Pour demander de l'aide, vous devez vous créer un compte et vous connecter. Utilisez les boutons sociaux ci-dessous depuis ce lien : S'inscrire sur le forum
Plus d'informations : Comment demander de l’aide sur le forum

System docteur (et peut etre d'autre)

Aide à la désinfection pour supprimer les virus, adwares, ransomwares, trojans.

Modérateurs : Mods Windows, Helper

Avatar de l’utilisateur
loop13
newbie expert
newbie expert
Messages : 98
Inscription : 04 août 2006 16:59
Localisation : Aubagne (13)

System docteur (et peut etre d'autre)

Message par loop13 »

Bonjour malekal,
Je te l'avais promis je suis revenu et j'ai pas les mains vide
voici un log Hijack
Logfile of HijackThis v1.99.1
Scan saved at 14:56:04, on 18/08/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Dell\OpenManage\Client\Iap.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\Program Files\HbTools\Bin\4.8.0.0\HbtOEAddOn.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
C:\WINDOWS\system32\1201.exe
C:\WINDOWS\logon.exe
C:\Program Files\HbTools\Bin\4.8.0.0\HbtWeatherOnTray.exe
C:\Program Files\eoRezo\EoEngine.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\OLYMPUS\OLYMPUS Master\Monitor.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Hbtools\HBTV\HBTV.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Inventel\Gateway\WLANCFG.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\HbTools\Bin\4.8.0.0\HbtSrv.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\kart in pro compet\Local Settings\Temporary Internet Files\Content.IE5\CRFZE8LT\HijackThis[1].exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.euro.dell.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.euro.dell.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
R3 - URLSearchHook: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SWEETIE - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
O2 - BHO: ShprRprts - {2A8A997F-BB9F-48F6-AA2B-2762D50F9289} - C:\Program Files\ShopperReports\Bin\2.0.0\ShprRprt.dll
O2 - BHO: (no name) - {3D4D53DD-C2A9-4EA8-BFFA-9E85074BD14F} - \
O2 - BHO: Microsoft MSJava 32 - {43F7497C-7687-4DEA-A057-F21BD81BC896} - C:\WINDOWS\system32\msjava32.dll
O2 - BHO: TVEngine Helper /fleok=1D8A83A5C2E6107C91A475760EA83FA5EF80752B94E3D77C597E4F2E38C1 - {4B18DD50-C996-44fc-AC52-0FECFF82ED58} - c:\program files\hbtools\hbtv\hbtvhelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: (no name) - {61CC6763-EAB6-5BA4-7B1B-1DD8E624BF13} - C:\WINDOWS\qdgeip.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL
O2 - BHO: HbTools - {74CC49F7-EB32-4A08-B204-948962A6E3DB} - C:\Program Files\HbTools\Bin\4.8.0.0\HbtHostIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: (no name) - {C0332DFB-B9CE-4C4C-ABD7-6BC08FA1A8C6} - C:\Program Files\Windows NT\qujoryfaz.dll
O2 - BHO: (no name) - {CC90F0D9-ADC9-4B3C-9762-55B8493A1DD6} - C:\Program Files\Windows NT\qujoryfaz.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: H&otbar - {74CC49F7-EB32-4A08-B204-948962A6E3DB} - C:\Program Files\HbTools\Bin\4.8.0.0\HbtHostIE.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [EPSON Stylus C62 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P23 "EPSON Stylus C62 Series" /O5 "LPT1:" /M "Stylus C62"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [HbTools] C:\Program Files\HbTools\Bin\4.8.0.0\HbtOEAddOn.exe
O4 - HKLM\..\Run: [otxridma] C:\WINDOWS\system32\tfykoasc.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
O4 - HKLM\..\Run: [ACTX1] C:\WINDOWS\system32\1201.exe
O4 - HKLM\..\Run: [WinLogon] C:\WINDOWS\logon.exe
O4 - HKLM\..\Run: [WeatherOnTray] C:\Program Files\HbTools\Bin\4.8.0.0\HbtWeatherOnTray.exe
O4 - HKLM\..\Run: [NI.UWFX5V_0001_N57M1412] "C:\WINDOWS\Downloaded Program Files\UWFX5V_0001_N57M1412NetInstaller.exe" -nag
O4 - HKLM\..\Run: [EoEngine] "C:\Program Files\eoRezo\EoEngine.exe"
O4 - HKLM\..\Run: [SystemDoctor 2006 Free] C:\Program Files\SystemDoctor 2006 Free\sd2006.exe -scan
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [OM_Monitor] C:\Program Files\OLYMPUS\OLYMPUS Master\Monitor.exe
O4 - HKCU\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [VSL13.exe] C:\WINDOWS\system32\VSL13.exe
O4 - HKCU\..\Run: [1201.exe] C:\WINDOWS\system32\1201.exe
O4 - HKCU\..\Run: [ssqbn.exe] C:\WINDOWS\system32\ssqbn.exe
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_5
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar1.dll/cmtrans.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: ShopperReports - Compare product prices - {946B3E9E-E21A-49c8-9F63-900533FAFE14} - C:\Program Files\ShopperReports\Bin\2.0.0\ShprRprt.dll
O9 - Extra button: ShopperReports - Compare travel rates - {946B3E9E-E21A-49c8-9F63-900533FAFE15} - C:\Program Files\ShopperReports\Bin\2.0.0\ShprRprt.dll
O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe
O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe
O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.wanadoo.fr (file missing) (HKCU)
O16 - DPF: {00000000-0000-0000-0000-000020040000} - http://207.234.185.217/ABoxInst_int14.exe
O16 - DPF: {00000000-0000-0000-0000-000020050660} - http://207.234.185.217/ABoxInst_int15.exe
O16 - DPF: {00000000-0000-0000-0000-000320050660} - http://207.234.185.217/aboxinst_int16.exe
O16 - DPF: {00000000-0000-0000-0000-000330050660} - http://207.234.185.217/aboxinst_int20.exe
O16 - DPF: {09F1ADAC-76D8-4D0F-99A5-5C907DADB988} - http://fr.systemdoctor.com/download/200 ... all_fr.cab
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocach ... 0.0.15.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.c ... 040510.cab
O16 - DPF: {4AD73894-A895-4FC2-B233-299867E08753} (Cadwkzctl Object) - http://apps.deskwizz.com/ax/adwerkz.cab
O16 - DPF: {A1426AC5-8CE5-4A00-B71E-011D35709AC6} (Progetto1.int_ver34) - http://advnt01.com/dialer/int_ver34.CAB
O16 - DPF: {B64F4A7C-97C9-11DA-8BDE-F66BAD1E3F3A} - http://fr.errorsafe.com/pages/scanner_f ... tallFR.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Iap - Dell Inc - C:\Program Files\Dell\OpenManage\Client\Iap.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\NCS\Sync\NetSvc.exe
O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Inventel - C:\Program Files\Inventel\Gateway\wlancfg.exe


Je te promets que j'essaye mais je comprend pas tout (j'ai juste vu system doctor et tous lien qu'il fait ouvrir pour les pop up)

Voila il ne te reste plus qu'a me dire ce que doit faire

Merci a+

Malekal_morte
Site Admin
Site Admin
Messages : 102130
Inscription : 10 sept. 2005 13:57
Contact :

Message par Malekal_morte »

Yop lop13,

Tu sais quoi ? ben ta machine est infectée !
je parie que tu le savais déjà PDT_006

Pour vérifier :

Télécharge F-Secure Blacklight : https://europe.f-secure.com/blacklight/try.shtml
- Clic en bas sur "I accept"
- Dans la nouvelle fenêtre, clic sur le bouton en haut du tableau Download.
- Lance-le en double-cliquant sur le fichier blbeta.exe
- Accepte la licence, et clique enfin sur "Scan" puis Next et exit.
- Un rapport fsbl-bxxxx.log va être créé dans le même dossier que blbeta.exe
- Ouvre fsbl-bxxxx.log et copie/colle le contenu ici, pour cela :
- Menu Edition / copier
- ici dans un nouveau message : clic droit / coller
Aide : Tu peux consulter le tutorial de F-Secure BlackLight
Image

Première règle élémentaire de sécurité : on réfléchit puis on clic et pas l'inverse - Les fichiers/programmes c'est comme les bonbons, quand ça vient d'un inconnu, on n'accepte pas !
Comment protéger son PC des virus

Les tutoriels Windows 10 du moment : Comment demander de l'aide sur le forum
Partagez malekal.com : n'hésitez pas à partager les articles qui vous plaisent sur la page Facebook du site.

Avatar de l’utilisateur
loop13
newbie expert
newbie expert
Messages : 98
Inscription : 04 août 2006 16:59
Localisation : Aubagne (13)

Message par loop13 »

Ca y est fini les vacances !
je suis de retour au boulot alors je t'envoie le rapport de F-secure Blachlight

08/21/06 09:26:34 [Info]: BlackLight Engine 1.0.46 initialized
08/21/06 09:26:34 [Info]: OS: 5.1 build 2600 (Service Pack 2)
08/21/06 09:26:34 [Note]: 7019 4
08/21/06 09:26:34 [Note]: 7005 0
08/21/06 09:26:37 [Note]: 7006 0
08/21/06 09:26:37 [Note]: 7011 1364
08/21/06 09:26:37 [Note]: 7026 0
08/21/06 09:26:37 [Note]: 7026 0
08/21/06 09:26:37 [Note]: 7024 3
08/21/06 09:26:37 [Info]: Hidden process: C:\windows\system32\bhmngifz.exe
08/21/06 09:26:37 [Note]: FSRAW library version 1.7.1019
08/21/06 09:27:11 [Note]: 4013 26527
08/21/06 09:27:11 [Note]: 4020 12053 790102016
08/21/06 09:27:11 [Note]: 4020 12053 790102016
08/21/06 09:27:11 [Note]: 4018 12053 790102016
08/21/06 09:27:20 [Note]: 4013 26558
08/21/06 09:27:20 [Note]: 4020 11783 776798208
08/21/06 09:27:20 [Note]: 4020 11783 776798208
08/21/06 09:27:20 [Note]: 4018 11783 776798208
08/21/06 09:27:20 [Note]: 4013 26558
08/21/06 09:27:20 [Note]: 4020 11783 776798208
08/21/06 09:27:20 [Note]: 4018 11783 776798208
08/21/06 09:27:20 [Note]: 4013 26743
08/21/06 09:27:20 [Note]: 4020 11783 776798208
08/21/06 09:27:20 [Note]: 4018 11783 776798208
08/21/06 09:27:20 [Note]: 4013 26743
08/21/06 09:27:20 [Note]: 4020 11783 776798208
08/21/06 09:27:20 [Note]: 4018 11783 776798208
08/21/06 09:27:24 [Note]: 4013 26750
08/21/06 09:27:24 [Note]: 4020 11700 772014080
08/21/06 09:27:24 [Note]: 4020 11700 772014080
08/21/06 09:27:24 [Note]: 4018 11700 772014080
08/21/06 09:27:24 [Note]: 4013 26709
08/21/06 09:27:24 [Note]: 4020 11700 772014080
08/21/06 09:27:24 [Note]: 4018 11700 772014080
08/21/06 09:27:24 [Note]: 4013 26746
08/21/06 09:27:24 [Note]: 4020 11700 772014080
08/21/06 09:27:24 [Note]: 4018 11700 772014080
08/21/06 09:27:24 [Note]: 4013 26750
08/21/06 09:27:24 [Note]: 4020 11700 772014080
08/21/06 09:27:24 [Note]: 4018 11700 772014080
08/21/06 09:27:24 [Note]: 4013 26709
08/21/06 09:27:24 [Note]: 4020 11700 772014080
08/21/06 09:27:24 [Note]: 4018 11700 772014080
08/21/06 09:27:24 [Note]: 4013 26746
08/21/06 09:27:24 [Note]: 4020 11700 772014080
08/21/06 09:27:24 [Note]: 4018 11700 772014080
08/21/06 09:29:42 [Info]: Hidden file: c:\WINDOWS\system32\bhmngifz.dat
08/21/06 09:29:42 [Note]: 10002 1
08/21/06 09:29:42 [Info]: Hidden file: C:\windows\system32\bhmngifz.exe
08/21/06 09:29:42 [Note]: 10002 1
08/21/06 09:29:42 [Info]: Hidden file: c:\WINDOWS\system32\bhmngifz_nav.dat
08/21/06 09:29:42 [Note]: 10002 1
08/21/06 09:29:42 [Info]: Hidden file: c:\WINDOWS\system32\bhmngifz_navps.dat
08/21/06 09:29:42 [Note]: 10002 1
08/21/06 09:30:11 [Info]: Hidden file: c:\WINDOWS\Prefetch\BHMNGIFZ.EXE-1128E0E7.pf
08/21/06 09:30:11 [Note]: 10002 1
08/21/06 09:30:26 [Note]: 7007 0

Voila j'attend tes nouvelles instructions

Avatar de l’utilisateur
loop13
newbie expert
newbie expert
Messages : 98
Inscription : 04 août 2006 16:59
Localisation : Aubagne (13)

Message par loop13 »

Ca y est fini les vacances !
je suis de retour au boulot alors je t'envoie le rapport de F-secure Blachlight

08/21/06 09:26:34 [Info]: BlackLight Engine 1.0.46 initialized
08/21/06 09:26:34 [Info]: OS: 5.1 build 2600 (Service Pack 2)
08/21/06 09:26:34 [Note]: 7019 4
08/21/06 09:26:34 [Note]: 7005 0
08/21/06 09:26:37 [Note]: 7006 0
08/21/06 09:26:37 [Note]: 7011 1364
08/21/06 09:26:37 [Note]: 7026 0
08/21/06 09:26:37 [Note]: 7026 0
08/21/06 09:26:37 [Note]: 7024 3
08/21/06 09:26:37 [Info]: Hidden process: C:\windows\system32\bhmngifz.exe
08/21/06 09:26:37 [Note]: FSRAW library version 1.7.1019
08/21/06 09:27:11 [Note]: 4013 26527
08/21/06 09:27:11 [Note]: 4020 12053 790102016
08/21/06 09:27:11 [Note]: 4020 12053 790102016
08/21/06 09:27:11 [Note]: 4018 12053 790102016
08/21/06 09:27:20 [Note]: 4013 26558
08/21/06 09:27:20 [Note]: 4020 11783 776798208
08/21/06 09:27:20 [Note]: 4020 11783 776798208
08/21/06 09:27:20 [Note]: 4018 11783 776798208
08/21/06 09:27:20 [Note]: 4013 26558
08/21/06 09:27:20 [Note]: 4020 11783 776798208
08/21/06 09:27:20 [Note]: 4018 11783 776798208
08/21/06 09:27:20 [Note]: 4013 26743
08/21/06 09:27:20 [Note]: 4020 11783 776798208
08/21/06 09:27:20 [Note]: 4018 11783 776798208
08/21/06 09:27:20 [Note]: 4013 26743
08/21/06 09:27:20 [Note]: 4020 11783 776798208
08/21/06 09:27:20 [Note]: 4018 11783 776798208
08/21/06 09:27:24 [Note]: 4013 26750
08/21/06 09:27:24 [Note]: 4020 11700 772014080
08/21/06 09:27:24 [Note]: 4020 11700 772014080
08/21/06 09:27:24 [Note]: 4018 11700 772014080
08/21/06 09:27:24 [Note]: 4013 26709
08/21/06 09:27:24 [Note]: 4020 11700 772014080
08/21/06 09:27:24 [Note]: 4018 11700 772014080
08/21/06 09:27:24 [Note]: 4013 26746
08/21/06 09:27:24 [Note]: 4020 11700 772014080
08/21/06 09:27:24 [Note]: 4018 11700 772014080
08/21/06 09:27:24 [Note]: 4013 26750
08/21/06 09:27:24 [Note]: 4020 11700 772014080
08/21/06 09:27:24 [Note]: 4018 11700 772014080
08/21/06 09:27:24 [Note]: 4013 26709
08/21/06 09:27:24 [Note]: 4020 11700 772014080
08/21/06 09:27:24 [Note]: 4018 11700 772014080
08/21/06 09:27:24 [Note]: 4013 26746
08/21/06 09:27:24 [Note]: 4020 11700 772014080
08/21/06 09:27:24 [Note]: 4018 11700 772014080
08/21/06 09:29:42 [Info]: Hidden file: c:\WINDOWS\system32\bhmngifz.dat
08/21/06 09:29:42 [Note]: 10002 1
08/21/06 09:29:42 [Info]: Hidden file: C:\windows\system32\bhmngifz.exe
08/21/06 09:29:42 [Note]: 10002 1
08/21/06 09:29:42 [Info]: Hidden file: c:\WINDOWS\system32\bhmngifz_nav.dat
08/21/06 09:29:42 [Note]: 10002 1
08/21/06 09:29:42 [Info]: Hidden file: c:\WINDOWS\system32\bhmngifz_navps.dat
08/21/06 09:29:42 [Note]: 10002 1
08/21/06 09:30:11 [Info]: Hidden file: c:\WINDOWS\Prefetch\BHMNGIFZ.EXE-1128E0E7.pf
08/21/06 09:30:11 [Note]: 10002 1
08/21/06 09:30:26 [Note]: 7007 0

Voila j'attend tes nouvelles instructions

Malekal_morte
Site Admin
Site Admin
Messages : 102130
Inscription : 10 sept. 2005 13:57
Contact :

Message par Malekal_morte »

Voici la manipulation à effectuer en entier
Merci de bien vouloir :
- Lire attentivement les instructions demandées et prendre son temps pour les effectuer convenablement, sinon la désinfection ne sera pas complète.
- Si certains éléments ne sont pas trouvés, merci de le signaler mais de poursuivre les manipulations jusqu'au bout.
- A l'issu de la procédure, merci de bien copier/coller TOUS les rapports demandés.
- N'hésitez pas à consulter les liens d'aides, ils sont là pour vous guider !


Affiche les extensions des fichiers, ce sera plus simple :
-- Ouvre le poste de travail
-- Clic sur le menu outils en haut à droite puis options des dossiers
-- Dans la nouvelle fenêtre, clic sur l'onglet Affichage en haut
-- Décoche l'option "Masquez les extensions des fichiers dont le type est connu"

Créé un nouveau dossier directement sur le C:\ et nomme-le BFU. Pour cela :
-- Ouvre le poste de travail
-- Double-clic sur le disque C
-- Menu Fichier en haut puis Nouveau et nouveau dossier
-- Tapez BFU dans le nom du nouveau dossier

Télécharge Brute Force Uninstaller (de Merijn) et tu mets le fichier dans le dossier C:\BFU.

Rends toi dans le dossier C:\BFU :
-- Ouvre le poste de travail
-- Double-clic sur le disque C
-- Double-clic sur le dossier BFU
-- Sur le fichier BFU.zip, fais un clic droit / Extraire ici ou Extraire tout.

Tu dois maintenant avoir dans le dossier BFU, deux fichiers : Bfu.exe et Bfu.zip

Ensuite :
FAIS UN CLIC-DROIT ICI de Metallica et choisis "Enregistrer la cible sous..." afin de télécharger EGDACCESS.bfu (de Metallica). Sauvegarde dans le dossier créé (C:\BFU). **Note : si tu utilises Internet Explorer; lors de la sauvegarde, assure-toi que le champs "Type :" affiche "Tous les fichiers".

Important : Tu dois maintenant avoir deux fichiers dans le dossier C:\BFU : EGDACCESS.bfu et BFU.exe.
Si ce n'est pas le cas, recommence les opérations, doucement, cela ne sert à rien d'aller plus loin tant que tu n'as pas ces deux fichiers.


- Télécharge et installe ewido
- Mets le à jour à partir du menu update en haut, n'hésite pas à consulter l'Aide ewido pour tout problème.
- Télécharge clean.zip, décompresse-le sur ton bureau (clic droit / extraire tout), tu dois obtenir un dossier clean.

____

-- Redémarre en mode en mode sans échec, si tu sais pas comment on fait lis ceci

-- Ouvre le dossier clean qui se trouve sur ton bureau, et double-clic sur clean.cmd, une fenêtre noire va apparaître pendant un instant, laisse la ouverte.

Démarre le "Brute Force Uninstaller" en double-cliquant BFU.exe (du dossier C:\BFU)
- Clique sur le petit dossier jaune, à la droite de la boîte Scriptline to execute, et double-clique sur :

EGDACCESS.bfu

- Dans la boîte "Scriptline to execute", tu devrais maintenant voir ceci : C:\BFU\EGDACCESS.bfu
Clique sur Execute et laisse-le faire son travail.
Attendre que Complete script execution apparaîsse et clique sur OK.
Clique Exit pour fermer le programme BFU.

-- Ouvre le poste de travail
-- Double clic sur le disque C
-- Double clic sur le dossier Windows
-- Double clic sur le dossier system32
-- Fais un clic droit sur le fichier bhmngifz.exe puis dans le menu déroulant clic sur supprimer
-- Fais un clic droit sur le fichier bhmngifz.dat puis dans le menu déroulant clic sur supprimer
-- Fais un clic droit sur le fichier bhmngifz_nav.dat puis dans le menu déroulant clic sur supprimer
-- Fais un clic droit sur le fichier bhmngifz_navps.dat puis dans le menu déroulant clic sur supprimer

-- Navigue dans les dossiers et supprime, si existant :
C:\Program Files\MaillSkinner

- Ouvre ewido et clic sur l'onglet Settings, pour How to Act sélèctionne Quarantine.
Reviens a l'onglet Scan cliques Complete system Scan.
Le scan démarre.
A la fin cliquer sur Apply all actions
Puis sur Save report et pour finir Save report as enregistrer sur le Bureau.

Aide : N'hésite pas à consulter l'Aide ewido pour tout problème.


____


-- Redémarre en mode normal : Menu Démarrer / Arreter / Redémarre l'ordinateur
Attention : dans le cas où l'ordinateur redémarre en boucle en mode sans échec, faire la manipulation inverse en décochant l'option /SAFEBOOT à l'aide de msconfig : voir à nouveau cette page : cliquez-ici

-- Fais un scan en ligne avec Internet Explorer : Scan Kaspersky et colle le rapport ici. Si tu es perdu, tu peux suivre cette aide pour les scans en ligne


-- Copie/Colle ici les rapports sans en oublier :
- du scan Kaspersky
- ewido
- le rapport clean : Poste de travail / double clic sur disque C / double-clic sur rapport_clean.txt et copier/coller le contenu ici C:\rapport_clean.txt
- Le contenu du fichier : C:\egd.txt
- Relance un scan sur BlackLight et copie/colle le rapport ici
- ainsi qu'un nouveau log HijackThis
Image

Première règle élémentaire de sécurité : on réfléchit puis on clic et pas l'inverse - Les fichiers/programmes c'est comme les bonbons, quand ça vient d'un inconnu, on n'accepte pas !
Comment protéger son PC des virus

Les tutoriels Windows 10 du moment : Comment demander de l'aide sur le forum
Partagez malekal.com : n'hésitez pas à partager les articles qui vous plaisent sur la page Facebook du site.

Avatar de l’utilisateur
loop13
newbie expert
newbie expert
Messages : 98
Inscription : 04 août 2006 16:59
Localisation : Aubagne (13)

Message par loop13 »

Alors pour l'instant dans le dossier BFU que j'ai créer sur C:
j'ai le dossier BFU.zip et un autre dossier BFU (qui contient BFU.exe)
je continue comme ca?
ou pas?

Malekal_morte
Site Admin
Site Admin
Messages : 102130
Inscription : 10 sept. 2005 13:57
Contact :

Message par Malekal_morte »

Ben non t'as l'air d'avoir un dossier BFU avec dedans un autre dossier BFU.
Supprime le dossier BFU en trop.
Fais un clic droit sur BFU.Zip et extraire ici / extraire tout
tu auras alors BFU.exe dans C:\BFU

Continue ensuite.
Image

Première règle élémentaire de sécurité : on réfléchit puis on clic et pas l'inverse - Les fichiers/programmes c'est comme les bonbons, quand ça vient d'un inconnu, on n'accepte pas !
Comment protéger son PC des virus

Les tutoriels Windows 10 du moment : Comment demander de l'aide sur le forum
Partagez malekal.com : n'hésitez pas à partager les articles qui vous plaisent sur la page Facebook du site.

Avatar de l’utilisateur
loop13
newbie expert
newbie expert
Messages : 98
Inscription : 04 août 2006 16:59
Localisation : Aubagne (13)

Message par loop13 »

Stp malekal

donc j'en suis a mettre à jour ewido (jusqu'a la j'ai bon) mais ewido à peine installé j'ai pas le tps de faire la mise à jour qu'il me donne un message "Malware found" (pas étonnant d'accord)

name : adware.Hotbar
Location : C:\Programfiles\HbTools\Bin\4.8.0.0\HbtHostOE.dll
Risk : médium
description : .......

Et aprés il me demande ce que je veux en faire lui me recommande "Clean and move to quarantaine"
les autres choix sont : clean/Ignore/Ignore and add exceptions

Voila je te demande car je vaoudrai etre sur si je l'envoie en quarantaine que ca ne me le cache pas pour la désinfection

Malekal_morte
Site Admin
Site Admin
Messages : 102130
Inscription : 10 sept. 2005 13:57
Contact :

Message par Malekal_morte »

Tu peux le mettre en quarantaine.
Regarde si tu peux désinstaller HotBar depuis le panneau de configuration.
Image

Première règle élémentaire de sécurité : on réfléchit puis on clic et pas l'inverse - Les fichiers/programmes c'est comme les bonbons, quand ça vient d'un inconnu, on n'accepte pas !
Comment protéger son PC des virus

Les tutoriels Windows 10 du moment : Comment demander de l'aide sur le forum
Partagez malekal.com : n'hésitez pas à partager les articles qui vous plaisent sur la page Facebook du site.

Avatar de l’utilisateur
loop13
newbie expert
newbie expert
Messages : 98
Inscription : 04 août 2006 16:59
Localisation : Aubagne (13)

Message par loop13 »

ok merci
désolé j'envoie les message en double je sais pas pourquoi et je peux plus les effacer

Malekal_morte
Site Admin
Site Admin
Messages : 102130
Inscription : 10 sept. 2005 13:57
Contact :

Message par Malekal_morte »

T'inquiètes pas :)
Image

Première règle élémentaire de sécurité : on réfléchit puis on clic et pas l'inverse - Les fichiers/programmes c'est comme les bonbons, quand ça vient d'un inconnu, on n'accepte pas !
Comment protéger son PC des virus

Les tutoriels Windows 10 du moment : Comment demander de l'aide sur le forum
Partagez malekal.com : n'hésitez pas à partager les articles qui vous plaisent sur la page Facebook du site.

Avatar de l’utilisateur
loop13
newbie expert
newbie expert
Messages : 98
Inscription : 04 août 2006 16:59
Localisation : Aubagne (13)

tjrs message ewido

Message par loop13 »

alors encore malware found

name : Hijacker.small
Location: C:\Windows\system32\1201.exe
Risk : High
Description : il veut me changer la page d'accueil

je le mets en quarantaine aussi?
et si il m'en sort encore d'autre après je les mets tous en quarantaine ou je te demande à chaque fois?

Malekal_morte
Site Admin
Site Admin
Messages : 102130
Inscription : 10 sept. 2005 13:57
Contact :

Message par Malekal_morte »

Tu mets tjrs en quarantaine ce qu'ewido te trouve et tu continues les manipulations le plus fidèlement possible à ce qui est demandé.
et tu donne les rapports demandés :)
Image

Première règle élémentaire de sécurité : on réfléchit puis on clic et pas l'inverse - Les fichiers/programmes c'est comme les bonbons, quand ça vient d'un inconnu, on n'accepte pas !
Comment protéger son PC des virus

Les tutoriels Windows 10 du moment : Comment demander de l'aide sur le forum
Partagez malekal.com : n'hésitez pas à partager les articles qui vous plaisent sur la page Facebook du site.

Avatar de l’utilisateur
loop13
newbie expert
newbie expert
Messages : 98
Inscription : 04 août 2006 16:59
Localisation : Aubagne (13)

Message par loop13 »

Alors voila ou j'en suis

Tout bien jusqu'à démarrer en mode sans échec

La c'est avec clean.cmd que j'ai eu un pb
J'ai laissé la fenettre noire ouverte mais j'ai pas appuyé sur la touche qd ca le demandait (j'ai vu écrit nul part qu'il fallait le faire et pour pas faire n'importe quoi je l'ai laissé comme ca)
j'ai réduit la fenetre dans la barre des taches

Brute force uninstaller : pas de pb

j'ai supprimé bhmngifz.exe mais j'ai pas trouvé bhmngifz.dat , bhmngifz_nav.dat ni bhmngifz_navps.dat

J'ai pas le dossier c:\programfiles\Mailskinner, mais par contre j'ai incredimail (je n'y ait pas touché)
par contre Mailskinner ca me dit qquechose et si c'est un truc pour des émoticones ou dans le genre je l'avais viré avant

ewido : pas de pb

je suis pas passé à l'étape du scan kaspery vu que la que je suis apercu du pb avec clean.cmd

je t'envoie les logs que j'ai déja et dit moi s'il tout que je reprenne en faisant bon acen clean

Avatar de l’utilisateur
loop13
newbie expert
newbie expert
Messages : 98
Inscription : 04 août 2006 16:59
Localisation : Aubagne (13)

Message par loop13 »

Scan ewido :

---------------------------------------------------------
ewido anti-spyware - Scan Report
---------------------------------------------------------

+ Created at: 15:35:26 21/08/2006

+ Scan result:



HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{56F1D444-11BF-4879-A12B-79CF0177F038} -> Adware.180Solutions : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EA0D26BD-9029-431A-86E0-83152D67828A} -> Adware.180Solutions : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\CLSID\{43F7497C-7687-4DEA-A057-F21BD81BC896} -> Adware.Generic : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{43F7497C-7687-4DEA-A057-F21BD81BC896} -> Adware.Generic : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{43F7497C-7687-4DEA-A057-F21BD81BC896} -> Adware.Generic : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\cs -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\cs\Config.xml -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\cs\db -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\cs\db\Aliases.dbs -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\cs\db\Sites.dbs -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\cs\dwld -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\cs\dwld\WhiteList.xip -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\cs\persist.dbs -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\cs\report -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\cs\report\ag_ShopperReports.xml -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\cs\report\ag_ShopperReports.xml.db -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\cs\report\aggr_storage.xml -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\cs\report\send_ShopperReports.xml -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\cs\report\send_ShopperReports.xml.db -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\cs\report\send_storage.xml -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\cs\res1 -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\cs\res1\WhiteList.dbs -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155903323.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155905268.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155905333.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155905379.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155905394.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155905455.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155905782.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155905990.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155906029.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155906051.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155906164.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155907103.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155908800.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155909101.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155909288.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155909349.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155909402.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155909471.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155909489.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155909532.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155909552.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155909593.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155909613.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155909654.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155909715.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155909737.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155909776.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155909812.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155909837.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155909898.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155909959.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155910020.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155910034.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155910080.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155910142.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155910155.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155910661.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155910731.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155911012.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155911216.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155911520.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155911553.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155911581.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155911642.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155911703.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155911757.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155912547.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155912807.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155913220.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155913255.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1155913327.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1156144700.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1156144761.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1156144824.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1156144888.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1156144949.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1156145149.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1156146164.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1156147300.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1156147361.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1156147422.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1156147483.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1156147544.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1156147605.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1156147666.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1156147727.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1156147788.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1156147849.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1156147910.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1156148080.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1156150357.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1156150451.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1156153192.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1156160414.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1156160609.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Application Data\ShopperReports\shprrprt_1156160869.log -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\HbTools\Bin\4.7.1.0\Cml.exe -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\HbTools\Bin\4.7.1.0\HbtAds.dll -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\HbTools\Bin\4.7.1.0\HbtCoreSrv.dll -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\HbTools\Bin\4.7.1.0\HbtGuard.exe -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\HbTools\Bin\4.7.1.0\HbtHostIE.dll -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\HbTools\Bin\4.7.1.0\HbtHostOE.dll -> Adware.Hotbar : Cleaned with backup (quarantined).
C:\Program Files\HbTools\Bin\4.7.1.0\HbtHostOL.dll -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\HbTools\Bin\4.7.1.0\HbtInstIE.dll -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\HbTools\Bin\4.7.1.0\HbtOEAddOn.exe -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\HbTools\Bin\4.7.1.0\HbtSrv.exe -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\HbTools\Bin\4.7.1.0\HbtToolbar.dll -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\HbTools\Bin\4.7.1.0\HbtWallpaper.dll -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\HbTools\Bin\4.7.1.0\HbtWeatherOnTray.exe -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\HbTools\Bin\4.8.0.0\Cml.exe -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\HbTools\Bin\4.8.0.0\HbtGuard.exe -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\HbTools\Bin\4.8.0.0\HbtHostIE.dll -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\HbTools\Bin\4.8.0.0\HbtOEAddOn.exe -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\HbTools\Bin\4.8.0.0\HbtSrv.exe -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\HbTools\Bin\4.8.0.0\HbtWeatherOnTray.exe -> Adware.Hotbar : Cleaned with backup (quarantined).
C:\Program Files\HbTools\HBTV\HBTVHelper.dll -> Adware.Hotbar : Cleaned with backup (quarantined).
C:\Program Files\ShopperReports -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\ShopperReports\Bin -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\ShopperReports\Bin\1.0.8.0 -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\ShopperReports\Bin\1.0.8.0\ShprRprt.dll -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\ShopperReports\Bin\2.0.0 -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\ShopperReports\Uninst.exe -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\ShopperReports\cs -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\ShopperReports\cs\persist.dbs -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\ShopperReports\uninstall.exe -> Adware.HotBar : Cleaned with backup (quarantined).
C:\WINDOWS\system32\tfykoasc.exe -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\AppID\WeatherOnTray.EXE -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbCoreSrv.DynamicProp -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbCoreSrv.DynamicProp.1 -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbCoreSrv.DynamicProp\CLSID -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbCoreSrv.DynamicProp\CurVer -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbTools.HbtCommBand -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbTools.HbtCommBand.1 -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbTools.HbtCommBand\CLSID -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbTools.HbtCommBand\CurVer -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbTools.HbtTravelCompareBar -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbTools.HbtTravelCompareBar.1 -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbTools.HbtTravelCompareBar\CLSID -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbTools.HbtTravelCompareBar\CurVer -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtCoreSrv.HbtCoreServices -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtCoreSrv.HbtCoreServices.1 -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtCoreSrv.HbtCoreServices\CLSID -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtCoreSrv.HbtCoreServices\CurVer -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtCoreSrv.LfgAx -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtCoreSrv.LfgAx.1 -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtCoreSrv.LfgAx\CLSID -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtCoreSrv.LfgAx\CurVer -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtHostIE.Bho -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtHostIE.Bho.1 -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtHostIE.Bho\CLSID -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtHostIE.Bho\CurVer -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtHostOL.HbtMailAnim -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtHostOL.HbtMailAnim.1 -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtHostOL.HbtMailAnim\CLSID -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtHostOL.HbtMailAnim\CurVer -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtHostOL.HbtWebmailSend -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtHostOL.HbtWebmailSend.1 -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtHostOL.HbtWebmailSend\CLSID -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtHostOL.HbtWebmailSend\CurVer -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtSrv.HbtCoreServices -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtSrv.HbtCoreServices.1 -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtSrv.HbtCoreServices\CLSID -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtSrv.HbtCoreServices\CurVer -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtToolbar.HbtHtmlMenuUI -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtToolbar.HbtHtmlMenuUI.1 -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtToolbar.HbtHtmlMenuUI\CLSID -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtToolbar.HbtHtmlMenuUI\CurVer -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtToolbar.HbtToolbarCtl -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtToolbar.HbtToolbarCtl.1 -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtToolbar.HbtToolbarCtl\CLSID -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtToolbar.HbtToolbarCtl\CurVer -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtTools.HbMain -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtTools.HbMain.1 -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtTools.HbMain\CLSID -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtTools.HbMain\CurVer -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\RprtsPSClient.PSExecuter -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\RprtsPSClient.PSExecuter.1 -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\RprtsPSClient.PSExecuter\CLSID -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\RprtsPSClient.PSExecuter\CurVer -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\ShprRprts.HbAx -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\ShprRprts.HbAx.1 -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\ShprRprts.HbAx\CLSID -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\ShprRprts.HbAx\CurVer -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\ShprRprts.HbInfoBand -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\ShprRprts.HbInfoBand.1 -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\ShprRprts.HbInfoBand\CLSID -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\ShprRprts.HbInfoBand\CurVer -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\ShprRprts.IEButton -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\ShprRprts.IEButton.1 -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\ShprRprts.IEButtonA -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\ShprRprts.IEButtonA.1 -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\ShprRprts.IEButtonA\CLSID -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\ShprRprts.IEButtonA\CurVer -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\ShprRprts.IEButton\CLSID -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\ShprRprts.IEButton\CurVer -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\ShprRprts.SmrtShprCtl -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\ShprRprts.SmrtShprCtl.1 -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\ShprRprts.SmrtShprCtl\CLSID -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\ShprRprts.SmrtShprCtl\CurVer -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\HbTools -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\HbTools\HbTools -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\HbTools\HbTools\Install -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\HbTools\HbTools\MachineInfo -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\HbTools\HbTools\Mail -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\HbTools\HbTools\PI -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\HbTools\HbTools\PI\3.2 -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\HbTools\HbTools\Updates -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\HbTools\HbTools\Upgrade -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\HbTools\HostOI -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\HbTools\HostOI\Mail -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\HbTools\HostOI\Updates -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\HbTools\HostOL -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\HbTools\HostOL\Mail -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\HbTools\HostOL\Updates -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\HbTools\Hotbar -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\HbTools\Hotbar\Install -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\HbTools\Install -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\HbTools\Install\CmpMap -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\HbTools\Install\Icons -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\HbTools\Install\Links -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\ShopperReports -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\ShopperReports\ShopperReports -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\ShopperReports\ShopperReports\PostInstaller -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\Common -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\Common\Time -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\Common\Updates -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\EUI -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\HtmlPPP -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\ImagesHistory -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\Install -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\Local -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\MachineInfo -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\MultiUrl -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\PI -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\PI\3.2 -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\Sample -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\Sample\Hist -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\Sample\Hist\sg852 -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\Sample\Hist\sg853 -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\Sample\Hist\sg860 -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\Sample\Hist\sg861 -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\Sample\Hist\sg887 -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\Sample\Hist\sg888 -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\Sample\Hist\sg889 -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\Sample\Hist\sg904 -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\Sample\Hist\sg905 -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\Sample\Hist\sg910 -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\Sample\Hist\sg911 -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\Sample\Hist\sg912 -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\Sample\Hist\sg913 -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\Sample\Hist\sg914 -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\Sample\Hist\sg915 -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\Sample\Hist\sg928 -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\Sample\Hist\sg929 -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\UserInfo -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\Weather -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\dynamic -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\dynamicFail -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\init -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\links -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\mail -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\options -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HbTools\updates -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HostOI -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HostOI\Updates -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\HostOI\links -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\Time -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\Time\HostIE -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\Time\HostIE\Updates -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\Time\HostOE -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\Time\HostOE\Updates -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\Time\HostOI -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\Time\HostOI\Updates -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\Time\HostOL -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\Time\HostOL\Updates -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\hostol -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\hostol\Mail -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\hostol\Updates -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\hostol\links -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\HbTools\hostol\soho -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\ShopperReports -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\ShopperReports\ShopperReports -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\ShopperReports\ShopperReports\PostInstaller -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\SystemDoctor 2006 Free -> Adware.SystemDoctor2006 : Cleaned with backup (quarantined).
C:\Program Files\SystemDoctor 2006 Free\order.dll -> Adware.SystemDoctor2006 : Cleaned with backup (quarantined).
C:\WINDOWS\MediaGateway.exe -> Adware.WinAD : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2178F3FB-2560-458F-BDEE-631E2FE0DFE4} -> Adware.WinAntiVirus : Cleaned with backup (quarantined).
C:\RECYCLER\S-1-5-21-2364069932-1524219754-204430324-1006\Dc8\Multi\20060625170646\instant access.exe -> Dialer.EgroupDial.w : Cleaned with backup (quarantined).
C:\WINDOWS\iaccess32.exe -> Dialer.EgroupDial.w : Cleaned with backup (quarantined).
C:\RECYCLER\S-1-5-21-2364069932-1524219754-204430324-1006\Dc5.dll -> Dialer.EgroupDial.x : Cleaned with backup (quarantined).
HKU\S-1-5-21-2364069932-1524219754-204430324-1006\Software\GlobalCS -> Dialer.Generic : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\int_ver34.ocx -> Dialer.VB.j : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.1\UWA6PV_0001_N86M0507NetInstaller.exe -> Downloader.Agent.alr : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.2\UWA6PV_0001_N86M0507NetInstaller.exe -> Downloader.Agent.alr : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.3\UWA6PV_0001_N86M0507NetInstaller.exe -> Downloader.Agent.alr : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.4\UWA6PV_0001_N86M0507NetInstaller.exe -> Downloader.Agent.alr : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.5\UWA6PV_0001_N86M0507NetInstaller.exe -> Downloader.Agent.alr : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.6\UWA6PV_0001_N86M0507NetInstaller.exe -> Downloader.Agent.alr : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.7\UWA6PV_0001_N86M0507NetInstaller.exe -> Downloader.Agent.alr : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.8\UWA6PV_0001_N86M0507NetInstaller.exe -> Downloader.Agent.alr : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\UWA6PV_0001_N86M0507NetInstaller.exe -> Downloader.Agent.alr : Cleaned with backup (quarantined).
C:\VSL.dl_.exe -> Downloader.Small.ajc : Cleaned with backup (quarantined).
C:\WINDOWS\qdgeip.dll -> Downloader.Small.ajc : Cleaned with backup (quarantined).
C:\VSL.dl_ -> Downloader.Small.ctp : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.1\ABoxInst_int14.exe -> Downloader.VB.ft : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.2\SET13.tmp -> Downloader.VB.ft : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Local Settings\Temporary Internet Files\Content.IE5\30YLBKPJ\popup[1].htm -> Hijacker.Agent.a : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Local Settings\Temporary Internet Files\Content.IE5\30YLBKPJ\popup[2].htm -> Hijacker.Agent.a : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Local Settings\Temporary Internet Files\Content.IE5\L5BYDUQ2\popup[1].htm -> Hijacker.Agent.a : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Local Settings\Temporary Internet Files\Content.IE5\NY0JBUNZ\popup[1].htm -> Hijacker.Agent.a : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Local Settings\Temporary Internet Files\Content.IE5\NY0JBUNZ\popup[2].htm -> Hijacker.Agent.a : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Local Settings\Temporary Internet Files\Content.IE5\NY0JBUNZ\popup[3].htm -> Hijacker.Agent.a : Cleaned with backup (quarantined).
C:\WINDOWS\v1201.exe -> Hijacker.Small : Cleaned with backup (quarantined).
C:\Program Files\ComPlus Applications\saqofow.html -> Hijacker.Small.jf : Cleaned with backup (quarantined).
C:\Program Files\Online Services\qunecetat.html -> Hijacker.Small.jf : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.10\UWFX5V_0001_N57M1412NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.b : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.11\UWFX5V_0001_N57M1412NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.b : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.12\UWFX5V_0001_N57M1412NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.b : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.13\UWFX5V_0001_N57M1412NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.b : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.14\UWFX5V_0001_N57M1412NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.b : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.1\UWFX5V_0001_N57M1412NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.b : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.2\UWFX5V_0001_N57M1412NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.b : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.3\UWFX5V_0001_N57M1412NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.b : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.4\UWFX5V_0001_N57M1412NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.b : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.5\UWFX5V_0001_N57M1412NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.b : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.6\UWFX5V_0001_N57M1412NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.b : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.7\UWFX5V_0001_N57M1412NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.b : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.8\UWFX5V_0001_N57M1412NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.b : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.9\UWFX5V_0001_N57M1412NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.b : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.1\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.2\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.3\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.4\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.5\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.6\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.7\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.8\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\UERSV_0001_N68M0602NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\UWA6PV_0001_N76M1904NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.i : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.1\USDR6V_0001_D08M1005NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.l : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.1\USDR6V_0001_D13M1007NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.l : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.2\USDR6V_0001_D08M1005NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.l : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.2\USDR6V_0001_D13M1007NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.l : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.3\USDR6V_0001_D08M1005NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.l : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.3\USDR6V_0001_D13M1007NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.l : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\CONFLICT.4\USDR6V_0001_D08M1005NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.l : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\USDR6V_0001_D08M1005NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.l : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\USDR6V_0001_D13M1007NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.l : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Local Settings\Temporary Internet Files\Content.IE5\I6EBWBM5\send_car_int[1].htm -> Not-A-Virus.Exploit.HTML.CodeBaseExec : Cleaned with backup (quarantined).
C:\WINDOWS\system32\drivers\erssdd.sys -> Rootkit.Agent.af : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Cookies\kart in pro [email protected][2].txt -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Cookies\kart in pro [email protected][2].txt -> TrackingCookie.Adtech : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Cookies\kart in pro [email protected][1].txt -> TrackingCookie.Adtrak : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Cookies\kart in pro [email protected][2].txt -> TrackingCookie.Clubdicecasino : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Cookies\kart in pro [email protected][2].txt -> TrackingCookie.Clubdicecasino : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Cookies\kart in pro [email protected][2].txt -> TrackingCookie.Clubdicecasino : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Cookies\kart in pro [email protected][1].txt -> TrackingCookie.Doubleclick : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Cookies\kart in pro [email protected][1].txt -> TrackingCookie.Falkag : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Cookies\kart in pro [email protected][2].txt -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Cookies\kart in pro [email protected][2].txt -> TrackingCookie.Goldenpalace : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Cookies\kart in pro [email protected][1].txt -> TrackingCookie.Goldenpalace : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Cookies\kart in pro [email protected][1].txt -> TrackingCookie.Goldenpalace : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Cookies\kart in pro [email protected][2].txt -> TrackingCookie.Hitbox : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Cookies\kart in pro [email protected][1].txt -> TrackingCookie.Hitbox : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Cookies\kart in pro [email protected][1].txt -> TrackingCookie.Mediaplex : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Cookies\kart in pro [email protected][2].txt -> TrackingCookie.Popuptraffic : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Cookies\kart in pro [email protected][1].txt -> TrackingCookie.Reliablestats : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Cookies\kart in pro [email protected][1].txt -> TrackingCookie.Revenue : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Cookies\kart in pro [email protected][1].txt -> TrackingCookie.Searchingbooth : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Cookies\kart in pro [email protected][2].txt -> TrackingCookie.Searchingbooth : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Cookies\kart in pro [email protected][1].txt -> TrackingCookie.Smartadserver : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Cookies\kart in pro [email protected][1].txt -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Cookies\kart in pro [email protected][2].txt -> TrackingCookie.Weborama : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Cookies\kart in pro [email protected][2].txt -> TrackingCookie.Yieldmanager : Cleaned with backup (quarantined).
C:\Documents and Settings\kart in pro compet\Cookies\kart in pro [email protected][2].txt -> TrackingCookie.Zedo : Cleaned with backup (quarantined).


::Report end

Verrouillé

Revenir à « Supprimer/Desinfecter les virus (Trojan, Adwares, Ransomwares, Backdoor, Spywares) »