9 - Extra 'Tools' menuitem: Compaq France - {06FE5D05-8F11-11d2-804F-00105A133818} - http://compaqnet.ifrance.com/heberg/accueil (file missing)
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe (file missing)
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O14 - IERESET.INF: START_PAGE_URL=https://www.orange.fr/portail
O15 - Trusted Zone: https://www.google.fr/?gws_rd=ssl
O15 - Trusted Zone: http://www.gunzonline.com
O15 - Trusted Zone: https://www.jeuxvideo.com/
O15 - Trusted Zone: https://mapletip.com/
O15 - Trusted Zone: http://gunz.netmarble.jp
O15 - Trusted Zone: http://gunz.netmarble.net
O15 - Trusted Zone: http://www.netmarble.net/
O15 - Trusted Zone: http://www.warrock.net
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Automatic LiveUpdate Scheduler - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing)
O23 - Service: Blink2PnP - Unknown owner - C:\WINDOWS\twain_32\SiPix\SCBlink2\Srvany.exe
O23 - Service: DirectX Service (DirectService) - Unknown owner - c:\windows\system32\directx.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LiveUpdate - Unknown owner - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE (file missing)
O23 - Service: Maya 7 PLE Documentation Server (mple7docserver) - Unknown owner - C:\Program Files\Alias\Maya 7.0 Personal Learning Edition\docs\wrapper.exe" -s "C:\Program Files\Alias\Maya 7.0 Personal Learning Edition\docs\Wrapper.conf (file missing)
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: Trend Micro Personal Firewall (PccPfw) - Trend Micro Incorporated. - C:\Program Files\Trend Micro\Internet Security\PccPfw.exe
O23 - Service: Trend NT Realtime Service (Tmntsrv) - Trend Micro Incorporated. - C:\Program Files\Trend Micro\Internet Security\Tmntsrv.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Incorporated. - C:\Program Files\Trend Micro\Internet Security\tmproxy.exe
O23 - Service: Softex WinRoute Service (WinRServ) - Unknown owner - C:\Program Files\Softex\winroute\WinRServ.exe
voila j'espere que tu vas t'y retrouver , et merci pour ton aide ^^
oulalala supprime tous ce qu'ewido ta trouvé!
Fais ce nettoyage: (à faire réguliérement)
¤Telecharges et installes ceci:
CCleaner:
Ccleaner
dans la colonne de gauche clic sur "erreurs" coches toutes les cases, puis cliques en bas sur "chercher des erreurs" une fois finit, cliques sur "reparer les erreurs" et tu aura un message pour sauvegarder ta base de registre tu dis "oui" puis tu recommences jusqu'a ce qu'il te trouve plus d'erreurs.
Les sauvegardes que tu aura faites tu pourra les supprimer si ton ordinateur n'a plus de problémes
¤Relance Ccleaner, vas dans l'onglet "nettoyeur" present sur la gauche, decoches la derniere case (Avancé si elle est cochée) puis clic sur "lancer le nettoyage"
Clic sur demarrer>executer>tape: services.msc cherche dans la liste ces lignes et regles les sur "desactivé"
Automatic LiveUpdate Scheduler
DirectX Service
LiveUpdate
Clic sur demarrer>executer>tape: services.msc cherche dans la liste ces lignes et regles les sur "manuel"
Blink2PnP
Maya 7 PLE Documentation Server
oftex WinRoute Service
Fait ce scan anti-virus en ligne avec Internet Explorer, accepte l'active X; la barre anti-popup du SP (en haut) va se mettre à clignoter, clic dessus et choisis "accepter l'active X" pour faire fonctionner le scan anti-virus.
Une fois qu'il a terminé colle le rapport ici avec un nouveau rapport hijackthis stp
https://www.bitdefender.com/toolbox/
bon courage!
Fais ce nettoyage: (à faire réguliérement)
¤Telecharges et installes ceci:
CCleaner:
Ccleaner
dans la colonne de gauche clic sur "erreurs" coches toutes les cases, puis cliques en bas sur "chercher des erreurs" une fois finit, cliques sur "reparer les erreurs" et tu aura un message pour sauvegarder ta base de registre tu dis "oui" puis tu recommences jusqu'a ce qu'il te trouve plus d'erreurs.
Les sauvegardes que tu aura faites tu pourra les supprimer si ton ordinateur n'a plus de problémes
¤Relance Ccleaner, vas dans l'onglet "nettoyeur" present sur la gauche, decoches la derniere case (Avancé si elle est cochée) puis clic sur "lancer le nettoyage"
Clic sur demarrer>executer>tape: services.msc cherche dans la liste ces lignes et regles les sur "desactivé"
Automatic LiveUpdate Scheduler
DirectX Service
LiveUpdate
Clic sur demarrer>executer>tape: services.msc cherche dans la liste ces lignes et regles les sur "manuel"
Blink2PnP
Maya 7 PLE Documentation Server
oftex WinRoute Service
Fait ce scan anti-virus en ligne avec Internet Explorer, accepte l'active X; la barre anti-popup du SP (en haut) va se mettre à clignoter, clic dessus et choisis "accepter l'active X" pour faire fonctionner le scan anti-virus.
Une fois qu'il a terminé colle le rapport ici avec un nouveau rapport hijackthis stp
https://www.bitdefender.com/toolbox/
bon courage!
