Sujet Précédent Sujet Suivant

Probléme avec trojans win32vundo@dll

jojo97422 Messages postés 76 Statut Membre -  
fiat500 Messages postés 2681 Statut Membre -
Bonjour,j'ai un depuis 1 semaine le trojans win32vundo@dll qui est détécté par avast j'ai essayé plusieur scan au démarage et un nettoyage avec spybot mais toujours pas résolu le probléme . j'ai lu quelque réponse sur le forum est j'ai commencé a faire comme le rapport hijackthis et maintenant que faire .
AIDEZ MOI SVP MERCI d'avance.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:46:47, on 01/06/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\WINDOWS\system32\slserv.exe
C:\Program Files\Winamp\winampa.exe
C:\WINDOWS\system32\VTTimer.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Apps\Powercinema\PCMService.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\WINDOWS\system32\hphmon05.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\WINDOWS\system32\rundll32.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Calendrier\Cld2000.exe
C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
C:\Program Files\Radio Fr Solo\RFScheduler.exe
C:\Program Files\NoBrand\Wireless Network Manager\Monitor.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Radio Fr Solo\Radio_Fr_Solo.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Documents and Settings\JONATHAN\Mes documents\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://portail.free.fr/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: livetvbar Toolbar - {ad55c869-668e-457c-b270-0cfb2f61116f} - C:\Program Files\livetvbar\tblive.dll
O1 - Hosts: 91.121.20.160 paypal.fr
O1 - Hosts: 91.121.20.160 www.paypal.fr
O1 - Hosts: 91.121.20.160 paypal.co.uk
O1 - Hosts: 91.121.20.160 www.paypal.co.uk
O1 - Hosts: 91.121.20.160 paypal.it
O1 - Hosts: 91.121.20.160 www.paypal.it
O1 - Hosts: 91.121.20.160 paypal.fr
O1 - Hosts: 91.121.20.160 www.paypal.fr
O1 - Hosts: 91.121.20.160 paypal.co.uk
O1 - Hosts: 91.121.20.160 www.paypal.co.uk
O1 - Hosts: 91.121.20.160 paypal.it
O1 - Hosts: 91.121.20.160 www.paypal.it
O1 - Hosts: 91.121.20.160 paypal.fr
O1 - Hosts: 91.121.20.160 www.paypal.fr
O1 - Hosts: 91.121.20.160 paypal.co.uk
O1 - Hosts: 91.121.20.160 www.paypal.co.uk
O1 - Hosts: 91.121.20.160 paypal.it
O1 - Hosts: 91.121.20.160 www.paypal.it
O1 - Hosts: 91.121.20.160 paypal.fr
O1 - Hosts: 91.121.20.160 www.paypal.fr
O1 - Hosts: 91.121.20.160 paypal.co.uk
O1 - Hosts: 91.121.20.160 www.paypal.co.uk
O1 - Hosts: 91.121.20.160 paypal.it
O1 - Hosts: 91.121.20.160 www.paypal.it
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {2EA5D696-C6CE-4A2B-BD4A-4AA1992B9F43} - (no file)
O2 - BHO: (no name) - {3E6EB08D-515C-4022-B42D-CABA45BFC7E0} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {A0FCA3A2-34C0-4CA2-A7A4-87A87D4C712C} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: (no name) - {B5697A77-A299-4DF7-B2B7-EB75629F525D} - (no file)
O2 - BHO: (no name) - {EF4CC146-43C9-4741-8D21-EB5035A4EBEC} - C:\WINDOWS\system32\khfDtRjh.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [Workflow] E:\Workflow.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [PCMService] "c:\Apps\Powercinema\PCMService.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [HPHUPD05] C:\Program Files\Hewlett-Packard\{5372B9A6-6E51-4f90-9B40-E0A3B8475C4E}\hphupd05.exe
O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\system32\hphmon05.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [BJCFD] C:\Program Files\BroadJump\Client Foundation\CFD.exe
O4 - HKLM\..\Run: [AXPDefender] C:\Program Files\AXPDefender\AXPDefender.exe
O4 - HKLM\..\Run: [100ef2c1] rundll32.exe "C:\WINDOWS\system32\vnkjokdh.dll",b
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [Cld2000.exe] C:\Program Files\Calendrier\Cld2000.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [BoontyBox] "C:\Program Files\Boonty\BoontyBox\BoontyBox.exe" /boot
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Felix] C:\Program Files\ScreenMates\full_felix.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: RFScheduler.lnk = C:\Program Files\Radio Fr Solo\RFScheduler.exe
O4 - Global Startup: Wireless Network Manager.lnk = C:\Program Files\NoBrand\Wireless Network Manager\Monitor.exe
O8 - Extra context menu item: &Recherche AOL Toolbar - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Poker\Titan Poker\casino.exe
O9 - Extra 'Tools' menuitem: Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Poker\Titan Poker\casino.exe
O9 - Extra button: Betway.com Poker - {4CBB5C71-1BA0-49ca-93CD-159AF8AA0CC9} - C:\Program Files\Betway\Poker\MPPoker.exe
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra button: Unibet Poker - {C53BFCFC-7A54-4627-AEBA-2CD4871FCA97} - C:\Microgaming\Poker\UnibetpokerMPP\MPPoker.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: PokerStars.net - {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files\PokerStars.NET\PokerStarsUpdate.exe
O16 - DPF: {09F1ADAC-76D8-4D0F-99A5-5C907DADB988} - http://cdn.downloadcontrol.com/files/installers/cab/SystemDoctor2006FreeInstall_fr.cab
O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} - https://support.norton.com/sp/en/us/home/current/info
O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
O16 - DPF: {2D2BEE6E-3C9A-4D58-B9EC-458EDB28D0F6} - https://www.afternic.com/domains/drivecleaner.com
O16 - DPF: {3EA4FA88-E0BE-419A-A732-9B79B87A6ED0} (CTVUAxCtrl Object) - http://dl.tvunetworks.com/TVUAx.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by16fd.bay16.hotmail.msn.com/resources/MsnPUpld.cab
O16 - DPF: {512FC5A1-7DE1-43F1-BC0C-371622FCB409} (Installer Class) - https://www.pandasecurity.com/en/homeusers/online-antivirus/?ref=activescan
O16 - DPF: {5D80A6D1-B500-47DA-82B8-EB9875F85B4D} (Google Gadget Control) - http://dl.google.com/dl/desktop/nv/GoogleGadgetPluginIEWin.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.new2.foto.com/ImageUploader4.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {8FCDF9D9-A28B-480F-8C3D-581F119A8AB8} - http://static.zangocash.com/cab/Seekmo/ie/bridge-c18.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {AED98630-0251-4E83-917D-43A23D66D507} (Download Helper Class) - http://activex.microgaming.com/DLhelper/version7/dlhelper.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game06.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {CE28D5D2-60CF-4C7D-9FE8-0F47A3308078} - https://support.norton.com/sp/en/us/home/current/info
O16 - DPF: {CE69F98F-2AF3-4306-BAC6-A79070EDA1B4} - http://eu.download.games.yahoo.com/zylom/activex/zylomloader.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D8089245-3211-40F6-819B-9E5E92CD61A2} (FlashXControl Object) - https://mppv2flash3.valueactive.com/Betway/FlashAX.cab
O16 - DPF: {DFB5BCF1-06AE-4ABB-BFA8-1E228F41C50A} (CamfrogWEB Advanced Unicode Control) - https://www.bobtv.fr/download/cfweb_www.bobtv.fr-download_instmodule.exe
O16 - DPF: {EB504BE1-BFA2-41FE-8F49-C4DD2524E246} - http://servicesv4.canalplusactive.com/cabs/msway42.cab
O16 - DPF: {FB90BA05-66E6-4C56-BCD3-D65B0F7EBA39} (Foto.com SpeedUploader 1.0 Control) - http://express.foto.com/SFUploader/SpeedUploader.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{0A4BB8B3-AC32-4A9C-9CF5-E2CEA74D9B7E}: NameServer = 213.36.80.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{0A4BB8B3-AC32-4A9C-9CF5-E2CEA74D9B7E}: NameServer = 213.36.80.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{0A4BB8B3-AC32-4A9C-9CF5-E2CEA74D9B7E}: NameServer = 213.36.80.1
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL
O20 - Winlogon Notify: khfDtRjh - C:\WINDOWS\SYSTEM32\khfDtRjh.dll
O20 - Winlogon Notify: WinCtrl32 - WinCtrl32.dll (file missing)
O20 - Winlogon Notify: WLCtrl32 - WLCtrl32.dll (file missing)
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Google Desktop Manager 5.7.801.1629 (GoogleDesktopManager-010108-205858) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: SC Test Branding Service 1 - SC Test Branding 1 - C:\Program Files\Fichiers communs\SC Test Branding 1 Shared\Service\SCTestService1.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe

37 réponses

Précédent
  • 1
  • 2
Réponse 21 / 37
fiat500 Messages postés 2681 Statut Membre 82
 
fais quand même ce que je t'ai dit:

http://pon.fr/dr-web-cure-it-kit-de-desinfection-gratuit/
0
Réponse 22 / 37
jojo97422 Messages postés 76 Statut Membre
 
ok fiat500 le scan malwarebyes toujours en cour il a trouvé plus de 80 fichiers infécté déjas est c pas fini en plus
0
Réponse 23 / 37
fiat500 Messages postés 2681 Statut Membre 82
 
ok
0
Réponse 24 / 37
jojo97422 Messages postés 76 Statut Membre
 
voila le scan de mon pc avec malwarebyte a afficher le rapport aprés avoir suprimé les fichiers

Malwarebytes' Anti-Malware 1.14
Version de la base de données: 812

19:44:07 01/06/2008
mbam-log-6-1-2008 (19-44-06).txt

Type de recherche: Examen complet (C:\|)
Eléments examinés: 284948
Temps écoulé: 2 hour(s), 31 minute(s), 42 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 13
Valeur(s) du Registre infectée(s): 2
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 37
Fichier(s) infecté(s): 419

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{09f1adac-76d8-4d0f-99a5-5c907dadb988} (Rogue.Multiple) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{2d2bee6e-3c9a-4d58-b9ec-458edb28d0f6} (Rogue.DriveCleaner) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8fcdf9d9-a28b-480f-8c3d-581f119a8ab8} (Adware.180Solutions) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{d28cd14c-50be-4cfa-951e-b37f25da3472} (Adware.180Solutions) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\AXPFixer (Rogue.AdvancedXPFixer) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\AXPDefender (Rogue.AdvancedXPDefender) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WLCtrl32 (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Trymedia Systems (Adware.Trymedia) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\affri (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Software Notifier (Rogue.Multiple) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\affri (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\FCOVM (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\RemoveRP (Trojan.Vundo) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\Control Panel\Desktop\SCRNSAVE.EXE (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\100ef2c1 (Trojan.Vundo) -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
C:\Casino (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\logs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\promo (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\sfx (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878 (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612 (Adware.Casino) -> Quarantined and deleted successfully.
C:\Program Files\WebMediaPlayer (Adware.EGDAccess) -> Quarantined and deleted successfully.
C:\Program Files\WebMediaPlayer\resources (Adware.EGDAccess) -> Quarantined and deleted successfully.
C:\Program Files\WebMediaPlayer\skins (Adware.EGDAccess) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Application Data\AXPDefender (Rogue.AdvancedXPDefender) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Application Data\AXPDefender\AXPDefender (Rogue.AdvancedXPDefender) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Application Data\AXPDefender\AXPDefender\Quarantine (Rogue.AdvancedXPDefender) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Application Data\AXPDefender\AXPDefender\Quarantine\Autorun (Rogue.AdvancedXPDefender) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Application Data\AXPDefender\AXPDefender\Quarantine\BrowserObjects (Rogue.AdvancedXPDefender) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Application Data\AXPDefender\AXPDefender\Quarantine\Packages (Rogue.AdvancedXPDefender) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Application Data\AXPDefender\AXPDefender\Quarantine\Autorun\HKCU (Rogue.AdvancedXPDefender) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Application Data\AXPDefender\AXPDefender\Quarantine\Autorun\HKLM (Rogue.AdvancedXPDefender) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Application Data\AXPDefender\AXPDefender\Quarantine\Autorun\StartMenuAllUsers (Rogue.AdvancedXPDefender) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Application Data\AXPDefender\AXPDefender\Quarantine\Autorun\StartMenuCurrentUser (Rogue.AdvancedXPDefender) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Application Data\AXPDefender\AXPDefender\Quarantine\Autorun\HKCU\RunOnce (Rogue.AdvancedXPDefender) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Application Data\AXPDefender\AXPDefender\Quarantine\Autorun\HKLM\RunOnce (Rogue.AdvancedXPDefender) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Application Data\AXPFixer (Rogue.AdvancedXPFixer) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Application Data\AXPFixer\AXPFixer (Rogue.AdvancedXPFixer) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Application Data\AXPFixer\AXPFixer\Quarantine (Rogue.AdvancedXPFixer) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Application Data\AXPFixer\AXPFixer\Quarantine\Autorun (Rogue.AdvancedXPFixer) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Application Data\AXPFixer\AXPFixer\Quarantine\BrowserObjects (Rogue.AdvancedXPFixer) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Application Data\AXPFixer\AXPFixer\Quarantine\Packages (Rogue.AdvancedXPFixer) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Application Data\AXPFixer\AXPFixer\Quarantine\Autorun\HKCU (Rogue.AdvancedXPFixer) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Application Data\AXPFixer\AXPFixer\Quarantine\Autorun\HKLM (Rogue.AdvancedXPFixer) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Application Data\AXPFixer\AXPFixer\Quarantine\Autorun\StartMenuAllUsers (Rogue.AdvancedXPFixer) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Application Data\AXPFixer\AXPFixer\Quarantine\Autorun\StartMenuCurrentUser (Rogue.AdvancedXPFixer) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Application Data\AXPFixer\AXPFixer\Quarantine\Autorun\HKCU\RunOnce (Rogue.AdvancedXPFixer) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Application Data\AXPFixer\AXPFixer\Quarantine\Autorun\HKLM\RunOnce (Rogue.AdvancedXPFixer) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\2WP5K3V4\css4[10] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\2WP5K3V4\css4[2] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\2WP5K3V4\css4[3] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\2WP5K3V4\css4[4] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\2WP5K3V4\css4[5] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\2WP5K3V4\css4[6] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\2WP5K3V4\css4[7] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\2WP5K3V4\css4[8] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\2WP5K3V4\css4[9] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\3LOSYHYC\css4[2] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\3LOSYHYC\css4[3] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\5BJ10GDJ\css4[1] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\5BJ10GDJ\css4[2] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\5BJ10GDJ\css4[4] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\5BJ10GDJ\css4[5] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\5BJ10GDJ\css4[6] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\88ET52A0\css4[10] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\88ET52A0\css4[11] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\88ET52A0\css4[1] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\88ET52A0\css4[2] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\88ET52A0\css4[3] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\88ET52A0\css4[5] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\88ET52A0\css4[6] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\88ET52A0\css4[7] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\88ET52A0\css4[8] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\88ET52A0\css4[9] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\CSFN3X60\css4[3] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\CSFN3X60\css4[4] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\CSFN3X60\css4[5] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\E15YA1TW\css4[1] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\E15YA1TW\css4[2] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\E15YA1TW\css4[5] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\E15YA1TW\css4[6] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\E15YA1TW\css4[7] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\E15YA1TW\css4[8] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\EU3T4SEZ\css4[1] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\EU3T4SEZ\css4[2] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\EU3T4SEZ\css4[3] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\EX142GUY\css4[1] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\EX142GUY\css4[2] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\EX142GUY\css4[3] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\EX142GUY\css4[4] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\EX142GUY\css4[5] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\HELW1ZFB\css4[1] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\HELW1ZFB\css4[2] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\HELW1ZFB\css4[3] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\XBG9ZZR3\css4[1] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\XBG9ZZR3\css4[2] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\JONATHAN\Local Settings\Temporary Internet Files\Content.IE5\ZCHXNZ3O\css4[1] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP656\A0070982.scr (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP656\A0070983.scr (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP656\A0071022.scr (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP656\A0071036.scr (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP656\A0071054.scr (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP656\A0071068.scr (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP656\A0072070.scr (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP656\A0072084.scr (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP656\A0072099.scr (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP656\A0072112.scr (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP656\A0073115.scr (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP656\A0073135.scr (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP656\A0073151.scr (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP656\A0073189.scr (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP656\A0073292.scr (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP656\A0073314.scr (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP656\A0073330.scr (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP656\A0073343.scr (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP656\A0073364.scr (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP656\A0073379.scr (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP656\A0073402.scr (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP656\A0073421.scr (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP657\A0073439.scr (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP657\A0073457.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP664\A0077944.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\blackster.scr (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\bjlicens.txt (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\blackjack.dll (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\browser.exe (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\cacerts.crt (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\cam.cas (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\cardlib.dll (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\common.dll (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\countries.lst (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\creditdebit.dll (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\db.dll (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\devlib.dll (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\devlibcomm.dll (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\filemap.lst (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\fivecard.dll (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\games.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\gsid.txt (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\id.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\INSTALL.LOG (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\languages.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\libeay32.dll (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\licens.txt (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\mfc80.dll (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\microsoft.vc80.crt.manifest (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\microsoft.vc80.mfc.manifest (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\modstatus.lst (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\mp3dec.asi (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\mss32.dll (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\msvcp71.dll (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\msvcp80.dll (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\msvcr71.dll (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\msvcr80.dll (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\navigator.dll (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\omaha.dll (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\options.cfg (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\poker.dll (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\poker.exe (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\sc.dll (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\shfolder.dll (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\srvmap.lst (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\ssleay32.dll (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\texas.dll (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\UNWISE.EXE (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\UNWISE.INI (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\update.exe (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xml.dll (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\zlib1.dll (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\0.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\1.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\10.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\11.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\12.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\13.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\14.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\15.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\16.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\17.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\18.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\19.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\2.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\20.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\21.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\22.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\23.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\24.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\25.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\26.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\27.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\28.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\29.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\3.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\30.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\31.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\32.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\33.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\34.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\35.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\36.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\37.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\38.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\39.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\4.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\40.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\41.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\42.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\43.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\44.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\45.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\46.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\47.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\48.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\49.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\5.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\50.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\51.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\6.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\7.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\8.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\9.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\allin_popup.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\archive.xsl (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\archive_ff.xsl (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\avatar.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\b.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\base.css (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\bkg.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\browserdetect.js (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\but_blackjack.png (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\but_cashier.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\but_close.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\but_filters_big.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\but_filters_small.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\but_game.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\but_general.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\but_join.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\but_main.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\but_medium.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\but_minmax.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\but_sublevels_big.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\but_sublevels_small.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\caret.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\chatbubble.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\chips.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\decktype_settings.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\edit.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\gamelimits1.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\gamelimits2.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\gamelimits3.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\game_bjframe.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\game_blackjack.png (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\game_summary.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\gre_font_11p_regular.xbf (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\hand.html (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\hand.xsl (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\hand_cursor.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\hand_ff.xsl (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\harrow.cur (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\headers_bkg.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\headers_text.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\history.html (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\history.xsl (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\history_ff.xsl (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\input_additional.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\input_boxes.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\input_lists.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\language.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\language.xsl (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\languages.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\language_ff.xsl (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\main.js (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\main_bkg.jpg (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\main_listhi.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\navigator_bg.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\navigator_buttons.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\navigator_moneytext.jpg (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\navigator_timer.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\panel_big.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\panel_bottom.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\panel_game_big.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\panel_game_small.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\panel_game_top.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\panel_left.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\panel_medium.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\panel_moretables.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\panel_texts.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\panel_top.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\pointer.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\poker_cardback.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\poker_cards.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\poker_cards_4c.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\poker_cards_large.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\poker_cards_large_4c.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\poker_deckside.jpg (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\poker_font_11p_bold.xbf (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\poker_font_11p_regular.xbf (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\poker_makechoice.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\poker_pucks.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\pol_font_11p_regular.xbf (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\popups.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\position_actions.png (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\position_active.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\position_inactive.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\position_mute.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\position_note.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\position_numbers.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\progress_ani.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\promo-test1.jpg (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\rus_font_11p_regular.xbf (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\sc_bkg8.jpg (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\tabs_big.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\tabs_cashier.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\tabs_small.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\text.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\timeslider.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\tur_font_11p_regular.xbf (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\tx_bkg10.jpg (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\tx_bkg5.jpg (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\user.xsl (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\user_ff.xsl (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\white_line.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\win_graphics.bmp (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\xml.gif (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\data\xml_decoder.js (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\user.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\archive.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\history_0725.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\history_0726.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\history_0727.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\history_0728.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\history_0729.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\history_0731.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\session102418549.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\session102423799.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\session91998908.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\session92101822.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\session92495120.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\session92753560.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\session93027321.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\session93281800.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\session94601271.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\session94874362.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\session95150492.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\session95223476.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\session95229479.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\session95939435.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\session96186548.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\session96432729.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\session96919071.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\session96961747.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\session96992352.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\session97007523.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\session98250987.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\session98518310.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\session98779318.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\session99039197.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\session99299124.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\session99560291.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1614878\stats_GAME_THM.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\archive.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\history_0728.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\history_0729.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\history_0730.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\history_0731.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session100071221.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session100339761.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session100607627.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session101610244.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session101847472.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session102352086.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session102598881.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session103105930.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session96404655.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session96431994.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session96451865.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session96464313.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session96474234.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session96479833.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session96490453.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session96495533.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session96665605.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session96697184.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session96734198.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session96749584.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session96766823.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session96824370.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session96846359.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session96852770.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session96931327.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session96962447.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session97196966.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session97226430.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session97723672.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session97747092.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session97966552.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session98250900.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session98518184.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session98778264.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\session99820339.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\history\1647612\stats_GAME_THM.xml (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\promo\lobby_aout0.jpg (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\promo\lobby_aout1.jpg (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\promo\lobby_barcelone.jpg (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\promo\lobby_barcelone1.jpg (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\promo\lobby_barcelone2.jpg (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\promo\lobby_ibiza.jpg (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\promo\lobby_juillet0.jpg (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\promo\lobby_juillet2.jpg (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\promo\lobby_juillet4.jpg (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\promo\lobby_juillet5.jpg (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\promo\lobby_juillet7.jpg (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\promo\lobby_juin_2.jpg (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\promo\lobby_kickStephanePoster1.jpg (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\promo\lobby_kickStephanePoster2.jpg (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\promo\lobby_pokeChallenge.jpg (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\promo\lobby_septembre1.jpg (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\promo\position.jpg (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\sfx\c_button.wav (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\sfx\c_chip.wav (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\sfx\c_deal.mp3 (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\sfx\p_alert.wav (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\sfx\p_checkknock.wav (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\blackjack_game_panel.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\blackjack_main.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\common.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\creditdebit.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\ext_clientspecific.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\ext_creditdebit.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\ext_game.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\ext_general.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\ext_mc_main.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\ext_navigator.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\fcs_main.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\fc_join.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\fc_main.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\filemap.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\filerefs.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\gameclient.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\game_common.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\game_common_message.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\game_panel.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\gizmo.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\mc_main.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\message.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\mtt_join.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\mtt_lobby.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\navigator.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\omaha_join.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\omaha_main.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\optdef.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\poker_limits.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\sc_join.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\sc_main.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\tel_main.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\texas_join.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\texas_main.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Casino\BetClic Poker\xrs\tournament_join.xrs (Adware.Casino) -> Quarantined and deleted successfully.
C:\Program Files\WebMediaPlayer\WebMediaPlayer.url (Adware.EGDAccess) -> Quarantined and deleted successfully.
C:\Program Files\WebMediaPlayer\resources\languages.xml (Adware.EGDAccess) -> Quarantined and deleted successfully.
C:\Program Files\WebMediaPlayer\resources\webmedias (Adware.EGDAccess) -> Quarantined and deleted successfully.
C:\Program Files\WebMediaPlayer\skins\classic.skn (Adware.EGDAccess) -> Quarantined and deleted successfully.
C:\WINDOWS\cookies.ini (Malware.Trace) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ffpldy_navps.dat (Adware.EGDAccess) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\vpdkapl_navps.dat (Adware.EGDAccess) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ffpldy_nav.dat (Adware.EGDAccess) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\vpdkapl_nav.dat (Adware.EGDAccess) -> Quarantined and deleted successfully.

ensuite que dois -je faire
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 37
fiat500 Messages postés 2681 Statut Membre 82
 
re

putain 419 fichier infecter jamais vue sa!!!
dsl pour ma grosierter

reposte moi un nouveau log hijackthis
0
Réponse 26 / 37
jojo97422 Messages postés 76 Statut Membre
 
ok je le fais et je te le poste moi méme j'était étonné par le nombre de fichier infécté incroyable
0
Réponse 27 / 37
fiat500 Messages postés 2681 Statut Membre 82
 
ok

lol
0
Réponse 28 / 37
jojo97422 Messages postés 76 Statut Membre
 
voila le rapport hijackthis

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:57:45, on 01/06/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Winamp\winampa.exe
C:\WINDOWS\system32\VTTimer.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Apps\Powercinema\PCMService.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\WINDOWS\system32\hphmon05.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\WINDOWS\system32\rundll32.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Radio Fr Solo\RFScheduler.exe
C:\Program Files\NoBrand\Wireless Network Manager\Monitor.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://portail.free.fr/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: livetvbar Toolbar - {ad55c869-668e-457c-b270-0cfb2f61116f} - C:\Program Files\livetvbar\tblive.dll
O1 - Hosts: 91.121.20.160 paypal.fr
O1 - Hosts: 91.121.20.160 www.paypal.fr
O1 - Hosts: 91.121.20.160 paypal.co.uk
O1 - Hosts: 91.121.20.160 www.paypal.co.uk
O1 - Hosts: 91.121.20.160 paypal.it
O1 - Hosts: 91.121.20.160 www.paypal.it
O1 - Hosts: 91.121.20.160 paypal.fr
O1 - Hosts: 91.121.20.160 www.paypal.fr
O1 - Hosts: 91.121.20.160 paypal.co.uk
O1 - Hosts: 91.121.20.160 www.paypal.co.uk
O1 - Hosts: 91.121.20.160 paypal.it
O1 - Hosts: 91.121.20.160 www.paypal.it
O1 - Hosts: 91.121.20.160 paypal.fr
O1 - Hosts: 91.121.20.160 www.paypal.fr
O1 - Hosts: 91.121.20.160 paypal.co.uk
O1 - Hosts: 91.121.20.160 www.paypal.co.uk
O1 - Hosts: 91.121.20.160 paypal.it
O1 - Hosts: 91.121.20.160 www.paypal.it
O1 - Hosts: 91.121.20.160 paypal.fr
O1 - Hosts: 91.121.20.160 www.paypal.fr
O1 - Hosts: 91.121.20.160 paypal.co.uk
O1 - Hosts: 91.121.20.160 www.paypal.co.uk
O1 - Hosts: 91.121.20.160 paypal.it
O1 - Hosts: 91.121.20.160 www.paypal.it
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {2EA5D696-C6CE-4A2B-BD4A-4AA1992B9F43} - (no file)
O2 - BHO: (no name) - {3E6EB08D-515C-4022-B42D-CABA45BFC7E0} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {A0FCA3A2-34C0-4CA2-A7A4-87A87D4C712C} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: (no name) - {B5697A77-A299-4DF7-B2B7-EB75629F525D} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [Workflow] E:\Workflow.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [PCMService] "c:\Apps\Powercinema\PCMService.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [HPHUPD05] C:\Program Files\Hewlett-Packard\{5372B9A6-6E51-4f90-9B40-E0A3B8475C4E}\hphupd05.exe
O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\system32\hphmon05.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [BJCFD] C:\Program Files\BroadJump\Client Foundation\CFD.exe
O4 - HKLM\..\Run: [AXPDefender] C:\Program Files\AXPDefender\AXPDefender.exe
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [BoontyBox] "C:\Program Files\Boonty\BoontyBox\BoontyBox.exe" /boot
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Felix] C:\Program Files\ScreenMates\full_felix.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: RFScheduler.lnk = C:\Program Files\Radio Fr Solo\RFScheduler.exe
O4 - Global Startup: Wireless Network Manager.lnk = C:\Program Files\NoBrand\Wireless Network Manager\Monitor.exe
O8 - Extra context menu item: &Recherche AOL Toolbar - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Poker\Titan Poker\casino.exe
O9 - Extra 'Tools' menuitem: Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Poker\Titan Poker\casino.exe
O9 - Extra button: Betway.com Poker - {4CBB5C71-1BA0-49ca-93CD-159AF8AA0CC9} - C:\Program Files\Betway\Poker\MPPoker.exe
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra button: Unibet Poker - {C53BFCFC-7A54-4627-AEBA-2CD4871FCA97} - C:\Microgaming\Poker\UnibetpokerMPP\MPPoker.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: PokerStars.net - {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files\PokerStars.NET\PokerStarsUpdate.exe
O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} - https://support.norton.com/sp/en/us/home/current/info
O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
O16 - DPF: {3EA4FA88-E0BE-419A-A732-9B79B87A6ED0} (CTVUAxCtrl Object) - http://dl.tvunetworks.com/TVUAx.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by16fd.bay16.hotmail.msn.com/resources/MsnPUpld.cab
O16 - DPF: {512FC5A1-7DE1-43F1-BC0C-371622FCB409} (Installer Class) - https://www.pandasecurity.com/en/homeusers/online-antivirus/?ref=activescan
O16 - DPF: {5D80A6D1-B500-47DA-82B8-EB9875F85B4D} (Google Gadget Control) - http://dl.google.com/dl/desktop/nv/GoogleGadgetPluginIEWin.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.new2.foto.com/ImageUploader4.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {AED98630-0251-4E83-917D-43A23D66D507} (Download Helper Class) - http://activex.microgaming.com/DLhelper/version7/dlhelper.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game06.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {CE28D5D2-60CF-4C7D-9FE8-0F47A3308078} - https://support.norton.com/sp/en/us/home/current/info
O16 - DPF: {CE69F98F-2AF3-4306-BAC6-A79070EDA1B4} - http://eu.download.games.yahoo.com/zylom/activex/zylomloader.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D8089245-3211-40F6-819B-9E5E92CD61A2} (FlashXControl Object) - https://mppv2flash3.valueactive.com/Betway/FlashAX.cab
O16 - DPF: {DFB5BCF1-06AE-4ABB-BFA8-1E228F41C50A} (CamfrogWEB Advanced Unicode Control) - https://www.bobtv.fr/download/cfweb_www.bobtv.fr-download_instmodule.exe
O16 - DPF: {EB504BE1-BFA2-41FE-8F49-C4DD2524E246} - http://servicesv4.canalplusactive.com/cabs/msway42.cab
O16 - DPF: {FB90BA05-66E6-4C56-BCD3-D65B0F7EBA39} (Foto.com SpeedUploader 1.0 Control) - http://express.foto.com/SFUploader/SpeedUploader.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{0A4BB8B3-AC32-4A9C-9CF5-E2CEA74D9B7E}: NameServer = 213.36.80.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{0A4BB8B3-AC32-4A9C-9CF5-E2CEA74D9B7E}: NameServer = 213.36.80.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{0A4BB8B3-AC32-4A9C-9CF5-E2CEA74D9B7E}: NameServer = 213.36.80.1
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL
O20 - Winlogon Notify: WinCtrl32 - WinCtrl32.dll (file missing)
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Google Desktop Manager 5.7.801.1629 (GoogleDesktopManager-010108-205858) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: SC Test Branding Service 1 - SC Test Branding 1 - C:\Program Files\Fichiers communs\SC Test Branding 1 Shared\Service\SCTestService1.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
0
Réponse 29 / 37
fiat500 Messages postés 2681 Statut Membre 82
 
deisntalle:

AXPDefender

puis desinstalle avast
et telecharge avg free :

http://avg.vo.llnwd.net/o25/avg_free_stf_all_8_100a1295.exe

mais le a jour puis lance un scan et supprime tous se qu'il trouve
0
Réponse 30 / 37
jojo97422 Messages postés 76 Statut Membre
 
tout al'heure j'ai essaye de supprimé axpdefender mais je n'arrive pas , je le trouve nulle part avas je le télécharge carrément car comme antivirus je le trouvé facile est cool .
0
Réponse 31 / 37
fiat500 Messages postés 2681 Statut Membre 82
 
oui mais desinstalle avast puis telecharge avg free qui est simple !

http://avg.vo.llnwd.net/o25/avg_free_stf_all_8_100a1295.exe

mais le a jour puis lance un scan et supprime tous se qu'il trouve
0
Réponse 32 / 37
Utilisateur anonyme
 
jojo tu continue ou on fini demain ??
0
Réponse 33 / 37
jojo97422 Messages postés 76 Statut Membre
 
ok je fait ce que tu ma dit et si le scan il dure trop longtemps car demain je boss trés tot on se verra demain alors et je te dit grand merci pour ton aide et si tu le veut bien demain .ok
0
Réponse 34 / 37
fiat500 Messages postés 2681 Statut Membre 82
 
ok
0
Réponse 35 / 37
jojo97422 Messages postés 76 Statut Membre
 
mais comment désinstallé axpdefender stp lui je c'est pas comment faire
0
Réponse 36 / 37
Utilisateur anonyme
 
pour axp c est un rogue

donc fais ça :

télécharge OTMoveIt http://download.bleepingcomputer.com/oldtimer/OTMoveIt2.exe (de Old_Timer) sur ton Bureau.
double-clique sur OTMoveIt.exe pour le lancer.
copie la liste qui se trouve en gras ci-dessous,
et colle-la dans le cadre de gauche de OTMoveIt :Paste List of Files/Folders to be moved.

C:\Program Files\AXPDefender\AXPDefender.exe
C:\Program Files\AXPDefender\

clique sur MoveIt! pour lancer la suppression.
le résultat apparaitra dans le cadre "Results".
clique sur Exit pour fermer.
poste le rapport situé dans C:\_OTMoveIt\MovedFiles.

il te sera peut-être demander de redémarrer le pc pour achever la suppression.si c'est le cas accepte par Yes.
0
Réponse 37 / 37
fiat500 Messages postés 2681 Statut Membre 82
 
avg le supprimera!
0

Discussions similaires

XINPUT1_3.dll manquant (missing)
Maxirugue -
dan -

39 réponses
Xinput1_3.dll
OhDatBrute -
OhDatBrute -

9 réponses
Probleme d'installation jeu pc (il manquerait " XINPUT1_3.dll)
Rogerleraton -
Rogerleraton -

6 réponses
Problème avec XINPUT1_3.dll
Albansineux02 -
Panth33ra -

1 réponse
Probleme DLL manquante
Pattrice62460 -
Pattrice62460 -

30 réponses