Site qui ne fonctionne Plus
Fermé
meli750
Messages postés
165
Date d'inscription
lundi 26 novembre 2007
Statut
Membre
Dernière intervention
16 novembre 2011
-
19 févr. 2010 à 08:19
meli750 Messages postés 165 Date d'inscription lundi 26 novembre 2007 Statut Membre Dernière intervention 16 novembre 2011 - 31 mars 2010 à 22:14
meli750 Messages postés 165 Date d'inscription lundi 26 novembre 2007 Statut Membre Dernière intervention 16 novembre 2011 - 31 mars 2010 à 22:14
A voir également:
- Site qui ne fonctionne Plus
- Votre colis est dans le site de livraison qui dessert votre adresse. nous le préparons pour le mettre en livraison. ✓ - Forum Consommation et internet
- Comment savoir si un site est fiable - Guide
- Il est en cours de transport vers votre site de livraison ✓ - Forum Consommation et internet
- Site de revente - Guide
- Site inaccessible - Guide
88 réponses
meli750
Messages postés
165
Date d'inscription
lundi 26 novembre 2007
Statut
Membre
Dernière intervention
16 novembre 2011
32
25 févr. 2010 à 22:24
25 févr. 2010 à 22:24
je fais quoi avec ad remover un scan?
meli750
Messages postés
165
Date d'inscription
lundi 26 novembre 2007
Statut
Membre
Dernière intervention
16 novembre 2011
32
25 févr. 2010 à 22:29
25 févr. 2010 à 22:29
Si tu lance une analyse
Clic sur scan for viruses.
Clic sur scan windows startup.
Coche la case "Use deep level scanning once".
Clic sur "Make scan now".
Tu les trouve?
Oui je les trouve je fais quoi ensuite?
Clic sur scan for viruses.
Clic sur scan windows startup.
Coche la case "Use deep level scanning once".
Clic sur "Make scan now".
Tu les trouve?
Oui je les trouve je fais quoi ensuite?
fabul
Messages postés
35096
Date d'inscription
dimanche 18 janvier 2009
Statut
Modérateur
Dernière intervention
30 mars 2023
4 835
25 févr. 2010 à 22:32
25 févr. 2010 à 22:32
Ce fichier indique peut ètre la présence d'un Rootkit,regarde ici:https://www.commentcamarche.net/faq/14963-supprimer-les-rootkits
66B2434118.sys
Essaie une alalyse avec Gmer,comme il est écrit,n'utilise pas le dernier (Combofix),il peut ètre dangeureux.
Ensuite,dis moi ou tu en est rendu
Poste le rapport de Gmer.
66B2434118.sys
Essaie une alalyse avec Gmer,comme il est écrit,n'utilise pas le dernier (Combofix),il peut ètre dangeureux.
Ensuite,dis moi ou tu en est rendu
Poste le rapport de Gmer.
meli750
Messages postés
165
Date d'inscription
lundi 26 novembre 2007
Statut
Membre
Dernière intervention
16 novembre 2011
32
25 févr. 2010 à 22:43
25 févr. 2010 à 22:43
Daccord je fais lanalyse avec gmer...et je suis entrain de faire un scan avec ad remover
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
meli750
Messages postés
165
Date d'inscription
lundi 26 novembre 2007
Statut
Membre
Dernière intervention
16 novembre 2011
32
25 févr. 2010 à 23:10
25 févr. 2010 à 23:10
ad remover apres je fais la suppressions des fichiers quil me trouve?
fabul
Messages postés
35096
Date d'inscription
dimanche 18 janvier 2009
Statut
Modérateur
Dernière intervention
30 mars 2023
4 835
25 févr. 2010 à 23:12
25 févr. 2010 à 23:12
Oui,ou poste le log si tu préfère,mais je crois que tu peut le faire après sans problème.
meli750
Messages postés
165
Date d'inscription
lundi 26 novembre 2007
Statut
Membre
Dernière intervention
16 novembre 2011
32
25 févr. 2010 à 23:47
25 févr. 2010 à 23:47
======= LOGFILE OF AD-REMOVER 1.1.4.6_J | ONLY XP/VISTA/7 =======
.
Updated by C_XX on 05.02.2010 at 17:34
Contact: AdRemover.contact@gmail.com
Website: http://pagesperso-orange.fr/NosTools/ad_remover.html
.
Launch at: 17:34:08, 2010-02-25 | Normal Boot | Option: SCAN
Executed from: C:\Ad-Remover\
Operating system: Microsoft® Windows Vista™ HomePremium Service Pack 2 v6.0.6000
Computer Name: BELLIAGURL-PC | Current user: belliagurl
.
============== FOUND ELEMENT(S) ==============
.
Service: *MyWebSearchService*
Service: *RelevantKnowledge*
C:\Users\BELLIA~1\AppData\Roaming\Macromedia\Flash Player\#Security\FlashPlayerTrust\UnifiedToolbar.cfg
C:\Users\BELLIA~1\AppData\Roaming\Mozilla\FireFox\Profiles\be1k2x4q.default\searchplugins\mywebsearch.xml
C:\Windows\System32\f3PSSavr.scr
C:\Windows\System32\Macromed\Flash\FlashPlayerTrust\UnifiedToolbar.cfg
C:\PROGRA~2\MICROS~1\Windows\STARTM~1\Programs\RelevantKnowledge
C:\Program Files\Fast Browser Search
C:\Program Files\FunWebProducts
C:\Program Files\GamesBar
C:\Program Files\MyWebSearch
C:\Program Files\RelevantKnowledge
C:\Program Files\Search Guard Plus
C:\Program Files\Search Guard PlusU
C:\Users\belliagurl\AppData\LocalLow\AGI
C:\Users\belliagurl\AppData\LocalLow\FunWebProducts
C:\Users\belliagurl\AppData\LocalLow\Kiwee Toolbar
C:\Users\belliagurl\AppData\LocalLow\MyWebSearch
C:\ProgramData\Trymedia
C:\Windows\system32\config\systemprofile\AppData\Roaming\agi
.
HKCU\software\AGI
HKCU\software\appdatalow\software\Fun Web Products
HKCU\software\appdatalow\software\FunWebProducts
HKCU\software\appdatalow\software\MyWebSearch
HKCU\software\fcn
HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\Registry\User\S-1-5-21-445323526-3476327496-991420016-1000\Software\Sweetim
HKCU\software\microsoft\internet explorer\searchscopes\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
HKCU\software\microsoft\internet explorer\searchscopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}
HKCU\software\microsoft\internet explorer\searchscopes\{19F2B849-4ADE-4d4b-85F9-C31C643DBDE9}
HKCU\software\microsoft\internet explorer\searchscopes\{EEE6C360-6118-11DC-9C72-001320C79847}
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{00A6FAF6-072E-44cf-8957-5838F569A31D}
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{91C18ED5-5E1C-4AE5-A148-A861DE8C8E16}
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{EEE6C35D-6118-11DC-9C72-001320C79847}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00A6FAF1-072E-44CF-8957-5838F569A31D}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EA1-A523-4961-B6BB-170DE4475CCA}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\MyWebSearch Email Plugin
HKCU\software\MyWebSearch
HKCU\software\SGPUpdater
HKCU\software\SweetIM
HKLM\software\AGI
HKLM\Software\Classes\CLSID\{00A6FAF1-072E-44cf-8957-5838F569A31D}
HKLM\Software\Classes\CLSID\{00A6FAF6-072E-44cf-8957-5838F569A31D}
HKLM\Software\Classes\CLSID\{07B18EA1-A523-4961-B6BB-170DE4475CCA}
HKLM\Software\Classes\CLSID\{07B18EA9-A523-4961-B6BB-170DE4475CCA}
HKLM\Software\Classes\CLSID\{07B18EAB-A523-4961-B6BB-170DE4475CCA}
HKLM\Software\Classes\CLSID\{0F8ECF4F-3646-4C3A-8881-8E138FFCAF70}
HKLM\Software\Classes\CLSID\{1BB22D38-A411-4B13-A746-C2A4F4EC7344}
HKLM\Software\Classes\CLSID\{1E0DE227-5CE4-4ea3-AB0C-8B03E1AA76BC}
HKLM\Software\Classes\CLSID\{25560540-9571-4D7B-9389-0F166788785A}
HKLM\Software\Classes\CLSID\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8}
HKLM\Software\Classes\CLSID\{3E720452-B472-4954-B7AA-33069EB53906}
HKLM\Software\Classes\CLSID\{4260e0cc-0f75-462e-88a3-1e05c248bf4c}
HKLM\Software\Classes\CLSID\{53CED2D0-5E9A-4761-9005-648404E6F7E5}
HKLM\Software\Classes\CLSID\{63D0ED2C-B45B-4458-8B3B-60C69BBBD83C}
HKLM\Software\Classes\CLSID\{7473D292-B7BB-4f24-AE82-7E2CE94BB6A9}
HKLM\Software\Classes\CLSID\{7473D294-B7BB-4f24-AE82-7E2CE94BB6A9}
HKLM\Software\Classes\CLSID\{7473D296-B7BB-4f24-AE82-7E2CE94BB6A9}
HKLM\Software\Classes\CLSID\{84DA4FDF-A1CF-4195-8688-3E961F505983}
HKLM\Software\Classes\CLSID\{8E6F1832-9607-4440-8530-13BE7C4B1D14}
HKLM\Software\Classes\CLSID\{938AA51A-996C-4884-98CE-80DD16A5C9DA}
HKLM\Software\Classes\CLSID\{98D9753D-D73B-42D5-8C85-4469CDA897AB}
HKLM\Software\Classes\CLSID\{9FF05104-B030-46FC-94B8-81276E4E27DF}
HKLM\Software\Classes\CLSID\{A9571378-68A1-443d-B082-284F960C6D17}
HKLM\Software\Classes\CLSID\{ADB01E81-3C79-4272-A0F1-7B2BE7A782DC}
HKLM\Software\Classes\CLSID\{B813095C-81C0-4E40-AA14-67520372B987}
HKLM\Software\Classes\CLSID\{C9D7BE3E-141A-4C85-8CD6-32461F3DF2C7}
HKLM\Software\Classes\CLSID\{CFF4CE82-3AA2-451F-9B77-7165605FB835}
HKLM\Software\Classes\CLSID\{D9FFFB27-D62A-4D64-8CEC-1FF006528805}
HKLM\Software\Classes\CLSID\{E79DFBCA-5697-4fbd-94E5-5B2A9C7C1612}
HKLM\software\classes\FunWebProducts.DataControl
HKLM\software\classes\FunWebProducts.DataControl.1
HKLM\software\classes\FunWebProducts.HistoryKillerScheduler
HKLM\software\classes\FunWebProducts.HistoryKillerScheduler.1
HKLM\software\classes\FunWebProducts.HistorySwatterControlBar
HKLM\software\classes\FunWebProducts.HistorySwatterControlBar.1
HKLM\software\classes\FunWebProducts.HTMLMenu
HKLM\software\classes\FunWebProducts.HTMLMenu.1
HKLM\software\classes\FunWebProducts.HTMLMenu.2
HKLM\software\classes\FunWebProducts.IECookiesManager
HKLM\software\classes\FunWebProducts.IECookiesManager.1
HKLM\software\classes\FunWebProducts.KillerObjManager
HKLM\software\classes\FunWebProducts.KillerObjManager.1
HKLM\software\classes\FunWebProducts.PopSwatterBarButton
HKLM\software\classes\FunWebProducts.PopSwatterBarButton.1
HKLM\software\classes\FunWebProducts.PopSwatterSettingsControl
HKLM\software\classes\FunWebProducts.PopSwatterSettingsControl.1
HKLM\Software\Classes\Interface\{07B18EAA-A523-4961-B6BB-170DE4475CCA}
HKLM\Software\Classes\Interface\{07B18EAC-A523-4961-B6BB-170DE4475CCA}
HKLM\Software\Classes\Interface\{1093995A-BA37-41D2-836E-091067C4AD17}
HKLM\Software\Classes\Interface\{120927BF-1700-43BC-810F-FAB92549B390}
HKLM\Software\Classes\Interface\{17DE5E5E-BFE3-4E83-8E1F-8755795359EC}
HKLM\Software\Classes\Interface\{1F52A5FA-A705-4415-B975-88503B291728}
HKLM\Software\Classes\Interface\{247A115F-06C2-4FB3-967D-2D62D3CF4F0A}
HKLM\Software\Classes\Interface\{2E3537FC-CF2F-4F56-AF54-5A6A3DD375CC}
HKLM\Software\Classes\Interface\{2E9937FC-CF2F-4F56-AF54-5A6A3DD375CC}
HKLM\Software\Classes\Interface\{3E1656ED-F60E-4597-B6AA-B6A58E171495}
HKLM\Software\Classes\Interface\{3E16A203-C0AA-4D44-ACC5-38A70A8C76DA}
HKLM\Software\Classes\Interface\{3E53E2CB-86DB-4A4A-8BD9-FFEB7A64DF82}
HKLM\Software\Classes\Interface\{3E720451-B472-4954-B7AA-33069EB53906}
HKLM\Software\Classes\Interface\{3E720453-B472-4954-B7AA-33069EB53906}
HKLM\Software\Classes\Interface\{63D0ED2B-B45B-4458-8B3B-60C69BBBD83C}
HKLM\Software\Classes\Interface\{63D0ED2D-B45B-4458-8B3B-60C69BBBD83C}
HKLM\Software\Classes\Interface\{6E74766C-4D93-4CC0-96D1-47B8E07FF9CA}
HKLM\Software\Classes\Interface\{72EE7F04-15BD-4845-A005-D6711144D86A}
HKLM\Software\Classes\Interface\{741DE825-A6F0-4497-9AA6-8023CF9B0FFF}
HKLM\Software\Classes\Interface\{7473D291-B7BB-4F24-AE82-7E2CE94BB6A9}
HKLM\Software\Classes\Interface\{7473D293-B7BB-4F24-AE82-7E2CE94BB6A9}
HKLM\Software\Classes\Interface\{7473D295-B7BB-4F24-AE82-7E2CE94BB6A9}
HKLM\Software\Classes\Interface\{7473D297-B7BB-4F24-AE82-7E2CE94BB6A9}
HKLM\Software\Classes\Interface\{90449521-D834-4703-BB4E-D3AA44042FF8}
HKLM\Software\Classes\Interface\{991AAC62-B100-47CE-8B75-253965244F69}
HKLM\Software\Classes\Interface\{A626CDBD-3D13-4F78-B819-440A28D7E8FC}
HKLM\Software\Classes\Interface\{BBABDC90-F3D5-4801-863A-EE6AE529862D}
HKLM\Software\Classes\Interface\{D6FF3684-AD3B-48EB-BBB4-B9E6C5A355C1}
HKLM\Software\Classes\Interface\{DE38C398-B328-4F4C-A3AD-1B5E4ED93477}
HKLM\Software\Classes\Interface\{E342AF55-B78A-4CD0-A2BB-DA7F52D9D25E}
HKLM\Software\Classes\Interface\{E342AF55-B78A-4CD0-A2BB-DA7F52D9D25F}
HKLM\Software\Classes\Interface\{E79DFBC9-5697-4FBD-94E5-5B2A9C7C1612}
HKLM\Software\Classes\Interface\{E79DFBCB-5697-4FBD-94E5-5B2A9C7C1612}
HKLM\Software\Classes\Interface\{EB9E5C1C-B1F9-4C2B-BE8A-27D6446FDAF8}
HKLM\Software\Classes\Interface\{F87D7FB5-9DC5-4C8C-B998-D8DFE02E2978}
HKLM\software\classes\KiweeIEToolbar.ToolbarInfo
HKLM\software\classes\KiweeIEToolbar.ToolbarInfo.1
HKLM\software\classes\MyWebSearch.ChatSessionPlugin
HKLM\software\classes\MyWebSearch.ChatSessionPlugin.1
HKLM\software\classes\MyWebSearch.HTMLPanel
HKLM\software\classes\MyWebSearch.HTMLPanel.1
HKLM\software\classes\MyWebSearch.OutlookAddin
HKLM\software\classes\MyWebSearch.OutlookAddin.1
HKLM\software\classes\MyWebSearch.PseudoTransparentPlugin
HKLM\software\classes\MyWebSearch.PseudoTransparentPlugin.1
HKLM\software\classes\MyWebSearchToolBar.SettingsPlugin
HKLM\software\classes\MyWebSearchToolBar.SettingsPlugin.1
HKLM\software\classes\MyWebSearchToolBar.ToolbarPlugin
HKLM\software\classes\MyWebSearchToolBar.ToolbarPlugin.1
HKLM\software\classes\ScreenSaverControl.ScreenSaverInstaller
HKLM\software\classes\ScreenSaverControl.ScreenSaverInstaller.1
HKLM\Software\Classes\TypeLib\{07B18EA0-A523-4961-B6BB-170DE4475CCA}
HKLM\Software\Classes\TypeLib\{0D26BC71-A633-4E71-AD31-EADC3A1B6A3A}
HKLM\Software\Classes\TypeLib\{29D67D3C-509A-4544-903F-C8C1B8236554}
HKLM\Software\Classes\TypeLib\{3E720450-B472-4954-B7AA-33069EB53906}
HKLM\Software\Classes\TypeLib\{7473D290-B7BB-4F24-AE82-7E2CE94BB6A9}
HKLM\Software\Classes\TypeLib\{8CA01F0E-987C-49C3-B852-2F1AC4A7094C}
HKLM\Software\Classes\TypeLib\{8E6F1830-9607-4440-8530-13BE7C4B1D14}
HKLM\Software\Classes\TypeLib\{C8CECDE3-1AE1-4C4A-AD82-6D5B00212144}
HKLM\Software\Classes\TypeLib\{E47CAEE0-DEEA-464A-9326-3F2801535A4D}
HKLM\Software\Classes\TypeLib\{E79DFBC0-5697-4FBD-94E5-5B2A9C7C1612}
HKLM\Software\Classes\TypeLib\{F42228FB-E84E-479E-B922-FBBD096E792C}
HKLM\software\classes\URLSearchHook.ToolbarURLSearchHook
HKLM\software\classes\URLSearchHook.ToolbarURLSearchHook.1
HKLM\software\FocusInteractive
HKLM\software\Fun Web Products
HKLM\software\GamesBarSetup
HKLM\Software\Microsoft\Code Store Database\Distribution Units\CabBuilder
HKLM\Software\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll
HKLM\software\microsoft\internet explorer\searchscopes\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
HKLM\software\microsoft\internet explorer\searchscopes\{EEE6C360-6118-11DC-9C72-001320C79847}
HKLM\Software\Microsoft\Internet Explorer\Toolbar\\{07B18EA9-A523-4961-B6BB-170DE4475CCA}
HKLM\Software\Microsoft\Multimedia\WMPlayer\Schemes\f3pss
HKLM\Software\Microsoft\Office\Outlook\Addins\MyWebSearch.OutlookAddin
HKLM\Software\Microsoft\Office\Word\Addins\MyWebSearch.OutlookAddin
HKLM\Software\Microsoft\Windows Media\Wmsdk\Sources\\F3PopularScreenSavers
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00A6FAF1-072E-44cf-8957-5838F569A31D}
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{07B18EA1-A523-4961-B6BB-170DE4475CCA}
HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{07B18EAB-A523-4961-B6BB-170DE4475CCA}
HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{25560540-9571-4D7B-9389-0F166788785A}
HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8}
HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3E720452-B472-4954-B7AA-33069EB53906}
HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{63D0ED2C-B45B-4458-8B3B-60C69BBBD83C}
HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7473d294-b7bb-4f24-ae82-7e2ce94bb6a9}
HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{98D9753D-D73B-42D5-8C85-4469CDA897AB}
HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{9FF05104-B030-46FC-94B8-81276E4E27DF}
HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E79DFBCA-5697-4FBD-94E5-5B2A9C7C1612}
HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\post platform\\FunWebProducts
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\My Web Search Bar Search Scope Monitor
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\MyWebSearch Email Plugin
HKLM\software\microsoft\windows\currentversion\uninstall\{d08d9f98-1c78-4704-87e6-368b0023d831}
HKLM\software\microsoft\windows\currentversion\uninstall\MyWebSearch bar Uninstall
HKLM\Software\Mozilla\Firefox\Extensions\\m3ffxtbr@mywebsearch.com
HKLM\Software\MozillaPlugins\@mywebsearch.com/Plugin
HKLM\software\MyWebSearch
HKLM\software\SweetIM
HKU\s-1-5-21-445323526-3476327496-991420016-1000\software\AGI
HKU\s-1-5-21-445323526-3476327496-991420016-1000\software\appdatalow\software\Fun Web Products
HKU\s-1-5-21-445323526-3476327496-991420016-1000\software\appdatalow\software\FunWebProducts
HKU\s-1-5-21-445323526-3476327496-991420016-1000\software\appdatalow\software\MyWebSearch
HKU\s-1-5-21-445323526-3476327496-991420016-1000\software\fcn
HKU\s-1-5-21-445323526-3476327496-991420016-1000\software\MyWebSearch
HKU\s-1-5-21-445323526-3476327496-991420016-1000\software\SGPUpdater
HKU\s-1-5-21-445323526-3476327496-991420016-1000\software\SweetIM
.
============== Added scan ==============
.
.
* Mozilla FireFox Version 3.6 [fr] *
.
ProfilePath: be1k2x4q.default (belliagurl)
.
(BELLIA~1, prefs.js) Browser.download.dir, C:\Users\belliagurl\Downloads
(BELLIA~1, prefs.js) Browser.download.lastDir, C:\Users\belliagurl\Desktop
(BELLIA~1, prefs.js) Browser.search.defaultenginename, SearchCanvas
(BELLIA~1, prefs.js) Browser.search.defaulturl, hxxp://www.searchcanvas.com/web?ot=7&q=
(BELLIA~1, prefs.js) Browser.search.selectedEngine, MyWebSearch
(BELLIA~1, prefs.js) Browser.startup.homepage, hxxp://home.mywebsearch.com/index.jhtml?ptnrS=ZUfox000&ptb=RlFnaypJ.paws_64mE_WEQ
(BELLIA~1, prefs.js) Extensions.enabledItems, {6E19037A-12E3-4295-8915-ED48BC341614}:1.3,{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}:6.0.07,{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11,{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13,{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17,{8708ccbb-d7b0-4724-b0f6-379962b7d796}:1.300.306,{32c1ae0f-a1ed-4128-b922-7e83a47d79b7}:3.0,{7b13ec3e-999a-4b70-b9cb-2617b8323822}:2.5.6.0,personas@christopher.beard:1.5.1,FFToolbar@bitdefender.com:2.0,textlinks@playsushi.com:1.2.0,{300B27DF-97E5-4219-AB2B-03AA67D5D557}:1.3.6,m3ffxtbr@mywebsearch.com:1.1,{241aae70-0022-11de-87af-0800200c9a66}:3.6.30.01.10,{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6,{ff356687-aa08-463d-a46c-11c451824939}:5.0.0,{961408A3-C970-4577-970A-D97C29839A67}:1.3.2
.
(BELLIA~1, prefs.js) FOUND - Agcore.default.extid, unifiedtoolbar@aginteractive.com
(BELLIA~1, prefs.js) FOUND - Browser.search.defaultengine, Ask.com
(BELLIA~1, prefs.js) FOUND - Browser.search.defaultthis.engineName, Fast Browser Search
(BELLIA~1, prefs.js) FOUND - Browser.search.order.1, Ask.com
(BELLIA~1, prefs.js) FOUND - Browser.search.selectedEngine, MyWebSearch
(BELLIA~1, prefs.js) FOUND - Browser.startup.homepage, hxxp://home.mywebsearch.com/index.jhtml?ptnrS=ZUfox000&ptb=RlFnaypJ.paws_64mE_WEQ
(BELLIA~1, prefs.js) FOUND - Extensions.enabledItems, {6E19037A-12E3-4295-8915-ED48BC341614}:1.3,{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}:6.0.07,{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11,{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13,{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17,{8708ccbb-d7b0-4724-b0f6-379962b7d796}:1.300.306,{32c1ae0f-a1ed-4128-b922-7e83a47d79b7}:3.0,{7b13ec3e-999a-4b70-b9cb-2617b8323822}:2.5.6.0,personas@christopher.beard:1.5.1,FFToolbar@bitdefender.com:2.0,textlinks@playsushi.com:1.2.0,{300B27DF-97E5-4219-AB2B-03AA67D5D557}:1.3.6,m3ffxtbr@mywebsearch.com:1.1,{241aae70-0022-11de-87af-0800200c9a66}:3.6.30.01.10,{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6,{ff356687-aa08-463d-a46c-11c451824939}:5.0.0,{961408A3-C970-4577-970A-D97C29839A67}:1.3.2
(BELLIA~1, prefs.js) FOUND - Extensions.mywebsearch.openSearchURL, hxxp://search.mywebsearch.com/mywebsearch/opensearch.jhtml?id=ZUfox000&ptb=RlFnaypJ.paws_64mE_WEQ&n=77ce820c
(BELLIA~1, prefs.js) FOUND - Extensions.mywebsearch.prevKwdEnabled, true
(BELLIA~1, prefs.js) FOUND - Extensions.mywebsearch.prevKwdURL, chrome://browser-region/locale/region.properties
.
.
.
* Internet Explorer Version 7.0.6000.16757 *
.
[HKEY_CURRENT_USER\..\Internet Explorer\Main]
.
Do404Search: 01000000
Show_ToolBar: yes
Search Page:
Enable Browser Extensions: yes
Start Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Use Search Asst:
Search Bar:
SearchAssistant:
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]
.
Start Page: hxxp://fr.msn.com/
Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=69157
Default_Search_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Search Page: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Delete_Temp_Files_On_Exit: yes
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\main\Start Page
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]
.
Tabs: res://ieframe.dll/tabswelcome.htm
.
============== Suspect (Cracks, Serials, ...) ==============
.
C:\Documents and Settings\belliagurl\AppData\Roaming\uTorrent\ESET NOD32 Antivirus v 4+serial.rar.torrent
C:\Documents and Settings\belliagurl\AppData\Roaming\uTorrent\Okoker.Internet.Accelerator.v4.6.Incl-Keygen.[by 4rocK].torrent
C:\Documents and Settings\belliagurl\AppData\Roaming\uTorrent\Photo.Frame.Show.v1.4.156.Incl-Crack.[by 4rocK].torrent
C:\Documents and Settings\belliagurl\Desktop\sims2\Cracks\03_Sims2Ep3\TSBin\Sims2EP3.exe
C:\Documents and Settings\belliagurl\Desktop\sims2\Cracks\04_Sims2Ep4\TSBin\Sims2EP4.exe
C:\Documents and Settings\belliagurl\Desktop\sims2\Cracks\05_Sims2Ep5\TSBin\Sims2EP5.exe
C:\Documents and Settings\belliagurl\Desktop\sims2\Cracks\06_Sims2EP6\TSBin\Sims2EP6.exe
C:\Documents and Settings\belliagurl\Desktop\sims2\Cracks\07_Sims2EP7\TSBin\Sims2EP7.exe
C:\Documents and Settings\belliagurl\Desktop\sims2\Patches\02_Sims2Ep2\Patch_TheSims2Nightlife.exe
C:\Documents and Settings\belliagurl\Desktop\sims2\Patches\02_Sims2Ep2\Patchfiles\CSBin\PackageInstaller.exe
C:\Documents and Settings\belliagurl\Desktop\sims2\Patches\02_Sims2Ep2\Patchfiles\CSBin\TS2BodyShop.exe
C:\Documents and Settings\belliagurl\Desktop\sims2\Patches\02_Sims2Ep2\Patchfiles\TSBin\Sims2EP2.exe
C:\Documents and Settings\belliagurl\Desktop\sims2\Patches\03_Sims2Ep3\sims2ep3_patch.exe
C:\Documents and Settings\belliagurl\Desktop\sims2\Patches\04_Sims2Ep4\sims2ep4_patch_cd.exe
C:\Documents and Settings\belliagurl\Desktop\sims2\Patches\05_Sims2Ep5\sims2ep5_patch_cd.exe
C:\Documents and Settings\belliagurl\Desktop\sims2\Patches\06_Sims2EP6\sims2ep6_patch.exe
C:\Documents and Settings\belliagurl\Downloads\Hide and Secret Deluxe (Version Fran‡aise)\Patch\Zylom Games Universal Patcher v1.0 by DNA.exe
C:\Documents and Settings\belliagurl\Downloads\Little Shop of Treasures 2 Deluxe (Version Fran‡aise)\Zylom Patcher\Zylom Games Universal Patcher v1.0 by DNA.exe
C:\Documents and Settings\belliagurl\Downloads\Littlest Pet Shop\Crack\lps.exe
C:\Documents and Settings\belliagurl\Downloads\Littlest Pet Shop\Crack\rld-lilk.exe
C:\Documents and Settings\belliagurl\Downloads\Portrait Professional Max 6.3.5 Retai\Crack\PortraitProfessional.exe
C:\Users\belliagurl\AppData\Roaming\uTorrent\ESET NOD32 Antivirus v 4+serial.rar.torrent
C:\Users\belliagurl\AppData\Roaming\uTorrent\Okoker.Internet.Accelerator.v4.6.Incl-Keygen.[by 4rocK].torrent
C:\Users\belliagurl\AppData\Roaming\uTorrent\Photo.Frame.Show.v1.4.156.Incl-Crack.[by 4rocK].torrent
C:\Users\belliagurl\Desktop\sims2\Cracks\03_Sims2Ep3\TSBin\Sims2EP3.exe
C:\Users\belliagurl\Desktop\sims2\Cracks\04_Sims2Ep4\TSBin\Sims2EP4.exe
C:\Users\belliagurl\Desktop\sims2\Cracks\05_Sims2Ep5\TSBin\Sims2EP5.exe
C:\Users\belliagurl\Desktop\sims2\Cracks\06_Sims2EP6\TSBin\Sims2EP6.exe
C:\Users\belliagurl\Desktop\sims2\Cracks\07_Sims2EP7\TSBin\Sims2EP7.exe
C:\Users\belliagurl\Desktop\sims2\Patches\02_Sims2Ep2\Patch_TheSims2Nightlife.exe
C:\Users\belliagurl\Desktop\sims2\Patches\02_Sims2Ep2\Patchfiles\CSBin\PackageInstaller.exe
C:\Users\belliagurl\Desktop\sims2\Patches\02_Sims2Ep2\Patchfiles\CSBin\TS2BodyShop.exe
C:\Users\belliagurl\Desktop\sims2\Patches\02_Sims2Ep2\Patchfiles\TSBin\Sims2EP2.exe
C:\Users\belliagurl\Desktop\sims2\Patches\03_Sims2Ep3\sims2ep3_patch.exe
C:\Users\belliagurl\Desktop\sims2\Patches\04_Sims2Ep4\sims2ep4_patch_cd.exe
C:\Users\belliagurl\Desktop\sims2\Patches\05_Sims2Ep5\sims2ep5_patch_cd.exe
C:\Users\belliagurl\Desktop\sims2\Patches\06_Sims2EP6\sims2ep6_patch.exe
C:\Users\belliagurl\Downloads\Hide and Secret Deluxe (Version Fran‡aise)\Patch\Zylom Games Universal Patcher v1.0 by DNA.exe
C:\Users\belliagurl\Downloads\Little Shop of Treasures 2 Deluxe (Version Fran‡aise)\Zylom Patcher\Zylom Games Universal Patcher v1.0 by DNA.exe
C:\Users\belliagurl\Downloads\Littlest Pet Shop\Crack\lps.exe
C:\Users\belliagurl\Downloads\Littlest Pet Shop\Crack\rld-lilk.exe
C:\Users\belliagurl\Downloads\Portrait Professional Max 6.3.5 Retai\Crack\PortraitProfessional.exe
.
===================================
.
1491 Byte(s) - C:\Ad-Report-SCAN[1].log
21523 Byte(s) - C:\Ad-Report-SCAN[2].log
.
379 File(s) - C:\Users\BELLIA~1\AppData\Local\Temp
51 File(s) - C:\Windows\Temp
114 File(s) - C:\Windows\Prefetch
.
4 File(s) - C:\Ad-Remover\BACKUP
0 File(s) - C:\Ad-Remover\QUARANTINE
.
End at: 17:42:14 | 2010-02-25 - SCAN[2]
.
============== E.O.F ==============
.
.
Updated by C_XX on 05.02.2010 at 17:34
Contact: AdRemover.contact@gmail.com
Website: http://pagesperso-orange.fr/NosTools/ad_remover.html
.
Launch at: 17:34:08, 2010-02-25 | Normal Boot | Option: SCAN
Executed from: C:\Ad-Remover\
Operating system: Microsoft® Windows Vista™ HomePremium Service Pack 2 v6.0.6000
Computer Name: BELLIAGURL-PC | Current user: belliagurl
.
============== FOUND ELEMENT(S) ==============
.
Service: *MyWebSearchService*
Service: *RelevantKnowledge*
C:\Users\BELLIA~1\AppData\Roaming\Macromedia\Flash Player\#Security\FlashPlayerTrust\UnifiedToolbar.cfg
C:\Users\BELLIA~1\AppData\Roaming\Mozilla\FireFox\Profiles\be1k2x4q.default\searchplugins\mywebsearch.xml
C:\Windows\System32\f3PSSavr.scr
C:\Windows\System32\Macromed\Flash\FlashPlayerTrust\UnifiedToolbar.cfg
C:\PROGRA~2\MICROS~1\Windows\STARTM~1\Programs\RelevantKnowledge
C:\Program Files\Fast Browser Search
C:\Program Files\FunWebProducts
C:\Program Files\GamesBar
C:\Program Files\MyWebSearch
C:\Program Files\RelevantKnowledge
C:\Program Files\Search Guard Plus
C:\Program Files\Search Guard PlusU
C:\Users\belliagurl\AppData\LocalLow\AGI
C:\Users\belliagurl\AppData\LocalLow\FunWebProducts
C:\Users\belliagurl\AppData\LocalLow\Kiwee Toolbar
C:\Users\belliagurl\AppData\LocalLow\MyWebSearch
C:\ProgramData\Trymedia
C:\Windows\system32\config\systemprofile\AppData\Roaming\agi
.
HKCU\software\AGI
HKCU\software\appdatalow\software\Fun Web Products
HKCU\software\appdatalow\software\FunWebProducts
HKCU\software\appdatalow\software\MyWebSearch
HKCU\software\fcn
HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\Registry\User\S-1-5-21-445323526-3476327496-991420016-1000\Software\Sweetim
HKCU\software\microsoft\internet explorer\searchscopes\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
HKCU\software\microsoft\internet explorer\searchscopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}
HKCU\software\microsoft\internet explorer\searchscopes\{19F2B849-4ADE-4d4b-85F9-C31C643DBDE9}
HKCU\software\microsoft\internet explorer\searchscopes\{EEE6C360-6118-11DC-9C72-001320C79847}
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{00A6FAF6-072E-44cf-8957-5838F569A31D}
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{91C18ED5-5E1C-4AE5-A148-A861DE8C8E16}
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{EEE6C35D-6118-11DC-9C72-001320C79847}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00A6FAF1-072E-44CF-8957-5838F569A31D}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EA1-A523-4961-B6BB-170DE4475CCA}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\MyWebSearch Email Plugin
HKCU\software\MyWebSearch
HKCU\software\SGPUpdater
HKCU\software\SweetIM
HKLM\software\AGI
HKLM\Software\Classes\CLSID\{00A6FAF1-072E-44cf-8957-5838F569A31D}
HKLM\Software\Classes\CLSID\{00A6FAF6-072E-44cf-8957-5838F569A31D}
HKLM\Software\Classes\CLSID\{07B18EA1-A523-4961-B6BB-170DE4475CCA}
HKLM\Software\Classes\CLSID\{07B18EA9-A523-4961-B6BB-170DE4475CCA}
HKLM\Software\Classes\CLSID\{07B18EAB-A523-4961-B6BB-170DE4475CCA}
HKLM\Software\Classes\CLSID\{0F8ECF4F-3646-4C3A-8881-8E138FFCAF70}
HKLM\Software\Classes\CLSID\{1BB22D38-A411-4B13-A746-C2A4F4EC7344}
HKLM\Software\Classes\CLSID\{1E0DE227-5CE4-4ea3-AB0C-8B03E1AA76BC}
HKLM\Software\Classes\CLSID\{25560540-9571-4D7B-9389-0F166788785A}
HKLM\Software\Classes\CLSID\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8}
HKLM\Software\Classes\CLSID\{3E720452-B472-4954-B7AA-33069EB53906}
HKLM\Software\Classes\CLSID\{4260e0cc-0f75-462e-88a3-1e05c248bf4c}
HKLM\Software\Classes\CLSID\{53CED2D0-5E9A-4761-9005-648404E6F7E5}
HKLM\Software\Classes\CLSID\{63D0ED2C-B45B-4458-8B3B-60C69BBBD83C}
HKLM\Software\Classes\CLSID\{7473D292-B7BB-4f24-AE82-7E2CE94BB6A9}
HKLM\Software\Classes\CLSID\{7473D294-B7BB-4f24-AE82-7E2CE94BB6A9}
HKLM\Software\Classes\CLSID\{7473D296-B7BB-4f24-AE82-7E2CE94BB6A9}
HKLM\Software\Classes\CLSID\{84DA4FDF-A1CF-4195-8688-3E961F505983}
HKLM\Software\Classes\CLSID\{8E6F1832-9607-4440-8530-13BE7C4B1D14}
HKLM\Software\Classes\CLSID\{938AA51A-996C-4884-98CE-80DD16A5C9DA}
HKLM\Software\Classes\CLSID\{98D9753D-D73B-42D5-8C85-4469CDA897AB}
HKLM\Software\Classes\CLSID\{9FF05104-B030-46FC-94B8-81276E4E27DF}
HKLM\Software\Classes\CLSID\{A9571378-68A1-443d-B082-284F960C6D17}
HKLM\Software\Classes\CLSID\{ADB01E81-3C79-4272-A0F1-7B2BE7A782DC}
HKLM\Software\Classes\CLSID\{B813095C-81C0-4E40-AA14-67520372B987}
HKLM\Software\Classes\CLSID\{C9D7BE3E-141A-4C85-8CD6-32461F3DF2C7}
HKLM\Software\Classes\CLSID\{CFF4CE82-3AA2-451F-9B77-7165605FB835}
HKLM\Software\Classes\CLSID\{D9FFFB27-D62A-4D64-8CEC-1FF006528805}
HKLM\Software\Classes\CLSID\{E79DFBCA-5697-4fbd-94E5-5B2A9C7C1612}
HKLM\software\classes\FunWebProducts.DataControl
HKLM\software\classes\FunWebProducts.DataControl.1
HKLM\software\classes\FunWebProducts.HistoryKillerScheduler
HKLM\software\classes\FunWebProducts.HistoryKillerScheduler.1
HKLM\software\classes\FunWebProducts.HistorySwatterControlBar
HKLM\software\classes\FunWebProducts.HistorySwatterControlBar.1
HKLM\software\classes\FunWebProducts.HTMLMenu
HKLM\software\classes\FunWebProducts.HTMLMenu.1
HKLM\software\classes\FunWebProducts.HTMLMenu.2
HKLM\software\classes\FunWebProducts.IECookiesManager
HKLM\software\classes\FunWebProducts.IECookiesManager.1
HKLM\software\classes\FunWebProducts.KillerObjManager
HKLM\software\classes\FunWebProducts.KillerObjManager.1
HKLM\software\classes\FunWebProducts.PopSwatterBarButton
HKLM\software\classes\FunWebProducts.PopSwatterBarButton.1
HKLM\software\classes\FunWebProducts.PopSwatterSettingsControl
HKLM\software\classes\FunWebProducts.PopSwatterSettingsControl.1
HKLM\Software\Classes\Interface\{07B18EAA-A523-4961-B6BB-170DE4475CCA}
HKLM\Software\Classes\Interface\{07B18EAC-A523-4961-B6BB-170DE4475CCA}
HKLM\Software\Classes\Interface\{1093995A-BA37-41D2-836E-091067C4AD17}
HKLM\Software\Classes\Interface\{120927BF-1700-43BC-810F-FAB92549B390}
HKLM\Software\Classes\Interface\{17DE5E5E-BFE3-4E83-8E1F-8755795359EC}
HKLM\Software\Classes\Interface\{1F52A5FA-A705-4415-B975-88503B291728}
HKLM\Software\Classes\Interface\{247A115F-06C2-4FB3-967D-2D62D3CF4F0A}
HKLM\Software\Classes\Interface\{2E3537FC-CF2F-4F56-AF54-5A6A3DD375CC}
HKLM\Software\Classes\Interface\{2E9937FC-CF2F-4F56-AF54-5A6A3DD375CC}
HKLM\Software\Classes\Interface\{3E1656ED-F60E-4597-B6AA-B6A58E171495}
HKLM\Software\Classes\Interface\{3E16A203-C0AA-4D44-ACC5-38A70A8C76DA}
HKLM\Software\Classes\Interface\{3E53E2CB-86DB-4A4A-8BD9-FFEB7A64DF82}
HKLM\Software\Classes\Interface\{3E720451-B472-4954-B7AA-33069EB53906}
HKLM\Software\Classes\Interface\{3E720453-B472-4954-B7AA-33069EB53906}
HKLM\Software\Classes\Interface\{63D0ED2B-B45B-4458-8B3B-60C69BBBD83C}
HKLM\Software\Classes\Interface\{63D0ED2D-B45B-4458-8B3B-60C69BBBD83C}
HKLM\Software\Classes\Interface\{6E74766C-4D93-4CC0-96D1-47B8E07FF9CA}
HKLM\Software\Classes\Interface\{72EE7F04-15BD-4845-A005-D6711144D86A}
HKLM\Software\Classes\Interface\{741DE825-A6F0-4497-9AA6-8023CF9B0FFF}
HKLM\Software\Classes\Interface\{7473D291-B7BB-4F24-AE82-7E2CE94BB6A9}
HKLM\Software\Classes\Interface\{7473D293-B7BB-4F24-AE82-7E2CE94BB6A9}
HKLM\Software\Classes\Interface\{7473D295-B7BB-4F24-AE82-7E2CE94BB6A9}
HKLM\Software\Classes\Interface\{7473D297-B7BB-4F24-AE82-7E2CE94BB6A9}
HKLM\Software\Classes\Interface\{90449521-D834-4703-BB4E-D3AA44042FF8}
HKLM\Software\Classes\Interface\{991AAC62-B100-47CE-8B75-253965244F69}
HKLM\Software\Classes\Interface\{A626CDBD-3D13-4F78-B819-440A28D7E8FC}
HKLM\Software\Classes\Interface\{BBABDC90-F3D5-4801-863A-EE6AE529862D}
HKLM\Software\Classes\Interface\{D6FF3684-AD3B-48EB-BBB4-B9E6C5A355C1}
HKLM\Software\Classes\Interface\{DE38C398-B328-4F4C-A3AD-1B5E4ED93477}
HKLM\Software\Classes\Interface\{E342AF55-B78A-4CD0-A2BB-DA7F52D9D25E}
HKLM\Software\Classes\Interface\{E342AF55-B78A-4CD0-A2BB-DA7F52D9D25F}
HKLM\Software\Classes\Interface\{E79DFBC9-5697-4FBD-94E5-5B2A9C7C1612}
HKLM\Software\Classes\Interface\{E79DFBCB-5697-4FBD-94E5-5B2A9C7C1612}
HKLM\Software\Classes\Interface\{EB9E5C1C-B1F9-4C2B-BE8A-27D6446FDAF8}
HKLM\Software\Classes\Interface\{F87D7FB5-9DC5-4C8C-B998-D8DFE02E2978}
HKLM\software\classes\KiweeIEToolbar.ToolbarInfo
HKLM\software\classes\KiweeIEToolbar.ToolbarInfo.1
HKLM\software\classes\MyWebSearch.ChatSessionPlugin
HKLM\software\classes\MyWebSearch.ChatSessionPlugin.1
HKLM\software\classes\MyWebSearch.HTMLPanel
HKLM\software\classes\MyWebSearch.HTMLPanel.1
HKLM\software\classes\MyWebSearch.OutlookAddin
HKLM\software\classes\MyWebSearch.OutlookAddin.1
HKLM\software\classes\MyWebSearch.PseudoTransparentPlugin
HKLM\software\classes\MyWebSearch.PseudoTransparentPlugin.1
HKLM\software\classes\MyWebSearchToolBar.SettingsPlugin
HKLM\software\classes\MyWebSearchToolBar.SettingsPlugin.1
HKLM\software\classes\MyWebSearchToolBar.ToolbarPlugin
HKLM\software\classes\MyWebSearchToolBar.ToolbarPlugin.1
HKLM\software\classes\ScreenSaverControl.ScreenSaverInstaller
HKLM\software\classes\ScreenSaverControl.ScreenSaverInstaller.1
HKLM\Software\Classes\TypeLib\{07B18EA0-A523-4961-B6BB-170DE4475CCA}
HKLM\Software\Classes\TypeLib\{0D26BC71-A633-4E71-AD31-EADC3A1B6A3A}
HKLM\Software\Classes\TypeLib\{29D67D3C-509A-4544-903F-C8C1B8236554}
HKLM\Software\Classes\TypeLib\{3E720450-B472-4954-B7AA-33069EB53906}
HKLM\Software\Classes\TypeLib\{7473D290-B7BB-4F24-AE82-7E2CE94BB6A9}
HKLM\Software\Classes\TypeLib\{8CA01F0E-987C-49C3-B852-2F1AC4A7094C}
HKLM\Software\Classes\TypeLib\{8E6F1830-9607-4440-8530-13BE7C4B1D14}
HKLM\Software\Classes\TypeLib\{C8CECDE3-1AE1-4C4A-AD82-6D5B00212144}
HKLM\Software\Classes\TypeLib\{E47CAEE0-DEEA-464A-9326-3F2801535A4D}
HKLM\Software\Classes\TypeLib\{E79DFBC0-5697-4FBD-94E5-5B2A9C7C1612}
HKLM\Software\Classes\TypeLib\{F42228FB-E84E-479E-B922-FBBD096E792C}
HKLM\software\classes\URLSearchHook.ToolbarURLSearchHook
HKLM\software\classes\URLSearchHook.ToolbarURLSearchHook.1
HKLM\software\FocusInteractive
HKLM\software\Fun Web Products
HKLM\software\GamesBarSetup
HKLM\Software\Microsoft\Code Store Database\Distribution Units\CabBuilder
HKLM\Software\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll
HKLM\software\microsoft\internet explorer\searchscopes\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
HKLM\software\microsoft\internet explorer\searchscopes\{EEE6C360-6118-11DC-9C72-001320C79847}
HKLM\Software\Microsoft\Internet Explorer\Toolbar\\{07B18EA9-A523-4961-B6BB-170DE4475CCA}
HKLM\Software\Microsoft\Multimedia\WMPlayer\Schemes\f3pss
HKLM\Software\Microsoft\Office\Outlook\Addins\MyWebSearch.OutlookAddin
HKLM\Software\Microsoft\Office\Word\Addins\MyWebSearch.OutlookAddin
HKLM\Software\Microsoft\Windows Media\Wmsdk\Sources\\F3PopularScreenSavers
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00A6FAF1-072E-44cf-8957-5838F569A31D}
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{07B18EA1-A523-4961-B6BB-170DE4475CCA}
HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{07B18EAB-A523-4961-B6BB-170DE4475CCA}
HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{25560540-9571-4D7B-9389-0F166788785A}
HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8}
HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3E720452-B472-4954-B7AA-33069EB53906}
HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{63D0ED2C-B45B-4458-8B3B-60C69BBBD83C}
HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7473d294-b7bb-4f24-ae82-7e2ce94bb6a9}
HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{98D9753D-D73B-42D5-8C85-4469CDA897AB}
HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{9FF05104-B030-46FC-94B8-81276E4E27DF}
HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E79DFBCA-5697-4FBD-94E5-5B2A9C7C1612}
HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\post platform\\FunWebProducts
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\My Web Search Bar Search Scope Monitor
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\MyWebSearch Email Plugin
HKLM\software\microsoft\windows\currentversion\uninstall\{d08d9f98-1c78-4704-87e6-368b0023d831}
HKLM\software\microsoft\windows\currentversion\uninstall\MyWebSearch bar Uninstall
HKLM\Software\Mozilla\Firefox\Extensions\\m3ffxtbr@mywebsearch.com
HKLM\Software\MozillaPlugins\@mywebsearch.com/Plugin
HKLM\software\MyWebSearch
HKLM\software\SweetIM
HKU\s-1-5-21-445323526-3476327496-991420016-1000\software\AGI
HKU\s-1-5-21-445323526-3476327496-991420016-1000\software\appdatalow\software\Fun Web Products
HKU\s-1-5-21-445323526-3476327496-991420016-1000\software\appdatalow\software\FunWebProducts
HKU\s-1-5-21-445323526-3476327496-991420016-1000\software\appdatalow\software\MyWebSearch
HKU\s-1-5-21-445323526-3476327496-991420016-1000\software\fcn
HKU\s-1-5-21-445323526-3476327496-991420016-1000\software\MyWebSearch
HKU\s-1-5-21-445323526-3476327496-991420016-1000\software\SGPUpdater
HKU\s-1-5-21-445323526-3476327496-991420016-1000\software\SweetIM
.
============== Added scan ==============
.
.
* Mozilla FireFox Version 3.6 [fr] *
.
ProfilePath: be1k2x4q.default (belliagurl)
.
(BELLIA~1, prefs.js) Browser.download.dir, C:\Users\belliagurl\Downloads
(BELLIA~1, prefs.js) Browser.download.lastDir, C:\Users\belliagurl\Desktop
(BELLIA~1, prefs.js) Browser.search.defaultenginename, SearchCanvas
(BELLIA~1, prefs.js) Browser.search.defaulturl, hxxp://www.searchcanvas.com/web?ot=7&q=
(BELLIA~1, prefs.js) Browser.search.selectedEngine, MyWebSearch
(BELLIA~1, prefs.js) Browser.startup.homepage, hxxp://home.mywebsearch.com/index.jhtml?ptnrS=ZUfox000&ptb=RlFnaypJ.paws_64mE_WEQ
(BELLIA~1, prefs.js) Extensions.enabledItems, {6E19037A-12E3-4295-8915-ED48BC341614}:1.3,{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}:6.0.07,{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11,{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13,{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17,{8708ccbb-d7b0-4724-b0f6-379962b7d796}:1.300.306,{32c1ae0f-a1ed-4128-b922-7e83a47d79b7}:3.0,{7b13ec3e-999a-4b70-b9cb-2617b8323822}:2.5.6.0,personas@christopher.beard:1.5.1,FFToolbar@bitdefender.com:2.0,textlinks@playsushi.com:1.2.0,{300B27DF-97E5-4219-AB2B-03AA67D5D557}:1.3.6,m3ffxtbr@mywebsearch.com:1.1,{241aae70-0022-11de-87af-0800200c9a66}:3.6.30.01.10,{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6,{ff356687-aa08-463d-a46c-11c451824939}:5.0.0,{961408A3-C970-4577-970A-D97C29839A67}:1.3.2
.
(BELLIA~1, prefs.js) FOUND - Agcore.default.extid, unifiedtoolbar@aginteractive.com
(BELLIA~1, prefs.js) FOUND - Browser.search.defaultengine, Ask.com
(BELLIA~1, prefs.js) FOUND - Browser.search.defaultthis.engineName, Fast Browser Search
(BELLIA~1, prefs.js) FOUND - Browser.search.order.1, Ask.com
(BELLIA~1, prefs.js) FOUND - Browser.search.selectedEngine, MyWebSearch
(BELLIA~1, prefs.js) FOUND - Browser.startup.homepage, hxxp://home.mywebsearch.com/index.jhtml?ptnrS=ZUfox000&ptb=RlFnaypJ.paws_64mE_WEQ
(BELLIA~1, prefs.js) FOUND - Extensions.enabledItems, {6E19037A-12E3-4295-8915-ED48BC341614}:1.3,{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}:6.0.07,{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11,{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13,{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17,{8708ccbb-d7b0-4724-b0f6-379962b7d796}:1.300.306,{32c1ae0f-a1ed-4128-b922-7e83a47d79b7}:3.0,{7b13ec3e-999a-4b70-b9cb-2617b8323822}:2.5.6.0,personas@christopher.beard:1.5.1,FFToolbar@bitdefender.com:2.0,textlinks@playsushi.com:1.2.0,{300B27DF-97E5-4219-AB2B-03AA67D5D557}:1.3.6,m3ffxtbr@mywebsearch.com:1.1,{241aae70-0022-11de-87af-0800200c9a66}:3.6.30.01.10,{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6,{ff356687-aa08-463d-a46c-11c451824939}:5.0.0,{961408A3-C970-4577-970A-D97C29839A67}:1.3.2
(BELLIA~1, prefs.js) FOUND - Extensions.mywebsearch.openSearchURL, hxxp://search.mywebsearch.com/mywebsearch/opensearch.jhtml?id=ZUfox000&ptb=RlFnaypJ.paws_64mE_WEQ&n=77ce820c
(BELLIA~1, prefs.js) FOUND - Extensions.mywebsearch.prevKwdEnabled, true
(BELLIA~1, prefs.js) FOUND - Extensions.mywebsearch.prevKwdURL, chrome://browser-region/locale/region.properties
.
.
.
* Internet Explorer Version 7.0.6000.16757 *
.
[HKEY_CURRENT_USER\..\Internet Explorer\Main]
.
Do404Search: 01000000
Show_ToolBar: yes
Search Page:
Enable Browser Extensions: yes
Start Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Use Search Asst:
Search Bar:
SearchAssistant:
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]
.
Start Page: hxxp://fr.msn.com/
Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=69157
Default_Search_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Search Page: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Delete_Temp_Files_On_Exit: yes
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\main\Start Page
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]
.
Tabs: res://ieframe.dll/tabswelcome.htm
.
============== Suspect (Cracks, Serials, ...) ==============
.
C:\Documents and Settings\belliagurl\AppData\Roaming\uTorrent\ESET NOD32 Antivirus v 4+serial.rar.torrent
C:\Documents and Settings\belliagurl\AppData\Roaming\uTorrent\Okoker.Internet.Accelerator.v4.6.Incl-Keygen.[by 4rocK].torrent
C:\Documents and Settings\belliagurl\AppData\Roaming\uTorrent\Photo.Frame.Show.v1.4.156.Incl-Crack.[by 4rocK].torrent
C:\Documents and Settings\belliagurl\Desktop\sims2\Cracks\03_Sims2Ep3\TSBin\Sims2EP3.exe
C:\Documents and Settings\belliagurl\Desktop\sims2\Cracks\04_Sims2Ep4\TSBin\Sims2EP4.exe
C:\Documents and Settings\belliagurl\Desktop\sims2\Cracks\05_Sims2Ep5\TSBin\Sims2EP5.exe
C:\Documents and Settings\belliagurl\Desktop\sims2\Cracks\06_Sims2EP6\TSBin\Sims2EP6.exe
C:\Documents and Settings\belliagurl\Desktop\sims2\Cracks\07_Sims2EP7\TSBin\Sims2EP7.exe
C:\Documents and Settings\belliagurl\Desktop\sims2\Patches\02_Sims2Ep2\Patch_TheSims2Nightlife.exe
C:\Documents and Settings\belliagurl\Desktop\sims2\Patches\02_Sims2Ep2\Patchfiles\CSBin\PackageInstaller.exe
C:\Documents and Settings\belliagurl\Desktop\sims2\Patches\02_Sims2Ep2\Patchfiles\CSBin\TS2BodyShop.exe
C:\Documents and Settings\belliagurl\Desktop\sims2\Patches\02_Sims2Ep2\Patchfiles\TSBin\Sims2EP2.exe
C:\Documents and Settings\belliagurl\Desktop\sims2\Patches\03_Sims2Ep3\sims2ep3_patch.exe
C:\Documents and Settings\belliagurl\Desktop\sims2\Patches\04_Sims2Ep4\sims2ep4_patch_cd.exe
C:\Documents and Settings\belliagurl\Desktop\sims2\Patches\05_Sims2Ep5\sims2ep5_patch_cd.exe
C:\Documents and Settings\belliagurl\Desktop\sims2\Patches\06_Sims2EP6\sims2ep6_patch.exe
C:\Documents and Settings\belliagurl\Downloads\Hide and Secret Deluxe (Version Fran‡aise)\Patch\Zylom Games Universal Patcher v1.0 by DNA.exe
C:\Documents and Settings\belliagurl\Downloads\Little Shop of Treasures 2 Deluxe (Version Fran‡aise)\Zylom Patcher\Zylom Games Universal Patcher v1.0 by DNA.exe
C:\Documents and Settings\belliagurl\Downloads\Littlest Pet Shop\Crack\lps.exe
C:\Documents and Settings\belliagurl\Downloads\Littlest Pet Shop\Crack\rld-lilk.exe
C:\Documents and Settings\belliagurl\Downloads\Portrait Professional Max 6.3.5 Retai\Crack\PortraitProfessional.exe
C:\Users\belliagurl\AppData\Roaming\uTorrent\ESET NOD32 Antivirus v 4+serial.rar.torrent
C:\Users\belliagurl\AppData\Roaming\uTorrent\Okoker.Internet.Accelerator.v4.6.Incl-Keygen.[by 4rocK].torrent
C:\Users\belliagurl\AppData\Roaming\uTorrent\Photo.Frame.Show.v1.4.156.Incl-Crack.[by 4rocK].torrent
C:\Users\belliagurl\Desktop\sims2\Cracks\03_Sims2Ep3\TSBin\Sims2EP3.exe
C:\Users\belliagurl\Desktop\sims2\Cracks\04_Sims2Ep4\TSBin\Sims2EP4.exe
C:\Users\belliagurl\Desktop\sims2\Cracks\05_Sims2Ep5\TSBin\Sims2EP5.exe
C:\Users\belliagurl\Desktop\sims2\Cracks\06_Sims2EP6\TSBin\Sims2EP6.exe
C:\Users\belliagurl\Desktop\sims2\Cracks\07_Sims2EP7\TSBin\Sims2EP7.exe
C:\Users\belliagurl\Desktop\sims2\Patches\02_Sims2Ep2\Patch_TheSims2Nightlife.exe
C:\Users\belliagurl\Desktop\sims2\Patches\02_Sims2Ep2\Patchfiles\CSBin\PackageInstaller.exe
C:\Users\belliagurl\Desktop\sims2\Patches\02_Sims2Ep2\Patchfiles\CSBin\TS2BodyShop.exe
C:\Users\belliagurl\Desktop\sims2\Patches\02_Sims2Ep2\Patchfiles\TSBin\Sims2EP2.exe
C:\Users\belliagurl\Desktop\sims2\Patches\03_Sims2Ep3\sims2ep3_patch.exe
C:\Users\belliagurl\Desktop\sims2\Patches\04_Sims2Ep4\sims2ep4_patch_cd.exe
C:\Users\belliagurl\Desktop\sims2\Patches\05_Sims2Ep5\sims2ep5_patch_cd.exe
C:\Users\belliagurl\Desktop\sims2\Patches\06_Sims2EP6\sims2ep6_patch.exe
C:\Users\belliagurl\Downloads\Hide and Secret Deluxe (Version Fran‡aise)\Patch\Zylom Games Universal Patcher v1.0 by DNA.exe
C:\Users\belliagurl\Downloads\Little Shop of Treasures 2 Deluxe (Version Fran‡aise)\Zylom Patcher\Zylom Games Universal Patcher v1.0 by DNA.exe
C:\Users\belliagurl\Downloads\Littlest Pet Shop\Crack\lps.exe
C:\Users\belliagurl\Downloads\Littlest Pet Shop\Crack\rld-lilk.exe
C:\Users\belliagurl\Downloads\Portrait Professional Max 6.3.5 Retai\Crack\PortraitProfessional.exe
.
===================================
.
1491 Byte(s) - C:\Ad-Report-SCAN[1].log
21523 Byte(s) - C:\Ad-Report-SCAN[2].log
.
379 File(s) - C:\Users\BELLIA~1\AppData\Local\Temp
51 File(s) - C:\Windows\Temp
114 File(s) - C:\Windows\Prefetch
.
4 File(s) - C:\Ad-Remover\BACKUP
0 File(s) - C:\Ad-Remover\QUARANTINE
.
End at: 17:42:14 | 2010-02-25 - SCAN[2]
.
============== E.O.F ==============
.
fabul
Messages postés
35096
Date d'inscription
dimanche 18 janvier 2009
Statut
Modérateur
Dernière intervention
30 mars 2023
4 835
26 févr. 2010 à 00:00
26 févr. 2010 à 00:00
Fait la suppression.
meli750
Messages postés
165
Date d'inscription
lundi 26 novembre 2007
Statut
Membre
Dernière intervention
16 novembre 2011
32
4 mars 2010 à 08:00
4 mars 2010 à 08:00
cest fait!
fabul
Messages postés
35096
Date d'inscription
dimanche 18 janvier 2009
Statut
Modérateur
Dernière intervention
30 mars 2023
4 835
4 mars 2010 à 08:15
4 mars 2010 à 08:15
Si tu fait un scan Reanimator avec Reboot plutot que Make Scan now,qu'est ce qu'il détecte?
Et avec Gmer,as tu eu des lignes rouges?
Et avec Gmer,as tu eu des lignes rouges?
meli750
Messages postés
165
Date d'inscription
lundi 26 novembre 2007
Statut
Membre
Dernière intervention
16 novembre 2011
32
31 mars 2010 à 12:49
31 mars 2010 à 12:49
jai fait le scan et il men trouve beaucoup..comment te les poster ici?
fabul
Messages postés
35096
Date d'inscription
dimanche 18 janvier 2009
Statut
Modérateur
Dernière intervention
30 mars 2023
4 835
Modifié par fabul le 31/03/2010 à 12:59
Modifié par fabul le 31/03/2010 à 12:59
Dans les fichiers.txt il y a des infos,copie le contenu.
meli750
Messages postés
165
Date d'inscription
lundi 26 novembre 2007
Statut
Membre
Dernière intervention
16 novembre 2011
32
31 mars 2010 à 13:07
31 mars 2010 à 13:07
fichier txt je les trouve ou?
fabul
Messages postés
35096
Date d'inscription
dimanche 18 janvier 2009
Statut
Modérateur
Dernière intervention
30 mars 2023
4 835
31 mars 2010 à 13:11
31 mars 2010 à 13:11
Dossier:Documents / ou tu les a enregistrés.
meli750
Messages postés
165
Date d'inscription
lundi 26 novembre 2007
Statut
Membre
Dernière intervention
16 novembre 2011
32
31 mars 2010 à 13:12
31 mars 2010 à 13:12
Je les trouver mais il est vraiment vraiment long car il men a trouver 96!!!!Es ce normal quil soit ausis long???
Et gmer impossible de faire le scan il fait buguer mon ordinateur
Et gmer impossible de faire le scan il fait buguer mon ordinateur
meli750
Messages postés
165
Date d'inscription
lundi 26 novembre 2007
Statut
Membre
Dernière intervention
16 novembre 2011
32
31 mars 2010 à 13:16
31 mars 2010 à 13:16
Javais effacer les virus et jai refait le scan et il me dit que mon ordi est clean!!!!Mais je la trouve tres lente et jai beaucoup de fenetre po up qui souvre...et parfois jentend de la musique des sons et jai pas de fenetre internet douverte
fabul
Messages postés
35096
Date d'inscription
dimanche 18 janvier 2009
Statut
Modérateur
Dernière intervention
30 mars 2023
4 835
Modifié par fabul le 31/03/2010 à 13:19
Modifié par fabul le 31/03/2010 à 13:19
As tu fait une analyse avec Malwarebytes récemment?
Si non,fait en une,
96 c'est beaucoup,sinon,tu peux utiliser "Detailled system report" dans la deuxième fenètre de Reanimator,utiliser l'option Reboot et poster le raport sur Cijoint.fr,Coche la case "Rendre public" et donne moi le lien en bleu
.
Si non,fait en une,
96 c'est beaucoup,sinon,tu peux utiliser "Detailled system report" dans la deuxième fenètre de Reanimator,utiliser l'option Reboot et poster le raport sur Cijoint.fr,Coche la case "Rendre public" et donne moi le lien en bleu
.
meli750
Messages postés
165
Date d'inscription
lundi 26 novembre 2007
Statut
Membre
Dernière intervention
16 novembre 2011
32
31 mars 2010 à 13:26
31 mars 2010 à 13:26
http://www.cijoint.fr/cjlink.php?file=cj201003/cijBHIjCYO.txt
fabul
Messages postés
35096
Date d'inscription
dimanche 18 janvier 2009
Statut
Modérateur
Dernière intervention
30 mars 2023
4 835
Modifié par fabul le 31/03/2010 à 13:54
Modifié par fabul le 31/03/2010 à 13:54
Ca a l'air assez grave,Rend toi pour télécharger ce fichier :http://www.cijoint.fr/cjlink.php?file=cj201003/cijxa1Ny7i.txt
Renomme le fichier.txt avec une extension .RNR
Démarre Reanimator et clic sur l'onglet rnr
Il faudra redémarrer pour procéder,après,il devrait en détecter moins,
Essaie de voir si il n'en détecte plus trop.
Renomme le fichier.txt avec une extension .RNR
Démarre Reanimator et clic sur l'onglet rnr
Il faudra redémarrer pour procéder,après,il devrait en détecter moins,
Essaie de voir si il n'en détecte plus trop.
meli750
Messages postés
165
Date d'inscription
lundi 26 novembre 2007
Statut
Membre
Dernière intervention
16 novembre 2011
32
31 mars 2010 à 14:06
31 mars 2010 à 14:06
je ne comprend pas comment je fais pour le telecharger^
meli750
Messages postés
165
Date d'inscription
lundi 26 novembre 2007
Statut
Membre
Dernière intervention
16 novembre 2011
32
31 mars 2010 à 14:09
31 mars 2010 à 14:09
et sur reanimator je ne voit pas longlet rnr
25 févr. 2010 à 22:26