Se connecter / S'enregistrer
Votre question

Virus msn "ta tof sur ce site"

Tags :
  • Virus
  • Sécurité
Dernière réponse : dans Sécurité et virus
6 Avril 2008 16:38:43

Bonjour,

J'ai été infectée par le virus en cliquant sur le lien "qu'est-ce qu'elle fait ta tof sur ce site?".
J'ai téléchargé MSNFix, voici le rapport qui s'est affiché :

MSNFix 1.700

C:\Documents and Settings\ADRI\Bureau\MSNFix\MSNFix
Fix exécuté le 06/04/2008 - 16:20:06,00 By ADRI
mode normal

************************ Recherche les fichiers présents

... C:\DOCUME~1\ADRI\LOCALS~1\Temp\services.exe
... C:\DOCUME~1\ADRI\LOCALS~1\Temp\1.html
... C:\WINDOWS\winsyn32.dll
... C:\DOCUME~1\ADRI\LOCALS~1\Temp\1.html
... C:\DOCUME~1\ADRI\LOCALS~1\Temp\1.html.$$$
... C:\DOCUME~1\ADRI\LOCALS~1\Temp\services.exe
... C:\WINDOWS\system32\real.txt

************************ Recherche les dossiers présents

Aucun dossier trouvé




************************ Suppression des fichiers

.. OK ... C:\WINDOWS\system32\LOCALS~1
/!\ ... C:\DOCUME~1\ADRI\LOCALS~1\Temp\services.exe
/!\ ... C:\DOCUME~1\ADRI\LOCALS~1\Temp\services.exe
/!\ ... C:\DOCUME~1\ADRI\LOCALS~1\Temp\services.exe
.. OK ... C:\DOCUME~1\ADRI\LOCALS~1\Temp\1.html
.. OK ... C:\WINDOWS\winsyn32.dll
.. OK ... C:\DOCUME~1\ADRI\LOCALS~1\Temp\1.html
.. OK ... C:\DOCUME~1\ADRI\LOCALS~1\Temp\1.html.$$$
/!\ ... C:\DOCUME~1\ADRI\LOCALS~1\Temp\services.exe
.. OK ... C:\WINDOWS\system32\real.txt



************************ Nettoyage du registre



Les fichiers encore présents seront supprimés au prochain redémarrage


************************ Suppression des fichiers

.. OK ... C:\DOCUME~1\ADRI\LOCALS~1\Temp\services.exe
.. OK ... C:\WINDOWS\system32\LOCALS~1
.. OK ... C:\DOCUME~1\ADRI\LOCALS~1\Temp\services.exe



************************ Fichiers suspects

Aucun Fichier trouvé


Les fichiers et clés de registre supprimés ont été sauvegardés dans le fichier 06042008_16222498.zip

************************ HKLM\...\Winlogon\Userinit

Userinit = C:\WINDOWS\system32\userinit.exe,


------------------------------------------------------------------------
Auteur : !aur3n7 Contact: http://changelog.fr
------------------------------------------------------------------------

--------------------------------------------- END ---------------------------------------------


Pouvez-vous m'aider ? Est-ce que le virus a été supprimé ?

Autres pages sur : virus msn tof site

6 Avril 2008 17:46:28

Voici le rapport Hijackthis :



Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:44:50, on 06/04/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\spupdsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\cmd.exe
C:\WINDOWS\system32\notepad.exe
C:\WINDOWS\lwsys32.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIAEE.EXE
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Veoh Networks\Veoh\VeohClient.exe
C:\Program Files\SAGEM Wi-Fi USB 802.11g\WLANUTL.exe
C:\Program Files\OpenOffice.org 2.2\program\soffice.exe
C:\Program Files\OpenOffice.org 2.2\program\soffice.BIN
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://runonce.msn.com/?v=msgrv75
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [EPSON Stylus DX4200 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIAEE.EXE /P26 "EPSON Stylus DX4200 Series" /O6 "USB001" /M "Stylus DX4200"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Veoh] "C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" /VeohHide
O4 - HKLM\..\Policies\Explorer\Run: [update32] C:\WINDOWS\lwsys32.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: OpenOffice.org 2.2.lnk = C:\Program Files\OpenOffice.org 2.2\program\quickstart.exe
O4 - Global Startup: Sagem - Utilitaire réseau pour Clé USB Wi-Fi 802.11g.lnk = ?
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?1f63646da1eb4bfdbc988d8e382eb25c
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?1f63646da1eb4bfdbc988d8e382eb25c
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls...
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://go.divx.com/plugin/DivXBrowserPlugin.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://www.touslesdrivers.com/fichiers/hardwaredetectio...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

--
End of file - 9115 bytes
Contenus similaires
a b 8 Sécurité
6 Avril 2008 18:03:41

Ton pc se comporte mieux ?

Télécharge MalwareByte's Anti-Malware sur ton Bureau.
Installe-le en double-cliquant sur le fichier Download_mbam-setup.exe.

Une fois l'installation et la mise à jour effectuées, redémarre en mode sans échec.
AIDE : Redémarrer en mode sans échec

  • Exécute maintenant MalwareByte's Anti-Malware. Si cela n'est pas déjà fait, sélectionne "Exécuter un examen complet".
  • Afin de lancer la recherche, clic sur"Rechercher".
  • Une fois le scan terminé, une fenêtre s'ouvre, clic sur OK. Deux possibilités s'offrent à toi :
    -- si le programme n'a rien trouvé, appuie sur OK. Un rapport va apparaître, ferme-le.
    -- si des infections sont présentes, clic sur "Afficher les résultats" puis sur "Supprimer la sélection". Enregistre le rapport sur ton Bureau afin de le poster dans ta prochaine réponse.
    [#ff0000]REMARQUE : Si MalwareByte's Anti-Malware a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok.[/#f]

    AIDE : Tuto en images sur MBAM
    6 Avril 2008 18:50:56

    Pour l'instant il a l'air de bien marcher, voici le dernier rapport :

    Malwarebytes' Anti-Malware 1.10
    Version de la base de données: 595

    Type de recherche: Examen complet (C:\|D:\|E:\|F:\|G:\|H:\|)
    Eléments examinés: 97931
    Temps écoulé: 12 minute(s), 23 second(s)

    Processus mémoire infecté(s): 0
    Module(s) mémoire infecté(s): 0
    Clé(s) du Registre infectée(s): 0
    Valeur(s) du Registre infectée(s): 0
    Elément(s) de données du Registre infecté(s): 0
    Dossier(s) infecté(s): 9
    Fichier(s) infecté(s): 249

    Processus mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Module(s) mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Clé(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Valeur(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Elément(s) de données du Registre infecté(s):
    (Aucun élément nuisible détecté)

    Dossier(s) infecté(s):
    C:\Casino (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\history (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\logs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\promo (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\sfx (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\history\1034576 (Adware.Casino) -> Quarantined and deleted successfully.

    Fichier(s) infecté(s):
    C:\Casino\BetClic Poker\bjlicens.txt (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\blackjack.dll (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\browser.exe (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\cacerts.crt (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\cam.cas (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\cardlib.dll (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\common.dll (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\countries.lst (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\creditdebit.dll (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\db.dll (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\devlib.dll (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\devlibcomm.dll (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\filemap.lst (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\fivecard.dll (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\games.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\gsid.txt (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\id.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\INSTALL.LOG (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\languages.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\libeay32.dll (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\licens.txt (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\mfc80.dll (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\microsoft.vc80.crt.manifest (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\microsoft.vc80.mfc.manifest (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\modstatus.lst (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\mp3dec.asi (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\mss32.dll (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\msvcp71.dll (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\msvcp80.dll (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\msvcr71.dll (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\msvcr80.dll (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\navigator.dll (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\omaha.dll (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\options.cfg (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\poker.dll (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\poker.exe (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\sc.dll (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\shfolder.dll (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\srvmap.lst (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\ssleay32.dll (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\texas.dll (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\UNWISE.EXE (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\UNWISE.INI (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\update.exe (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xml.dll (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\zlib1.dll (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\0.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\1.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\10.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\11.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\12.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\13.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\14.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\15.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\16.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\17.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\18.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\19.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\2.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\20.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\21.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\22.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\23.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\24.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\25.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\26.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\27.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\28.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\29.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\3.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\30.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\31.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\32.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\33.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\34.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\35.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\36.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\37.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\38.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\39.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\4.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\40.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\41.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\42.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\43.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\44.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\45.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\46.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\47.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\48.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\49.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\5.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\50.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\51.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\6.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\7.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\8.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\9.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\allin_popup.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\archive.xsl (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\archive_ff.xsl (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\avatar.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\b.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\base.css (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\bkg.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\browserdetect.js (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\but_blackjack.png (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\but_cashier.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\but_close.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\but_filters_big.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\but_filters_small.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\but_game.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\but_general.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\but_join.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\but_main.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\but_medium.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\but_minmax.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\but_sublevels_big.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\but_sublevels_small.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\caret.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\chatbubble.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\chips.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\decktype_settings.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\edit.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\gamelimits1.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\gamelimits2.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\gamelimits3.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\game_bjframe.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\game_blackjack.png (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\game_summary.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\gre_font_11p_regular.xbf (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\hand.html (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\hand.xsl (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\hand_cursor.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\hand_ff.xsl (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\harrow.cur (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\headers_bkg.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\headers_text.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\history.html (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\history.xsl (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\history_ff.xsl (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\input_additional.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\input_boxes.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\input_lists.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\language.xml (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\language.xsl (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\languages.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\language_ff.xsl (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\main.js (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\main_bkg.jpg (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\main_listhi.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\navigator_bg.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\navigator_buttons.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\navigator_moneytext.jpg (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\navigator_timer.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\panel_big.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\panel_bottom.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\panel_game_big.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\panel_game_small.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\panel_game_top.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\panel_left.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\panel_medium.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\panel_moretables.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\panel_texts.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\panel_top.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\pointer.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\poker_cardback.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\poker_cards.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\poker_cards_4c.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\poker_cards_large.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\poker_cards_large_4c.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\poker_deckside.jpg (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\poker_font_11p_bold.xbf (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\poker_font_11p_regular.xbf (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\poker_makechoice.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\poker_pucks.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\pol_font_11p_regular.xbf (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\popups.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\position_actions.png (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\position_active.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\position_inactive.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\position_mute.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\position_note.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\position_numbers.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\progress_ani.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\promo-test1.jpg (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\rus_font_11p_regular.xbf (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\sc_bkg8.jpg (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\tabs_big.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\tabs_cashier.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\tabs_small.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\text.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\timeslider.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\tur_font_11p_regular.xbf (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\tx_bkg10.jpg (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\tx_bkg5.jpg (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\user.xsl (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\user_ff.xsl (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\white_line.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\win_graphics.bmp (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\xml.gif (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\data\xml_decoder.js (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\history\1034576\archive.xml (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\history\1034576\history_0747.xml (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\history\1034576\session132510150.xml (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\history\1034576\stats_GAME_THM.xml (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\promo\challenge.jpg (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\promo\position.jpg (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\sfx\c_button.wav (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\sfx\c_chip.wav (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\sfx\c_deal.mp3 (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\sfx\p_alert.wav (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\sfx\p_checkknock.wav (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\blackjack_game_panel.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\blackjack_main.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\common.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\creditdebit.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\ext_clientspecific.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\ext_creditdebit.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\ext_game.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\ext_general.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\ext_mc_main.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\ext_navigator.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\fcs_main.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\fc_join.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\fc_main.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\filemap.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\filerefs.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\gameclient.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\game_common.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\game_common_message.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\game_panel.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\gizmo.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\mc_main.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\message.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\mtt_join.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\mtt_lobby.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\navigator.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\omaha_join.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\omaha_main.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\optdef.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\poker_limits.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\sc_join.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\sc_main.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\soko_main.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\tel_main.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\texas_join.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\texas_main.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    C:\Casino\BetClic Poker\xrs\tournament_join.xrs (Adware.Casino) -> Quarantined and deleted successfully.
    a b 8 Sécurité
    6 Avril 2008 19:48:17

    Reposte un rapport Hijackthis.
    7 Avril 2008 21:00:48

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 20:58:07, on 07/04/2008
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16608)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\system32\spupdsvc.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\lwsys32.exe
    C:\WINDOWS\system32\RUNDLL32.EXE
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\WINDOWS\RTHDCPL.EXE
    C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIAEE.EXE
    C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
    C:\Program Files\QuickTime\qttask.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files\Veoh Networks\Veoh\VeohClient.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\SAGEM Wi-Fi USB 802.11g\WLANUTL.exe
    C:\Program Files\OpenOffice.org 2.2\program\soffice.exe
    C:\Program Files\OpenOffice.org 2.2\program\soffice.BIN
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\WINDOWS\system32\cmd.exe
    C:\Program Files\Windows Live\Messenger\usnsvc.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://runonce.msn.com/?v=msgrv75
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (file missing)
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
    O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
    O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
    O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
    O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
    O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
    O4 - HKLM\..\Run: [EPSON Stylus DX4200 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIAEE.EXE /P26 "EPSON Stylus DX4200 Series" /O6 "USB001" /M "Stylus DX4200"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [Veoh] "C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" /VeohHide
    O4 - HKLM\..\Policies\Explorer\Run: [update32] C:\WINDOWS\lwsys32.exe
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - Startup: OpenOffice.org 2.2.lnk = C:\Program Files\OpenOffice.org 2.2\program\quickstart.exe
    O4 - Global Startup: Sagem - Utilitaire réseau pour Clé USB Wi-Fi 802.11g.lnk = ?
    O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
    O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
    O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?1f63646da1eb4bfdbc988d8e382eb25c
    O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?1f63646da1eb4bfdbc988d8e382eb25c
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls...
    O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://go.divx.com/plugin/DivXBrowserPlugin.cab
    O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://www.touslesdrivers.com/fichiers/hardwaredetectio...
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

    --
    End of file - 9085 bytes
    a b 8 Sécurité
    7 Avril 2008 21:44:28

    Ton pc se comporte mieux ?
    12 Avril 2008 15:04:39

    oui il se comporte bcp mieu merci bcp
    a b 8 Sécurité
    12 Avril 2008 16:31:45

    Des questions ? :) 
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS