pub a l ouverture de google RESOLU
Forum Sécurité - Virus : pub a l ouverture de google RESOLU
pouvez vous m aidez
Logfile of HijackThis v1.99.1
Scan saved at 09:21:28, on 21/06/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Inventel\Gateway\wlancfg.exe
C:\WINDOWS\Explorer.EXE
C:\windows\system\hpsysdrv.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\Program Files\Logitech\ImageStudio\LogiTray.exe
C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
c:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE
c:\progra~1\intern~1\iexplore.exe
C:\PROGRA~1\vTuner\vTuner.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe
C:\Program Files\Sony Corporation\Picture Package\Picture Package Applications\Residence.exe
C:\PROGRA~1\INCRED~1\bin\IMApp.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE
C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE
c:\Program Files\Microsoft Works\MSWorks.exe
C:\PROGRA~1\INCRED~1\bin\IncMail.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\TRENDM~1\INTERN~1\PCCGUIDE.EXE
C:\PROGRA~1\TRENDM~1\INTERN~1\PcCtlCom.exe
C:\PROGRA~1\TRENDM~1\INTERN~1\TmPfw.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Propriétaire\Local Settings\Temporary Internet Files\Content.IE5\ECLCZTKI\HijackThis[1].exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr8.hpwis.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.kslqnshfvcowvkmd.com/no [...] oQjzY7.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} - c:\Program Files\Microsoft Money\System\mnyside.dll
O2 - BHO: (no name) - {682E9A52-D4E8-E207-D5A6-77D17428072B} - C:\DOCUME~1\PROPRI~1\APPLIC~1\BIKETR~1\VIEW COOL.exe
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [StorageGuard] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ShowShifter TVTV EPG Daemon] "C:\Program Files\Home Media Networks Limited\ShowShifter\TVTVD.exe"
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb07.exe
O4 - HKLM\..\Run: [LogitechGalleryRepair] C:\Program Files\Logitech\ImageStudio\ISStart.exe
O4 - HKLM\..\Run: [LogitechImageStudioTray] C:\Program Files\Logitech\ImageStudio\LogiTray.exe
O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] c:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [pccguide.exe] "C:\Program Files\Trend Micro\Internet Security 12\pccguide.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon
O4 - HKLM\..\Run: [That Pop Link Sect] C:\Documents and Settings\All Users\Application Data\Browse rect that pop\memobows.exe
O4 - HKCU\..\Run: [NVIEW] rundll32.exe nview.dll,nViewLoadHook
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [chic sixth] C:\DOCUME~1\PROPRI~1\APPLIC~1\DRAWTH~1\rule skip.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE"
O4 - HKCU\..\Run: [vTunerStartUp] C:\PROGRA~1\vTuner\vTuner.exe WinStart=Yes
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Picture Package Menu.lnk = ?
O4 - Global Startup: Picture Package VCD Maker.lnk = ?
O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\PROGRA~1\INCRED~1\bin\resources\WebMenuImg.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Créer un Favori de l'appareil mobile - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INETREPL.DLL
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INETREPL.DLL
O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INETREPL.DLL
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - c:\Program Files\Microsoft Money\System\mnyside.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: Interface Chat Wanadoo - http://chat7.x-echo.com/version6/Applet/wchatsign.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} - http://www.msnjeux.com/online2/MSN [...] player.cab
O16 - DPF: {F00F4763-7355-4725-82F7-0DA94A256D46} (IncrediMail) - http://www2.incredimail.com/conten [...] loader.cab
O18 - Protocol: bw+0 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {2665440B-44BC-4B44-A0A2-420C32D88C51} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - AppInit_DLLs: MsgPlusLoader.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Trend Micro Central Control Component (PcCtlCom) - Trend Micro Incorporated. - C:\PROGRA~1\TRENDM~1\INTERN~1\PcCtlCom.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
O23 - Service: Trend Micro Real-time Service (Tmntsrv) - Trend Micro Incorporated. - C:\PROGRA~1\TRENDM~1\INTERN~1\Tmntsrv.exe
O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~1\TmPfw.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~1\tmproxy.exe
O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Inventel - C:\Program Files\Inventel\Gateway\wlancfg.exe
bonjour
désinstalle MessengerPlus! 3 si installer avec la barre "sponsor"
le réinstaller sans le sponsor
relance hijack
coche et fix checked
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr8.hpwis.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.kslqnshfvcowvkmd.com/no [...] xSSRWeIEQ7 YP3I6x0miLoQjzY7.htm
O4 - HKLM\..\Run: [That Pop Link Sect] C:\Documents and Settings\All Users\Application Data\Browse rect that pop\memobows.exe
O4 - HKCU\..\Run: [chic sixth] C:\DOCUME~1\PROPRI~1\APPLIC~1\DRAWTH~1\rule skip.exe
toutes les lignes 018 SAUF l'avant dernière
qui est O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
en ayant accés aux fichiers cachés
Démarrer =>Poste de travail =>Outils =>Options des dossiers =>Affichage
Cocher = Afficher les fichiers et dossiers cachés
supprimer:
Browse rect that pop ==> dans C:\Documents and Settings\All Users\Application Data
DRAWTH~1 ==> dans C:\DOCUME~1\PROPRI~1\APPLIC~1
profite de ton passage ici pour faire le ménage
télécharger
ccleaner
[url= http://www.stevengould.org/softwar [...] load.html] Cleanup [/url]
les lancer tous les 2
Télécharger : en anglais gratuit 30 jours
[url= http://www.infos-du-net.com/telech [...] Suite.html
] Ewido[/url]
le mettre à jour
Scanner ( scan complet, c’est assez long) et Supprimer tout ce qu’il trouve
copier le rapport ( save scan report)
et poster les rapports ( ewido+ nouveau hijack )
voila
Logfile of HijackThis v1.99.1
Scan saved at 22:24:46, on 21/06/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Inventel\Gateway\wlancfg.exe
C:\WINDOWS\Explorer.EXE
C:\windows\system\hpsysdrv.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Logitech\ImageStudio\LogiTray.exe
C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
c:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE
C:\PROGRA~1\vTuner\vTuner.exe
C:\Program Files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe
C:\Program Files\Sony Corporation\Picture Package\Picture Package Applications\Residence.exe
C:\PROGRA~1\INCRED~1\bin\IMApp.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\PROGRA~1\INCRED~1\bin\IncMail.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\TRENDM~1\INTERN~1\PCCGUIDE.EXE
C:\PROGRA~1\TRENDM~1\INTERN~1\PcCtlCom.exe
C:\PROGRA~1\TRENDM~1\INTERN~1\TmPfw.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\Program Files\Windows NT\Accessoires\wordpad.exe
C:\PROGRA~1\INCRED~1\bin\ImNotfy.exe
C:\Documents and Settings\Propriétaire\Mes documents\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} - c:\Program Files\Microsoft Money\System\mnyside.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [StorageGuard] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ShowShifter TVTV EPG Daemon] "C:\Program Files\Home Media Networks Limited\ShowShifter\TVTVD.exe"
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb07.exe
O4 - HKLM\..\Run: [LogitechGalleryRepair] C:\Program Files\Logitech\ImageStudio\ISStart.exe
O4 - HKLM\..\Run: [LogitechImageStudioTray] C:\Program Files\Logitech\ImageStudio\LogiTray.exe
O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] c:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [pccguide.exe] "C:\Program Files\Trend Micro\Internet Security 12\pccguide.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKLM\..\RunOnce: [MessengerPlusUninstall] C:\WINDOWS\system32\cmd.exe /C "C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp\MsgPlusUninst.bat"
O4 - HKCU\..\Run: [NVIEW] rundll32.exe nview.dll,nViewLoadHook
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE"
O4 - HKCU\..\Run: [vTunerStartUp] C:\PROGRA~1\vTuner\vTuner.exe WinStart=Yes
O4 - HKCU\..\RunOnce: [remititit7614] C:\WINDOWS\system32\command.com /c del C:\DOCUME~1\PROPRI~1\APPLIC~1\DRAWTH~1\7125.del
O4 - HKCU\..\RunOnce: [remititit13656] C:\WINDOWS\system32\command.com /c del C:\DOCUME~1\PROPRI~1\APPLIC~1\DRAWTH~1\7125.del
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Picture Package Menu.lnk = ?
O4 - Global Startup: Picture Package VCD Maker.lnk = ?
O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\PROGRA~1\INCRED~1\bin\resources\WebMenuImg.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Créer un Favori de l'appareil mobile - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INETREPL.DLL
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INETREPL.DLL
O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INETREPL.DLL
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - c:\Program Files\Microsoft Money\System\mnyside.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: Interface Chat Wanadoo - http://chat7.x-echo.com/version6/Applet/wchatsign.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} - http://www.msnjeux.com/online2/MSN [...] player.cab
O16 - DPF: {F00F4763-7355-4725-82F7-0DA94A256D46} (IncrediMail) - http://www2.incredimail.com/conten [...] loader.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Trend Micro Central Control Component (PcCtlCom) - Trend Micro Incorporated. - C:\PROGRA~1\TRENDM~1\INTERN~1\PcCtlCom.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
O23 - Service: Trend Micro Real-time Service (Tmntsrv) - Trend Micro Incorporated. - C:\PROGRA~1\TRENDM~1\INTERN~1\Tmntsrv.exe
O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~1\TmPfw.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~1\tmproxy.exe
O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Inventel - C:\Program Files\Inventel\Gateway\wlancfg.exe
et voici
C:\Program Files\Adverts\uninst.exe -> Adware.Lop : No action taken.
C:\Program Files\EbatesMoeMoneyMaker -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\ApplicationData -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\Applications -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\Applications\ebatesver2.dls -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\Applications\eeid33.dls -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\EbatesMoeMoneyMaker.exe -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\EbatesMoeMoneyMaker.inf -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\Main.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\a.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\b.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\ba.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bb.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bc.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bd.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\be.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bf.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bg.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bh.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bi.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bj.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bk.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bl.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bm.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bn.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bo.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bp.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bq.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\br.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bs.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bt.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bu.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bv.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bw.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bx.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\by.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bz.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\c.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\ca.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cb.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cc.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cd.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\ce.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cf.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cg.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\ch.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\ci.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cj.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\ck.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cl.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cm.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cn.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\co.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cp.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cq.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cr.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cs.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\ct.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cu.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cv.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cw.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cx.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cy.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cz.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\d.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\da.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\db.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dc.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dd.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\de.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\df.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dg.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dh.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\di.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dj.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dk.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dl.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dn.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dp.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dq.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dr.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\ds.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dt.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\du.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dv.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dw.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dy.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dz.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\e.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\ea.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\eb.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\ec.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\ed.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\f.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\g.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\h.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\i.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\j.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\k.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\l.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\m.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\n.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\p.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\q.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\r.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\s.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\t.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\u.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\v.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\w.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\x.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\y.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Html -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Html\ebates_autorediroffer0.htm -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Html\ebates_couponsautoredir0.htm -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Html\ebates_couponsoffer1.htm -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Html\ebates_disable0.htm -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Html\ebates_memoffer0.htm -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Html\ebates_nonmemoffer0.htm -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Html\ebates_preferences1.htm -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Html\ebates_script0.htm -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Html\topmoxie_conflicts2.htm -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Html\topmoxie_proxy.htm -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\button_clickhere.gif -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\button_getcashback.gif -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\button_getcashbck.gif -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\button_no.gif -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\button_submit.gif -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\button_yes.gif -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\clear.gif -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\ebates.gif -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\ebates1.ico -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\ebates1_hot.ico -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\ebateslogo1.gif -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\logo_topmox.gif -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\moe_question.gif -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\moe_reminder.gif -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\moe_top.gif -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\moe_with_cash.gif -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\spacer.gif -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\MTemp -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\MTemp\encryption.bin -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\System -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\System\browsers.dls -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\System\loader.dls -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\System\personality.dls -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\System\shopping.dls -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\System\system.dls -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Temp -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Temp\dump.txt -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Temp\run.txt -> Adware.MoneyMaker : No action taken.
C:\Program Files\NavExcel\NavHelper\v2.0.4c\NHUninstaller.exe -> Adware.NavExcel : No action taken.
C:\Program Files\NavExcel\NavHelper\v2.0.4c\NHelper.dll -> Adware.NavExcel : No action taken.
C:\Program Files\NavExcel\NavHelper\v2.0.4c\v2.0.4c.cab/NHUninstaller.exe -> Adware.NavExcel : No action taken.
C:\Program Files\NavExcel\NavHelper\v2.0.4c\v2.0.4c.cab/NHelper.dll -> Adware.NavExcel : No action taken.
C:\Documents and Settings\Propriétaire\Cookies\propriétaire@mediaplex[1].txt -> TrackingCookie.Mediaplex : No action taken.
C:\Documents and Settings\Propriétaire\Cookies\propriétaire@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : No action taken.
C:\Documents and Settings\Propriétaire\Cookies\propriétaire@tribalfusion[1].txt -> TrackingCookie.Tribalfusion : No action taken.
C:\Documents and Settings\Propriétaire\Cookies\propriétaire@weborama[1].txt -> TrackingCookie.Weborama : No action taken.
::Report end
Bonsoir,
-- Télécharge Cherche.cmd sur ton bureau
Si tu utilise Firefox:
Va sur cette page
Tu fais le clic droit sur le premier lien, celui de Malekal
Choisis "Enregistrer la cible sous..." afin de télécharger Cherche.cmd
-- Double-Clique dessus:
- Une invite de commandes va s'ouvrir, ne panique pas
- Après le scan, le Bloc-Notes va s'ouvrir
-- Copie/Colle tout ce que contient le fichier texte:
- Edition-> Sélectionner Tout
- Edition-> Copier
- Ajoute ta réponse ici en faisant Clique Droit-> Coller
- Fais un scan en ligne Kaspersky
Aide pour les scans en ligne
Sauvegarde puis colle le rapport en fin d'analyse.
Le volume dans le lecteur C s'appelle HP_PAVILION
Le num‚ro de s‚rie du volume est 2C57-8499
R‚pertoire de C:\Program Files
21/06/2006 12:38 <REP> .
21/06/2006 12:38 <REP> ..
02/01/2003 07:29 <REP> Adobe
14/11/2005 21:23 <REP> Adverts
14/10/2005 22:38 <REP> ArcSoft
14/10/2005 22:36 <REP> ATI Technologies
12/05/2006 09:25 <REP> Auralog
03/01/2006 10:58 <REP> AvantGo Connect
20/12/2005 22:23 <REP> AVSMedia
04/12/2005 11:11 <REP> Canon
21/06/2006 11:26 <REP> CCleaner
27/11/2005 17:18 <REP> CMU
03/01/2006 10:58 <REP> Common Files
21/06/2006 12:01 <REP> Complete Cleanup Trial
02/01/2003 06:33 <REP> ComPlus Applications
04/05/2006 22:29 <REP> Diablo II
16/10/2005 13:36 <REP> directx
05/12/2005 12:11 <REP> DivX
04/04/2006 12:55 <REP> DVDRIPNBURN
14/11/2005 00:08 <REP> Easy Internet signup
04/04/2006 12:55 <REP> EbatesMoeMoneyMaker
30/03/2006 12:52 <REP> EBP
13/06/2006 07:28 <REP> eChanblard
25/11/2005 21:36 <REP> Eidos Interactive
21/02/2006 12:45 <REP> eMule
21/06/2006 16:42 <REP> ewido anti-spyware 4.0
30/03/2006 10:29 <REP> FastCaisse
20/12/2005 22:23 <REP> Fichiers communs
30/03/2006 10:22 <REP> Firebird
21/06/2006 09:13 <REP> Google
09/12/2005 10:36 <REP> Hewlett-Packard
08/02/2006 10:25 <REP> HIJACKTHIS VF
14/10/2005 22:37 <REP> Home Media Networks Limited
14/10/2005 23:17 <REP> IncrediMail
16/06/2006 22:04 <REP> Internet Explorer
02/01/2003 07:26 <REP> InterVideo
05/02/2006 19:18 <REP> Inventel
11/11/2005 09:46 <REP> iPod
11/11/2005 09:46 <REP> iTunes
26/10/2005 21:54 <REP> Jes-Soft
28/10/2005 20:46 <REP> Logitech
19/10/2005 22:42 <REP> MaxTV Online
21/10/2005 21:39 <REP> Messenger
14/11/2005 21:23 <REP> MessengerPlus! 3
12/06/2006 20:23 <REP> Microsoft ActiveSync
21/04/2006 11:22 <REP> Microsoft AutoRoute
01/01/2003 18:55 <REP> Microsoft Encarta
02/01/2003 06:36 <REP> microsoft frontpage
01/01/2003 18:54 <REP> Microsoft Money
08/11/2005 16:45 <REP> Microsoft Office
01/01/2003 18:55 <REP> Microsoft Picture It! 7
01/01/2003 18:53 <REP> Microsoft Works
01/01/2003 18:50 <REP> Microsoft Works Suite 2003
08/11/2005 16:46 <REP> Microsoft.NET
30/11/2005 10:52 <REP> Motus
20/10/2005 23:16 <REP> Movie Maker
15/10/2005 00:07 <REP> MSN
02/01/2003 06:33 <REP> MSN Gaming Zone
24/11/2005 10:26 <REP> MSN Messenger
04/04/2006 12:55 <REP> NavExcel
07/11/2005 14:49 <REP> NEC
20/10/2005 23:12 <REP> NetMeeting
17/04/2006 20:13 <REP> Outlook Express
19/12/2005 23:27 <REP> PIXELA
09/12/2005 10:42 <REP> PPLive TV
09/12/2005 10:42 <REP> ppStream
11/11/2005 09:48 <REP> QuickTime
16/10/2005 13:33 <REP> Real
02/01/2003 07:28 <REP> RecordNow
02/01/2003 07:40 <REP> Services en ligne
14/10/2005 22:22 <REP> SiSLan
19/12/2005 23:24 <REP> Sony Corporation
27/10/2005 22:31 <REP> Symantec
27/10/2005 22:33 <REP> Trend Micro
08/02/2006 10:29 <REP> Ubi Soft
02/01/2003 06:39 <REP> Uninstall Information
14/11/2005 23:15 <REP> VideoLAN
29/10/2005 19:51 <REP> Viewpoint
02/03/2006 10:15 <REP> vTuner
14/10/2005 23:07 <REP> Wanadoo
16/10/2005 13:46 <REP> Windows Media Components
12/05/2006 09:26 <REP> Windows Media Player
20/10/2005 23:12 <REP> Windows NT
02/12/2005 11:49 <REP> WinRAR
02/01/2003 06:36 <REP> xerox
21/06/2006 11:26 <REP> Yahoo!
0 fichier(s) 0 octets
86 R‚p(s) 15ÿ957ÿ647ÿ360 octets libres
Le volume dans le lecteur C s'appelle HP_PAVILION
Le num‚ro de s‚rie du volume est 2C57-8499
R‚pertoire de C:\Program Files\fichiers communs
20/12/2005 22:23 <REP> .
20/12/2005 22:23 <REP> ..
17/10/2005 10:01 <REP> Adobe
20/12/2005 22:38 <REP> AVSMedia
08/11/2005 16:45 <REP> DESIGNER
05/02/2006 19:18 278ÿ528 FDEUnInstaller.exe
16/10/2005 13:33 <REP> FotoWire
17/10/2005 09:43 <REP> Hewlett-Packard
28/10/2005 20:45 <REP> InstallShield
28/10/2005 20:46 <REP> Logitech
17/11/2005 00:53 <REP> Microsoft Shared
02/01/2003 06:34 <REP> MSSoap
19/12/2005 23:24 <REP> muvee Technologies
02/01/2003 06:29 <REP> ODBC
19/10/2005 23:15 <REP> Real
15/10/2005 06:13 <REP> Services
02/01/2003 07:28 <REP> Sonic
02/01/2003 06:29 <REP> SpeechEngines
27/10/2005 22:31 <REP> Symantec Shared
17/04/2006 20:13 <REP> System
19/10/2005 23:15 <REP> xing shared
1 fichier(s) 278ÿ528 octets
20 R‚p(s) 15ÿ957ÿ647ÿ360 octets libres
Le volume dans le lecteur C s'appelle HP_PAVILION
Le num‚ro de s‚rie du volume est 2C57-8499
R‚pertoire de C:\Program Files\common files
03/01/2006 10:58 <REP> .
03/01/2006 10:58 <REP> ..
03/01/2006 10:58 <REP> Microsoft Shared
0 fichier(s) 0 octets
3 R‚p(s) 15ÿ957ÿ647ÿ360 octets libres
Le volume dans le lecteur C s'appelle HP_PAVILION
Le num‚ro de s‚rie du volume est 2C57-8499
R‚pertoire de C:\
24/05/2001 12:59 162ÿ304 UNWISE.EXE
1 fichier(s) 162ÿ304 octets
0 R‚p(s) 15ÿ957ÿ647ÿ360 octets libres
c:\Documents and Settings\All Users\Application Data\Browse rect that pop\Eq for.exe
c:\Documents and Settings\All Users\Application Data\Browse rect that pop\extra way.exe
c:\Documents and Settings\All Users\Application Data\Browse rect that pop\film face.exe
c:\Documents and Settings\All Users\Application Data\Browse rect that pop\Intermode.exe
c:\Documents and Settings\All Users\Application Data\Browse rect that pop\memobows.exe
c:\Documents and Settings\All Users\Application Data\CanonBJ\IJPrinter\CNMWINDOWS\Canon iP4200 Installer\Inst2\Cnmvsa.exe
c:\Documents and Settings\All Users\Application Data\CanonBJ\IJPrinter\CNMWINDOWS\Canon iP4200 Installer\Inst2\helpkicker.exe
c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem1506_norton$20internet$20security_6.0.4_french\SysDect.exe
c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3257_symnet$20consumer_4.7.1_english\Message.exe
c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3257_symnet$20consumer_4.7.1_english\setup.exe
c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3263_symnet$20consumer_5.4.4_english\Message.exe
c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads\ExItem3263_symnet$20consumer_5.4.4_english\setup.exe
c:\Documents and Settings\Propri‚taire\Application Data\ArcSoft\ShowBiz\1.3.4\ShowBizDVD_1.3.4.50_1.3.4.60_Update_F.exe
c:\Documents and Settings\Propri‚taire\Application Data\ppStream\update.exe
c:\Documents and Settings\Propri‚taire\Bureau\Update.exe
c:\Documents and Settings\Propri‚taire\Bureau\ViViPlay.exe
c:\Documents and Settings\Propri‚taire\Bureau\WoW-1.6.0-enUS-patch.exe
c:\Documents and Settings\Propri‚taire\Bureau\Nouveau dossier\INSTALL.EXE
c:\Documents and Settings\Propri‚taire\Bureau\Nouveau dossier\CDv5\install.exe
c:\Documents and Settings\Propri‚taire\Local Settings\Temp\GLB1A2B.EXE
c:\Documents and Settings\Propri‚taire\Local Settings\Temporary Internet Files\Content.IE5\D237X0HM\ewido-setup_4.0.0.172[1].exe
c:\Documents and Settings\Propri‚taire\Mes documents\HijackThis.exe
c:\Documents and Settings\Propri‚taire\Mes documents\installe.exe
c:\Documents and Settings\Propri‚taire\Mes documents\rr.exe
c:\Documents and Settings\Propri‚taire\Mes documents\setup.exe
c:\Documents and Settings\Propri‚taire\Mes documents\INST00\endinst.exe
c:\Documents and Settings\Propri‚taire\Mes documents\INST00\WDSETUP.EXE
c:\Documents and Settings\Propri‚taire\Mes documents\Mes fichiers re‡us\eChanblard10.3.exe
c:\Documents and Settings\Propri‚taire\Mes documents\Mes fichiers re‡us\PDVFULL_561Tb.exe
c:\Documents and Settings\Propri‚taire\Mes documents\Mes fichiers re‡us\Setup FASTCAISSE.exe
c:\Documents and Settings\Propri‚taire\Mes documents\visionneuse\3420-fra-win2k_xp.exe
c:\Documents and Settings\Propri‚taire\Mes documents\win2k_xp\autorun.exe
c:\Documents and Settings\Propri‚taire\Mes documents\win2k_xp\hpzglu07.exe
c:\Documents and Settings\Propri‚taire\Mes documents\win2k_xp\setup.exe
c:\Documents and Settings\Propri‚taire\Mes documents\win2k_xp\fra\nt4\Disk1\setup.exe
c:\Documents and Settings\Propri‚taire\Mes documents\win2k_xp\fra\nt4\Disk1\nt4\delay.exe
c:\Documents and Settings\Propri‚taire\Mes documents\win2k_xp\fra\nt4\Disk1\nt4\DIRECT~1.EXE
c:\Documents and Settings\Propri‚taire\Mes documents\win2k_xp\fra\nt4\Disk1\nt4\hpfinstx.exe
c:\Documents and Settings\Propri‚taire\Mes documents\win2k_xp\fra\nt4\Disk1\nt4\hpfldr.exe
c:\Documents and Settings\Propri‚taire\Mes documents\win2k_xp\fra\nt4\Disk1\nt4\hpfsplsh.exe
c:\Documents and Settings\Propri‚taire\Mes documents\win2k_xp\util\3420\hpfpdi07.exe
c:\Documents and Settings\Propri‚taire\Mes documents\win2k_xp\util\3420\hpzghl07.exe
c:\Documents and Settings\Propri‚taire\Mes documents\win2k_xp\util\3420\hpzpin07.exe
jeudi 22 juin 2006 07:11:27
Système d'exploitation : Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
Version de Kaspersky On-line Scanner: 5.0.78.0
Dernière mise à jour de la base antivirus Kaspersky : 22/06/2006
Enregistrements dans la base antivirus Kaspersky : 189832
Paramètres d'analyse
Analyser avec la base antivirus suivante standard
Analyser les archives vrai
Analyser les bases de messagerie. vrai
Cible de l'analyse Poste de travail
A:\
C:\
D:\
E:\
F:\
Statistiques de l'analyse
Total d'objets analysés : 76180
Nombre de virus trouvés 5
Nombre d'objets infectés 29
Nombre d'objets suspects 0
Durée de l'analyse 02:28:54
Nom de l'objet infecté Nom du virus Dernière action
C:\Program Files\Trend Micro\Internet Security 12\Quarantine\157.tmp Infecté: Trojan-Downloader.Win32.Swizzor.fg ignoré
C:\Program Files\Trend Micro\Internet Security 12\Quarantine\22.tmp/File-packed_dataInfo.exe Infecté: Email-Worm.Win32.Sober.y ignoré
C:\Program Files\Trend Micro\Internet Security 12\Quarantine\22.tmp ZIP: infecté - 1 ignoré
C:\Program Files\Trend Micro\Internet Security 12\Quarantine\22.tmp CryptFF.b: infecté - 1 ignoré
C:\Program Files\Trend Micro\Internet Security 12\Quarantine\23.tmp/File-packed_dataInfo.exe Infecté: Email-Worm.Win32.Sober.y ignoré
C:\Program Files\Trend Micro\Internet Security 12\Quarantine\23.tmp ZIP: infecté - 1 ignoré
C:\Program Files\Trend Micro\Internet Security 12\Quarantine\23.tmp CryptFF.b: infecté - 1 ignoré
C:\Program Files\Trend Micro\Internet Security 12\Quarantine\4.tmp Infecté: Trojan-Downloader.Win32.Swizzor.fg ignoré
C:\Program Files\Trend Micro\Internet Security 12\Quarantine\8.tmp Infecté: Trojan-Downloader.Win32.Swizzor.fg ignoré
C:\Program Files\Trend Micro\Internet Security 12\Quarantine\9E.tmp/File-packed_dataInfo.exe Infecté: Email-Worm.Win32.Sober.y ignoré
C:\Program Files\Trend Micro\Internet Security 12\Quarantine\9E.tmp ZIP: infecté - 1 ignoré
C:\Program Files\Trend Micro\Internet Security 12\Quarantine\9E.tmp CryptFF.b: infecté - 1 ignoré
C:\Program Files\Trend Micro\Internet Security 12\Quarantine\9F.tmp/File-packed_dataInfo.exe Infecté: Email-Worm.Win32.Sober.y ignoré
C:\Program Files\Trend Micro\Internet Security 12\Quarantine\9F.tmp ZIP: infecté - 1 ignoré
C:\Program Files\Trend Micro\Internet Security 12\Quarantine\9F.tmp CryptFF.b: infecté - 1 ignoré
C:\Program Files\Trend Micro\Internet Security 12\Quarantine\A.tmp Infecté: Trojan-Downloader.Win32.Swizzor.fg ignoré
C:\Program Files\Trend Micro\Internet Security 12\Quarantine\A0.tmp/File-packed_dataInfo.exe Infecté: Email-Worm.Win32.Sober.y ignoré
C:\Program Files\Trend Micro\Internet Security 12\Quarantine\A0.tmp ZIP: infecté - 1 ignoré
C:\Program Files\Trend Micro\Internet Security 12\Quarantine\A0.tmp CryptFF.b: infecté - 1 ignoré
C:\Program Files\Trend Micro\Internet Security 12\Quarantine\E.tmp Infecté: Trojan-Downloader.Win32.Swizzor.fg ignoré
C:\System Volume Information\_restore{DC728D2A-F789-45D0-A904-D810A757CF8D}\RP286\A0029249.exe Infecté: Trojan-Dropper.Win32.Agent.ams ignoré
C:\System Volume Information\_restore{DC728D2A-F789-45D0-A904-D810A757CF8D}\RP302\A0030647.exe Infecté: Trojan-Downloader.Win32.Swizzor.eu ignoré
C:\System Volume Information\_restore{DC728D2A-F789-45D0-A904-D810A757CF8D}\RP302\A0030648.exe Infecté: Trojan-Downloader.Win32.Swizzor.fg ignoré
C:\System Volume Information\_restore{DC728D2A-F789-45D0-A904-D810A757CF8D}\RP332\A0033631.exe Infecté: Trojan-Downloader.Win32.Swizzor.fg ignoré
C:\System Volume Information\_restore{DC728D2A-F789-45D0-A904-D810A757CF8D}\RP332\A0033636.exe Infecté: Trojan-Downloader.Win32.Swizzor.eu ignoré
C:\System Volume Information\_restore{DC728D2A-F789-45D0-A904-D810A757CF8D}\RP332\A0033638.exe Infecté: Trojan-Downloader.Win32.Swizzor.dv ignoré
C:\System Volume Information\_restore{DC728D2A-F789-45D0-A904-D810A757CF8D}\RP332\A0033639.exe Infecté: Trojan-Downloader.Win32.Swizzor.dv ignoré
C:\System Volume Information\_restore{DC728D2A-F789-45D0-A904-D810A757CF8D}\RP332\A0033640.exe Infecté: Trojan-Downloader.Win32.Swizzor.dv ignoré
C:\System Volume Information\_restore{DC728D2A-F789-45D0-A904-D810A757CF8D}\RP332\A0033641.exe Infecté: Trojan-Downloader.Win32.Swizzor.fg ignoré
Analyse terminée.
Bonjour Jippe.
1) Vide la quarantaine de Norton.
2) Désactive puis réactive ta restauration systèm
3) Télécharge Ewido.
a) Mets le à jour en cliquant update now.
b) Redémarre en mode sans échec (tapote la touche F8 au démarage de ton ordinateur)et
c) Fais un "complete system scan".
d) A la fin du scan clique seulement sur : "Apply all actions"
e) Ensuite, clique sur "Save Report " puis "Save report as" et sauve le rapport dans tes documents.
f) Redémarre normalement et post le rapport.
Edit : Je vois que tu as déjà télécharger ewido sous les conseil de mogadon fais donc juste le scan et post le rapport.
Supprime ce dossier (en sans échec si necessaire)
C:\Documents and Settings\All Users\Application Data\Browse rect that pop\
ewido anti-spyware - Scan Report
---------------------------------------------------------
+ Created at: 14:06:51 22/06/2006
+ Scan result:
C:\Program Files\Adverts\uninst.exe -> Adware.Lop : No action taken.
C:\Program Files\EbatesMoeMoneyMaker -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\ApplicationData -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\Applications -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\Applications\ebatesver2.dls -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\Applications\eeid33.dls -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\EbatesMoeMoneyMaker.exe -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\EbatesMoeMoneyMaker.inf -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\Main.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\a.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\b.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\ba.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bb.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bc.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bd.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\be.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bf.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bg.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bh.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bi.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bj.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bk.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bl.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bm.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bn.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bo.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bp.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bq.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\br.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bs.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bt.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bu.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bv.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bw.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bx.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\by.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\bz.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\c.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\ca.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cb.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cc.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cd.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\ce.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cf.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cg.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\ch.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\ci.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cj.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\ck.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cl.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cm.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cn.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\co.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cp.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cq.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cr.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cs.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\ct.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cu.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cv.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cw.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cx.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cy.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\cz.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\d.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\da.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\db.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dc.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dd.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\de.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\df.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dg.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dh.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\di.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dj.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dk.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dl.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dn.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dp.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dq.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dr.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\ds.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dt.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\du.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dv.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dw.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dy.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\dz.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\e.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\ea.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\eb.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\ec.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\ed.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\f.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\g.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\h.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\i.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\j.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\k.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\l.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\m.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\n.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\p.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\q.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\r.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\s.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\t.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\u.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\v.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\w.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\x.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Code\y.class -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Html -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Html\ebates_autorediroffer0.htm -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Html\ebates_couponsautoredir0.htm -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Html\ebates_couponsoffer1.htm -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Html\ebates_disable0.htm -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Html\ebates_memoffer0.htm -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Html\ebates_nonmemoffer0.htm -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Html\ebates_preferences1.htm -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Html\ebates_script0.htm -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Html\topmoxie_conflicts2.htm -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Html\topmoxie_proxy.htm -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\button_clickhere.gif -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\button_getcashback.gif -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\button_getcashbck.gif -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\button_no.gif -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\button_submit.gif -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\button_yes.gif -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\clear.gif -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\ebates.gif -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\ebates1.ico -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\ebates1_hot.ico -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\ebateslogo1.gif -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\logo_topmox.gif -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\moe_question.gif -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\moe_reminder.gif -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\moe_top.gif -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\moe_with_cash.gif -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Images\spacer.gif -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\MTemp -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\MTemp\encryption.bin -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\System -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\System\browsers.dls -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\System\loader.dls -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\System\personality.dls -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\System\shopping.dls -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\System\system.dls -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Temp -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Temp\dump.txt -> Adware.MoneyMaker : No action taken.
C:\Program Files\EbatesMoeMoneyMaker\System\Temp\run.txt -> Adware.MoneyMaker : No action taken.
C:\Program Files\NavExcel\NavHelper\v2.0.4c\NHUninstaller.exe -> Adware.NavExcel : No action taken.
C:\Program Files\NavExcel\NavHelper\v2.0.4c\NHelper.dll -> Adware.NavExcel : No action taken.
C:\Program Files\NavExcel\NavHelper\v2.0.4c\v2.0.4c.cab/NHUninstaller.exe -> Adware.NavExcel : No action taken.
C:\Program Files\NavExcel\NavHelper\v2.0.4c\v2.0.4c.cab/NHelper.dll -> Adware.NavExcel : No action taken.
C:\Documents and Settings\Propriétaire\Cookies\propriétaire@atdmt[2].txt -> TrackingCookie.Atdmt : No action taken.
C:\Documents and Settings\Propriétaire\Cookies\propriétaire@bluestreak[1].txt -> TrackingCookie.Bluestreak : No action taken.
C:\Documents and Settings\Propriétaire\Cookies\propriétaire@doubleclick[1].txt -> TrackingCookie.Doubleclick : No action taken.
C:\Documents and Settings\Propriétaire\Cookies\propriétaire@estat[1].txt -> TrackingCookie.Estat : No action taken.
C:\Documents and Settings\Propriétaire\Cookies\propriétaire@as1.falkag[2].txt -> TrackingCookie.Falkag : No action taken.
C:\Documents and Settings\Propriétaire\Cookies\propriétaire@mediaplex[1].txt -> TrackingCookie.Mediaplex : No action taken.
C:\Documents and Settings\Propriétaire\Cookies\propriétaire@overture[2].txt -> TrackingCookie.Overture : No action taken.
C:\Documents and Settings\Propriétaire\Cookies\propriétaire@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : No action taken.
C:\Documents and Settings\Propriétaire\Cookies\propriétaire@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : No action taken.
C:\Documents and Settings\Propriétaire\Cookies\propriétaire@tribalfusion[1].txt -> TrackingCookie.Tribalfusion : No action taken.
C:\Documents and Settings\Propriétaire\Cookies\propriétaire@weborama[2].txt -> TrackingCookie.Weborama : No action taken.
::Report end
As tu d'autres problemes ?
non apparement tout fonctionne
un grand merci
bonjour
dans tes rapports Ewido = No action taken.
ce qui veut dire que rien n'a été fait. tu as encore des Adwares
il faut que tu refasses le scan Ewido puis à la fin
Supprimer ce qu’il trouve = Apply all actions
Il y a 248 utilisateurs connus et inconnus. Pour voir la liste des connectés connus, cliquez ici.
