Virus sur pc aidez moi please.

Résolu
korigane Messages postés 20 Date d'inscription   Statut Membre Dernière intervention   -  
 momo -
Bonjour,

Suite à un scan au démarrage que j'ai fais je me suis aperçus que j'avais pleins de virus, je le ais mis en quarantenaire sur avast.
Par contre après je ne sais pas du tout ce que je dois faire, je ne m'y connais pas.
Aidez moi s'il vous plait.

NOM:
Emplacement d'origine :
Derniers changements :
Date du transfert :
Virus :


ClickPotatoLiteSA.exe
C:\Program Files \ClickPotatoLite\bin\10.0.668.0
22/03/2011 23:25:28
21/05/2011 13:26:04
Win32:HotBar-BE [PUP]

ClickPotatoLiteSAAX.dll
C:\Program Files \ClickPotatoLite\bin\10.0.668.0
22/03/2011 23:28:10
21/05/2011 13:26:13
Win32:HotBar-BE [PUP]

ClickPotatoLiteSABHO.dll
C:\Program Files \ClickPotatoLite\bin\10.0.668.0
22/03/2011 23:18:46
21/05/2011 13:26:26
Win32:HotBar-BE [PUP]


ClickPotatoLiteSAHook.dll
C:\Program Files \ClickPotatoLite\bin\10.0.668.0
22/03/2011 23:29:20
21/05/2011 13:26:33
Win32:HotBar-BE [PUP]

ClickPotatoLiteUninstaller.exe
C:\Program Files \ClickPotatoLite\bin\10.0.668.0
21/05/2011 13:26:39
21/05/2011 13:26:39
NSIS:Zango [PUP]

LaunchHelp.dll
C:\Program Files \ClickPotatoLite\bin\10.0.668.0
22/03/2011 23:26:08
21/05/2011 13:26:44
Win32:HotBar-BE [PUP]


npclntax_ClickPotatoLiteSA.dll
C:\Program Files \ClickPotatoLite\bin\10.0.668.0\firefox\extensions\plugins
22/03/2011 23:30:20
21/05/2011 13:26:42
Win32:HotBar-BE [PUP]


npclntax_ClickPotatoLiteSA.dll
C:\Program Files\Mozilla Firefox\plugins
22/03/2011 23:30:20
21/05/2011 13:31:22
Win32:HotBar-BE [PUP]




Questscan.exe
C:\Program Files\QuestScan
20/05/2011 08 :32 :54
21/05/2011 13 :33 :34
Win32 :Zwangi-BW [PUP]


questscan129.exe
C:\ProgramData\QuestScan
20/05/2011 08:32:54
21/05/2011 13:36:25
Win32 :Zwangi-BW [PUP]

ShopperRepportsUninstaller.exe
C:\Program Files\ShopperRepports3\bin\3.1.69.0
21/05/2011 13:34:00
21/05/2011 13:34:00
NSIS:Zango [PUP]

Upgrade[1].cab
C:\Windows\System32\config\systemprofile\AppData\Local\Microft\Windows\Temporay Internet Files\Content.IE5\CDM6Y4ER
21/05/2011 14:04:40
21/05/2011 14:04:40
Win32:Zwangi-BT [PUP]





A voir également:

36 réponses

  • 1
  • 2
Réponse 1 / 36
Destrio5 Messages postés 85985 Date d'inscription   Statut Modérateur Dernière intervention   10 302
 
Bonjour,

--> Utilise l'option "Scanner" d'Ad-Remover et poste le rapport :
http://www.teamxscript.org/adremoverTelechargement.html
1
Réponse 2 / 36
korigane Messages postés 20 Date d'inscription   Statut Membre Dernière intervention  
 
Merci, voila c'est fait :

======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 12/04/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org

C:\Program Files\Ad-Remover\main.exe (SCAN [1]) -> Lancé à 15:10:57 le 21/05/2011, Mode normal

Microsoft Windows 7 Édition Familiale Premium (X86)
Famille Adams@FAMILLEADAMS-PC (System manufacturer System Product Name)

============== RECHERCHE ==============


Dossier trouvé: C:\Users\Famille Adams\AppData\Roaming\Mozilla\FireFox\Profiles\2tiqb051.default\conduit
Dossier trouvé: C:\Users\Famille Adams\AppData\Roaming\Mozilla\FireFox\Profiles\2tiqb051.default\ConduitEngine
Dossier trouvé: C:\Users\Famille Adams\AppData\Roaming\Mozilla\FireFox\Profiles\2tiqb051.default\extensions\engine@conduit.com
Dossier trouvé: C:\Users\Famille Adams\AppData\Roaming\Mozilla\FireFox\Profiles\2tiqb051.default\extensions\{33E0DAA6-3AF3-D8B5-6752-10E949C61516}
Dossier trouvé: C:\ProgramData\2ACA5CC3-0F83-453D-A079-1076FE1A8B65
Dossier trouvé: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClickPotato
Dossier trouvé: C:\Users\Famille Adams\AppData\Roaming\ClickPotatoLite
Dossier trouvé: C:\Program Files\ClickPotatoLite
Dossier trouvé: C:\ProgramData\ClickPotatoLiteSA
Dossier trouvé: C:\Users\Famille Adams\AppData\Roaming\Complitly
Dossier trouvé: C:\Program Files\Complitly
Dossier trouvé: C:\Users\Famille Adams\AppData\Roaming\freeTVRadio
Dossier trouvé: C:\Program Files\freeTVRadio
Dossier trouvé: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShopperReports
Dossier trouvé: C:\Users\Famille Adams\AppData\Roaming\ShopperReports3
Dossier trouvé: C:\Users\Famille Adams\AppData\LocalLow\ShopperReports3
Dossier trouvé: C:\Program Files\ShopperReports3

-- Fichier ouvert: C:\Users\Famille Adams\AppData\Roaming\Mozilla\FireFox\Profiles\2tiqb051.default\Prefs.js --
Ligne trouvée: user_pref("CT2653012.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TER...
Ligne trouvée: user_pref("CT2653012.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT265...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/?aid=1045667&fid=1041378", "\"0\...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1045667/1041378/FR", "\"0\"...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/909619/905414/FR", "\"0\"")...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-services.com/DLG.pkg?ver=3.3.3...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=0", "63...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=3/13/20...
Ligne trouvée: user_pref("CommunityToolbar.EngineOwner", "ConduitEngine");
Ligne trouvée: user_pref("CommunityToolbar.EngineOwnerGuid", "engine@conduit.com");
Ligne trouvée: user_pref("CommunityToolbar.EngineOwnerToolbarId", "conduitengine");
Ligne trouvée: user_pref("CommunityToolbar.IsEngineShown", true);
Ligne trouvée: user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
Ligne trouvée: user_pref("CommunityToolbar.OriginalEngineOwner", "ConduitEngine");
Ligne trouvée: user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "engine@conduit.com");
Ligne trouvée: user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "conduitengine");
Ligne trouvée: user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.pr...
Ligne trouvée: user_pref("CommunityToolbar.ToolbarsList", "CT2653012,ConduitEngine");
Ligne trouvée: user_pref("CommunityToolbar.ToolbarsList2", "CT2653012");
Ligne trouvée: user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Thu May 12 2011 18:37:19 GMT+02...
Ligne trouvée: user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
Ligne trouvée: user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Fri May 20 2011 22:20:17 GMT+0200");
Ligne trouvée: user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Ligne trouvée: user_pref("CommunityToolbar.alert.locale", "en");
Ligne trouvée: user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Ligne trouvée: user_pref("CommunityToolbar.alert.loginLastCheckTime", "Fri May 20 2011 21:52:31 GMT+0200");
Ligne trouvée: user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1305622559");
Ligne trouvée: user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Ligne trouvée: user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Ligne trouvée: user_pref("CommunityToolbar.alert.showTrayIcon", false);
Ligne trouvée: user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Ligne trouvée: user_pref("CommunityToolbar.alert.userId", "{70d1cec8-08fd-406f-9955-b8263b495fca}");
Ligne trouvée: user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Ligne trouvée: user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Ligne trouvée: user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2653012");
Ligne trouvée: user_pref("ConduitEngine.AppTrackingLastCheckTime", "Thu May 12 2011 22:16:00 GMT+0200");
Ligne trouvée: user_pref("ConduitEngine.CTID", "ConduitEngine");
Ligne trouvée: user_pref("ConduitEngine.DialogsGetterLastCheckTime", "Wed May 18 2011 18:37:23 GMT+0200");
Ligne trouvée: user_pref("ConduitEngine.FirstServerDate", "05/12/2011 19");
Ligne trouvée: user_pref("ConduitEngine.FirstTime", true);
Ligne trouvée: user_pref("ConduitEngine.FirstTimeFF3", true);
Ligne trouvée: user_pref("ConduitEngine.HasUserGlobalKeys", true);
Ligne trouvée: user_pref("ConduitEngine.Initialize", true);
Ligne trouvée: user_pref("ConduitEngine.InitializeCommonPrefs", true);
Ligne trouvée: user_pref("ConduitEngine.InstalledDate", "Thu May 12 2011 18:37:20 GMT+0200");
Ligne trouvée: user_pref("ConduitEngine.IsMulticommunity", false);
Ligne trouvée: user_pref("ConduitEngine.IsOpenThankYouPage", false);
Ligne trouvée: user_pref("ConduitEngine.IsOpenUninstallPage", true);
Ligne trouvée: user_pref("ConduitEngine.LanguagePackLastCheckTime", "Fri May 20 2011 21:52:32 GMT+0200");
Ligne trouvée: user_pref("ConduitEngine.LastLogin_3.3.3.2", "Sat May 21 2011 12:58:06 GMT+0200");
Ligne trouvée: user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
Ligne trouvée: user_pref("ConduitEngine.SettingsLastCheckTime", "Sat May 21 2011 12:58:06 GMT+0200");
Ligne trouvée: user_pref("ConduitEngine.UserID", "UN74308046297314985");
Ligne trouvée: user_pref("ConduitEngine.componentAlertEnabled", false);
Ligne trouvée: user_pref("ConduitEngine.engineLocale", "fr");
Ligne trouvée: user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Fri May 20 2011 21:52:45 GMT+0200");
Ligne trouvée: user_pref("ConduitEngine.globalFirstTimeInfoLastCheckTime", "Sat May 21 2011 12:58:06 GMT+0200");
Ligne trouvée: user_pref("ConduitEngine.initDone", true);
Ligne trouvée: user_pref("ConduitEngine.isAppTrackingManagerOn", true);
Ligne trouvée: user_pref("ConduitEngine.usagesFlag", 2);
Ligne trouvée: user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2653012&Sea...
-- Fichier Fermé --


Clé trouvée: HKLM\Software\Classes\CLSID\{09325003-167C-483d-A4BA-8B3122ABB432}
Clé trouvée: HKLM\Software\Classes\AppID\{0D82ACD6-A652-4496-A298-2BDE705F4227}
Clé trouvée: HKLM\Software\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Clé trouvée: HKLM\Software\Classes\CLSID\{100EB1FD-D03E-47fd-81F3-EE91287F9465}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{100EB1FD-D03E-47fd-81F3-EE91287F9465}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{100EB1FD-D03E-47fd-81F3-EE91287F9465}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{100EB1FD-D03E-47fd-81F3-EE91287F9465}
Clé trouvée: HKLM\Software\Classes\CLSID\{1602F07D-8BF3-4c08-BDD6-DDDB1C48AEDC}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1602F07D-8BF3-4c08-BDD6-DDDB1C48AEDC}
Clé trouvée: HKLM\Software\Classes\CLSID\{20EA9658-6BC3-4599-A87D-6371FE9295FC}
Clé trouvée: HKLM\Software\Classes\CLSID\{2721A8E5-BFDB-4562-9912-9E0531CA616C}
Clé trouvée: HKLM\Software\Classes\AppID\{7025E484-D4B0-441a-9F0B-69063BD679CE}
Clé trouvée: HKLM\Software\Classes\CLSID\{396CFC12-932D-496b-A0A8-5D7201E105E1}
Clé trouvée: HKLM\Software\Classes\AppID\{A89256AD-EC17-4a83-BEF5-4B8BC4F39306}
Clé trouvée: HKLM\Software\Classes\CLSID\{6DD76B7B-6423-4df0-9A07-84A6CAD973A0}
Clé trouvée: HKLM\Software\Classes\CLSID\{74C22317-5B90-471f-9AD2-FEC049870A16}
Clé trouvée: HKLM\Software\Classes\CLSID\{7A3D6D17-9DD5-4C60-8076-D1784DABAF8C}
Clé trouvée: HKLM\Software\Classes\AppID\{D2083641-E57F-4eab-BB85-0582424F4A29}
Clé trouvée: HKLM\Software\Classes\CLSID\{7F6CFB6A-9227-4bb8-B941-F2B067E76F51}
Clé trouvée: HKLM\Software\Classes\CLSID\{A16AD1E9-F69A-45af-9462-B1C286708842}
Clé trouvée: HKLM\Software\Classes\CLSID\{A7CDDCDC-BEEB-4685-A062-978F5E07CEEE}
Clé trouvée: HKCU\Software\Microsoft\Internet Explorer\Explorer Bars\{A7CDDCDC-BEEB-4685-A062-978F5E07CEEE}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7CDDCDC-BEEB-4685-A062-978F5E07CEEE}
Clé trouvée: HKLM\Software\Classes\CLSID\{AB0EE208-DF60-4fa7-A617-C4269760033E}
Clé trouvée: HKLM\Software\Classes\CLSID\{AC6D819E-AA8F-4418-A3BB-D165C1B18BB5}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{AC6D819E-AA8F-4418-A3BB-D165C1B18BB5}
Clé trouvée: HKLM\Software\Classes\CLSID\{B63808A8-641E-4201-BFF7-4ADBC6F42FA4}
Clé trouvée: HKLM\Software\Classes\AppID\{8258B35C-05B8-4c0e-9525-9BCCC70F8F2D}
Clé trouvée: HKLM\Software\Classes\CLSID\{C9CCBB35-D123-4a31-AFFC-9B2933132116}
Clé trouvée: HKLM\Software\Classes\CLSID\{E12AEAB6-7D12-4c07-8E36-5892EFB4DAFB}
Clé trouvée: HKLM\Software\Classes\CLSID\{E2F2C137-A782-4fb5-81AF-086156F5EB0A}
Clé trouvée: HKLM\Software\Classes\CLSID\{F1D06C9F-51F0-4476-BEDE-5DDF91BE304E}
Clé trouvée: HKLM\Software\Classes\CLSID\{F3A32DF2-7413-4fb1-B575-1AC920A17B76}
Clé trouvée: HKLM\Software\Classes\Interface\{21BA420E-161C-413A-B21E-4E42AE1F4226}
Clé trouvée: HKLM\Software\Classes\Interface\{30B15818-E110-4527-9C05-46ACE5A3460D}
Clé trouvée: HKLM\Software\Classes\Interface\{419EDA30-6DFF-432C-B534-E15D899ABEE4}
Clé trouvée: HKLM\Software\Classes\Interface\{453DB0C5-F41C-4D97-8DD6-CC72ECD5F699}
Clé trouvée: HKLM\Software\Classes\Interface\{4AFC07D0-59BB-46B8-B097-1A46E88EEF71}
Clé trouvée: HKLM\Software\Classes\Interface\{618AAD04-921F-44C2-BE38-C0818AF69861}
Clé trouvée: HKLM\Software\Classes\Interface\{6511CE4C-4722-40D0-AD3D-4AFA2F50978A}
Clé trouvée: HKLM\Software\Classes\Interface\{8AD9AD05-36BE-4E40-BA62-5422EB0D02FB}
Clé trouvée: HKLM\Software\Classes\Interface\{9BEC9B38-BF39-4899-806E-A1C5DFEB60A2}
Clé trouvée: HKLM\Software\Classes\Interface\{AEBF09E2-0C15-43C8-99BF-928C645D98A0}
Clé trouvée: HKLM\Software\Classes\Interface\{B5D2ED96-62F9-4C2C-956D-E425B1F67337}
Clé trouvée: HKLM\Software\Classes\Interface\{B86D82BF-D39F-439A-A07C-43EDDC6F6EA6}
Clé trouvée: HKLM\Software\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}
Clé trouvée: HKLM\Software\Classes\Interface\{D3A412E8-1E4B-47D2-9B12-F88291F5AFBB}
Clé trouvée: HKLM\Software\Classes\Interface\{D8560AC2-21B5-4C1A-BDD4-BD12BC83B082}
Clé trouvée: HKLM\Software\Classes\Interface\{DA6305B9-0869-4235-8C1D-533A65E639E5}
Clé trouvée: HKLM\Software\Classes\Interface\{E25DA6D6-C365-46CF-ABAF-DC5893135D7A}
Clé trouvée: HKLM\Software\Classes\Interface\{E6961C59-CFCE-4CCD-B794-BC78DB98413A}
Clé trouvée: HKLM\Software\Classes\TypeLib\{01BCB858-2F62-4F06-A8F4-48F927C15333}
Clé trouvée: HKLM\Software\Classes\TypeLib\{573F4ABB-A1A2-44ED-9BA9-A8DAD40AAC46}
Clé trouvée: HKLM\Software\Classes\TypeLib\{5FE0CEAE-CB69-40AF-A323-40F94257DACB}
Clé trouvée: HKLM\Software\Classes\TypeLib\{814BAA91-DC22-4350-87D6-0C86E93F7F08}
Clé trouvée: HKLM\Software\Classes\TypeLib\{ACC62306-9A63-4864-BD2F-C8825D2D7EA6}
Clé trouvée: HKLM\Software\Classes\TypeLib\{C55CA95C-324B-451C-B2D2-6E895AA75FEC}
Clé trouvée: HKLM\Software\Classes\TypeLib\{CDCA70D8-C6A6-49EE-9BED-7429D6C477A2}
Clé trouvée: HKLM\Software\Classes\TypeLib\{D136987F-E1C4-4CCC-A220-893DF03EC5DF}
Clé trouvée: HKLM\Software\Classes\TypeLib\{E343EDFC-1E6C-4CB5-AA29-E9C922641C80}
Clé trouvée: HKLM\Software\Classes\TypeLib\{F1A1892C-2A6C-4817-98B4-FF81443CBA20}
Clé trouvée: HKLM\Software\Classes\ClickPotatoLiteAx.Info
Clé trouvée: HKLM\Software\Classes\ClickPotatoLiteAx.Info.1
Clé trouvée: HKLM\Software\Classes\ClickPotatoLiteAX.UserProfiles
Clé trouvée: HKLM\Software\Classes\ClickPotatoLiteAX.UserProfiles.1
Clé trouvée: HKLM\Software\Classes\MenuButtonIE.ButtonIE
Clé trouvée: HKLM\Software\Classes\MenuButtonIE.ButtonIE.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.AsyncReporter
Clé trouvée: HKLM\Software\Classes\ShopperReports.AsyncReporter.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.Dwnldr
Clé trouvée: HKLM\Software\Classes\ShopperReports.Dwnldr.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.HbAx
Clé trouvée: HKLM\Software\Classes\ShopperReports.HbAx.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.HbGuru
Clé trouvée: HKLM\Software\Classes\ShopperReports.HbGuru.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.HbInfoBand
Clé trouvée: HKLM\Software\Classes\ShopperReports.HbInfoBand.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.IEButton
Clé trouvée: HKLM\Software\Classes\ShopperReports.IEButton.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.IEButtonA
Clé trouvée: HKLM\Software\Classes\ShopperReports.IEButtonA.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.MozillaNvgtnTrpr
Clé trouvée: HKLM\Software\Classes\ShopperReports.MozillaNvgtnTrpr.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.MozillaPSExecuter
Clé trouvée: HKLM\Software\Classes\ShopperReports.MozillaPSExecuter.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.ReportData
Clé trouvée: HKLM\Software\Classes\ShopperReports.ReportData.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.Reporter
Clé trouvée: HKLM\Software\Classes\ShopperReports.Reporter.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.RprtCtrl
Clé trouvée: HKLM\Software\Classes\ShopperReports.RprtCtrl.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.Scopes
Clé trouvée: HKLM\Software\Classes\ShopperReports.Scopes.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.Stock
Clé trouvée: HKLM\Software\Classes\ShopperReports.Stock.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.TriggerImmidiate
Clé trouvée: HKLM\Software\Classes\ShopperReports.TriggerImmidiate.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.TriggerImmidiateOrRandomTS
Clé trouvée: HKLM\Software\Classes\ShopperReports.TriggerImmidiateOrRandomTS.1
Clé trouvée: HKLM\Software\Classes\ShopperReports.TriggerOnceInDay
Clé trouvée: HKLM\Software\Classes\ShopperReports.TriggerOnceInDay.1
Clé trouvée: HKLM\Software\Classes\SuggestMeYes.SuggestMeYesBHO
Clé trouvée: HKLM\Software\Classes\SuggestMeYes.SuggestMeYesBHO.1
Clé trouvée: HKLM\Software\Classes\AppID\AutocompletePro.DLL
Clé trouvée: HKLM\Software\Classes\AppID\{442F13BC-2031-42D5-9520-437F65271153}
Clé trouvée: HKLM\Software\Classes\AppID\BRNstIE.DLL
Clé trouvée: HKLM\Software\Classes\AppID\CmndFF.DLL
Clé trouvée: HKLM\Software\Classes\AppID\MenuButtonIE.DLL
Clé trouvée: HKLM\Software\Classes\AppID\mozillaps.dll
Clé trouvée: HKLM\Software\Classes\AppID\Pltfrm.DLL
Clé trouvée: HKLM\Software\ClickPotatoLite
Clé trouvée: HKLM\Software\ShopperReports3
Clé trouvée: HKCU\Software\ClickPotatoLiteSA
Clé trouvée: HKCU\Software\Complitly
Clé trouvée: HKCU\Software\Conduit
Clé trouvée: HKCU\Software\freeTVRadio
Clé trouvée: HKCU\Software\ShopperReports3
Clé trouvée: HKCU\Software\Zugo
Clé trouvée: HKCU\Software\AppDataLow\Software\ShopperReports3
Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ClickpotatoliteSA
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Complitly_is1
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ShopperReportsSA
Clé trouvée: HKLM\Software\Google\Chrome\Extensions\defdhglnppeioeflggkmglipcecffkhk
Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\Extensions\{c5428486-50a0-4a02-9d20-520b59a9f9b2}
Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\Extensions\{c5428486-50a0-4a02-9d20-520b59a9f9b3}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{69725738-CD68-4f36-8D02-8C43722EE5DA}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{89F88394-3828-4D03-A0CF-8203604C3DA6}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B58926D6-CFB0-45D2-9C28-4B5A0F0368AE}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D4233F04-1789-483C-A137-731E8F113DD5}

Valeur trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform|ShopperReports 3.1.69.0
Valeur trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform|SRS_IT_E879077FB7765A5B35AF92
Valeur trouvée: HKLM\Software\Mozilla\Firefox\Extensions|ClickPotatoLite@ClickPotatoLite.com
Valeur trouvée: HKLM\Software\Mozilla\Firefox\Extensions|ShopperReports@ShopperReports.com


============== SCAN ADDITIONNEL ==============

**** Mozilla Firefox Version [4.0.1 (fr)] ****

Plugins\npwachk.dll (Nullsoft, Inc.)
Searchplugins\bing.xml ( hxxp://www.bing.com/search)
Components\browsercomps.dll (Mozilla Foundation)
Extensions\{F0E1168A-B4B5-484C-B77E-0D28E6B64096} (QuestScan)
HKLM_Extensions|ClickPotatoLite@ClickPotatoLite.com - C:\Program Files\ClickPotatoLite\bin\10.0.668.0\firefox\extensions
HKLM_Extensions|ShopperReports@ShopperReports.com - C:\Program Files\ShopperReports3\bin\3.1.69.0\firefox\firefoxtoolbar\extensions

-- C:\Users\Famille Adams\AppData\Roaming\Mozilla\FireFox\Profiles\2tiqb051.default --
Extensions\cacaoweb@cacaoweb.org (cacaoweb)
Extensions\engine@conduit.com (Conduit Engine )
Extensions\{33e0daa6-3af3-d8b5-6752-10e949c61516} (Complitly - Speed up your search with your personal search suggestions tool)
Extensions\{cd90bf73-20f6-44ef-993d-bb920303bd2e} (Veoh Web Player Community Toolbar)
Prefs.js - browser.search.defaulturl, hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2653012&SearchSource=3&q={searchTerms}
Prefs.js - browser.startup.homepage_override.buildID, 20110413222027
Prefs.js - browser.startup.homepage_override.mstone, rv:2.0.1
Prefs.js - keyword.URL, hxxp://www.questscan.com/?tmp=nemo_results_removelink&prt=QstscanPB&keywords=

========================================

**** Internet Explorer Version [9.0.8112.16421] ****

HKCU_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKCU_Main|Start Page - hxxp://go.microsoft.com/fwlink/?LinkId=69157
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=69157
HKLM_Main|Default_Search_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Start Page - hxxp://go.microsoft.com/fwlink/?LinkId=69157
HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\System32\wpcer.exe (x)
HKLM_ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695} - C:\Windows\System32\winfxdocobj.exe (x)
HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files\Internet Explorer\iedw.exe (x)
HKLM_ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7} - C:\Program Files\ClickPotatoLite\bin\10.0.668.0\Weather.exe (x)
HKLM_ElevationPolicy\{F4EE41DA-910C-46b3-9AE4-85C5B0E8B208} - C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe (x)
HKLM_Extensions\{C5428486-50A0-4a02-9D20-520B59A9F9B2} - "ShopperReports - Compare product prices" (C:\Program Files\ShopperReports3\bin\3.1.69.0\ShopperReports.dll,203)
HKLM_Extensions\{C5428486-50A0-4a02-9D20-520B59A9F9B3} - "ShopperReports - Compare travel rates" (C:\Program Files\ShopperReports3\bin\3.1.69.0\ShopperReports.dll,201)
BHO\{0FB6A909-6086-458F-BD92-1F8EE10042A0} - "AC-Pro" (C:\Users\Famille Adams\AppData\Roaming\Complitly\AutocompletePro.dll)
BHO\{100EB1FD-D03E-47fd-81F3-EE91287F9465} - "ShopperReports" (C:\Program Files\ShopperReports3\bin\3.1.69.0\ShopperReports.dll)

========================================

C:\Program Files\Ad-Remover\Quarantine: 0 Fichier(s)
C:\Program Files\Ad-Remover\Backup: 1 Fichier(s)

C:\Ad-Report-SCAN[1].txt - 21/05/2011 15:11:18 (21489 Octet(s))

Fin à: 15:11:48, 21/05/2011

============== E.O.F ==============
0
Réponse 3 / 36
Destrio5 Messages postés 85985 Date d'inscription   Statut Modérateur Dernière intervention   10 302
 
Ok.

--> Relance Ad-Remover, utilise l'option "Nettoyer" et poste le rapport.
0
Réponse 4 / 36
korigane Messages postés 20 Date d'inscription   Statut Membre Dernière intervention  
 
======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 12/04/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org

C:\Program Files\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 15:21:46 le 21/05/2011, Mode normal

Microsoft Windows 7 Édition Familiale Premium (X86)
Famille Adams@FAMILLEADAMS-PC (System manufacturer System Product Name)

============== ACTION(S) ==============


Erreur suppression dossier: C:\Users\Famille Adams\AppData\Roaming\Mozilla\FireFox\Profiles\2tiqb051.default\conduit
Dossier supprimé: C:\Users\Famille Adams\AppData\Roaming\Mozilla\FireFox\Profiles\2tiqb051.default\ConduitEngine
Dossier supprimé: C:\Users\Famille Adams\AppData\Roaming\Mozilla\FireFox\Profiles\2tiqb051.default\extensions\engine@conduit.com
Dossier supprimé: C:\Users\Famille Adams\AppData\Roaming\Mozilla\FireFox\Profiles\2tiqb051.default\extensions\{33E0DAA6-3AF3-D8B5-6752-10E949C61516}
Dossier supprimé: C:\ProgramData\2ACA5CC3-0F83-453D-A079-1076FE1A8B65
Dossier supprimé: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClickPotato
Dossier supprimé: C:\Users\Famille Adams\AppData\Roaming\ClickPotatoLite
Dossier supprimé: C:\Program Files\ClickPotatoLite
Dossier supprimé: C:\ProgramData\ClickPotatoLiteSA
Dossier supprimé: C:\Users\Famille Adams\AppData\Roaming\Complitly
Dossier supprimé: C:\Program Files\Complitly
Dossier supprimé: C:\Users\Famille Adams\AppData\Roaming\freeTVRadio
Dossier supprimé: C:\Program Files\freeTVRadio
Dossier supprimé: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShopperReports
Dossier supprimé: C:\Users\Famille Adams\AppData\Roaming\ShopperReports3
Dossier supprimé: C:\Users\Famille Adams\AppData\LocalLow\ShopperReports3
Dossier supprimé: C:\Program Files\ShopperReports3

(!) -- Fichiers temporaires supprimés.


-- Fichier ouvert: C:\Users\Famille Adams\AppData\Roaming\Mozilla\FireFox\Profiles\2tiqb051.default\Prefs.js --
Ligne supprimée: user_pref("CT2653012.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TER...
Ligne supprimée: user_pref("CT2653012.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT265...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/?aid=1045667&fid=1041378", "\"0\...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1045667/1041378/FR", "\"0\"...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/909619/905414/FR", "\"0\"")...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-services.com/DLG.pkg?ver=3.3.3...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=0", "63...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=3/13/20...
Ligne supprimée: user_pref("CommunityToolbar.EngineOwner", "ConduitEngine");
Ligne supprimée: user_pref("CommunityToolbar.EngineOwnerGuid", "engine@conduit.com");
Ligne supprimée: user_pref("CommunityToolbar.EngineOwnerToolbarId", "conduitengine");
Ligne supprimée: user_pref("CommunityToolbar.IsEngineShown", true);
Ligne supprimée: user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
Ligne supprimée: user_pref("CommunityToolbar.OriginalEngineOwner", "ConduitEngine");
Ligne supprimée: user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "engine@conduit.com");
Ligne supprimée: user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "conduitengine");
Ligne supprimée: user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.pr...
Ligne supprimée: user_pref("CommunityToolbar.ToolbarsList", "CT2653012,ConduitEngine");
Ligne supprimée: user_pref("CommunityToolbar.ToolbarsList2", "CT2653012");
Ligne supprimée: user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Thu May 12 2011 18:37:19 GMT+02...
Ligne supprimée: user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
Ligne supprimée: user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Fri May 20 2011 22:20:17 GMT+0200");
Ligne supprimée: user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Ligne supprimée: user_pref("CommunityToolbar.alert.locale", "en");
Ligne supprimée: user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Ligne supprimée: user_pref("CommunityToolbar.alert.loginLastCheckTime", "Fri May 20 2011 21:52:31 GMT+0200");
Ligne supprimée: user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1305622559");
Ligne supprimée: user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Ligne supprimée: user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Ligne supprimée: user_pref("CommunityToolbar.alert.showTrayIcon", false);
Ligne supprimée: user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Ligne supprimée: user_pref("CommunityToolbar.alert.userId", "{70d1cec8-08fd-406f-9955-b8263b495fca}");
Ligne supprimée: user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Ligne supprimée: user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Ligne supprimée: user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2653012");
Ligne supprimée: user_pref("ConduitEngine.AppTrackingLastCheckTime", "Thu May 12 2011 22:16:00 GMT+0200");
Ligne supprimée: user_pref("ConduitEngine.CTID", "ConduitEngine");
Ligne supprimée: user_pref("ConduitEngine.DialogsGetterLastCheckTime", "Wed May 18 2011 18:37:23 GMT+0200");
Ligne supprimée: user_pref("ConduitEngine.FirstServerDate", "05/12/2011 19");
Ligne supprimée: user_pref("ConduitEngine.FirstTime", true);
Ligne supprimée: user_pref("ConduitEngine.FirstTimeFF3", true);
Ligne supprimée: user_pref("ConduitEngine.HasUserGlobalKeys", true);
Ligne supprimée: user_pref("ConduitEngine.Initialize", true);
Ligne supprimée: user_pref("ConduitEngine.InitializeCommonPrefs", true);
Ligne supprimée: user_pref("ConduitEngine.InstalledDate", "Thu May 12 2011 18:37:20 GMT+0200");
Ligne supprimée: user_pref("ConduitEngine.IsMulticommunity", false);
Ligne supprimée: user_pref("ConduitEngine.IsOpenThankYouPage", false);
Ligne supprimée: user_pref("ConduitEngine.IsOpenUninstallPage", true);
Ligne supprimée: user_pref("ConduitEngine.LanguagePackLastCheckTime", "Fri May 20 2011 21:52:32 GMT+0200");
Ligne supprimée: user_pref("ConduitEngine.LastLogin_3.3.3.2", "Sat May 21 2011 12:58:06 GMT+0200");
Ligne supprimée: user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
Ligne supprimée: user_pref("ConduitEngine.SettingsLastCheckTime", "Sat May 21 2011 12:58:06 GMT+0200");
Ligne supprimée: user_pref("ConduitEngine.UserID", "UN74308046297314985");
Ligne supprimée: user_pref("ConduitEngine.componentAlertEnabled", false);
Ligne supprimée: user_pref("ConduitEngine.engineLocale", "fr");
Ligne supprimée: user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Fri May 20 2011 21:52:45 GMT+0200");
Ligne supprimée: user_pref("ConduitEngine.globalFirstTimeInfoLastCheckTime", "Sat May 21 2011 12:58:06 GMT+0200");
Ligne supprimée: user_pref("ConduitEngine.initDone", true);
Ligne supprimée: user_pref("ConduitEngine.isAppTrackingManagerOn", true);
Ligne supprimée: user_pref("ConduitEngine.usagesFlag", 2);
Ligne supprimée: user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2653012&Sea...
-- Fichier Fermé --


Clé supprimée: HKLM\Software\Classes\CLSID\{09325003-167C-483d-A4BA-8B3122ABB432}
Clé supprimée: HKLM\Software\Classes\AppID\{0D82ACD6-A652-4496-A298-2BDE705F4227}
Clé supprimée: HKLM\Software\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Clé supprimée: HKLM\Software\Classes\CLSID\{100EB1FD-D03E-47fd-81F3-EE91287F9465}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{100EB1FD-D03E-47fd-81F3-EE91287F9465}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{100EB1FD-D03E-47fd-81F3-EE91287F9465}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{100EB1FD-D03E-47fd-81F3-EE91287F9465}
Clé supprimée: HKLM\Software\Classes\CLSID\{1602F07D-8BF3-4c08-BDD6-DDDB1C48AEDC}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1602F07D-8BF3-4c08-BDD6-DDDB1C48AEDC}
Clé supprimée: HKLM\Software\Classes\CLSID\{20EA9658-6BC3-4599-A87D-6371FE9295FC}
Clé supprimée: HKLM\Software\Classes\CLSID\{2721A8E5-BFDB-4562-9912-9E0531CA616C}
Clé supprimée: HKLM\Software\Classes\AppID\{7025E484-D4B0-441a-9F0B-69063BD679CE}
Clé supprimée: HKLM\Software\Classes\CLSID\{396CFC12-932D-496b-A0A8-5D7201E105E1}
Clé supprimée: HKLM\Software\Classes\AppID\{A89256AD-EC17-4a83-BEF5-4B8BC4F39306}
Clé supprimée: HKLM\Software\Classes\CLSID\{6DD76B7B-6423-4df0-9A07-84A6CAD973A0}
Clé supprimée: HKLM\Software\Classes\CLSID\{74C22317-5B90-471f-9AD2-FEC049870A16}
Clé supprimée: HKLM\Software\Classes\CLSID\{7A3D6D17-9DD5-4C60-8076-D1784DABAF8C}
Clé supprimée: HKLM\Software\Classes\AppID\{D2083641-E57F-4eab-BB85-0582424F4A29}
Clé supprimée: HKLM\Software\Classes\CLSID\{7F6CFB6A-9227-4bb8-B941-F2B067E76F51}
Clé supprimée: HKLM\Software\Classes\CLSID\{A16AD1E9-F69A-45af-9462-B1C286708842}
Clé supprimée: HKLM\Software\Classes\CLSID\{A7CDDCDC-BEEB-4685-A062-978F5E07CEEE}
Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\Explorer Bars\{A7CDDCDC-BEEB-4685-A062-978F5E07CEEE}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7CDDCDC-BEEB-4685-A062-978F5E07CEEE}
Clé supprimée: HKLM\Software\Classes\CLSID\{AB0EE208-DF60-4fa7-A617-C4269760033E}
Clé supprimée: HKLM\Software\Classes\CLSID\{AC6D819E-AA8F-4418-A3BB-D165C1B18BB5}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{AC6D819E-AA8F-4418-A3BB-D165C1B18BB5}
Clé supprimée: HKLM\Software\Classes\CLSID\{B63808A8-641E-4201-BFF7-4ADBC6F42FA4}
Clé supprimée: HKLM\Software\Classes\AppID\{8258B35C-05B8-4c0e-9525-9BCCC70F8F2D}
Clé supprimée: HKLM\Software\Classes\CLSID\{C9CCBB35-D123-4a31-AFFC-9B2933132116}
Clé supprimée: HKLM\Software\Classes\CLSID\{E12AEAB6-7D12-4c07-8E36-5892EFB4DAFB}
Clé supprimée: HKLM\Software\Classes\CLSID\{E2F2C137-A782-4fb5-81AF-086156F5EB0A}
Clé supprimée: HKLM\Software\Classes\CLSID\{F1D06C9F-51F0-4476-BEDE-5DDF91BE304E}
Clé supprimée: HKLM\Software\Classes\CLSID\{F3A32DF2-7413-4fb1-B575-1AC920A17B76}
Clé supprimée: HKLM\Software\Classes\Interface\{21BA420E-161C-413A-B21E-4E42AE1F4226}
Clé supprimée: HKLM\Software\Classes\Interface\{30B15818-E110-4527-9C05-46ACE5A3460D}
Clé supprimée: HKLM\Software\Classes\Interface\{419EDA30-6DFF-432C-B534-E15D899ABEE4}
Clé supprimée: HKLM\Software\Classes\Interface\{453DB0C5-F41C-4D97-8DD6-CC72ECD5F699}
Clé supprimée: HKLM\Software\Classes\Interface\{4AFC07D0-59BB-46B8-B097-1A46E88EEF71}
Clé supprimée: HKLM\Software\Classes\Interface\{618AAD04-921F-44C2-BE38-C0818AF69861}
Clé supprimée: HKLM\Software\Classes\Interface\{6511CE4C-4722-40D0-AD3D-4AFA2F50978A}
Clé supprimée: HKLM\Software\Classes\Interface\{8AD9AD05-36BE-4E40-BA62-5422EB0D02FB}
Clé supprimée: HKLM\Software\Classes\Interface\{9BEC9B38-BF39-4899-806E-A1C5DFEB60A2}
Clé supprimée: HKLM\Software\Classes\Interface\{AEBF09E2-0C15-43C8-99BF-928C645D98A0}
Clé supprimée: HKLM\Software\Classes\Interface\{B5D2ED96-62F9-4C2C-956D-E425B1F67337}
Clé supprimée: HKLM\Software\Classes\Interface\{B86D82BF-D39F-439A-A07C-43EDDC6F6EA6}
Clé supprimée: HKLM\Software\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}
Clé supprimée: HKLM\Software\Classes\Interface\{D3A412E8-1E4B-47D2-9B12-F88291F5AFBB}
Clé supprimée: HKLM\Software\Classes\Interface\{D8560AC2-21B5-4C1A-BDD4-BD12BC83B082}
Clé supprimée: HKLM\Software\Classes\Interface\{DA6305B9-0869-4235-8C1D-533A65E639E5}
Clé supprimée: HKLM\Software\Classes\Interface\{E25DA6D6-C365-46CF-ABAF-DC5893135D7A}
Clé supprimée: HKLM\Software\Classes\Interface\{E6961C59-CFCE-4CCD-B794-BC78DB98413A}
Clé supprimée: HKLM\Software\Classes\TypeLib\{01BCB858-2F62-4F06-A8F4-48F927C15333}
Clé supprimée: HKLM\Software\Classes\TypeLib\{573F4ABB-A1A2-44ED-9BA9-A8DAD40AAC46}
Clé supprimée: HKLM\Software\Classes\TypeLib\{5FE0CEAE-CB69-40AF-A323-40F94257DACB}
Clé supprimée: HKLM\Software\Classes\TypeLib\{814BAA91-DC22-4350-87D6-0C86E93F7F08}
Clé supprimée: HKLM\Software\Classes\TypeLib\{ACC62306-9A63-4864-BD2F-C8825D2D7EA6}
Clé supprimée: HKLM\Software\Classes\TypeLib\{C55CA95C-324B-451C-B2D2-6E895AA75FEC}
Clé supprimée: HKLM\Software\Classes\TypeLib\{CDCA70D8-C6A6-49EE-9BED-7429D6C477A2}
Clé supprimée: HKLM\Software\Classes\TypeLib\{D136987F-E1C4-4CCC-A220-893DF03EC5DF}
Clé supprimée: HKLM\Software\Classes\TypeLib\{E343EDFC-1E6C-4CB5-AA29-E9C922641C80}
Clé supprimée: HKLM\Software\Classes\TypeLib\{F1A1892C-2A6C-4817-98B4-FF81443CBA20}
Clé supprimée: HKLM\Software\Classes\ClickPotatoLiteAx.Info
Clé supprimée: HKLM\Software\Classes\ClickPotatoLiteAx.Info.1
Clé supprimée: HKLM\Software\Classes\ClickPotatoLiteAX.UserProfiles
Clé supprimée: HKLM\Software\Classes\ClickPotatoLiteAX.UserProfiles.1
Clé supprimée: HKLM\Software\Classes\MenuButtonIE.ButtonIE
Clé supprimée: HKLM\Software\Classes\MenuButtonIE.ButtonIE.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.AsyncReporter
Clé supprimée: HKLM\Software\Classes\ShopperReports.AsyncReporter.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.Dwnldr
Clé supprimée: HKLM\Software\Classes\ShopperReports.Dwnldr.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.HbAx
Clé supprimée: HKLM\Software\Classes\ShopperReports.HbAx.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.HbGuru
Clé supprimée: HKLM\Software\Classes\ShopperReports.HbGuru.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.HbInfoBand
Clé supprimée: HKLM\Software\Classes\ShopperReports.HbInfoBand.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.IEButton
Clé supprimée: HKLM\Software\Classes\ShopperReports.IEButton.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.IEButtonA
Clé supprimée: HKLM\Software\Classes\ShopperReports.IEButtonA.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.MozillaNvgtnTrpr
Clé supprimée: HKLM\Software\Classes\ShopperReports.MozillaNvgtnTrpr.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.MozillaPSExecuter
Clé supprimée: HKLM\Software\Classes\ShopperReports.MozillaPSExecuter.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.ReportData
Clé supprimée: HKLM\Software\Classes\ShopperReports.ReportData.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.Reporter
Clé supprimée: HKLM\Software\Classes\ShopperReports.Reporter.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.RprtCtrl
Clé supprimée: HKLM\Software\Classes\ShopperReports.RprtCtrl.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.Scopes
Clé supprimée: HKLM\Software\Classes\ShopperReports.Scopes.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.Stock
Clé supprimée: HKLM\Software\Classes\ShopperReports.Stock.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.TriggerImmidiate
Clé supprimée: HKLM\Software\Classes\ShopperReports.TriggerImmidiate.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.TriggerImmidiateOrRandomTS
Clé supprimée: HKLM\Software\Classes\ShopperReports.TriggerImmidiateOrRandomTS.1
Clé supprimée: HKLM\Software\Classes\ShopperReports.TriggerOnceInDay
Clé supprimée: HKLM\Software\Classes\ShopperReports.TriggerOnceInDay.1
Clé supprimée: HKLM\Software\Classes\SuggestMeYes.SuggestMeYesBHO
Clé supprimée: HKLM\Software\Classes\SuggestMeYes.SuggestMeYesBHO.1
Clé supprimée: HKLM\Software\Classes\AppID\AutocompletePro.DLL
Clé supprimée: HKLM\Software\Classes\AppID\{442F13BC-2031-42D5-9520-437F65271153}
Clé supprimée: HKLM\Software\Classes\AppID\BRNstIE.DLL
Clé supprimée: HKLM\Software\Classes\AppID\CmndFF.DLL
Clé supprimée: HKLM\Software\Classes\AppID\MenuButtonIE.DLL
Clé supprimée: HKLM\Software\Classes\AppID\mozillaps.dll
Clé supprimée: HKLM\Software\Classes\AppID\Pltfrm.DLL
Clé supprimée: HKLM\Software\ClickPotatoLite
Clé supprimée: HKLM\Software\ShopperReports3
Clé supprimée: HKCU\Software\ClickPotatoLiteSA
Clé supprimée: HKCU\Software\Complitly
Clé supprimée: HKCU\Software\Conduit
Clé supprimée: HKCU\Software\freeTVRadio
Clé supprimée: HKCU\Software\ShopperReports3
Clé supprimée: HKCU\Software\Zugo
Clé supprimée: HKCU\Software\AppDataLow\Software\ShopperReports3
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ClickpotatoliteSA
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Complitly_is1
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ShopperReportsSA
Clé supprimée: HKLM\Software\Google\Chrome\Extensions\defdhglnppeioeflggkmglipcecffkhk
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Extensions\{c5428486-50a0-4a02-9d20-520b59a9f9b2}
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Extensions\{c5428486-50a0-4a02-9d20-520b59a9f9b3}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{69725738-CD68-4f36-8D02-8C43722EE5DA}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{89F88394-3828-4D03-A0CF-8203604C3DA6}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B58926D6-CFB0-45D2-9C28-4B5A0F0368AE}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D4233F04-1789-483C-A137-731E8F113DD5}

Valeur supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform|ShopperReports 3.1.69.0
Valeur supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform|SRS_IT_E879077FB7765A5B35AF92
Valeur supprimée: HKLM\Software\Mozilla\Firefox\Extensions|ClickPotatoLite@ClickPotatoLite.com
Valeur supprimée: HKLM\Software\Mozilla\Firefox\Extensions|ShopperReports@ShopperReports.com


============== SCAN ADDITIONNEL ==============

**** Mozilla Firefox Version [4.0.1 (fr)] ****

Plugins\npwachk.dll (Nullsoft, Inc.)
Searchplugins\bing.xml ( hxxp://www.bing.com/search)
Components\browsercomps.dll (Mozilla Foundation)
Extensions\{F0E1168A-B4B5-484C-B77E-0D28E6B64096} (QuestScan)

-- C:\Users\Famille Adams\AppData\Roaming\Mozilla\FireFox\Profiles\2tiqb051.default --
Extensions\cacaoweb@cacaoweb.org (cacaoweb)
Extensions\{cd90bf73-20f6-44ef-993d-bb920303bd2e} (Veoh Web Player Community Toolbar)
Prefs.js - browser.startup.homepage_override.buildID, 20110413222027
Prefs.js - browser.startup.homepage_override.mstone, rv:2.0.1
Prefs.js - keyword.URL, hxxp://www.questscan.com/?tmp=nemo_results_removelink&prt=QstscanPB&keywords=

========================================

**** Internet Explorer Version [9.0.8112.16421] ****

HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896
HKCU_Main|Start Page - hxxp://fr.msn.com/
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm
HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Start Page - hxxp://fr.msn.com/
HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\System32\wpcer.exe (x)
HKLM_ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695} - C:\Windows\System32\winfxdocobj.exe (x)
HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files\Internet Explorer\iedw.exe (x)
HKLM_ElevationPolicy\{F4EE41DA-910C-46b3-9AE4-85C5B0E8B208} - C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe (x)

========================================

C:\Program Files\Ad-Remover\Quarantine: 159 Fichier(s)
C:\Program Files\Ad-Remover\Backup: 16 Fichier(s)

C:\Ad-Report-CLEAN[1].txt - 21/05/2011 15:22:14 (20919 Octet(s))
C:\Ad-Report-SCAN[1].txt - 21/05/2011 15:11:18 (21628 Octet(s))

Fin à: 15:22:56, 21/05/2011

============== E.O.F ==============
0
momo
 
Tu vas sur avast, puis sur maintenance puis sur mise en quarantaine et de là tu cliques sur les virus et tu les supprimes un à un, je viens de le faire le même virus que toi, après tu refais un scann complet et normalement il n'y aura plus de virus dans ton pc. tu redémarre ta bécane
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 36
Destrio5 Messages postés 85985 Date d'inscription   Statut Modérateur Dernière intervention   10 302
 
--> Relance Ad-Remover et choisis Désinstaller.

--> Suis la procédure suivante et poste le rapport :
https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
0
Réponse 6 / 36
korigane Messages postés 20 Date d'inscription   Statut Membre Dernière intervention  
 
La fin du scan complet viens de m'afficher 15 éléments (écris en rouge)
j'ai cliqué sur enregistrer le rapport

le voici:

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Version de la base de données: 6633

Windows 6.1.7600
Internet Explorer 9.0.8112.16421

21/05/2011 16:26:33
mbam-log-2011-05-21 (16-26-28).txt

Type d'examen: Examen complet (C:\|)
Elément(s) analysé(s): 270055
Temps écoulé: 34 minute(s), 46 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 2
Valeur(s) du Registre infectée(s): 2
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 4
Fichier(s) infecté(s): 7

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\QuestScan (Adware.QuestScan) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\QUESTSCAN (Adware.QuestScan) -> No action taken.

Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\QuestScan\DisplayName (Adware.QuestScan) -> Value: DisplayName -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\QuestScan\DllPath (Adware.QuestScan) -> Value: DllPath -> No action taken.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
c:\program files\mozilla firefox\extensions\{f0e1168a-b4b5-484c-b77e-0d28e6b64096} (Adware.QuestScan) -> No action taken.
c:\program files\mozilla firefox\extensions\{f0e1168a-b4b5-484c-b77e-0d28e6b64096}\chrome (Adware.QuestScan) -> No action taken.
c:\program files\mozilla firefox\extensions\{f0e1168a-b4b5-484c-b77e-0d28e6b64096}\defaults (Adware.QuestScan) -> No action taken.
c:\program files\mozilla firefox\extensions\{f0e1168a-b4b5-484c-b77e-0d28e6b64096}\defaults\preferences (Adware.QuestScan) -> No action taken.

Fichier(s) infecté(s):
c:\Users\famille adams\downloads\programmes\cacaoweb.exe (Trojan.Agent) -> No action taken.
c:\Users\famille adams\downloads\adobe illustrator cs4\Key\adobe-master-cs4-keygen.exe (Trojan.Downloader) -> No action taken.
c:\program files\questscan\uninstall.exe (Adware.QuestScan) -> No action taken.
c:\program files\mozilla firefox\extensions\{f0e1168a-b4b5-484c-b77e-0d28e6b64096}\chrome.manifest (Adware.QuestScan) -> No action taken.
c:\program files\mozilla firefox\extensions\{f0e1168a-b4b5-484c-b77e-0d28e6b64096}\install.rdf (Adware.QuestScan) -> No action taken.
c:\program files\mozilla firefox\extensions\{f0e1168a-b4b5-484c-b77e-0d28e6b64096}\chrome\questscan.jar (Adware.QuestScan) -> No action taken.
c:\program files\mozilla firefox\extensions\{f0e1168a-b4b5-484c-b77e-0d28e6b64096}\defaults\preferences\prefs.js (Adware.QuestScan) -> No action taken.
0
Réponse 7 / 36
Destrio5 Messages postés 85985 Date d'inscription   Statut Modérateur Dernière intervention   10 302
 
Tu as cliqué sur "Supprimer la sélection" ?
0
Réponse 8 / 36
korigane Messages postés 20 Date d'inscription   Statut Membre Dernière intervention  
 
non , je dois le faire?
0
Réponse 9 / 36
Destrio5 Messages postés 85985 Date d'inscription   Statut Modérateur Dernière intervention   10 302
 
Oui.
0
Réponse 10 / 36
korigane Messages postés 20 Date d'inscription   Statut Membre Dernière intervention  
 
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Version de la base de données: 6633

Windows 6.1.7600
Internet Explorer 9.0.8112.16421

21/05/2011 16:41:13
mbam-log-2011-05-21 (16-41-13).txt

Type d'examen: Examen complet (C:\|)
Elément(s) analysé(s): 270055
Temps écoulé: 34 minute(s), 46 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 2
Valeur(s) du Registre infectée(s): 2
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 4
Fichier(s) infecté(s): 7

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\QuestScan (Adware.QuestScan) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\QUESTSCAN (Adware.QuestScan) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\QuestScan\DisplayName (Adware.QuestScan) -> Value: DisplayName -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\QuestScan\DllPath (Adware.QuestScan) -> Value: DllPath -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
c:\program files\mozilla firefox\extensions\{f0e1168a-b4b5-484c-b77e-0d28e6b64096} (Adware.QuestScan) -> Quarantined and deleted successfully.
c:\program files\mozilla firefox\extensions\{f0e1168a-b4b5-484c-b77e-0d28e6b64096}\chrome (Adware.QuestScan) -> Quarantined and deleted successfully.
c:\program files\mozilla firefox\extensions\{f0e1168a-b4b5-484c-b77e-0d28e6b64096}\defaults (Adware.QuestScan) -> Quarantined and deleted successfully.
c:\program files\mozilla firefox\extensions\{f0e1168a-b4b5-484c-b77e-0d28e6b64096}\defaults\preferences (Adware.QuestScan) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
c:\Users\famille adams\downloads\programmes\cacaoweb.exe (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Users\famille adams\downloads\adobe illustrator cs4\Key\adobe-master-cs4-keygen.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\program files\questscan\uninstall.exe (Adware.QuestScan) -> Quarantined and deleted successfully.
c:\program files\mozilla firefox\extensions\{f0e1168a-b4b5-484c-b77e-0d28e6b64096}\chrome.manifest (Adware.QuestScan) -> Quarantined and deleted successfully.
c:\program files\mozilla firefox\extensions\{f0e1168a-b4b5-484c-b77e-0d28e6b64096}\install.rdf (Adware.QuestScan) -> Quarantined and deleted successfully.
c:\program files\mozilla firefox\extensions\{f0e1168a-b4b5-484c-b77e-0d28e6b64096}\chrome\questscan.jar (Adware.QuestScan) -> Quarantined and deleted successfully.
c:\program files\mozilla firefox\extensions\{f0e1168a-b4b5-484c-b77e-0d28e6b64096}\defaults\preferences\prefs.js (Adware.QuestScan) -> Quarantined and deleted successfully.
0
Réponse 11 / 36
Destrio5 Messages postés 85985 Date d'inscription   Statut Modérateur Dernière intervention   10 302
 
--> Relance Malwarebytes' Anti-Malware, va dans Quarantaine et supprime tout.

Combien va le PC ?

--> Télécharge OTL (par OldTimer) sur ton Bureau.
--> Double-clique sur OTL pour le lancer.
(Sous Vista/Win7, il faut cliquer droit sur OTL et choisir Exécuter en tant qu'administrateur)
--> Une fenêtre apparaît. Dans la section Rapport en haut de cette fenêtre, coche Rapport minimal.
--> Coche également les cases à côté de Recherche Lop et Recherche Purity.
--> Enfin, clique sur le bouton Analyse. Le scan ne prend pas beaucoup de temps.
--> Une fois l'analyse terminée, deux fenêtres Bloc-notes vont s'ouvrir : OTL.txt et Extras.txt. Ils se trouvent au même endroit qu'OTL.

Pour me transmettre les rapports :
--> Clique sur ce lien : http://www.cijoint.fr/
--> Clique sur Parcourir... et cherche le fichier du rapport que tu souhaites me transmettre.
--> Clique sur Ouvrir.
--> Clique sur Cliquez ici pour déposer le fichier.
--> Un lien de cette forme, hxxp://www.cijoint.fr/cjlink.php?file=cj200905/cijSKAP5fU.txt, est ajouté dans la page.
--> Copie-colle ce lien dans ta réponse.
0
Réponse 12 / 36
korigane Messages postés 20 Date d'inscription   Statut Membre Dernière intervention  
 
"Combien va le PC ? "
Qu'est ce que tu veux dire?

Pour OTL une fois télécharger, je fais clique droit dans le menus il n'y a pas exécuter en tant qu'administrateur.

juste : ouvrir, ouvrir le dossier contenant le ficher......
0
Réponse 13 / 36
Destrio5 Messages postés 85985 Date d'inscription   Statut Modérateur Dernière intervention   10 302
 
Tu n'avais pas des pubs intempestives avant la désinfection ?

Pour OTL :
http://www.hapoelshack.com/img/maxi/otl.jpg
0
Réponse 14 / 36
korigane Messages postés 20 Date d'inscription   Statut Membre Dernière intervention  
 
Si, depuis quelques temps j'ai vus que j'avais beaucoup de pubs quand j'allais sur le net, surtout quand je cliquai sur un lien, une tonne de pubs qui vienne
toute seule.
Je ne savais pas que ça portais ce nom là.

Pour l'otl
je t'ai fait une capture d'écran aussi
regarde, je n'ai pas "exécuter en tant qu'administrateur"

https://i22.servimg.com/u/f22/15/62/77/96/sans_t11.jpg
0
Réponse 15 / 36
Destrio5 Messages postés 85985 Date d'inscription   Statut Modérateur Dernière intervention   10 302
 
Oui mais c'est normal, là, tu es dans Firefox.

Va dans le dossier où a été enregistré OTL et tu pourras faire comme sur ma capture d'écran.
0
Réponse 16 / 36
korigane Messages postés 20 Date d'inscription   Statut Membre Dernière intervention  
 
J'ai de nouveau des soucis
a se niveau :
"--> Coche également les cases à côté de Recherche Lop et Recherche Purity. "
https://i22.servimg.com/u/f22/15/62/77/96/sans_t12.jpg
j'ai laissée comme c'était, je sais pas quels sont les cases.

a se niveau :
"--> Clique sur Parcourir... et cherche le fichier du rapport que tu souhaites me transmettre. "

Alors l'analyse est finis deux pages bloc notes se sont ouvertes.
Quand je vais dans le dossier, je ne les voit pas
si je clique sur parcourir sur le site que tu m'a donnée je ne les voient pas non plus.

Je les voient que si je cherche a enregistrer de nouveau et remplacer les blocs notes.
https://i22.servimg.com/u/f22/15/62/77/96/sans_t13.jpg
0
Réponse 17 / 36
Destrio5 Messages postés 85985 Date d'inscription   Statut Modérateur Dernière intervention   10 302
 
Sinon, essaie de les copier-coller directement.
0
Réponse 18 / 36
korigane Messages postés 20 Date d'inscription   Statut Membre Dernière intervention  
 
Extras.Txt :

OTL Extras logfile created on: 21/05/2011 18:14:52 - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\Famille Adams\Downloads
Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 43,00% Memory free
4,00 Gb Paging File | 2,00 Gb Available in Paging File | 49,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 465,75 Gb Total Space | 365,82 Gb Free Space | 78,54% Space Free | Partition Type: NTFS

Computer Name: FAMILLEADAMS-PC | User Name: Famille Adams | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Extra Registry (SafeList) ==========/color


[color=#E56717]========== File Associations ==========/color

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

[color=#E56717]========== Shell Spawning ==========/color

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[color=#E56717]========== Security Center Settings ==========/color

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[color=#E56717]========== Firewall Settings ==========/color

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[color=#E56717]========== Authorized Applications List ==========/color


[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========/color

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00ADFB20-AE75-46F4-AD2C-F48B15AC3100}" = Adobe Color NA Recommended Settings CS4
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{054EFA56-2AC1-48F4-A883-0AB89874B972}" = Adobe Extension Manager CS4
"{0711500B-9912-4D60-9A49-C577B4503D42}" = Nero Recode Help
"{07FF7593-9DEA-40B5-9F87-F557E65BBF60}" = Nero Recode
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{098727E1-775A-4450-B573-3F441F1CA243}" = kuler
"{09F56A49-A7B1-4AAB-95B9-D13094254AD1}" = Windows Live UX Platform Language Pack
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0CB9668D-F979-4F31-B8B8-67FE90F929F8}" = Bonjour
"{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
"{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4
"{1122AAC4-AAAA-43BF-B2D4-3C8C12378952}" = Nero InfoTool
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP250_series" = Canon MP250 series MP Drivers
"{11A84FCA-C3C7-4AFD-A797-111DB8569DBC}" = Nero BurningROM
"{12345674-DE9A-677A-CCEE-666356D89777}" = Nero BurnRights
"{15FEDA5F-141C-4127-8D7E-B962D1742728}" = Adobe Photoshop CS5
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{16E16F01-2E2D-4248-A42F-76261C147B6C}" = Adobe Drive CS4
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{1B040683-C390-4711-ABC7-DA8D85E470E7}" = NeroBurningROM
"{1CAC7A41-583B-4483-9FA5-3E5465AFF8C2}" = Microsoft Default Manager
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{2D3455A8-3B15-41A8-99F8-0D4215746463}" = Nero StartSmart
"{3097B151-1F61-4211-A4CC-D70127B226AE}" = SoundTrax
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}" = Windows Live
"{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3D9892BB-A751-4E48-ADC8-E4289956CE1D}" = QuickTime
"{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}" = Adobe WinSoft Linguistics Plugin
"{3F30CC51-0788-487B-AA83-7214A239C0C0}" = Nero Disc Copy Gadget Help
"{488F0347-C4A7-4374-91A7-30818BEDA710}" = Galerie de photos Windows Live
"{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension
"{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}" = Windows Live PIMT Platform
"{4D42353B-533F-4306-AD0B-7FEF292ADE04}" = Nero CoverDesigner Help
"{4E8C27C2-D727-4C00-A90E-C3F6376EEE70}" = Nero ControlCenter
"{548F99E0-14CC-4D53-A7D6-4A62A5F2C748}" = Nero PhotoSnap
"{5570C7F0-43D0-4916-8A9E-AEDD52FA86F4}" = Adobe Color EU Extra Settings CS4
"{56BE5CC9-95E6-4128-ABEA-968414CA9C80}" = DolbyFiles
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5A62A775-A29A-4CE1-BBC2-4A9CD0B211EF}" = Nero Live Help
"{5AE12194-3EAA-40DF-B2BF-FE1D6B78BBF4}" = Nero Vision
"{5C2E8A0F-80E2-4C68-8CC0-D8D16E7196BF}" = Nero RescueAgent Help
"{5C42EAB8-54F9-423A-948C-1CBEF25F8DB4}" = Nero PhotoSnap Help
"{5C9BB0B3-E830-4814-BBA4-D93535E1C7B9}" = Nero Live
"{6057E21C-ABE9-4059-AE3E-3BEB9925E660}" = Windows Live Messenger
"{61AD15B2-50DB-4686-A739-14FE180D4429}" = Windows Live ID Sign-in Assistant
"{62687B11-58B5-4A18-9BC3-9DF4CE03F194}" = Windows Live Writer Resources
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{67F0E67A-8E93-4C2C-B29D-47C48262738A}" = Adobe Device Central CS4
"{68243FF8-83CA-466B-B2B8-9F99DA5479C4}" = AdobeColorCommonSetCMYK
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{69B040CC-E9B1-4769-950E-87786C9E16AD}" = OpenOffice.org 3.2
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}" = Windows Live Movie Maker
"{6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}" = Complément Messenger
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{75321954-2589-11DC-DDCC-E98356D81493}" = Nero DriveSpeed
"{753973C4-B961-43BF-B2D4-3C8C92F7216E}" = Nero DriveSpeed
"{76810709-A7D3-468D-9167-A1780C1E766C}" = Windows Live FolderShare
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{78523651-D8B1-11DC-CCEE-741589645873}" = Nero DiscSpeed
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{85991ED2-010C-4930-96FA-52F43C2CE98A}" = Apple Mobile Device Support
"{87532CAB-7932-4F84-8937-823337622807}" = Adobe Illustrator CS4
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C654BD0-1949-43DE-84F2-EC2A1ABB0CB4}" = Nero ShowTime
"{8CE08C3C-8FF4-45D9-925E-4F3CE2D7FA7D}" = Adobe Setup
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}" = TomTom HOME Visual Studio Merge Modules
"{90120000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2007
"{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0015-040C-0000-0000000FF1CE}" = Microsoft Office Access MUI (French) 2007
"{90120000-0015-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-040C-0000-0000000FF1CE}" = Microsoft Office Excel MUI (French) 2007
"{90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (French) 2007
"{90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-040C-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (French) 2007
"{90120000-0019-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-040C-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (French) 2007
"{90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-040C-0000-0000000FF1CE}" = Microsoft Office Word MUI (French) 2007
"{90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0401-0000-0000000FF1CE}" = Microsoft Office Proof (Arabic) 2007
"{90120000-001F-0401-0000-0000000FF1CE}_PROPLUS_{14809F99-C601-4D4A-9391-F1E8FAA964C5}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_PROPLUS_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_PROPLUS_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_PROPLUS_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proof (Dutch) 2007
"{90120000-001F-0413-0000-0000000FF1CE}_PROPLUS_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_PROPLUS_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-040C-0000-0000000FF1CE}" = Microsoft Office Proofing (French) 2007
"{90120000-0044-040C-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (French) 2007
"{90120000-0044-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-040C-0000-0000000FF1CE}" = Microsoft Office Shared MUI (French) 2007
"{90120000-006E-040C-0000-0000000FF1CE}_PROPLUS_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91F7F3F3-CE80-48C3-8327-7D24A0A5716A}" = iTunes
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{931AB7EA-3656-4BB7-864D-022B09E3DD67}" = Adobe Linguistics CS4
"{943CC0C0-2253-4FE0-9493-DD386F7857FD}" = Nero Express
"{948FFAAE-C57F-447B-9B07-3721E950BFDC}" = Nero ShowTime
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95140000-007A-040C-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{961D53EA-40DC-4156-AD74-25684CE05F81}" = Nero Installer
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A875B56-A35C-46BA-A3AA-DF8D03EE9F2F}" = Nero ControlCenter
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9F3523F8-DAD7-AE52-6DA7-45CDDDF33726}" = Advertising Center
"{9FAE6E8D-E686-49F5-A574-0A58DFD9580C}" = Windows Live Mail
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A73BEC3C-40A0-480E-87EF-EFCD33629088}" = NeroExpress
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A7E19604-93AF-4611-8C9F-CE509C2B286F}_is1" = Free YouTube Downloader 3.2.77
"{A8399F58-234A-48C6-BA55-30C15738BF3C}" = Nero CoverDesigner
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAA12554-2589-11DC-92EF-E98356D81493}" = Nero InfoTool
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AABBCC54-D8B1-11DC-92EF-E98356D81493}" = Nero DiscSpeed
"{AC76BA86-7AD7-1036-7B44-A94000000001}" = Adobe Reader 9.4.2 - Français
"{aeef905b-1146-4d44-a618-7d1b29c3c103}" = Nero 9
"{AF844339-2F8A-4593-81B3-9F4C54038C4E}" = Windows Live MIME IFilter
"{B29AD377-CC12-490A-A480-1452337C618D}" = Connect
"{B2C12C8D-65DC-40BD-B309-5ADB0C6C8D8F}" = Nero WaveEditor
"{B2D328BE-45AD-4D92-96F9-2151490A203E}" = Apple Application Support
"{B96C2601-52F5-4D5D-816A-63469EA311EF}" = "Nero SoundTrax Help
"{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module
"{BCD82AB5-670D-4242-90FA-1F97103C16CD}" = Movie Templates - Starter Kit
"{C27BC2A2-30DD-4014-B22E-63EB0DB572F9}" = Logitech Webcam Software
"{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
"{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
"{C893D8C0-1BA0-4517-B11C-E89B65E72F70}" = Windows Live Photo Common
"{C99C89A3-119A-45E6-B26E-DD5643CAA0C5}" = Menu Templates - Starter Kit
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{CD1826A5-CFCC-4C6E-9F9D-E181876162EA}" = Nero Rescue Agent
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D65F8E34-C050-4E6C-86DB-D2B9075749A0}" = Windows Live Sync ActiveX Control for Remote Connections
"{D7C206B6-1A63-4389-A8B1-8F607D0BFF1F}" = Nero StartSmart Help
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E4A8DD87-A746-4443-BF25-CAF99CED6767}" = Nero Disc Copy Gadget
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype(TM) 5.1
"{E6F043EB-FEF5-4C34-95AF-99B3EB68F7D9}" = Hercules Webcam Deluxe
"{E86156E5-9859-440D-8876-26CED1349802}" = Nero WaveEditor Help
"{EA9FFE54-D8B1-11DC-92EF-E98356D81493}" = Nero BurnRights
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help
"{F53F6769-AC46-49E3-ABE3-2C8AFD39D0DD}" = Nero Vision
"{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe_2a31ae7a5c43ff52d8577782dd34e04" = Adobe Illustrator CS4
"Audacity 1.3 Beta (Unicode)_is1" = Audacity 1.3.12 (Unicode)
"Audacity_is1" = Audacity 1.2.6
"avast" = avast! Free Antivirus
"CanonMyPrinter" = Canon Utilities My Printer
"CanonSolutionMenu" = Canon Utilities Solution Menu
"CCleaner" = CCleaner
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"Easy-PhotoPrint EX" = Canon Utilities Easy-PhotoPrint EX
"eMule" = eMule
"Enregistrement utilisateur de Canon MP250 series" = Enregistrement utilisateur de Canon MP250 series
"FileZilla Client" = FileZilla Client 3.4.0
"iZotope Ozone 4_is1" = iZotope Ozone 4
"Live 8.0.3" = Live 8.0.3
"Logitech Vid" = Logitech Vid HD
"lvdrivers_12.10" = Coffret de pilotes Logitech Webcam Software
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Mozilla Firefox 4.0.1 (x86 fr)" = Mozilla Firefox 4.0.1 (x86 fr)
"MP Navigator EX 3.0" = Canon MP Navigator EX 3.0
"Native Instruments Beatport Sync" = Native Instruments Beatport Sync
"PosteRazor_is1" = PosteRazor
"PROPLUS" = Microsoft Office Professional Plus 2007
"TomTom HOME" = TomTom HOME 2.7.6.2056
"uTorrent" = µTorrent
"Winamp" = Winamp
"WinGimp-2.0_is1" = GIMP 2.6.8
"WinLiveSuite" = Windows Live
"WinRAR archiver" = Archiveur WinRAR

[color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========/color

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Winamp Detect" = Détection de l'application Winamp

[color=#E56717]========== Last 10 Event Log Errors ==========/color

[ Application Events ]
Error - 20/05/2011 03:04:57 | Computer Name = FamilleAdams-PC | Source = Winlogon | ID = 4103
Description = Échec de l'activation de la licence Windows. Erreur 0x80070005.

Error - 20/05/2011 04:43:39 | Computer Name = FamilleAdams-PC | Source = SideBySide | ID = 16842815
Description = La création du contexte d'activation a échoué pour « C:\Program Files\Common
Files\Adobe AIR\Versions\1.0\Adobe AIR.dll ». Erreur dans le fichier de manifeste
ou de stratégie « C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll »
à la ligne 3. La valeur « MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR »
de l'attribut « version » de l'élément « assemblyIdentity » n'est pas valide.

Error - 20/05/2011 07:54:05 | Computer Name = FamilleAdams-PC | Source = Winlogon | ID = 4103
Description = Échec de l'activation de la licence Windows. Erreur 0x80070005.

Error - 20/05/2011 16:09:23 | Computer Name = FamilleAdams-PC | Source = Application Hang | ID = 1002
Description = Le programme winamp.exe version 5.5.8.2985 a cessé d'interagir avec
Windows et a été fermé. Pour déterminer si des informations supplémentaires sont
disponibles, consultez l'historique du problème dans le Centre de maintenance. ID
de processus : 1608 Heure de début : 01cc1729c1bbe9ba Heure de fin : 15 Chemin d'accès
de l'application : C:\Program Files\Winamp\winamp.exe ID de rapport : 098ec780-831d-11e0-8372-00248cbb53a5


Error - 21/05/2011 02:07:57 | Computer Name = FamilleAdams-PC | Source = Winlogon | ID = 4103
Description = Échec de l'activation de la licence Windows. Erreur 0x80070005.

Error - 21/05/2011 03:49:52 | Computer Name = FamilleAdams-PC | Source = SideBySide | ID = 16842815
Description = La création du contexte d'activation a échoué pour « C:\Program Files\Common
Files\Adobe AIR\Versions\1.0\Adobe AIR.dll ». Erreur dans le fichier de manifeste
ou de stratégie « C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll »
à la ligne 3. La valeur « MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR »
de l'attribut « version » de l'élément « assemblyIdentity » n'est pas valide.

Error - 21/05/2011 06:51:13 | Computer Name = FamilleAdams-PC | Source = Winlogon | ID = 4103
Description = Échec de l'activation de la licence Windows. Erreur 0x80070005.

Error - 21/05/2011 08:12:51 | Computer Name = FamilleAdams-PC | Source = Winlogon | ID = 4103
Description = Échec de l'activation de la licence Windows. Erreur 0x80070005.

Error - 21/05/2011 09:25:09 | Computer Name = FamilleAdams-PC | Source = Winlogon | ID = 4103
Description = Échec de l'activation de la licence Windows. Erreur 0x80070005.

Error - 21/05/2011 10:44:54 | Computer Name = FamilleAdams-PC | Source = Winlogon | ID = 4103
Description = Échec de l'activation de la licence Windows. Erreur 0x80070005.

[ OSession Events ]
Error - 17/01/2011 09:44:52 | Computer Name = FamilleAdams-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 10029
seconds with 2940 seconds of active time. This session ended with a crash.

[ System Events ]
Error - 15/05/2011 09:21:49 | Computer Name = FamilleAdams-PC | Source = DCOM | ID = 10001
Description =

Error - 16/05/2011 03:01:06 | Computer Name = FamilleAdams-PC | Source = DCOM | ID = 10001
Description =

Error - 16/05/2011 03:46:16 | Computer Name = FamilleAdams-PC | Source = DCOM | ID = 10001
Description =

Error - 17/05/2011 01:05:26 | Computer Name = FamilleAdams-PC | Source = DCOM | ID = 10001
Description =

Error - 18/05/2011 02:56:16 | Computer Name = FamilleAdams-PC | Source = DCOM | ID = 10001
Description =

Error - 18/05/2011 08:11:49 | Computer Name = FamilleAdams-PC | Source = Service Control Manager | ID = 7009
Description = Le dépassement de délai (30000 millisecondes) a été atteint lors de
l'attente de la connexion du service Service de rapport d'erreurs Windows.

Error - 19/05/2011 03:24:42 | Computer Name = FamilleAdams-PC | Source = DCOM | ID = 10001
Description =

Error - 19/05/2011 05:28:01 | Computer Name = FamilleAdams-PC | Source = DCOM | ID = 10010
Description =

Error - 20/05/2011 01:10:30 | Computer Name = FamilleAdams-PC | Source = DCOM | ID = 10001
Description =

Error - 21/05/2011 02:11:17 | Computer Name = FamilleAdams-PC | Source = DCOM | ID = 10001
Description =


< End of report >
0
Réponse 19 / 36
korigane Messages postés 20 Date d'inscription   Statut Membre Dernière intervention  
 
OTL.Txt

OTL logfile created on: 21/05/2011 18:14:52 - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\Famille Adams\Downloads
Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 43,00% Memory free
4,00 Gb Paging File | 2,00 Gb Available in Paging File | 49,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 465,75 Gb Total Space | 365,82 Gb Free Space | 78,54% Space Free | Partition Type: NTFS

Computer Name: FAMILLEADAMS-PC | User Name: Famille Adams | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========/color

PRC - C:\Users\Famille Adams\Downloads\OTL(1).exe (OldTimer Tools)
PRC - C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files\Logitech\Vid HD\Vid.exe (Logitech Inc.)
PRC - C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe (TomTom)
PRC - C:\Program Files\Winamp\winampa.exe (Nullsoft, Inc.)
PRC - C:\Program Files\OpenOffice.org 3\program\soffice.bin (OpenOffice.org)
PRC - C:\Program Files\OpenOffice.org 3\program\swriter.exe (OpenOffice.org)
PRC - C:\Program Files\OpenOffice.org 3\program\soffice.exe (OpenOffice.org)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE (CANON INC.)
PRC - C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe ()
PRC - C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe ()
PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
PRC - C:\Windows\System32\mspaint.exe (Microsoft Corporation)


[color=#E56717]========== Modules (SafeList) ==========/color

MOD - C:\Users\Famille Adams\Downloads\OTL(1).exe (OldTimer Tools)
MOD - C:\Program Files\Alwil Software\Avast5\snxhk.dll (AVAST Software)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll (Microsoft Corporation)


[color=#E56717]========== Win32 Services (SafeList) ==========/color

SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
SRV - (FLEXnet Licensing Service) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Acresso Software Inc.)
SRV - (TomTomHOMEService) -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe (TomTom)
SRV - (WatAdminSvc) -- C:\Windows\System32\Wat\WatAdminSvc.exe (Microsoft Corporation)
SRV - (SwitchBoard) -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
SRV - (LVPrcSrv) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe (Logitech Inc.)
SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SRV - (Nero BackItUp Scheduler 4.0) -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe (Nero AG)


[color=#E56717]========== Driver Services (SafeList) ==========/color

DRV - (aswSnx) -- C:\Windows\System32\drivers\aswSnx.sys (AVAST Software)
DRV - (aswSP) -- C:\Windows\System32\drivers\aswSP.sys (AVAST Software)
DRV - (aswTdi) -- C:\Windows\System32\drivers\aswTdi.sys (AVAST Software)
DRV - (aswRdr) -- C:\Windows\System32\drivers\aswRdr.sys (AVAST Software)
DRV - (aswMonFlt) -- C:\Windows\System32\drivers\aswMonFlt.sys (AVAST Software)
DRV - (aswFsBlk) -- C:\Windows\System32\drivers\aswFsBlk.sys (AVAST Software)
DRV - (LVUVC) Logitech Webcam 250(UVC) -- C:\Windows\System32\drivers\lvuvc.sys (Logitech Inc.)
DRV - (LVRS) -- C:\Windows\System32\drivers\lvrs.sys (Logitech Inc.)
DRV - (lvpopflt) -- C:\Windows\System32\drivers\lvpopflt.sys (Logitech Inc.)
DRV - (LVPr2Mon) -- C:\Windows\System32\drivers\LVPr2Mon.sys ()
DRV - (WinUsb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)
DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation)
DRV - (MTsensor) -- C:\Windows\System32\drivers\ASACPI.sys ()


[color=#E56717]========== Standard Registry (SafeList) ==========/color


[color=#E56717]========== Internet Explorer ==========/color

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = https://www.msn.com/fr-fr?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr-FR
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 61 94 41 A2 3C 13 CC 01 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

[color=#E56717]========== FireFox ==========/color

FF - prefs.js..browser.search.defaultthis.engineName: "Veoh Web Player Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2653012&SearchSource=3&q={searchTerms}"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..extensions.enabledItems: {cd90bf73-20f6-44ef-993d-bb920303bd2e}:2.7.1.3
FF - prefs.js..extensions.enabledItems: cacaoweb@cacaoweb.org:1.0.11
FF - prefs.js..extensions.enabledItems: {33e0daa6-3af3-d8b5-6752-10e949c61516}:1.1
FF - prefs.js..keyword.URL: "http://www.questscan.com/?tmp=nemo_results_removelink&prt=QstscanPB&keywords="
FF - prefs.js..network.proxy.no_proxies_on: "*.local"

FF - HKLM\software\mozilla\Firefox\Extensions\\{3252b9ae-c69a-4eaf-9502-dc9c1f6c009e}: C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DMExtension\ [2010/08/14 15:30:24 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\Alwil Software\Avast5\WebRep\FF
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/05/11 20:34:56 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/05/21 13:31:22 | 000,000,000 | ---D | M]

[2010/10/25 22:02:31 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Famille Adams\AppData\Roaming\mozilla\Extensions
[2010/10/25 22:02:31 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Famille Adams\AppData\Roaming\mozilla\Extensions\home2@tomtom.com
[2011/05/21 15:22:43 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Famille Adams\AppData\Roaming\mozilla\Firefox\Profiles\2tiqb051.default\extensions
[2011/05/12 18:37:15 | 000,000,000 | ---D | M] (Veoh Web Player Community Toolbar) -- C:\Users\Famille Adams\AppData\Roaming\mozilla\Firefox\Profiles\2tiqb051.default\extensions\{cd90bf73-20f6-44ef-993d-bb920303bd2e}
[2011/03/02 12:43:42 | 000,000,000 | ---D | M] (cacaoweb) -- C:\Users\Famille Adams\AppData\Roaming\mozilla\Firefox\Profiles\2tiqb051.default\extensions\cacaoweb@cacaoweb.org
[2011/05/21 16:41:13 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\extensions
File not found (No name found) --
[2011/04/14 18:47:17 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2010/07/12 18:33:56 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll
[2010/01/01 10:00:00 | 000,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
[2010/01/01 10:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2010/01/01 10:00:00 | 000,001,822 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml
[2010/01/01 10:00:00 | 000,001,154 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
[2010/01/01 10:00:00 | 000,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
[2010/01/01 10:00:00 | 000,000,956 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml

O1 HOSTS File: ([2010/10/29 20:51:23 | 000,000,857 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 activate.adobe.com
O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS4ServiceManager] C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4 - HKLM..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4 - HKLM..\Run: [LogitechQuickCamRibbon] C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe ()
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe (Nullsoft, Inc.)
O4 - HKCU..\Run: [cacaoweb] C:\Users\Famille Adams\AppData\Roaming\cacaoweb\cacaoweb.exe ()
O4 - HKCU..\Run: [Logitech Vid] C:\Program Files\Logitech\Vid HD\Vid.exe (Logitech Inc.)
O4 - HKCU..\Run: [TomTomHOME.exe] C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe (TomTom)
O4 - HKCU..\Run: [VeohPlugin] File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MIF5BA~1\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.241 212.27.40.240
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========/color

[2011/05/21 15:44:46 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Roaming\Malwarebytes
[2011/05/21 15:44:33 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011/05/21 15:44:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/05/21 15:44:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/05/21 15:44:30 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011/05/21 15:44:30 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/05/21 12:57:50 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{5DFE8DC2-1C39-4999-983F-6F4C33AB7E9E}
[2011/05/20 21:02:14 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{AFCD6150-8532-494A-AB7E-DB9A804B754E}
[2011/05/19 18:23:14 | 000,000,000 | ---D | C] -- C:\ProgramData\QuestScan
[2011/05/19 18:23:14 | 000,000,000 | ---D | C] -- C:\Program Files\QuestScan
[2011/05/19 16:06:52 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{A92E21E7-8BBC-4AA3-8762-C3EEA0EAE0E7}
[2011/05/19 12:38:37 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\poqexec.exe
[2011/05/18 18:00:32 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2011/05/18 12:16:03 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{CB4B81B7-2B42-4DBC-A31B-4C3AC00F6675}
[2011/05/17 22:30:56 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{5514F01D-E886-4C1A-B069-53EEE8C121E6}
[2011/05/17 10:30:07 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{FBFA77F1-FCFC-4CEF-A6B7-89D694E0FFCC}
[2011/05/16 12:35:54 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{920C26C8-78D2-4AF2-9442-49DFAC439F3F}
[2011/05/15 13:51:30 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{CF05FAF5-15FB-488C-884C-2AA296275603}
[2011/05/13 16:18:11 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{9CC981CD-061F-4FA8-8CB5-77ACA3BEAC6F}
[2011/05/12 21:02:34 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{D3198E0E-3D62-46D5-9599-7BBFF16AAE7E}
[2011/05/12 09:01:53 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{2357F85F-38FB-4B47-8419-EC1C6307EF8D}
[2011/05/11 18:02:27 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{8E9097C5-9EFC-4EAB-BBD1-B9AD08EEE5CC}
[2011/05/11 09:38:27 | 003,957,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2011/05/11 09:38:27 | 003,901,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2011/05/10 23:07:15 | 000,040,112 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2011/05/10 22:45:30 | 000,307,928 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
[2011/05/10 22:45:30 | 000,019,544 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswFsBlk.sys
[2011/05/10 22:45:29 | 000,025,432 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr.sys
[2011/05/10 22:45:28 | 000,053,592 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
[2011/05/10 22:45:28 | 000,049,240 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys
[2011/05/10 22:45:19 | 000,199,304 | ---- | C] (AVAST Software) -- C:\Windows\System32\aswBoot.exe
[2011/05/10 09:48:30 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{E195FB54-9DA1-4CC7-B00E-A9CEF56BB36B}
[2011/05/09 12:34:22 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{3DEFB3D2-7475-4456-86F4-A240BB8BCB0B}
[2011/05/08 19:13:38 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{C787C8AE-5F13-4B43-87D2-AF82F0B71351}
[2011/05/08 17:01:47 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{45294D6A-7AC6-436C-B861-29DA77C4DD61}
[2011/05/08 11:53:53 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{E3365C58-946C-4E2C-8543-40FFA4CEE98C}
[2011/05/08 11:34:03 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{53CAC4AF-2FC8-41E4-969B-B10F76E8D83E}
[2011/05/07 12:34:48 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{BFD20E12-DC71-4F65-A799-F08D58E8D0F4}
[2011/05/06 19:06:31 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{CEB11D06-6CAE-474D-AAC1-BEA5F1938398}
[2011/05/05 18:33:39 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{480EC6D7-0490-48E8-895F-87148C8775BE}
[2011/05/04 12:03:49 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{A86353FA-8D38-42D6-A706-9F762AD40093}
[2011/05/03 22:10:10 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{70F095B6-23CF-480B-BF55-BBBA680B8030}
[2011/05/03 10:09:24 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{0FF09A21-CBE1-48CA-A533-227323AD0B9F}
[2011/05/02 13:45:45 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{04DA24C5-C794-4ED7-BE0A-9FDD906A14C0}
[2011/05/01 14:20:01 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{203EDC64-2D07-4889-AD29-C967B62206C8}
[2011/04/30 23:30:57 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{51504952-D4A0-4B15-B1A7-D1FDA6CA7E78}
[2011/04/30 11:30:10 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{1A35C812-0469-48DE-811F-328C1874CAE3}
[2011/04/29 23:08:21 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{7BAC8205-7A46-4799-93AA-872E02A4C470}
[2011/04/29 11:07:34 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{533B5C33-9694-40A0-B97B-4BEACE6F1FFF}
[2011/04/28 09:29:15 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{DC63FCBE-19AE-4D5E-B628-69ECCA6D8C2C}
[2011/04/27 19:14:35 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{4B0947F6-6E9C-4B9A-883C-E8CF5451D537}
[2011/04/24 10:47:56 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{DE8945CF-F78A-4D68-A45A-ADA705F07E38}
[2011/04/23 11:39:52 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{3C6741B4-1AB9-4775-9EAC-F06720636F23}
[2011/04/22 12:47:52 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{10ADDA74-1C2E-44BA-A208-02816E78ED6B}
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========/color

[2011/05/21 18:01:10 | 000,282,231 | ---- | M] () -- C:\Users\Famille Adams\Desktop\Sans titre.jpg
[2011/05/21 16:44:51 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/05/21 16:44:50 | 000,000,000 | ---- | M] () -- C:\Windows\System32\drivers\lvuvc.hs
[2011/05/21 16:44:47 | 1609,965,568 | -HS- | M] () -- C:\hiberfil.sys
[2011/05/21 15:44:33 | 000,001,071 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/05/21 14:24:48 | 000,151,663 | ---- | M] () -- C:\Users\Famille Adams\Desktop\VIRUS.png
[2011/05/16 22:55:59 | 000,009,584 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/05/16 22:55:59 | 000,009,584 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/05/15 22:20:24 | 000,704,242 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2011/05/15 22:20:24 | 000,615,810 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/05/15 22:20:24 | 000,130,548 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2011/05/15 22:20:24 | 000,106,190 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/05/15 16:07:02 | 000,001,950 | ---- | M] () -- C:\Users\Public\Desktop\FileZilla Client.lnk
[2011/05/11 20:35:50 | 000,002,002 | ---- | M] () -- C:\Users\Famille Adams\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/05/11 20:34:56 | 000,001,100 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011/05/10 23:07:19 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2011/05/10 14:10:59 | 000,040,112 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2011/05/10 14:10:55 | 000,199,304 | ---- | M] (AVAST Software) -- C:\Windows\System32\aswBoot.exe
[2011/05/10 14:03:54 | 000,441,176 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys
[2011/05/10 14:03:44 | 000,307,928 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
[2011/05/10 14:02:37 | 000,049,240 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys
[2011/05/10 13:59:56 | 000,025,432 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr.sys
[2011/05/10 13:59:44 | 000,053,592 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
[2011/05/10 13:59:35 | 000,019,544 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswFsBlk.sys
[2011/05/08 19:05:48 | 000,114,454 | ---- | M] () -- C:\Users\Famille Adams\Desktop\groupe_historique1083348865.pdf
[2011/05/08 17:57:26 | 883,551,737 | ---- | M] () -- C:\Users\Famille Adams\Desktop\T.OLLIVIER.zip
[2011/05/06 10:29:40 | 000,001,098 | ---- | M] () -- C:\Users\Famille Adams\Desktop\reseau-horizon-0909-BD - Raccourci.lnk
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========/color

[2011/05/21 15:44:33 | 000,001,071 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/05/21 14:30:46 | 000,282,231 | ---- | C] () -- C:\Users\Famille Adams\Desktop\Sans titre.jpg
[2011/05/21 14:23:48 | 000,151,663 | ---- | C] () -- C:\Users\Famille Adams\Desktop\VIRUS.png
[2011/05/11 20:34:56 | 000,001,112 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2011/05/08 19:05:47 | 000,114,454 | ---- | C] () -- C:\Users\Famille Adams\Desktop\groupe_historique1083348865.pdf
[2011/05/08 18:02:06 | 883,551,737 | ---- | C] () -- C:\Users\Famille Adams\Desktop\T.OLLIVIER.zip
[2011/05/06 10:29:40 | 000,001,098 | ---- | C] () -- C:\Users\Famille Adams\Desktop\reseau-horizon-0909-BD - Raccourci.lnk
[2010/12/11 22:05:13 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2010/11/13 18:37:51 | 000,082,289 | ---- | C] () -- C:\Windows\System32\lvcoinst.ini
[2010/11/10 16:03:53 | 000,000,056 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat
[2010/10/13 12:09:30 | 000,000,168 | ---- | C] () -- C:\Users\Famille Adams\AppData\Roaming\default.rss
[2010/08/21 22:10:12 | 000,004,767 | ---- | C] () -- C:\Windows\Irremote.ini
[2010/07/27 09:03:20 | 010,829,656 | ---- | C] () -- C:\Windows\System32\LogiDPP.dll
[2010/07/27 09:03:20 | 000,102,744 | ---- | C] () -- C:\Windows\System32\LogiDPPApp.exe
[2010/07/27 09:03:18 | 000,290,648 | ---- | C] () -- C:\Windows\System32\DevManagerCore.dll
[2009/10/07 02:46:36 | 000,025,752 | ---- | C] () -- C:\Windows\System32\drivers\LVPr2Mon.sys
[2009/10/07 02:23:08 | 000,013,584 | ---- | C] () -- C:\Windows\System32\drivers\iKeyLFT2.dll
[2009/07/14 10:39:49 | 000,704,242 | ---- | C] () -- C:\Windows\System32\perfh00C.dat
[2009/07/14 10:39:49 | 000,344,522 | ---- | C] () -- C:\Windows\System32\perfi00C.dat
[2009/07/14 10:39:49 | 000,130,548 | ---- | C] () -- C:\Windows\System32\perfc00C.dat
[2009/07/14 10:39:49 | 000,038,160 | ---- | C] () -- C:\Windows\System32\perfd00C.dat
[2009/07/14 06:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/14 06:33:53 | 003,792,296 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2009/07/14 04:05:48 | 000,615,810 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2009/07/14 04:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009/07/14 04:05:48 | 000,106,190 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2009/07/14 04:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009/07/14 04:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009/07/14 04:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009/07/14 01:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/14 01:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009/06/10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2004/08/13 09:56:20 | 000,005,810 | ---- | C] () -- C:\Windows\System32\drivers\ASACPI.sys

< End of report >
0
Réponse 20 / 36
Destrio5 Messages postés 85985 Date d'inscription   Statut Modérateur Dernière intervention   10 302
 
--> Double-clique sur OTL pour le lancer.
(Sous Vista/Win7, il faut cliquer droit sur OTL et choisir Exécuter en tant qu'administrateur)
--> Sous l'onglet Personnalisation en bas de la fenêtre, copie-colle le texte suivant (entre les deux espaces) :




:OTL
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2653012&SearchSource=3&q={searchTerms}"
FF - prefs.js..keyword.URL: "http://www.questscan.com/?tmp=nemo_results_removelink&prt=QstscanPB&keywords="
[2011/05/19 18:23:14 | 000,000,000 | ---D | C] -- C:\ProgramData\QuestScan
[2011/05/19 18:23:14 | 000,000,000 | ---D | C] -- C:\Program Files\QuestScan

:commands
[emptytemp]




--> Puis clique sur le bouton Correction en haut de la fenêtre.
--> Laisse le programme travailler, redémarre une fois le fix terminé.
--> Poste le rapport qui s'affichera après redémarrage.
0