Sujet Précédent Sujet Suivant

Je n'arrive pas à supprimer total xp security

Fermé
smeriaux Messages postés 5 Date d'inscription mercredi 21 avril 2010 Statut Membre Dernière intervention 22 avril 2010 - 21 avril 2010 à 23:04
dédétraqué Messages postés 4384 Date d'inscription vendredi 5 septembre 2008 Statut Contributeur sécurité Dernière intervention 4 février 2013 - 23 avril 2010 à 02:20
Bonsoir j'ai un gros soucis j'ai total xp security qui vient de s'installer tout seul et je n'arrive pas à le supprimer!! quelqu'un peut il m'aider rn sachant que je ne suis pas une pro!!! à l'aide merci!!

A voir également:

6 réponses

Réponse 1 / 6
Utilisateur anonyme
21 avril 2010 à 23:05
demmarrer panneau de configuration ajout/suppression de programme et tu regarde dans la liste et tu le supprime.
0
Réponse 2 / 6
dédétraqué Messages postés 4384 Date d'inscription vendredi 5 septembre 2008 Statut Contributeur sécurité Dernière intervention 4 février 2013 286
21 avril 2010 à 23:07
Salut smeriaux, bienvenu sur CCM


On va vérifier cela, télécharge RSIT (de random/random) sur le bureau ici :
http://images.malwareremoval.com/random/RSIT.exe

- Double clique sur RSIT.exe qui est sur le bureau
- Clique sur Continue dans la fenêtre
- RSIT téléchargera HijackThis si il n'est pas présent où détecté, alors il faudra accepter la licence
- Poste le contenue des deux rapports, log.txt et info.txt(réduit dans la barre des tâches) à la fin de l'analyse

Utilise cjoint.com pour poster en lien tes rapports :
https://www.cjoint.com/

- Clique sur Parcourir pour aller chercher le rapport C:\rsit\log.txt
- Clique sur Ouvrir ensuite sur Créer le lien Cjoint

- Fais un copier/coller du lien qui est devant Le lien a été créé: dans ta prochaine réponse.

Et fais la même chose avec l'autre rapport C:\rsit\info.txt


@++ :)
0
smeriaux
21 avril 2010 à 23:22
voici les copiers colles des liens
https://www.cjoint.com/?evxvWFrw24
https://www.cjoint.com/?evxuQbmkOm

j'espère que j'ai pas fais d'erreurs!!!
0
Réponse 3 / 6
dédétraqué Messages postés 4384 Date d'inscription vendredi 5 septembre 2008 Statut Contributeur sécurité Dernière intervention 4 février 2013 286
21 avril 2010 à 23:26
Salut smeriaux


Télécharge combofix.exe (de sUBs) sur le bureau :

http://download.bleepingcomputer.com/sUBs/ComboFix.exe
http://www.geekstogo.com/forum/files/file/197-combofix-by-subs/

Important Désactive ton Antivirus, antispyware et Pare feu avant le scan avec Combofix :
https://forum.pcastuces.com/default.asp
https://www.bleepingcomputer.com/forums/t/114351/how-to-temporarily-disable-your-anti-virus-firewall-and-anti-malware-programs/

==> Sauvegarde ton travail et ferme toutes les fenêtres actives, il peut y avoir un redémarrage du PC. Ne lance aucun programme tant que Combofix n'est pas fini. <==

Double clique sur combofix.exe, clique sur OUI et valide par Entrée

Lorsque le scan sera complété, un rapport apparaîtra. Copie/colle ce rapport dans ta prochaine réponse.

NOTE : Le rapport se trouve également ici : C:\Combofix.txt

Combofix est détecté par certains antivirus comme une infection, ne pas en tenir compte, il s'agit d'un faux positif, continue la procédure


@++ :)
0
smeriaux
21 avril 2010 à 23:38
je n'arrive pas à telecharger combofix! j'ai un message d'erreur qui me dit vous ne pouvez pas renommer combofix en combofix 1!! que dois je faire???
0
Réponse 4 / 6
dédétraqué Messages postés 4384 Date d'inscription vendredi 5 septembre 2008 Statut Contributeur sécurité Dernière intervention 4 février 2013 286
21 avril 2010 à 23:47
Salut smeriaux


Faire un clic droit sur ce lien :

http://download.bleepingcomputer.com/sUBs/ComboFix.exe

Pour Internet Explorer

- Choisi Enregistrer la cible sous ...

Pour Firefox

- Choisi Enregistrer la cible du lien sous...


- Choisi le bureau comme lieu d'enregistrement

- Donne lui ce nom bibite.exe clique sur Enregistrer

Continu le reste de la procédure


@++ :)
0
smeriaux Messages postés 5 Date d'inscription mercredi 21 avril 2010 Statut Membre Dernière intervention 22 avril 2010
22 avril 2010 à 00:23
je n'arive pas à envoyer le rapport???
0
smeriaux Messages postés 5 Date d'inscription mercredi 21 avril 2010 Statut Membre Dernière intervention 22 avril 2010
22 avril 2010 à 00:27
ComboFix 10-04-21.01 - Tanguy 21/04/2010 23:51:10.1.2 - x86
Microsoft Windows XP Professionnel 5.1.2600.3.1252.33.1036.18.2037.1074 [GMT 2:00]
Lancé depuis: c:\documents and settings\Tanguy\Bureau\bibite.exe
AV: avast! Antivirus *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\docume~1\Tanguy\LOCALS~1\Temp\jna7935646147720541048.tmp
c:\documents and settings\Tanguy\Application Data\.#
c:\documents and settings\Tanguy\Application Data\avdrn.dat
c:\documents and settings\Tanguy\Application Data\inst.exe
c:\documents and settings\Tanguy\Local Settings\Application Data\ave.exe
c:\documents and settings\Tanguy\Local Settings\Temp\jna7935646147720541048.tmp
c:\documents and settings\Tanguy\oashdihasidhasuidhiasdhiashdiuasdhasd
c:\progra~1\MYWEBS~1\bar\1.bin\mwsoemon.exe
c:\program files\FunWebProducts
c:\program files\FunWebProducts\Shared\Cache\CursorManiaBtn.html
c:\program files\FunWebProducts\Shared\Cache\SmileyCentralBtn.html
c:\program files\MyWebSearch
c:\program files\MyWebSearch\bar\1.bin\CHROME.MANIFEST
c:\program files\MyWebSearch\bar\1.bin\chrome\M3FFXTBR.JAR
c:\program files\MyWebSearch\bar\1.bin\F3BKGERR.JPG
c:\program files\MyWebSearch\bar\1.bin\F3CJpeg.dll
c:\program files\MyWebSearch\bar\1.bin\F3DTactl.dll
c:\program files\MyWebSearch\bar\1.bin\F3HISTSW.DLL
c:\program files\MyWebSearch\bar\1.bin\F3HKSTUB.DLL
c:\program files\MyWebSearch\bar\1.bin\F3HTmlmu.dll
c:\program files\MyWebSearch\bar\1.bin\F3HTTPCT.DLL
c:\program files\MyWebSearch\bar\1.bin\F3IMSTUB.DLL
c:\program files\MyWebSearch\bar\1.bin\F3POPSWT.DLL
c:\program files\MyWebSearch\bar\1.bin\F3PSSAVR.SCR
c:\program files\MyWebSearch\bar\1.bin\F3REGHK.DLL
c:\program files\MyWebSearch\bar\1.bin\F3REPROX.DLL
c:\program files\MyWebSearch\bar\1.bin\F3RESTUB.DLL
c:\program files\MyWebSearch\bar\1.bin\F3SCHMON.EXE
c:\program files\MyWebSearch\bar\1.bin\F3SCrctr.dll
c:\program files\MyWebSearch\bar\1.bin\F3SPACER.WMV
c:\program files\MyWebSearch\bar\1.bin\F3WALLPP.DAT
c:\program files\MyWebSearch\bar\1.bin\F3WPHOOK.DLL
c:\program files\MyWebSearch\bar\1.bin\FWPBUDDY.PNG
c:\program files\MyWebSearch\bar\1.bin\INSTALL.RDF
c:\program files\MyWebSearch\bar\1.bin\M3AUXSTB.DLL
c:\program files\MyWebSearch\bar\1.bin\M3DLGHK.DLL
c:\program files\MyWebSearch\bar\1.bin\M3HIGHIN.EXE
c:\program files\MyWebSearch\bar\1.bin\M3HTml.dll
c:\program files\MyWebSearch\bar\1.bin\M3IDLE.DLL
c:\program files\MyWebSearch\bar\1.bin\M3IMPIPE.EXE
c:\program files\MyWebSearch\bar\1.bin\M3MEDINT.EXE
c:\program files\MyWebSearch\bar\1.bin\M3MSg.dll
c:\program files\MyWebSearch\bar\1.bin\M3OUTLCN.DLL
c:\program files\MyWebSearch\bar\1.bin\M3PLUGIN.DLL
c:\program files\MyWebSearch\bar\1.bin\M3SKIN.DLL
c:\program files\MyWebSearch\bar\1.bin\M3SKPLAY.EXE
c:\program files\MyWebSearch\bar\1.bin\M3SLSRCH.EXE
c:\program files\MyWebSearch\bar\1.bin\M3SRCHMN.EXE
c:\program files\MyWebSearch\bar\1.bin\MWSBAR.DLL
c:\program files\MyWebSearch\bar\1.bin\MWSMLBTN.DLL
c:\program files\MyWebSearch\bar\1.bin\MWSOEMON.EXE
c:\program files\MyWebSearch\bar\1.bin\MWSOEPLG.DLL
c:\program files\MyWebSearch\bar\1.bin\MWSOESTB.DLL
c:\program files\MyWebSearch\bar\1.bin\MWSSRCAS.DLL
c:\program files\MyWebSearch\bar\1.bin\MWSSVC.EXE
c:\program files\MyWebSearch\bar\1.bin\MWSUABTN.DLL
c:\program files\MyWebSearch\bar\1.bin\NPMYWEBS.DLL
c:\program files\MyWebSearch\bar\Avatar\COMMON.F3S
c:\program files\MyWebSearch\bar\Cache\206FD01F
c:\program files\MyWebSearch\bar\Cache\206FD4D2
c:\program files\MyWebSearch\bar\Cache\206FD61A.bin
c:\program files\MyWebSearch\bar\Cache\206FD7DF.bin
c:\program files\MyWebSearch\bar\Cache\206FD928.bin
c:\program files\MyWebSearch\bar\Cache\206FDA60.bin
c:\program files\MyWebSearch\bar\Cache\files.ini
c:\program files\MyWebSearch\bar\Game\CHECKERS.F3S
c:\program files\MyWebSearch\bar\Game\CHESS.F3S
c:\program files\MyWebSearch\bar\Game\REVERSI.F3S
c:\program files\MyWebSearch\bar\History\search3
c:\program files\MyWebSearch\bar\icons\CM.ICO
c:\program files\MyWebSearch\bar\icons\MFC.ICO
c:\program files\MyWebSearch\bar\icons\PSS.ICO
c:\program files\MyWebSearch\bar\icons\SMILEY.ICO
c:\program files\MyWebSearch\bar\icons\WB.ICO
c:\program files\MyWebSearch\bar\icons\ZWINKY.ICO
c:\program files\MyWebSearch\bar\Message\COMMON.F3S
c:\program files\MyWebSearch\bar\Message\COMMON\8_step1.gif
c:\program files\MyWebSearch\bar\Message\COMMON\autoup.gif
c:\program files\MyWebSearch\bar\Message\COMMON\autoup.htm
c:\program files\MyWebSearch\bar\Message\COMMON\bkez.jpg
c:\program files\MyWebSearch\bar\Message\COMMON\bkgr.jpg
c:\program files\MyWebSearch\bar\Message\COMMON\bkgs.jpg
c:\program files\MyWebSearch\bar\Message\COMMON\bklf.jpg
c:\program files\MyWebSearch\bar\Message\COMMON\bkrg.jpg
c:\program files\MyWebSearch\bar\Message\COMMON\bkwebfet.jpg
c:\program files\MyWebSearch\bar\Message\COMMON\bkzc.jpg
c:\program files\MyWebSearch\bar\Message\COMMON\bkzl.jpg
c:\program files\MyWebSearch\bar\Message\COMMON\bkzn.jpg
c:\program files\MyWebSearch\bar\Message\COMMON\bkzq.jpg
c:\program files\MyWebSearch\bar\Message\COMMON\bkzr.jpg
c:\program files\MyWebSearch\bar\Message\COMMON\bkzu.jpg
c:\program files\MyWebSearch\bar\Message\COMMON\bkzv.jpg
c:\program files\MyWebSearch\bar\Message\COMMON\bkzw.jpg
c:\program files\MyWebSearch\bar\Message\COMMON\bkzwinky.jpg
c:\program files\MyWebSearch\bar\Message\COMMON\blubtn2d.png
c:\program files\MyWebSearch\bar\Message\COMMON\blubtn2r.png
c:\program files\MyWebSearch\bar\Message\COMMON\blubtn3d.png
c:\program files\MyWebSearch\bar\Message\COMMON\blubtn3r.png
c:\program files\MyWebSearch\bar\Message\COMMON\center.htm
c:\program files\MyWebSearch\bar\Message\COMMON\index.htm
c:\program files\MyWebSearch\bar\Message\COMMON\mid_dots.gif
c:\program files\MyWebSearch\bar\Message\COMMON\protect.htm
c:\program files\MyWebSearch\bar\Message\COMMON\rebut4.htm
c:\program files\MyWebSearch\bar\Message\COMMON\rebut4b.htm
c:\program files\MyWebSearch\bar\Message\COMMON\rebut4c.htm
c:\program files\MyWebSearch\bar\Message\COMMON\shield.png
c:\program files\MyWebSearch\bar\Message\COMMON\shocked.gif
c:\program files\MyWebSearch\bar\Message\COMMON\stop.gif
c:\program files\MyWebSearch\bar\Message\COMMON\systray.htm
c:\program files\MyWebSearch\bar\Message\COMMON\systrayp.htm
c:\program files\MyWebSearch\bar\Message\COMMON\tp_grad.gif
c:\program files\MyWebSearch\bar\Message\COMMON\warn.gif
c:\program files\MyWebSearch\bar\Notifier\COMMON.F3S
c:\program files\MyWebSearch\bar\Notifier\DOG.F3S
c:\program files\MyWebSearch\bar\Notifier\FISH.F3S
c:\program files\MyWebSearch\bar\Notifier\KUNGFU.F3S
c:\program files\MyWebSearch\bar\Notifier\LIFEGARD.F3S
c:\program files\MyWebSearch\bar\Notifier\MAID.F3S
c:\program files\MyWebSearch\bar\Notifier\MAILBOX.F3S
c:\program files\MyWebSearch\bar\Notifier\OPERA.F3S
c:\program files\MyWebSearch\bar\Notifier\ROBOT.F3S
c:\program files\MyWebSearch\bar\Notifier\SEDUCT.F3S
c:\program files\MyWebSearch\bar\Notifier\SURFER.F3S
c:\program files\MyWebSearch\bar\Settings\prevcfg2.htm
c:\program files\MyWebSearch\bar\Settings\s_pid.dat
c:\program files\MyWebSearch\bar\Settings\setting2.htm
c:\program files\MyWebSearch\bar\Settings\settings.dat
c:\windows\Downloaded Program Files\f3initialsetup1.0.1.1.inf
c:\windows\system32\config\systemprofile\oashdihasidhasuidhiasdhiashdiuasdhasd
c:\windows\system32\config\systemprofile\wuaucldt.exe
c:\windows\system32\f3PSSavr.scr
c:\windows\system32\wuaucldt.exe

c:\windows\system32\drivers\cdrom.sys était absent
Copie restaurée à partir de - c:\system volume information\_restore{7F06EDF5-C529-4657-A0A2-A39C96FDE661}\RP380\A0045734.sys

.
((((((((((((((((((((((((((((((((((((((( Pilotes/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_MYWEBSEARCHSERVICE
-------\Service_MyWebSearchService


((((((((((((((((((((((((((((( Fichiers créés du 2010-03-21 au 2010-04-21 ))))))))))))))))))))))))))))))))))))
.

2010-04-21 21:56 . 2009-12-22 18:39 62592 -c--a-w- c:\windows\system32\dllcache\cdrom.sys
2010-04-21 21:56 . 2009-12-22 18:39 62592 ----a-w- c:\windows\system32\drivers\cdrom.sys
2010-04-21 21:11 . 2010-04-21 21:18 -------- d-----w- c:\program files\trend micro
2010-04-21 21:11 . 2010-04-21 21:11 -------- d-----w- C:\rsit
2010-04-21 20:35 . 2010-04-21 20:35 -------- d-----w- c:\program files\Enigma Software Group
2010-04-21 20:34 . 2010-04-21 20:37 -------- d-----w- c:\windows\61D3AAE1D5214CD7939B37813DE8F955.TMP
2010-04-21 20:15 . 2010-04-21 20:15 -------- d-----w- c:\documents and settings\All Users\Application Data\Alwil Software
2010-04-21 20:09 . 2010-04-21 20:09 -------- d-sh--w- c:\windows\system32\config\systemprofile\UserData
2010-04-21 20:09 . 2010-04-21 20:09 -------- d-sh--w- c:\windows\system32\config\systemprofile\PrivacIE
2010-04-21 20:09 . 2010-04-21 20:09 -------- d-sh--w- c:\windows\system32\config\systemprofile\IECompatCache
2010-04-21 20:09 . 2010-04-21 20:09 -------- d-----w- c:\documents and settings\Tanguy\Local Settings\Application Data\avG
2010-04-21 20:09 . 2010-04-21 20:09 -------- d-----w- c:\documents and settings\All Users\Application Data\avG
2010-04-21 20:08 . 2010-04-21 20:08 -------- d-sh--w- c:\windows\system32\config\systemprofile\IETldCache
2010-04-15 17:19 . 2010-04-15 17:19 -------- d-----w- c:\documents and settings\Tanguy\Application Data\FCTB000061101
2010-04-15 17:19 . 2010-04-15 17:19 -------- d-----w- c:\program files\Is Cool
2010-04-08 17:14 . 2010-04-08 17:15 -------- d-----w- c:\documents and settings\Tanguy\Application Data\FOG Downloader
2010-04-01 12:12 . 2010-04-01 12:12 -------- d-----w- c:\documents and settings\Tanguy\Application Data\tonemaker
2010-04-01 12:12 . 2010-04-01 12:12 -------- d-----w- c:\program files\OfferBoxSearch
2010-04-01 12:12 . 2010-04-01 12:12 -------- d-----w- c:\program files\ToneMaker
2010-04-01 12:11 . 2010-04-11 17:12 -------- d-----w- c:\documents and settings\Tanguy\Application Data\OfferBox
2010-03-31 01:16 . 2010-03-31 01:16 164192 ----a-w- c:\documents and settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
2010-03-29 16:02 . 2010-03-29 16:03 -------- d-----w- c:\documents and settings\All Users\Application Data\SweetIM
2010-03-29 16:02 . 2010-03-29 16:02 -------- d-----w- c:\program files\SweetIM
2010-03-23 08:57 . 2010-03-23 08:57 -------- d-----w- c:\program files\SpiderMessenger

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-04-21 22:02 . 2009-04-08 20:31 -------- d-----w- c:\program files\Wanadoo
2010-04-21 22:02 . 2010-03-07 16:57 -------- d-----w- c:\documents and settings\Tanguy\Application Data\skypePM
2010-04-21 22:02 . 2010-02-01 17:27 -------- d-----w- c:\documents and settings\Tanguy\Application Data\LimeWire
2010-04-21 22:01 . 2010-03-07 16:55 -------- d-----w- c:\documents and settings\Tanguy\Application Data\Skype
2010-04-21 20:34 . 2010-01-05 13:46 -------- d-----w- c:\program files\Fichiers communs\Wise Installation Wizard
2010-04-21 20:18 . 2009-08-10 16:45 -------- d-----w- c:\program files\Alwil Software
2010-04-21 20:06 . 2010-04-21 20:06 12 ----a-w- c:\windows\system32\config\systemprofile\Application Data\kcmdte.dat
2010-04-21 15:54 . 2010-04-21 15:54 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.166\itstv.exe
2010-04-19 23:53 . 2010-04-19 23:53 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.165\itstv.exe
2010-04-19 15:53 . 2010-04-19 15:53 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.164\itstv.exe
2010-04-18 15:53 . 2010-04-18 15:53 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.163\itstv.exe
2010-04-16 23:53 . 2010-04-16 23:53 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.162\itstv.exe
2010-04-15 23:53 . 2010-04-15 23:53 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.161\itstv.exe
2010-04-15 17:19 . 2010-04-15 17:19 61812 ----a-w- c:\documents and settings\Tanguy\Application Data\FCTB000061101\Toolbar\Uninst.exe
2010-04-15 17:19 . 2010-04-15 17:19 242688 ----a-w- c:\documents and settings\Tanguy\Application Data\FCTB000061101\Toolbar\Helper.dll
2010-04-15 17:19 . 2010-04-15 17:19 1529856 ----a-w- c:\documents and settings\Tanguy\Application Data\FCTB000061101\Toolbar\Toolbar.dll
2010-04-15 05:23 . 2010-04-15 05:23 957023 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\eorezo\10.3.0.0\webinstall_10_3.exe
2010-04-15 01:04 . 2009-04-03 20:15 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help
2010-04-15 00:11 . 2010-04-15 00:11 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.160\itstv.exe
2010-04-14 16:47 . 2009-08-10 16:45 38848 ----a-w- c:\windows\system32\avastSS.scr
2010-04-14 16:47 . 2009-08-10 16:45 153184 ----a-w- c:\windows\system32\aswBoot.exe
2010-04-14 16:35 . 2009-08-10 16:45 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2010-04-14 16:35 . 2009-08-10 16:45 162768 ----a-w- c:\windows\system32\drivers\aswSP.sys
2010-04-14 16:31 . 2009-08-10 16:45 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2010-04-14 16:31 . 2009-08-10 16:45 100432 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2010-04-14 16:31 . 2009-08-10 16:45 94800 ----a-w- c:\windows\system32\drivers\aswmon.sys
2010-04-14 16:31 . 2009-08-10 16:45 19024 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-04-14 16:30 . 2009-08-10 16:45 28880 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2010-04-13 22:11 . 2010-04-13 22:11 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.159\itstv.exe
2010-04-13 04:11 . 2010-04-13 04:11 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.158\itstv.exe
2010-04-11 22:11 . 2010-04-11 22:11 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.157\itstv.exe
2010-04-10 22:11 . 2010-04-10 22:11 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.156\itstv.exe
2010-04-09 22:10 . 2010-04-09 22:10 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.155\itstv.exe
2010-04-09 02:10 . 2010-04-09 02:10 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.154\itstv.exe
2010-04-08 02:10 . 2010-04-08 02:10 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.153\itstv.exe
2010-04-07 00:10 . 2010-04-07 00:10 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.152\itstv.exe
2010-04-06 16:51 . 2010-04-15 17:19 264704 ----a-w- c:\documents and settings\Tanguy\Application Data\FCTB000061101\Toolbar\statplugin.dll
2010-04-06 16:51 . 2010-04-15 17:19 395264 ----a-w- c:\documents and settings\Tanguy\Application Data\FCTB000061101\Toolbar\emailchecker_plugin.dll
2010-04-06 16:51 . 2010-04-15 17:19 276992 ----a-w- c:\documents and settings\Tanguy\Application Data\FCTB000061101\Toolbar\weatherplugin.dll
2010-04-06 16:51 . 2010-04-15 17:19 399360 ----a-w- c:\documents and settings\Tanguy\Application Data\FCTB000061101\Toolbar\RadioPlugin.dll
2010-04-06 16:51 . 2010-04-15 17:19 290304 ----a-w- c:\documents and settings\Tanguy\Application Data\FCTB000061101\Toolbar\msgboxplugin.dll
2010-04-06 16:50 . 2010-04-15 17:19 371712 ----a-w- c:\documents and settings\Tanguy\Application Data\FCTB000061101\Toolbar\RSSReader_plugin.dll
2010-04-06 16:50 . 2010-04-15 17:19 207360 ----a-w- c:\documents and settings\Tanguy\Application Data\FCTB000061101\Toolbar\SearchComponent.dll
2010-04-06 16:50 . 2010-04-15 17:19 272384 ----a-w- c:\documents and settings\Tanguy\Application Data\FCTB000061101\Toolbar\bookmarksplugin.dll
2010-04-06 10:10 . 2010-04-06 10:10 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.151\itstv.exe
2010-04-05 01:21 . 2010-04-05 01:21 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.150\itstv.exe
2010-04-03 23:21 . 2010-04-03 23:21 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.149\itstv.exe
2010-04-02 23:21 . 2010-04-02 23:21 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.148\itstv.exe
2010-04-02 03:20 . 2010-04-02 03:20 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.147\itstv.exe
2010-04-01 07:20 . 2010-04-01 07:20 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.146\itstv.exe
2010-03-31 01:19 . 2008-04-25 12:46 95156 ----a-w- c:\windows\system32\perfc00C.dat
2010-03-31 01:19 . 2008-04-25 12:46 537134 ----a-w- c:\windows\system32\perfh00C.dat
2010-03-30 23:30 . 2010-03-30 23:30 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.145\itstv.exe
2010-03-29 23:30 . 2010-03-29 23:30 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.144\itstv.exe
2010-03-29 01:30 . 2010-03-29 01:30 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.143\itstv.exe
2010-03-28 01:29 . 2010-03-28 01:29 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.142\itstv.exe
2010-03-27 07:29 . 2010-03-27 07:29 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.141\itstv.exe
2010-03-26 06:39 . 2009-05-22 13:48 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2010-03-25 23:29 . 2010-03-25 23:29 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.140\itstv.exe
2010-03-25 02:57 . 2010-03-25 02:57 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.139\itstv.exe
2010-03-24 18:17 . 2010-03-24 08:04 952768 ----a-w- c:\documents and settings\All Users\Application Data\Adobe\Reader\9.3\ARM\399\AdobeARM.exe
2010-03-24 18:17 . 2010-03-24 08:04 70584 ----a-w- c:\documents and settings\All Users\Application Data\Adobe\Reader\9.3\ARM\399\AdobeExtractFiles.dll
2010-03-24 18:17 . 2010-03-24 08:04 326056 ----a-w- c:\documents and settings\All Users\Application Data\Adobe\Reader\9.3\ARM\399\ReaderUpdater.exe
2010-03-24 18:17 . 2010-03-24 08:04 326056 ----a-w- c:\documents and settings\All Users\Application Data\Adobe\Reader\9.3\ARM\399\AcrobatUpdater.exe
2010-03-24 00:57 . 2010-03-24 00:57 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.138\itstv.exe
2010-03-23 08:57 . 2010-03-23 08:57 18076824 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\spidermessenger\1.0.0.9\SpiderMessenger_fr_s.exe
2010-03-23 04:56 . 2010-03-23 04:56 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.137\itstv.exe
2010-03-22 17:32 . 2009-11-05 10:42 -------- d-----w- c:\documents and settings\Tanguy\Application Data\vlc
2010-03-22 00:56 . 2010-03-22 00:56 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.136\itstv.exe
2010-03-21 00:56 . 2010-03-21 00:56 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.135\itstv.exe
2010-03-20 00:56 . 2010-03-20 00:56 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.134\itstv.exe
2010-03-19 17:53 . 2010-03-19 17:53 -------- d-----w- c:\documents and settings\Tanguy\Application Data\AzuazGames
2010-03-19 14:03 . 2010-03-01 16:31 -------- d-----w- c:\program files\Loch Ness
2010-03-19 00:55 . 2010-03-19 00:55 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.133\itstv.exe
2010-03-18 13:50 . 2010-03-17 21:44 -------- d-----w- c:\documents and settings\Tanguy\Application Data\Merscom
2010-03-18 13:50 . 2010-03-17 21:44 -------- d-----w- c:\documents and settings\All Users\Application Data\Merscom
2010-03-18 13:37 . 2010-03-18 13:36 -------- d-----w- c:\program files\Time Riddles - The Mansion
2010-03-18 02:55 . 2010-03-18 02:55 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.132\itstv.exe
2010-03-17 21:02 . 2009-05-22 13:34 -------- d-----w- c:\program files\bfgclient
2010-03-17 21:02 . 2010-03-17 21:00 3085800 ----a-w- c:\documents and settings\All Users\Application Data\BigFishGamesCache\Upgrade\Unpack\bfgsetup_s5_l4.exe
2010-03-17 21:00 . 2009-05-22 13:33 -------- d-----w- c:\documents and settings\All Users\Application Data\BigFishGamesCache
2010-03-17 20:47 . 2010-03-17 20:37 68608 ----a-w- c:\program files\wisegal_s5_l4_gF5285T1L4_d827148187.exe
2010-03-17 07:51 . 2010-03-17 07:51 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.131\itstv.exe
2010-03-16 02:25 . 2010-03-16 02:25 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.130\itstv.exe
2010-03-15 00:24 . 2010-03-15 00:24 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.129\itstv.exe
2010-03-14 02:24 . 2010-03-14 02:24 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.128\itstv.exe
2010-03-13 00:24 . 2010-03-13 00:24 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.127\itstv.exe
2010-03-12 00:24 . 2010-03-12 00:24 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.126\itstv.exe
2010-03-11 08:24 . 2010-03-11 08:24 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.125\itstv.exe
2010-03-10 15:12 . 2010-03-10 15:12 -------- d-----w- c:\documents and settings\Tanguy\Application Data\LegacyInteractive
2010-03-10 13:17 . 2010-03-10 13:17 -------- d-----w- c:\documents and settings\Tanguy\Application Data\Boomzap
2010-03-10 06:16 . 2008-04-25 12:46 420352 ----a-w- c:\windows\system32\vbscript.dll
2010-03-09 23:19 . 2010-03-09 23:19 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.124\itstv.exe
2010-03-09 21:46 . 2010-03-09 21:46 -------- d-----w- c:\documents and settings\Tanguy\Application Data\Magic Academy 2
2010-03-09 21:27 . 2010-03-09 20:35 -------- d-----w- c:\documents and settings\All Users\Application Data\FarmFrenzy3_America
2010-03-09 07:19 . 2010-03-09 07:19 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.123\itstv.exe
2010-03-08 14:54 . 2010-03-08 14:54 -------- d-----w- c:\documents and settings\Tanguy\Application Data\ElementalsTheMagicKey
2010-03-08 05:19 . 2010-03-08 05:19 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.122\itstv.exe
2010-03-07 16:57 . 2010-03-07 16:57 56 ---ha-w- c:\windows\system32\ezsidmv.dat
2010-03-07 16:55 . 2010-03-07 16:55 -------- d-----w- c:\program files\Fichiers communs\Skype
.
0
smeriaux Messages postés 5 Date d'inscription mercredi 21 avril 2010 Statut Membre Dernière intervention 22 avril 2010
22 avril 2010 à 00:29
ComboFix 10-04-21.01 - Tanguy 21/04/2010 23:51:10.1.2 - x86
Microsoft Windows XP Professionnel 5.1.2600.3.1252.33.1036.18.2037.1074 [GMT 2:00]
Lancé depuis: c:\documents and settings\Tanguy\Bureau\bibite.exe
AV: avast! Antivirus *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\docume~1\Tanguy\LOCALS~1\Temp\jna7935646147720541048.tmp
c:\documents and settings\Tanguy\Application Data\.#
c:\documents and settings\Tanguy\Application Data\avdrn.dat
c:\documents and settings\Tanguy\Application Data\inst.exe
c:\documents and settings\Tanguy\Local Settings\Application Data\ave.exe
c:\documents and settings\Tanguy\Local Settings\Temp\jna7935646147720541048.tmp
c:\documents and settings\Tanguy\oashdihasidhasuidhiasdhiashdiuasdhasd
c:\progra~1\MYWEBS~1\bar\1.bin\mwsoemon.exe
c:\program files\FunWebProducts
c:\program files\FunWebProducts\Shared\Cache\CursorManiaBtn.html
c:\program files\FunWebProducts\Shared\Cache\SmileyCentralBtn.html
c:\program files\MyWebSearch
c:\program files\MyWebSearch\bar\1.bin\CHROME.MANIFEST
c:\program files\MyWebSearch\bar\1.bin\chrome\M3FFXTBR.JAR
c:\program files\MyWebSearch\bar\1.bin\F3BKGERR.JPG
c:\program files\MyWebSearch\bar\1.bin\F3CJpeg.dll
c:\program files\MyWebSearch\bar\1.bin\F3DTactl.dll
c:\program files\MyWebSearch\bar\1.bin\F3HISTSW.DLL
c:\program files\MyWebSearch\bar\1.bin\F3HKSTUB.DLL
c:\program files\MyWebSearch\bar\1.bin\F3HTmlmu.dll
c:\program files\MyWebSearch\bar\1.bin\F3HTTPCT.DLL
c:\program files\MyWebSearch\bar\1.bin\F3IMSTUB.DLL
c:\program files\MyWebSearch\bar\1.bin\F3POPSWT.DLL
c:\program files\MyWebSearch\bar\1.bin\F3PSSAVR.SCR
c:\program files\MyWebSearch\bar\1.bin\F3REGHK.DLL
c:\program files\MyWebSearch\bar\1.bin\F3REPROX.DLL
c:\program files\MyWebSearch\bar\1.bin\F3RESTUB.DLL
c:\program files\MyWebSearch\bar\1.bin\F3SCHMON.EXE
c:\program files\MyWebSearch\bar\1.bin\F3SCrctr.dll
c:\program files\MyWebSearch\bar\1.bin\F3SPACER.WMV
c:\program files\MyWebSearch\bar\1.bin\F3WALLPP.DAT
c:\program files\MyWebSearch\bar\1.bin\F3WPHOOK.DLL
c:\program files\MyWebSearch\bar\1.bin\FWPBUDDY.PNG
c:\program files\MyWebSearch\bar\1.bin\INSTALL.RDF
c:\program files\MyWebSearch\bar\1.bin\M3AUXSTB.DLL
c:\program files\MyWebSearch\bar\1.bin\M3DLGHK.DLL
c:\program files\MyWebSearch\bar\1.bin\M3HIGHIN.EXE
c:\program files\MyWebSearch\bar\1.bin\M3HTml.dll
c:\program files\MyWebSearch\bar\1.bin\M3IDLE.DLL
c:\program files\MyWebSearch\bar\1.bin\M3IMPIPE.EXE
c:\program files\MyWebSearch\bar\1.bin\M3MEDINT.EXE
c:\program files\MyWebSearch\bar\1.bin\M3MSg.dll
c:\program files\MyWebSearch\bar\1.bin\M3OUTLCN.DLL
c:\program files\MyWebSearch\bar\1.bin\M3PLUGIN.DLL
c:\program files\MyWebSearch\bar\1.bin\M3SKIN.DLL
c:\program files\MyWebSearch\bar\1.bin\M3SKPLAY.EXE
c:\program files\MyWebSearch\bar\1.bin\M3SLSRCH.EXE
c:\program files\MyWebSearch\bar\1.bin\M3SRCHMN.EXE
c:\program files\MyWebSearch\bar\1.bin\MWSBAR.DLL
c:\program files\MyWebSearch\bar\1.bin\MWSMLBTN.DLL
c:\program files\MyWebSearch\bar\1.bin\MWSOEMON.EXE
c:\program files\MyWebSearch\bar\1.bin\MWSOEPLG.DLL
c:\program files\MyWebSearch\bar\1.bin\MWSOESTB.DLL
c:\program files\MyWebSearch\bar\1.bin\MWSSRCAS.DLL
c:\program files\MyWebSearch\bar\1.bin\MWSSVC.EXE
c:\program files\MyWebSearch\bar\1.bin\MWSUABTN.DLL
c:\program files\MyWebSearch\bar\1.bin\NPMYWEBS.DLL
c:\program files\MyWebSearch\bar\Avatar\COMMON.F3S
c:\program files\MyWebSearch\bar\Cache\206FD01F
c:\program files\MyWebSearch\bar\Cache\206FD4D2
c:\program files\MyWebSearch\bar\Cache\206FD61A.bin
c:\program files\MyWebSearch\bar\Cache\206FD7DF.bin
c:\program files\MyWebSearch\bar\Cache\206FD928.bin
c:\program files\MyWebSearch\bar\Cache\206FDA60.bin
c:\program files\MyWebSearch\bar\Cache\files.ini
c:\program files\MyWebSearch\bar\Game\CHECKERS.F3S
c:\program files\MyWebSearch\bar\Game\CHESS.F3S
c:\program files\MyWebSearch\bar\Game\REVERSI.F3S
c:\program files\MyWebSearch\bar\History\search3
c:\program files\MyWebSearch\bar\icons\CM.ICO
c:\program files\MyWebSearch\bar\icons\MFC.ICO
c:\program files\MyWebSearch\bar\icons\PSS.ICO
c:\program files\MyWebSearch\bar\icons\SMILEY.ICO
c:\program files\MyWebSearch\bar\icons\WB.ICO
c:\program files\MyWebSearch\bar\icons\ZWINKY.ICO
c:\program files\MyWebSearch\bar\Message\COMMON.F3S
c:\program files\MyWebSearch\bar\Message\COMMON\8_step1.gif
c:\program files\MyWebSearch\bar\Message\COMMON\autoup.gif
c:\program files\MyWebSearch\bar\Message\COMMON\autoup.htm
c:\program files\MyWebSearch\bar\Message\COMMON\bkez.jpg
c:\program files\MyWebSearch\bar\Message\COMMON\bkgr.jpg
c:\program files\MyWebSearch\bar\Message\COMMON\bkgs.jpg
c:\program files\MyWebSearch\bar\Message\COMMON\bklf.jpg
c:\program files\MyWebSearch\bar\Message\COMMON\bkrg.jpg
c:\program files\MyWebSearch\bar\Message\COMMON\bkwebfet.jpg
c:\program files\MyWebSearch\bar\Message\COMMON\bkzc.jpg
c:\program files\MyWebSearch\bar\Message\COMMON\bkzl.jpg
c:\program files\MyWebSearch\bar\Message\COMMON\bkzn.jpg
c:\program files\MyWebSearch\bar\Message\COMMON\bkzq.jpg
c:\program files\MyWebSearch\bar\Message\COMMON\bkzr.jpg
c:\program files\MyWebSearch\bar\Message\COMMON\bkzu.jpg
c:\program files\MyWebSearch\bar\Message\COMMON\bkzv.jpg
c:\program files\MyWebSearch\bar\Message\COMMON\bkzw.jpg
c:\program files\MyWebSearch\bar\Message\COMMON\bkzwinky.jpg
c:\program files\MyWebSearch\bar\Message\COMMON\blubtn2d.png
c:\program files\MyWebSearch\bar\Message\COMMON\blubtn2r.png
c:\program files\MyWebSearch\bar\Message\COMMON\blubtn3d.png
c:\program files\MyWebSearch\bar\Message\COMMON\blubtn3r.png
c:\program files\MyWebSearch\bar\Message\COMMON\center.htm
c:\program files\MyWebSearch\bar\Message\COMMON\index.htm
c:\program files\MyWebSearch\bar\Message\COMMON\mid_dots.gif
c:\program files\MyWebSearch\bar\Message\COMMON\protect.htm
c:\program files\MyWebSearch\bar\Message\COMMON\rebut4.htm
c:\program files\MyWebSearch\bar\Message\COMMON\rebut4b.htm
c:\program files\MyWebSearch\bar\Message\COMMON\rebut4c.htm
c:\program files\MyWebSearch\bar\Message\COMMON\shield.png
c:\program files\MyWebSearch\bar\Message\COMMON\shocked.gif
c:\program files\MyWebSearch\bar\Message\COMMON\stop.gif
c:\program files\MyWebSearch\bar\Message\COMMON\systray.htm
c:\program files\MyWebSearch\bar\Message\COMMON\systrayp.htm
c:\program files\MyWebSearch\bar\Message\COMMON\tp_grad.gif
c:\program files\MyWebSearch\bar\Message\COMMON\warn.gif
c:\program files\MyWebSearch\bar\Notifier\COMMON.F3S
c:\program files\MyWebSearch\bar\Notifier\DOG.F3S
c:\program files\MyWebSearch\bar\Notifier\FISH.F3S
c:\program files\MyWebSearch\bar\Notifier\KUNGFU.F3S
c:\program files\MyWebSearch\bar\Notifier\LIFEGARD.F3S
c:\program files\MyWebSearch\bar\Notifier\MAID.F3S
c:\program files\MyWebSearch\bar\Notifier\MAILBOX.F3S
c:\program files\MyWebSearch\bar\Notifier\OPERA.F3S
c:\program files\MyWebSearch\bar\Notifier\ROBOT.F3S
c:\program files\MyWebSearch\bar\Notifier\SEDUCT.F3S
c:\program files\MyWebSearch\bar\Notifier\SURFER.F3S
c:\program files\MyWebSearch\bar\Settings\prevcfg2.htm
c:\program files\MyWebSearch\bar\Settings\s_pid.dat
c:\program files\MyWebSearch\bar\Settings\setting2.htm
c:\program files\MyWebSearch\bar\Settings\settings.dat
c:\windows\Downloaded Program Files\f3initialsetup1.0.1.1.inf
c:\windows\system32\config\systemprofile\oashdihasidhasuidhiasdhiashdiuasdhasd
c:\windows\system32\config\systemprofile\wuaucldt.exe
c:\windows\system32\f3PSSavr.scr
c:\windows\system32\wuaucldt.exe

c:\windows\system32\drivers\cdrom.sys était absent
Copie restaurée à partir de - c:\system volume information\_restore{7F06EDF5-C529-4657-A0A2-A39C96FDE661}\RP380\A0045734.sys
0
smeriaux Messages postés 5 Date d'inscription mercredi 21 avril 2010 Statut Membre Dernière intervention 22 avril 2010
22 avril 2010 à 00:31
((((((((((((((((((((((((((((((((((((((( Pilotes/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_MYWEBSEARCHSERVICE
-------\Service_MyWebSearchService


((((((((((((((((((((((((((((( Fichiers créés du 2010-03-21 au 2010-04-21 ))))))))))))))))))))))))))))))))))))
.

2010-04-21 21:56 . 2009-12-22 18:39 62592 -c--a-w- c:\windows\system32\dllcache\cdrom.sys
2010-04-21 21:56 . 2009-12-22 18:39 62592 ----a-w- c:\windows\system32\drivers\cdrom.sys
2010-04-21 21:11 . 2010-04-21 21:18 -------- d-----w- c:\program files\trend micro
2010-04-21 21:11 . 2010-04-21 21:11 -------- d-----w- C:\rsit
2010-04-21 20:35 . 2010-04-21 20:35 -------- d-----w- c:\program files\Enigma Software Group
2010-04-21 20:34 . 2010-04-21 20:37 -------- d-----w- c:\windows\61D3AAE1D5214CD7939B37813DE8F955.TMP
2010-04-21 20:15 . 2010-04-21 20:15 -------- d-----w- c:\documents and settings\All Users\Application Data\Alwil Software
2010-04-21 20:09 . 2010-04-21 20:09 -------- d-sh--w- c:\windows\system32\config\systemprofile\UserData
2010-04-21 20:09 . 2010-04-21 20:09 -------- d-sh--w- c:\windows\system32\config\systemprofile\PrivacIE
2010-04-21 20:09 . 2010-04-21 20:09 -------- d-sh--w- c:\windows\system32\config\systemprofile\IECompatCache
2010-04-21 20:09 . 2010-04-21 20:09 -------- d-----w- c:\documents and settings\Tanguy\Local Settings\Application Data\avG
2010-04-21 20:09 . 2010-04-21 20:09 -------- d-----w- c:\documents and settings\All Users\Application Data\avG
2010-04-21 20:08 . 2010-04-21 20:08 -------- d-sh--w- c:\windows\system32\config\systemprofile\IETldCache
2010-04-15 17:19 . 2010-04-15 17:19 -------- d-----w- c:\documents and settings\Tanguy\Application Data\FCTB000061101
2010-04-15 17:19 . 2010-04-15 17:19 -------- d-----w- c:\program files\Is Cool
2010-04-08 17:14 . 2010-04-08 17:15 -------- d-----w- c:\documents and settings\Tanguy\Application Data\FOG Downloader
2010-04-01 12:12 . 2010-04-01 12:12 -------- d-----w- c:\documents and settings\Tanguy\Application Data\tonemaker
2010-04-01 12:12 . 2010-04-01 12:12 -------- d-----w- c:\program files\OfferBoxSearch
2010-04-01 12:12 . 2010-04-01 12:12 -------- d-----w- c:\program files\ToneMaker
2010-04-01 12:11 . 2010-04-11 17:12 -------- d-----w- c:\documents and settings\Tanguy\Application Data\OfferBox
2010-03-31 01:16 . 2010-03-31 01:16 164192 ----a-w- c:\documents and settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
2010-03-29 16:02 . 2010-03-29 16:03 -------- d-----w- c:\documents and settings\All Users\Application Data\SweetIM
2010-03-29 16:02 . 2010-03-29 16:02 -------- d-----w- c:\program files\SweetIM
2010-03-23 08:57 . 2010-03-23 08:57 -------- d-----w- c:\program files\SpiderMessenger

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-04-21 22:02 . 2009-04-08 20:31 -------- d-----w- c:\program files\Wanadoo
2010-04-21 22:02 . 2010-03-07 16:57 -------- d-----w- c:\documents and settings\Tanguy\Application Data\skypePM
2010-04-21 22:02 . 2010-02-01 17:27 -------- d-----w- c:\documents and settings\Tanguy\Application Data\LimeWire
2010-04-21 22:01 . 2010-03-07 16:55 -------- d-----w- c:\documents and settings\Tanguy\Application Data\Skype
2010-04-21 20:34 . 2010-01-05 13:46 -------- d-----w- c:\program files\Fichiers communs\Wise Installation Wizard
2010-04-21 20:18 . 2009-08-10 16:45 -------- d-----w- c:\program files\Alwil Software
2010-04-21 20:06 . 2010-04-21 20:06 12 ----a-w- c:\windows\system32\config\systemprofile\Application Data\kcmdte.dat
2010-04-21 15:54 . 2010-04-21 15:54 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.166\itstv.exe
2010-04-19 23:53 . 2010-04-19 23:53 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.165\itstv.exe
2010-04-19 15:53 . 2010-04-19 15:53 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.164\itstv.exe
2010-04-18 15:53 . 2010-04-18 15:53 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.163\itstv.exe
2010-04-16 23:53 . 2010-04-16 23:53 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.162\itstv.exe
2010-04-15 23:53 . 2010-04-15 23:53 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.161\itstv.exe
2010-04-15 17:19 . 2010-04-15 17:19 61812 ----a-w- c:\documents and settings\Tanguy\Application Data\FCTB000061101\Toolbar\Uninst.exe
2010-04-15 17:19 . 2010-04-15 17:19 242688 ----a-w- c:\documents and settings\Tanguy\Application Data\FCTB000061101\Toolbar\Helper.dll
2010-04-15 17:19 . 2010-04-15 17:19 1529856 ----a-w- c:\documents and settings\Tanguy\Application Data\FCTB000061101\Toolbar\Toolbar.dll
2010-04-15 05:23 . 2010-04-15 05:23 957023 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\eorezo\10.3.0.0\webinstall_10_3.exe
2010-04-15 01:04 . 2009-04-03 20:15 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help
2010-04-15 00:11 . 2010-04-15 00:11 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.160\itstv.exe
2010-04-14 16:47 . 2009-08-10 16:45 38848 ----a-w- c:\windows\system32\avastSS.scr
2010-04-14 16:47 . 2009-08-10 16:45 153184 ----a-w- c:\windows\system32\aswBoot.exe
2010-04-14 16:35 . 2009-08-10 16:45 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2010-04-14 16:35 . 2009-08-10 16:45 162768 ----a-w- c:\windows\system32\drivers\aswSP.sys
2010-04-14 16:31 . 2009-08-10 16:45 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2010-04-14 16:31 . 2009-08-10 16:45 100432 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2010-04-14 16:31 . 2009-08-10 16:45 94800 ----a-w- c:\windows\system32\drivers\aswmon.sys
2010-04-14 16:31 . 2009-08-10 16:45 19024 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-04-14 16:30 . 2009-08-10 16:45 28880 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2010-04-13 22:11 . 2010-04-13 22:11 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.159\itstv.exe
2010-04-13 04:11 . 2010-04-13 04:11 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.158\itstv.exe
2010-04-11 22:11 . 2010-04-11 22:11 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.157\itstv.exe
2010-04-10 22:11 . 2010-04-10 22:11 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.156\itstv.exe
2010-04-09 22:10 . 2010-04-09 22:10 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.155\itstv.exe
2010-04-09 02:10 . 2010-04-09 02:10 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.154\itstv.exe
2010-04-08 02:10 . 2010-04-08 02:10 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.153\itstv.exe
2010-04-07 00:10 . 2010-04-07 00:10 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.152\itstv.exe
2010-04-06 16:51 . 2010-04-15 17:19 264704 ----a-w- c:\documents and settings\Tanguy\Application Data\FCTB000061101\Toolbar\statplugin.dll
2010-04-06 16:51 . 2010-04-15 17:19 395264 ----a-w- c:\documents and settings\Tanguy\Application Data\FCTB000061101\Toolbar\emailchecker_plugin.dll
2010-04-06 16:51 . 2010-04-15 17:19 276992 ----a-w- c:\documents and settings\Tanguy\Application Data\FCTB000061101\Toolbar\weatherplugin.dll
2010-04-06 16:51 . 2010-04-15 17:19 399360 ----a-w- c:\documents and settings\Tanguy\Application Data\FCTB000061101\Toolbar\RadioPlugin.dll
2010-04-06 16:51 . 2010-04-15 17:19 290304 ----a-w- c:\documents and settings\Tanguy\Application Data\FCTB000061101\Toolbar\msgboxplugin.dll
2010-04-06 16:50 . 2010-04-15 17:19 371712 ----a-w- c:\documents and settings\Tanguy\Application Data\FCTB000061101\Toolbar\RSSReader_plugin.dll
2010-04-06 16:50 . 2010-04-15 17:19 207360 ----a-w- c:\documents and settings\Tanguy\Application Data\FCTB000061101\Toolbar\SearchComponent.dll
2010-04-06 16:50 . 2010-04-15 17:19 272384 ----a-w- c:\documents and settings\Tanguy\Application Data\FCTB000061101\Toolbar\bookmarksplugin.dll
2010-04-06 10:10 . 2010-04-06 10:10 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.151\itstv.exe
2010-04-05 01:21 . 2010-04-05 01:21 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.150\itstv.exe
2010-04-03 23:21 . 2010-04-03 23:21 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.149\itstv.exe
2010-04-02 23:21 . 2010-04-02 23:21 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.148\itstv.exe
2010-04-02 03:20 . 2010-04-02 03:20 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.147\itstv.exe
2010-04-01 07:20 . 2010-04-01 07:20 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.146\itstv.exe
2010-03-31 01:19 . 2008-04-25 12:46 95156 ----a-w- c:\windows\system32\perfc00C.dat
2010-03-31 01:19 . 2008-04-25 12:46 537134 ----a-w- c:\windows\system32\perfh00C.dat
2010-03-30 23:30 . 2010-03-30 23:30 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.145\itstv.exe
2010-03-29 23:30 . 2010-03-29 23:30 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.144\itstv.exe
2010-03-29 01:30 . 2010-03-29 01:30 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.143\itstv.exe
2010-03-28 01:29 . 2010-03-28 01:29 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.142\itstv.exe
2010-03-27 07:29 . 2010-03-27 07:29 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.141\itstv.exe
2010-03-26 06:39 . 2009-05-22 13:48 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2010-03-25 23:29 . 2010-03-25 23:29 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.140\itstv.exe
2010-03-25 02:57 . 2010-03-25 02:57 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.139\itstv.exe
2010-03-24 18:17 . 2010-03-24 08:04 952768 ----a-w- c:\documents and settings\All Users\Application Data\Adobe\Reader\9.3\ARM\399\AdobeARM.exe
2010-03-24 18:17 . 2010-03-24 08:04 70584 ----a-w- c:\documents and settings\All Users\Application Data\Adobe\Reader\9.3\ARM\399\AdobeExtractFiles.dll
2010-03-24 18:17 . 2010-03-24 08:04 326056 ----a-w- c:\documents and settings\All Users\Application Data\Adobe\Reader\9.3\ARM\399\ReaderUpdater.exe
2010-03-24 18:17 . 2010-03-24 08:04 326056 ----a-w- c:\documents and settings\All Users\Application Data\Adobe\Reader\9.3\ARM\399\AcrobatUpdater.exe
2010-03-24 00:57 . 2010-03-24 00:57 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.138\itstv.exe
2010-03-23 08:57 . 2010-03-23 08:57 18076824 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\spidermessenger\1.0.0.9\SpiderMessenger_fr_s.exe
2010-03-23 04:56 . 2010-03-23 04:56 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.137\itstv.exe
2010-03-22 17:32 . 2009-11-05 10:42 -------- d-----w- c:\documents and settings\Tanguy\Application Data\vlc
2010-03-22 00:56 . 2010-03-22 00:56 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.136\itstv.exe
2010-03-21 00:56 . 2010-03-21 00:56 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.135\itstv.exe
2010-03-20 00:56 . 2010-03-20 00:56 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.134\itstv.exe
2010-03-19 17:53 . 2010-03-19 17:53 -------- d-----w- c:\documents and settings\Tanguy\Application Data\AzuazGames
2010-03-19 14:03 . 2010-03-01 16:31 -------- d-----w- c:\program files\Loch Ness
2010-03-19 00:55 . 2010-03-19 00:55 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.133\itstv.exe
2010-03-18 13:50 . 2010-03-17 21:44 -------- d-----w- c:\documents and settings\Tanguy\Application Data\Merscom
2010-03-18 13:50 . 2010-03-17 21:44 -------- d-----w- c:\documents and settings\All Users\Application Data\Merscom
2010-03-18 13:37 . 2010-03-18 13:36 -------- d-----w- c:\program files\Time Riddles - The Mansion
2010-03-18 02:55 . 2010-03-18 02:55 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.132\itstv.exe
2010-03-17 21:02 . 2009-05-22 13:34 -------- d-----w- c:\program files\bfgclient
2010-03-17 21:02 . 2010-03-17 21:00 3085800 ----a-w- c:\documents and settings\All Users\Application Data\BigFishGamesCache\Upgrade\Unpack\bfgsetup_s5_l4.exe
2010-03-17 21:00 . 2009-05-22 13:33 -------- d-----w- c:\documents and settings\All Users\Application Data\BigFishGamesCache
2010-03-17 20:47 . 2010-03-17 20:37 68608 ----a-w- c:\program files\wisegal_s5_l4_gF5285T1L4_d827148187.exe
2010-03-17 07:51 . 2010-03-17 07:51 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.131\itstv.exe
2010-03-16 02:25 . 2010-03-16 02:25 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.130\itstv.exe
2010-03-15 00:24 . 2010-03-15 00:24 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.129\itstv.exe
2010-03-14 02:24 . 2010-03-14 02:24 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.128\itstv.exe
2010-03-13 00:24 . 2010-03-13 00:24 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.127\itstv.exe
2010-03-12 00:24 . 2010-03-12 00:24 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.126\itstv.exe
2010-03-11 08:24 . 2010-03-11 08:24 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.125\itstv.exe
2010-03-10 15:12 . 2010-03-10 15:12 -------- d-----w- c:\documents and settings\Tanguy\Application Data\LegacyInteractive
2010-03-10 13:17 . 2010-03-10 13:17 -------- d-----w- c:\documents and settings\Tanguy\Application Data\Boomzap
2010-03-10 06:16 . 2008-04-25 12:46 420352 ----a-w- c:\windows\system32\vbscript.dll
2010-03-09 23:19 . 2010-03-09 23:19 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.124\itstv.exe
2010-03-09 21:46 . 2010-03-09 21:46 -------- d-----w- c:\documents and settings\Tanguy\Application Data\Magic Academy 2
2010-03-09 21:27 . 2010-03-09 20:35 -------- d-----w- c:\documents and settings\All Users\Application Data\FarmFrenzy3_America
2010-03-09 07:19 . 2010-03-09 07:19 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.123\itstv.exe
2010-03-08 14:54 . 2010-03-08 14:54 -------- d-----w- c:\documents and settings\Tanguy\Application Data\ElementalsTheMagicKey
2010-03-08 05:19 . 2010-03-08 05:19 20480 ----a-w- c:\documents and settings\Tanguy\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.122\itstv.exe
2010-03-07 16:57 . 2010-03-07 16:57 56 ---ha-w- c:\windows\system32\ezsidmv.dat
2010-03-07 16:55 . 2010-03-07 16:55 -------- d-----w- c:\program files\Fichiers communs\Skype
0
smeriaux
22 avril 2010 à 00:35
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{EEE6C35D-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll" [2009-10-19 187192]
"{17402221-9032-45e3-9662-ba98be4e08b5}"= "c:\program files\Is Cool\Helper.dll" [2010-04-15 242688]

[HKEY_CLASSES_ROOT\clsid\{eee6c35d-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook]

[HKEY_CLASSES_ROOT\clsid\{17402221-9032-45e3-9662-ba98be4e08b5}]
[HKEY_CLASSES_ROOT\FreeCauseURLSearchHook.FCToolbarURLSearchHook.1]
[HKEY_CLASSES_ROOT\TypeLib\{8C0AF7B5-EF28-489D-8CC9-30DF7CDB22E3}]
[HKEY_CLASSES_ROOT\FreeCauseURLSearchHook.FCToolbarURLSearchHook]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{178E24B8-CAB5-4B50-A841-CB18A8DDBFB6}]
2010-04-15 17:19 1529856 ----a-w- c:\program files\Is Cool\Toolbar.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{ADE49752-DBBC-43A3-9498-379A82F574BF}]
2010-03-09 10:10 188088 ----a-w- c:\program files\SpiderMessenger\SpiderMessenger.BHO.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
2009-10-19 14:15 1345336 ----a-w- c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{9ec204df-0e48-4c32-816e-2e928a4fd9c2}"= "mscoree.dll" [2008-07-25 282112]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2009-10-19 1345336]
"{CA127536-050A-49DF-B02A-3CE87231D790}"= "c:\program files\Is Cool\Toolbar.dll" [2010-04-15 1529856]

[HKEY_CLASSES_ROOT\clsid\{9ec204df-0e48-4c32-816e-2e928a4fd9c2}]
[HKEY_CLASSES_ROOT\IEToolbar.Toolbar]

[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]

[HKEY_CLASSES_ROOT\clsid\{ca127536-050a-49df-b02a-3ce87231d790}]
[HKEY_CLASSES_ROOT\FCTB000061101.IEToolbar.3]
[HKEY_CLASSES_ROOT\TypeLib\{B06F26D1-E4EB-48D3-9EF9-815C9B6EBA61}]
[HKEY_CLASSES_ROOT\FCTB000061101.IEToolbar]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2009-10-19 1345336]
"{CA127536-050A-49DF-B02A-3CE87231D790}"= "c:\program files\Is Cool\Toolbar.dll" [2010-04-15 1529856]

[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]

[HKEY_CLASSES_ROOT\clsid\{ca127536-050a-49df-b02a-3ce87231d790}]
[HKEY_CLASSES_ROOT\FCTB000061101.IEToolbar.3]
[HKEY_CLASSES_ROOT\TypeLib\{B06F26D1-E4EB-48D3-9EF9-815C9B6EBA61}]
[HKEY_CLASSES_ROOT\FCTB000061101.IEToolbar]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM"="c:\program files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe" [2006-09-11 218032]
"WOOKIT"="c:\program files\Wanadoo\Shell.exe" [2004-08-23 122880]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2010-02-22 26101032]
"SpiderMessenger"="c:\program files\SpiderMessenger\SpiderMessenger.exe" [2010-03-09 2436792]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2008-07-16 1044480]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-07-16 150040]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-07-16 170520]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-07-16 141848]
"PDVDDXSrv"="c:\program files\CyberLink\PowerDVD DX\PDVDDXSrv.exe" [2008-02-26 128296]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2005-05-11 49152]
"WOOWATCH"="c:\progra~1\Wanadoo\Watch.exe" [2004-08-23 20480]
"WOOTASKBARICON"="c:\progra~1\Wanadoo\GestMaj.exe" [2004-10-14 32768]
"CommunityTray"="c:\program files\VTech\Community\System\Startup.exe" [2008-03-15 11776]
"SunJavaUpdateSched"="c:\program files\Fichiers communs\Java\Java Update\jusched.exe" [2010-01-11 246504]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2009-11-10 417792]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-11-12 141600]
"SoftwareHelper"="c:\documents and settings\Tanguy\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe" [2008-12-09 368224]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-12-22 35760]
"Adobe ARM"="c:\program files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe" [2010-03-24 952768]
"SweetIM"="c:\program files\SweetIM\Messenger\SweetIM.exe" [2010-02-24 111928]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\Tanguy\Menu D'marrer\Programmes\D'marrage\
LimeWire On Startup.lnk - c:\program files\LimeWire\LimeWire.exe [2009-12-16 503808]
monxga32.exe [2008-4-14 30720]

c:\documents and settings\All Users\Menu D'marrer\Programmes\D'marrage\
D'marrage rapide du logiciel HP Image Zone.lnk - c:\program files\HP\Digital Imaging\bin\hpqthb08.exe [2005-5-12 73728]
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2005-5-11 282624]
Microsoft Office.lnk - c:\program files\Microsoft Office\Office10\OSA.EXE [2001-2-13 83360]
Windows Search.lnk - c:\program files\Windows Desktop Search\WindowsSearch.exe [2008-5-26 123904]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128]

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
"FirewallOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
"DisableNotifications"= 1 (0x1)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\VTech\\Community\\System\\PCTray.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\LimeWire\\LimeWire.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Is Cool\\TroubleShooter.exe"=
"c:\\Program Files\\Is Cool\\ToolbarUpdate.exe"=

R0 SFAUDIO;Sonic Focus DSP Driver;c:\windows\system32\drivers\sfaudio.sys [04/04/2009 06:55 24064]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [10/08/2009 18:45 162768]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [10/08/2009 18:45 19024]
R3 k57w2k;Broadcom NetLink (TM) Gigabit Ethernet;c:\windows\system32\drivers\k57xp32.sys [04/04/2009 06:55 176640]
R3 PID_0920;Logitech QuickCam Express(PID_0920);c:\windows\system32\drivers\LV532AV.SYS [21/05/2009 17:32 163328]
.
Contenu du dossier 'Tâches planifiées'

2010-04-15 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]

2010-04-21 c:\windows\Tasks\User_Feed_Synchronization-{6B75EE4A-28CA-48EE-B716-5967CED1921A}.job
- c:\windows\system32\msfeedssync.exe [2009-03-08 02:31]
.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://www.google.com/
uDefault_Search_URL = hxxp://www.durable.com/recherche
uSearchMigratedDefaultURL = hxxp://www.durable.com/result?cx=partner-pub-7902900401080901%3Azbljezwsgul&cof=FORID%3A10&ie=UTF-8&q={searchTerms}
mStart Page = hxxp://home.sweetim.com
uSearchAssistant = hxxp://www.durable.com/recherche
uSearchURL,(Default) = hxxp://www.durable.com/recherche
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: { - c:\program files\Messenger\msmsgs.exe
Trusted Zone: agranet.fr\www
Trusted Zone: edeidentification.fr\www.bretagne
DPF: {3D3B42C2-11BF-4732-A304-A01384B70D68} - hxxp://picasaweb.google.com/s/v/57.11/uploader2.cab
DPF: {B9F79165-A264-4C4A-A211-133A5E8D647F} - hxxp://orange.securitoo.com/pchc/fscax.cab
.
- - - - ORPHELINS SUPPRIMES - - - -

WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
HKCU-Run-EA Core - c:\program files\Electronic Arts\EADM\Core.exe
HKCU-Run-msnmsgr - ~c:\program files\Windows Live\Messenger\msnmsgr.exe
HKCU-Run-syncman - c:\documents and settings\tanguy\wuaucldt.exe
HKLM-Run-eorezo - (no file)
HKLM-Run-SpiderMessenger - (no file)
HKLM-Run-syncman - c:\windows\system32\wuaucldt.exe
AddRemove-FranceTelecomUninstall_FTBrowser - c:\progra~1\Wanadoo\Shell.exe inst\uninst_FTBrowser.shl



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-04-22 00:02
Windows 5.1.2600 Service Pack 3 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

HKCU\Software\Microsoft\Windows\CurrentVersion\Run
msnmsgr = ~"c:\program files\Windows Live\Messenger\msnmsgr.exe" /background?

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés: 0

**************************************************************************
.
--------------------- DLLs chargées dans les processus actifs ---------------------

- - - - - - - > 'explorer.exe'(1204)
c:\program files\Windows Desktop Search\deskbar.dll
c:\program files\Windows Desktop Search\fr-fr\dbres.dll.mui
c:\program files\Windows Desktop Search\dbres.dll
c:\program files\Windows Desktop Search\wordwheel.dll
c:\program files\Windows Desktop Search\fr-fr\msnlExtRes.dll.mui
c:\program files\Windows Desktop Search\msnlExtRes.dll
c:\windows\system32\eappprxy.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\program files\Roxio\Drag-to-Disc\Shellex.dll
c:\program files\Fichiers communs\Roxio Shared\9.0\DLLShared\DLAAPI_W.DLL
c:\program files\Roxio\Drag-to-Disc\ShellRes.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Autres processus actifs ------------------------
.
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\windows\system32\igfxsrvc.exe
c:\progra~1\Wanadoo\TaskBarIcon.exe
c:\progra~1\Wanadoo\GestionnaireInternet.exe
c:\progra~1\Wanadoo\ComComp.exe
c:\progra~1\Wanadoo\Toaster.exe
c:\progra~1\Wanadoo\Inactivity.exe
c:\progra~1\Wanadoo\PollingModule.exe
c:\program files\VTech\Community\System\PCTray.exe
c:\program files\HP\Digital Imaging\bin\hpqSTE08.exe
c:\program files\HP\Digital Imaging\bin\hpqimzone.exe
c:\program files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\windows\System32\FTRTSVC.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\windows\system32\HPZipm12.exe
c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\windows\system32\SearchIndexer.exe
c:\program files\iPod\bin\iPodService.exe
c:\windows\system32\SearchProtocolHost.exe
c:\program files\Skype\Plugin Manager\skypePM.exe
c:\windows\System32\ALERTM~1\ALERTM~1.EXE
c:\windows\system32\SearchFilterHost.exe
.
**************************************************************************
.
Heure de fin: 2010-04-22 00:07:12 - La machine a redémarré
ComboFix-quarantined-files.txt 2010-04-21 22:07

Avant-CF: 159 512 526 848 octets libres
Après-CF: 166 291 472 384 octets libres

WindowsXP-KB310994-SP2-Pro-BootDisk-FRA.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Microsoft Windows XP Professionnel" /noexecute=optin /fastdetect

- - End Of File - - DC78253DCB96BAE0918F90939AFDFD8E
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 6
dédétraqué Messages postés 4384 Date d'inscription vendredi 5 septembre 2008 Statut Contributeur sécurité Dernière intervention 4 février 2013 286
22 avril 2010 à 00:45
Salut smeriaux


Télécharge AD-Remover sur ton Bureau. (Merci à C_XX)
http://pagesperso-orange.fr/NosTools/C_XX/AD-R.exe

Miroir:
https://www.androidworld.fr/

/!\ Ferme toutes applications en cours /!\

/!\ Désactive provisoirement et seulement le temps de l'utilisation de AD-Remover, la protection en temps réel de ton Antivirus et de tes Antispywares, qui peuvent gêner fortement la procédure de recherche et de nettoyage de l'outil.

- Double-clique sur l'icône Ad-remover située sur ton Bureau.
(Vista/7 - Faire un clique droit sur l'icône AD-Remover située sur ton Bureau et choisir exécuter en tant qu'administrateur.)
- Sur la page, clique sur le bouton « Scanner »
- Confirme lancement du scan
- Laisse travailler l'outil.
- Poste le rapport qui apparaît à la fin.

(Le rapport est sauvegardé aussi sous C:\Ad-report(Scan/clean).Txt)

(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)


@++ :)
0
smeriaux
22 avril 2010 à 14:51
voici le resultat du scan
.
======= RAPPORT D'AD-REMOVER 2.0.0.0,C | UNIQUEMENT XP/VISTA/7 =======
.
Mis à jour par C_XX le 21/04/10 à 13:40
Contact: AdRemover.contact@gmail.com
Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
.
Lancé à: 14:47:23 le 22/04/2010 | Mode normal | Option: SCAN
Exécuté de: C:\Ad-Remover\ADR.exe
SE: Microsoft® Windows XP(TM) Service Pack 3 - X86
Nom du PC: PARANTHOEN
Utilisateur actuel: Tanguy (Administrateur)
.
============== ÉLÉMENT(S) TROUVÉ(S) ==============
.
.
C:\Documents and Settings\All Users\Application Data\SweetIM
C:\Documents and Settings\Tanguy\Application Data\EoRezo
C:\Program Files\SweetIM
C:\Program Files\Windows Live\Messenger\Msimg32.dll
C:\Program Files\Windows Live\Messenger\Riched20.dll
.
HKCU\Software\EoRezo
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35D-6118-11DC-9C72-001320C79847}
HKCU\Software\SweetIM
HKLM\Software\Classes\CLSID\{1E0DE227-5CE4-4ea3-AB0C-8B03E1AA76BC}
HKLM\Software\Classes\CLSID\{799391D3-EB86-4bac-9BD3-CBFEA58A0E15}
HKLM\Software\Classes\CLSID\{82AC53B4-164C-4B07-A016-437A8388B81A}
HKLM\Software\Classes\CLSID\{A4A0CB15-8465-4F58-A7E5-73084EA2A064}
HKLM\Software\Classes\CLSID\{D858DAFC-9573-4811-B323-7011A3AA7E61}
HKLM\Software\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}
HKLM\Software\Classes\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847}
HKLM\Software\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}
HKLM\Software\Classes\Interface\{07B18EAA-A523-4961-B6BB-170DE4475CCA}
HKLM\Software\Classes\Interface\{07B18EAC-A523-4961-B6BB-170DE4475CCA}
HKLM\Software\Classes\Interface\{1093995A-BA37-41D2-836E-091067C4AD17}
HKLM\Software\Classes\Interface\{120927BF-1700-43BC-810F-FAB92549B390}
HKLM\Software\Classes\Interface\{17DE5E5E-BFE3-4E83-8E1F-8755795359EC}
HKLM\Software\Classes\Interface\{1F52A5FA-A705-4415-B975-88503B291728}
HKLM\Software\Classes\Interface\{247A115F-06C2-4FB3-967D-2D62D3CF4F0A}
HKLM\Software\Classes\Interface\{2E3537FC-CF2F-4F56-AF54-5A6A3DD375CC}
HKLM\Software\Classes\Interface\{2E9937FC-CF2F-4F56-AF54-5A6A3DD375CC}
HKLM\Software\Classes\Interface\{3E1656ED-F60E-4597-B6AA-B6A58E171495}
HKLM\Software\Classes\Interface\{3E53E2CB-86DB-4A4A-8BD9-FFEB7A64DF82}
HKLM\Software\Classes\Interface\{3E720451-B472-4954-B7AA-33069EB53906}
HKLM\Software\Classes\Interface\{3E720453-B472-4954-B7AA-33069EB53906}
HKLM\Software\Classes\Interface\{63D0ED2B-B45B-4458-8B3B-60C69BBBD83C}
HKLM\Software\Classes\Interface\{63D0ED2D-B45B-4458-8B3B-60C69BBBD83C}
HKLM\Software\Classes\Interface\{6E74766C-4D93-4CC0-96D1-47B8E07FF9CA}
HKLM\Software\Classes\Interface\{72EE7F04-15BD-4845-A005-D6711144D86A}
HKLM\Software\Classes\Interface\{741DE825-A6F0-4497-9AA6-8023CF9B0FFF}
HKLM\Software\Classes\Interface\{7473D291-B7BB-4F24-AE82-7E2CE94BB6A9}
HKLM\Software\Classes\Interface\{7473D293-B7BB-4F24-AE82-7E2CE94BB6A9}
HKLM\Software\Classes\Interface\{7473D295-B7BB-4F24-AE82-7E2CE94BB6A9}
HKLM\Software\Classes\Interface\{7473D297-B7BB-4F24-AE82-7E2CE94BB6A9}
HKLM\Software\Classes\Interface\{90449521-D834-4703-BB4E-D3AA44042FF8}
HKLM\Software\Classes\Interface\{991AAC62-B100-47CE-8B75-253965244F69}
HKLM\Software\Classes\Interface\{A626CDBD-3D13-4F78-B819-440A28D7E8FC}
HKLM\Software\Classes\Interface\{BBABDC90-F3D5-4801-863A-EE6AE529862D}
HKLM\Software\Classes\Interface\{CF54BE1C-9359-4395-8533-1657CF209CFE}
HKLM\Software\Classes\Interface\{D6FF3684-AD3B-48EB-BBB4-B9E6C5A355C1}
HKLM\Software\Classes\Interface\{DE38C398-B328-4F4C-A3AD-1B5E4ED93477}
HKLM\Software\Classes\Interface\{E342AF55-B78A-4CD0-A2BB-DA7F52D9D25E}
HKLM\Software\Classes\Interface\{E342AF55-B78A-4CD0-A2BB-DA7F52D9D25F}
HKLM\Software\Classes\Interface\{E79DFBC9-5697-4FBD-94E5-5B2A9C7C1612}
HKLM\Software\Classes\Interface\{E79DFBCB-5697-4FBD-94E5-5B2A9C7C1612}
HKLM\Software\Classes\Interface\{EB9E5C1C-B1F9-4C2B-BE8A-27D6446FDAF8}
HKLM\Software\Classes\Interface\{F87D7FB5-9DC5-4C8C-B998-D8DFE02E2978}
HKLM\Software\Classes\MediaPlayer.GraphicsUtils
HKLM\Software\Classes\MediaPlayer.GraphicsUtils.1
HKLM\Software\Classes\MgMediaPlayer.GifAnimator
HKLM\Software\Classes\MgMediaPlayer.GifAnimator.1
HKLM\Software\Classes\SWEETIE.IEToolbar
HKLM\Software\Classes\SWEETIE.IEToolbar.1
HKLM\Software\Classes\SweetIM_URLSearchHook.ToolbarURLSearchHook
HKLM\Software\Classes\SweetIM_URLSearchHook.ToolbarURLSearchHook.1
HKLM\Software\Classes\Toolbar3.SWEETIE
HKLM\Software\Classes\Toolbar3.SWEETIE.1
HKLM\Software\Classes\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19}
HKLM\Software\Classes\TypeLib\{D518921A-4A03-425E-9873-B9A71756821E}
HKLM\Software\Classes\TypeLib\{E47CAEE0-DEEA-464A-9326-3F2801535A4D}
HKLM\Software\Classes\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}
HKLM\Software\Classes\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}
HKLM\Software\Classes\TypeLib\{F42228FB-E84E-479E-B922-FBBD096E792C}
HKLM\Software\EoRezo
HKLM\Software\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll
HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\MyWebSearch bar Uninstall
HKLM\Software\Microsoft\Windows\CurrentVersion\App Paths\SweetIM.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdate_is1
HKLM\Software\SweetIM
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{EEE6C35B-6118-11DC-9C72-001320C79847}
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks|{EEE6C35D-6118-11DC-9C72-001320C79847}
HKLM\Software\Microsoft\Internet Explorer\Toolbar|{EEE6C35B-6118-11DC-9C72-001320C79847}
HKLM\Software\Microsoft\Windows Media\Wmsdk\Sources|F3PopularScreenSavers
HKLM\Software\Microsoft\Windows\CurrentVersion\Run|Softwarehelper
HKLM\Software\Microsoft\Windows\CurrentVersion\Run|Sweetim
HKLM\Software\Mozilla\Firefox\Extensions|m3ffxtbr@mywebsearch.com
.
.
============== SCAN ADDITIONNEL ==============
.
.
* Internet Explorer Version 8.0.6001.18702 *
.
[HKCU\Software\Microsoft\Internet Explorer\Main]
.
Default_Search_URL: hxxp://www.durable.com/recherche
Do404Search: 0x01000000
Enable Browser Extensions: yes
Local Page: C:\WINDOWS\system32\blank.htm
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Show_ToolBar: yes
Start Page: hxxp://www.google.com/
.
[HKLM\Software\Microsoft\Internet Explorer\Main]
.
Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=69157
Default_Search_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Delete_Temp_Files_On_Exit: yes
Local Page: C:\WINDOWS\system32\blank.htm
Search Page: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Start Page: hxxp://home.sweetim.com
.
[HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS]
.
Tabs: hxxp://y.lo.st
Blank: res://mshtml.dll/blank.htm
.
========================================
.
C:\DOCUME~1\Tanguy\LOCALS~1\Temp: 27 Fichier(s), 10 Dossier(s)
C:\WINDOWS\temp: 5 Fichier(s), 2 Dossier(s)
Temporary Internet Files: 57 Fichier(s), 20 Dossier(s)
.
C:\Ad-Remover\Quarantine: 0 Fichier(s)
C:\Ad-Remover\Backup: 0 Fichier(s)
.
C:\Ad-Report-SCAN[1].txt - 7634 Octet(s)
.
Fin à: 14:51:01, 22/04/2010
.
============== E.O.F - SCAN[1] ==============
0
Réponse 6 / 6
dédétraqué Messages postés 4384 Date d'inscription vendredi 5 septembre 2008 Statut Contributeur sécurité Dernière intervention 4 février 2013 286
23 avril 2010 à 02:20
Salut smeriaux


/!\ Ferme toutes applications en cours /!\

/!\ Désactive provisoirement et seulement le temps de l'utilisation de AD-Remover, la protection en temps réel de ton Antivirus et de tes Antispywares, qui peuvent gêner fortement la procédure de recherche et de nettoyage de l'outil.

- Double-clique sur l'icône Ad-remover située sur ton Bureau.
(Vista/7 - Faire un clique droit sur l'icône AD-Remover située sur ton Bureau et choisir exécuter en tant qu'administrateur.)
- Sur la page, clique sur le bouton « Nettoyer »
- Confirme lancement du scan
- Laisse travailler l'outil.
- Poste le rapport qui apparaît à la fin.

(Le rapport est sauvegardé aussi sous C:\Ad-report(Scan/clean).Txt)

(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)


-----


Refais un scan avec RSIT et poste le contenu du rapport log.txt à la fin de l'analyse

Le rapport est dans le dossier ici C:\rsit


@++ :)
0

Discussions similaires

Total AdBlock
Nyoven_7125 -
Nyoven_7125 -

10 réponses
Code de réinitialisation mdp facebook sans le demander
Colonel_El_Moustachat -
Colonel_El_Moustachat -

4 réponses
stop à total Adblock !!!!
caprine -
pistouri -

2 réponses
Boîte mail piratée ?
mike the llama -
mike the llama -

4 réponses
Désactiver renouvellement automatique anti virus Total AV
Syldra -
Val -

11 réponses