Xp Anti-Spyware - Page 3

Précédent
  • 1
  • 2
  • 3
  1. Arnaud3829 Messages postés 153 Statut Membre 10
     
    jai cleaner deja et je vien pas just4e de tenvoyer le rapport
    0
  2. Arnaud3829 Messages postés 153 Statut Membre 10
     
    bon voici un 2ieme scan apres le clean

    ======= REPORT FROM AD-REMOVER 2.0.0.2,F | ONLY XP/VISTA/7 =======

    Updated by TeamXscript on 04/04/11
    Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
    website: http://www.teamxscript.org

    C:\Program Files\Ad-Remover\main.exe (SCAN [2]) -> Launched at 20:56:13 on 03/04/2011, Normal boot

    Microsoft Windows XP Professional Service Pack 3 (X86)
    Arnaud@ARNAUD-06DC8A77 ( )

    ============== SEARCH ==============

    ============== ADDITIONNAL SCAN ==============

    **** Mozilla Firefox Version [3.6.16 (fr)] ****

    FIREFOX.EXE\Shell\Open\Command - "C:\Documents and Settings\Arnaud\Local Settings\Application Data\fmp.exe" -a "C:\Program Files\Mozilla Firefox\firefox.exe"
    HKLM_MozillaPlugins\@logitech.com/HarmonyRemote,version=1.0.0 (x)

    -- C:\Documents and Settings\Arnaud\Application Data\Mozilla\FireFox\Profiles\joft5wxq.default --
    Prefs.js - browser.download.lastDir, C:\\Documents and Settings\\Arnaud\\My Documents\\My Pictures
    Prefs.js - browser.search.selectedEngine, Google
    Prefs.js - browser.startup.homepage, hxxp://www.google.ca/
    Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.2.16

    -- C:\Documents and Settings\Administrator\Application Data\Mozilla\FireFox\Profiles\cg7doso5.default --
    Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.2.16

    ========================================

    **** Internet Explorer Version [8.0.6001.18702] ****

    IEXPLORE.EXE\Shell\Open\Command - C:\Documents and Settings\Arnaud\Local Settings\Application Data\fmp.exe -a C:\Program Files\Internet Explorer\iexplore.exe
    HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
    HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896
    HKCU_Main|Start Page - hxxp://fr.msn.com/
    HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
    HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm
    HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKLM_Main|Start Page - hxxp://fr.msn.com/
    HKCU_URLSearchHooks|{ba14329e-9550-4989-b3f2-9732e92d17cc} - "Vuze Remote Toolbar" (C:\Program Files\Vuze_Remote\prxtbVuze.dll)
    HKCU_SearchScopes\{6B528F7B-1290-4F85-BA27-8515B393FF4B} - "?" (?)
    HKCU_SearchScopes\{6BA4BBC5-3A34-465E-A7AD-CA216AD72022} - "?" (?)
    HKLM_SearchScopes\{6BA4BBC5-3A34-465E-A7AD-CA216AD72022} - "Wikipedia (en)" (hxxp://en.wikipedia.org/w/index.php?title=Special:Search&search={searchTerms})
    HKLM_Toolbar|{ba14329e-9550-4989-b3f2-9732e92d17cc} (C:\Program Files\Vuze_Remote\prxtbVuze.dll)
    HKLM_ElevationPolicy\{3716A26E-389C-4007-A6A4-D2BDA744CE0B} - C:\Documents and Settings\Arnaud\Local Settings\Application Data\Conduit\CT2504091\Vuze_RemoteAutoUpdateHelper.exe (x)
    HKLM_ElevationPolicy\{4FE589D9-7351-43C2-99E0-DBFEF337F47C} - C:\Program Files\Vuze_Remote\Vuze_RemoteToolbarHelper.exe (?)
    HKLM_Extensions\{e2e2dd38-d088-4134-82b7-f2ba38496583} - "?" (?)
    BHO\{5C255C8A-E604-49b4-9D64-90988571CECB} (?)
    BHO\{ba14329e-9550-4989-b3f2-9732e92d17cc} - "Vuze Remote Toolbar" (C:\Program Files\Vuze_Remote\prxtbVuze.dll)

    ========================================

    C:\Program Files\Ad-Remover\Quarantine: 22 File(s)
    C:\Program Files\Ad-Remover\Backup: 16 File(s)

    C:\Ad-Report-CLEAN[1].txt - 03/04/2011 20:47:41 (7364 Byte(s))
    C:\Ad-Report-SCAN[1].txt - 03/04/2011 20:39:59 (8093 Byte(s))
    C:\Ad-Report-SCAN[2].txt - 03/04/2011 20:56:18 (3325 Byte(s))

    End at: 20:56:57, 03/04/2011

    ============== E.O.F ==============
    0
  3. gen-hackman
     
    il est là le rapport clean :)

    C:\Ad-Report-CLEAN[1].txt

    0
  4. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  5. Arnaud3829 Messages postés 153 Statut Membre 10
     
    ben ca c le 2ieme apres mon clean avec ad-remover
    le 1ier est la

    ======= REPORT FROM AD-REMOVER 2.0.0.2,F | ONLY XP/VISTA/7 =======

    Updated by TeamXscript on 04/04/11
    Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
    website: http://www.teamxscript.org

    C:\Program Files\Ad-Remover\main.exe (SCAN [1]) -> Launched at 20:39:57 on 03/04/2011, Normal boot

    Microsoft Windows XP Professional Service Pack 3 (X86)
    Arnaud@ARNAUD-06DC8A77 ( )

    ============== SEARCH ==============

    File found: C:\Documents and Settings\Arnaud\Application Data\Mozilla\FireFox\Profiles\joft5wxq.default\searchplugins\askcom.xml
    Folder found: C:\Program Files\Ask.com
    Folder found: C:\Documents and Settings\Arnaud\Local Settings\Application Data\Conduit
    Folder found: C:\Program Files\Conduit
    Folder found: C:\Documents and Settings\Arnaud\Local Settings\Application Data\ConduitEngine
    Folder found: C:\Program Files\ConduitEngine

    -- File opened: C:\Documents and Settings\Arnaud\Application Data\Mozilla\FireFox\Profiles\joft5wxq.default\Prefs.js --
    Line found: user_pref("browser.search.defaultengine", "Ask.com");
    Line found: user_pref("browser.search.defaultenginename", "Ask.com");
    Line found: user_pref("browser.search.order.1", "Ask.com");
    -- File closed --

    Key found: HKLM\Software\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
    Key found: HKLM\Software\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
    Key found: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
    Key found: HKLM\Software\Classes\CLSID\{601ac3dc-786a-4eb0-bf40-ee3521e70bfb}
    Key found: HKLM\Software\Classes\CLSID\{72b3882f-453a-4633-aac9-8c3dced62aff}
    Key found: HKLM\Software\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
    Key found: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
    Key found: HKLM\Software\Classes\CLSID\{F65E9D0A-55AD-47F4-9194-7CF6DB2D397B}
    Key found: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F65E9D0A-55AD-47F4-9194-7CF6DB2D397B}
    Key found: HKLM\Software\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
    Key found: HKLM\Software\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
    Key found: HKLM\Software\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
    Key found: HKLM\Software\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
    Key found: HKLM\Software\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
    Key found: HKLM\Software\Classes\Conduit.Engine
    Key found: HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd
    Key found: HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd.1
    Key found: HKLM\Software\Classes\Toolbar.CT2504091
    Key found: HKLM\Software\Classes\AppID\GenericAskToolbar.DLL
    Key found: HKLM\Software\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
    Key found: HKLM\Software\Conduit
    Key found: HKLM\Software\conduitEngine
    Key found: HKCU\Software\Ask.com
    Key found: HKCU\Software\AskToolbar
    Key found: HKCU\Software\Conduit
    Key found: HKCU\Software\conduitEngine
    Key found: HKCU\Software\AppDataLow\AskToolbarInfo
    Key found: HKLM\Software\Cheat Engine\OpenCandy
    Key found: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}
    Key found: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
    Key found: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3A28044A-8B50-4987-9CC4-D857BD22CA96}
    Key found: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
    Key found: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine

    Value found: HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks|{00000000-6E41-4FD3-8538-502F5495E5FC}
    Value found: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{D4027C7F-154A-4066-A1AD-4243D8127440}
    Value found: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{30F9B915-B755-4826-820B-08FBA6BD249D}

    ============== ADDITIONNAL SCAN ==============

    **** Mozilla Firefox Version [3.6.16 (fr)] ****

    FIREFOX.EXE\Shell\Open\Command - "C:\Documents and Settings\Arnaud\Local Settings\Application Data\fmp.exe" -a "C:\Program Files\Mozilla Firefox\firefox.exe"
    HKLM_MozillaPlugins\@logitech.com/HarmonyRemote,version=1.0.0 (x)

    -- C:\Documents and Settings\Arnaud\Application Data\Mozilla\FireFox\Profiles\joft5wxq.default --
    Searchplugins\askcom.xml (?)
    Prefs.js - browser.download.lastDir, C:\\Documents and Settings\\Arnaud\\My Documents\\My Pictures
    Prefs.js - browser.search.defaultenginename, Ask.com
    Prefs.js - browser.search.selectedEngine, Google
    Prefs.js - browser.startup.homepage, hxxp://www.google.ca/
    Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.2.16

    -- C:\Documents and Settings\Administrator\Application Data\Mozilla\FireFox\Profiles\cg7doso5.default --
    Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.2.16

    ========================================

    **** Internet Explorer Version [8.0.6001.18702] ****

    IEXPLORE.EXE\Shell\Open\Command - C:\Documents and Settings\Arnaud\Local Settings\Application Data\fmp.exe -a C:\Program Files\Internet Explorer\iexplore.exe
    HKCU_Main|Default_Page_URL - hxxp://www.google.com/
    HKCU_Main|Default_Search_URL - hxxp://www.google.com/
    HKCU_Main|Search Page - hxxp://www.google.com/
    HKCU_Main|Start Page - hxxp://www.ask.com?o=101912&l=dis
    HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=69157
    HKLM_Main|Default_Search_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
    HKLM_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896
    HKCU_URLSearchHooks|{00000000-6E41-4FD3-8538-502F5495E5FC} - "UrlSearchHook Class" (C:\Program Files\Ask.com\GenericAskToolbar.dll)
    HKCU_URLSearchHooks|{ba14329e-9550-4989-b3f2-9732e92d17cc} - "Vuze Remote Toolbar" (C:\Program Files\Vuze_Remote\prxtbVuze.dll)
    HKCU_SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} - "Ask Search" (hxxp://websearch.ask.com/redirect?client=ie&tb=NRO&o=&src=crm&q={searchTerms}&lo...)
    HKCU_SearchScopes\{6B528F7B-1290-4F85-BA27-8515B393FF4B} - "?" (?)
    HKCU_SearchScopes\{6BA4BBC5-3A34-465E-A7AD-CA216AD72022} - "?" (?)
    HKLM_SearchScopes\{6BA4BBC5-3A34-465E-A7AD-CA216AD72022} - "Wikipedia (en)" (hxxp://en.wikipedia.org/w/index.php?title=Special:Search&search={searchTerms})
    HKLM_Toolbar|{ba14329e-9550-4989-b3f2-9732e92d17cc} (C:\Program Files\Vuze_Remote\prxtbVuze.dll)
    HKLM_Toolbar|{30F9B915-B755-4826-820B-08FBA6BD249D} (C:\Program Files\ConduitEngine\prxConduitEngine.dll)
    HKLM_Toolbar|{D4027C7F-154A-4066-A1AD-4243D8127440} (C:\Program Files\Ask.com\GenericAskToolbar.dll)
    HKCU_ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A} - C:\Program Files\Ask.com\SaUpdate.exe (?)
    HKLM_ElevationPolicy\{3716A26E-389C-4007-A6A4-D2BDA744CE0B} - C:\Documents and Settings\Arnaud\Local Settings\Application Data\Conduit\CT2504091\Vuze_RemoteAutoUpdateHelper.exe (?)
    HKLM_ElevationPolicy\{3A28044A-8B50-4987-9CC4-D857BD22CA96} - C:\Program Files\ConduitEngine\ConduitEngineHelper.exe (?)
    HKLM_ElevationPolicy\{4FE589D9-7351-43C2-99E0-DBFEF337F47C} - C:\Program Files\Vuze_Remote\Vuze_RemoteToolbarHelper.exe (?)
    HKLM_ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A} - C:\Program Files\Ask.com\SaUpdate.exe (?)
    HKLM_Extensions\{e2e2dd38-d088-4134-82b7-f2ba38496583} - "?" (?)
    BHO\{30F9B915-B755-4826-820B-08FBA6BD249D} - "Conduit Engine" (C:\Program Files\ConduitEngine\prxConduitEngine.dll)
    BHO\{5C255C8A-E604-49b4-9D64-90988571CECB} (?)
    BHO\{ba14329e-9550-4989-b3f2-9732e92d17cc} - "Vuze Remote Toolbar" (C:\Program Files\Vuze_Remote\prxtbVuze.dll)
    BHO\{D4027C7F-154A-4066-A1AD-4243D8127440} - "Nero Toolbar" (C:\Program Files\Ask.com\GenericAskToolbar.dll)

    ========================================

    C:\Program Files\Ad-Remover\Quarantine: 0 File(s)
    C:\Program Files\Ad-Remover\Backup: 1 File(s)

    C:\Ad-Report-SCAN[1].txt - 03/04/2011 20:39:59 (6821 Byte(s))

    End at: 20:40:37, 03/04/2011

    ============== E.O.F ==============
    0
  6. Arnaud3829 Messages postés 153 Statut Membre 10
     
    mais la esceque mon ordi est debarasser du virus parceque je dois nettoyer cela de ma soeur :P
    0
  7. gen-hackman
     
    t'inquiete pas on le fera apres c'est pas le meme pc donc la procedure n'est pas la meme
    0
  8. Arnaud3829 Messages postés 153 Statut Membre 10
     
    ouai je le c :/ mais bon
    0
  9. Arnaud3829 Messages postés 153 Statut Membre 10
     
    esceque ca vaudrait la peine de créer une autre poste pour le pc avec windows 7 et win 7 home sécurity...
    0
Précédent
  • 1
  • 2
  • 3