Virus PUPSC

Résolu
nyb9 -  
 loupat -
Bonjour,
j'ai lancé spybot search&Destroy, maintenant il me dit qu'il a trouvé 1 élément genre: PUPSC et problème: MyWay.MyWebSearch. Donc j'ai cliqué sur "corriger les problèmes", mais il me dit qu'il ne peut pas le résoudre, mais que en redémarrant l'ordinateur ça pourrait partir. Malheureusement, ça n'a pas fonctionné. Le problème est toujours là. Est ce que quelqu'un peut m'aider à le résoudre svp?
Merci
A voir également:

42 réponses

Précédent
Réponse 21 / 42
squeak Messages postés 1286 Statut Membre 276
 
Ok, le problème semble t il être résolu ?

Puis je disais que je vous conseillai de laisser Avast et de prendre à la place antivir.
0
nyb9
 
Le problème est toujours là, j'ai refait une analyse avec spybot, mais ça me dit toujours la même chose.
0
Réponse 22 / 42
g!rly Messages postés 18462 Statut Contributeur 406
 

0
Réponse 23 / 42
nyb9
 
fallait que j'enlève un truc a utilisateur de mon compte pour le faire, vous pouvez me dire quand je peux remettre la sécurité svp? merci






--------- Logfile of AD-Remover 1.0.7.7 by C_XX ---------

# START at: 17:58:28 | Sun 14/12/2008 | Microsoft® Windows Vista™ Home Premium SP1 (v6.0.6001)
# BOOT MODE: Normal
(!) - UAC is disable

# OPTION: Scan | EXECUTED FROM: C:\Program Files\Ad-remover\AD-Remover.bat

# PC: PC-DE-DOUDOUNE | USER: Doudoune ( Current user is an administrator)

# DRIVE(S):
- C:\ (File System: NTFS)

# Internet Explorer v7.0.6001.18000

--------- [ RUNNING PROCESSES: 68 ] ---------

C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\system32\svchost.exe
C:\Program Files\ATK Hotkey\ASLDRSrv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\ATK Hotkey\Hcontrol.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe
C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\SweetIM\Messenger\SweetIM.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\LimeWire\LimeWire.exe
C:\Program Files\ATK Hotkey\ATKOSD.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\IoctlSvc.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\CPSHelpRunner.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\conime.exe
C:\Windows\system32\ntvdm.exe

-----------------------------------


+-----------------------| Boonty/Boonty Games Elements found :

.

+-----------------------| Eorezo Elements found :

.

+-----------------------| Everest Poker Elements found :

.

+-----------------------| FunWebProducts/MyWay/MyWebSearch/MyGlobalSearch Elements found :

.

+-----------------------| Messenger Skinner Elements found :

.

+-----------------------| Sweetim Elements found :

"HKEY_CLASSES_ROOT\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847}"
"HKEY_CLASSES_ROOT\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}"
"HKEY_CLASSES_ROOT\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}"
"HKEY_CLASSES_ROOT\CLSID\{82AC53B4-164C-4B07-A016-437A8388B81A}"
"HKEY_CLASSES_ROOT\CLSID\{A4A0CB15-8465-4F58-A7E5-73084EA2A064}"
"HKEY_CLASSES_ROOT\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0"
"HKEY_CLASSES_ROOT\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632"
"HKEY_CLASSES_ROOT\SWEETIE.IEToolbar"
"HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1"
"HKEY_CLASSES_ROOT\SWEETIE.SWEETIE"
"HKEY_CLASSES_ROOT\SWEETIE.SWEETIE.3"
"HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook"
"HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook.1"
"HKEY_CLASSES_ROOT\Toolbar3.SWEETIE"
"HKEY_CLASSES_ROOT\Toolbar3.SWEETIE.1"
"HKEY_CLASSES_ROOT\Typelib\{EEE6C35E-6118-11DC-9C72-001320C79847}"
"HKEY_CLASSES_ROOT\Typelib\{EEE6C35F-6118-11DC-9C72-001320C79847}"
"HKEY_CLASSES_ROOT\MgMediaPlayer.GifAnimator"
"HKEY_CLASSES_ROOT\MgMediaPlayer.GifAnimator.1"
"HKEY_CURRENT_USER\SOFTWARE\SweetIM"
"HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks" /v "{EEE6C35D-6118-11DC-9C72-001320C79847}"
"HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}"
"HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}"
"HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}"
"HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19}"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar" /v "{EEE6C35B-6118-11DC-9C72-001320C79847}"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run" /v "SweetIM"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\02F47BF73B948514FAACADD8CBBDF37D"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\080D9F5E1E95FEE4794CE438E635239E"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E264E0A5959A1C46BA9175A878B12EA"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E6768B6932D112438F047C54D180635"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\351716A953E21214898904032EAE2E81"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\397C771A7BCAC904697C3EC629ED33ED"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98CC8BF5A4A6E6C4ABF7051DDAB8B058"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A189D17A469616C4688D23E192996267"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D15DAF33C220F91468A1D7D57C31ACD7"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D3BA76A44C779424889063D5098ED2D6"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D6D0EB9FDBD90C04D92A7E729058F10D"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4748F9A4181FCE46A23C13B517B9420"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07D5290CDBDAE4242926B8E6CA650501"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08E33F7B61DEFF24BB9673ED7D467636"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E3D8A5B48622A445A7DF73FEFF32C3F"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1AC67655DD68F8240B2860F2D511EBD8"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\34EDDB1BFB3A2D448845F3EFD0F15A43"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4318DF19719275242801CBE292063A4C"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\45FC115D1FEAEF849A4E1610D6EC8BF0"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\46A5861A389ADB844AF89E31BC9DF0A1"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49B0E1A6FF50BBE4289E4E23DE6EA0C7"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4CCCAC049F34D0540AAC13011398BEDB"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5C4389D0BFB302C479DE4178BD5D9EBA"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D19F074C042AD34BAB463D4175A062E"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D2B09BDEF4FE54418E6F3373CDBC7AC"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\61B65D3397A1FBF4CB1571B5E4F6B5B0"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E8A05C60DD9254591DBD16C94EDDBF"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\697E782CF574CC34CBB9566440BA12BC"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AE27A8613CF7EA4782F2886F67295E5"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7CE172051F585E04187BCB97570BFA74"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86A901BA5265452499DCBF719C378EE3"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\88ABD1CD5C40EC84789A7F6EF86DAC5E"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A4B7EF3789F871419D9302583B20C15"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6C53B0F76C44004A8F36716213017DB"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B59F2D8189784CC46A4597F2842480B0"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BD746FB95FB8E5B45BF66BE54D5FD91F"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCF399FCD6D2D3F46BF02A1378654FC9"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D149C1355C98DE24E82CEFBD996FE06A"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB59FDB786388EA4D897F3EE715683AC"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB8DAD19CFBCC2049A4477183787E8C5"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E337925F629CF4C4FB08F3D9674DD839"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EC65F200D112357449C8B1BC3CFA03D0"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F327D0C73C0973644A21E8CC852267A0"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F754C503375A13344B22388E18DFE87E"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9"
"HKEY_LOCAL_MACHINE\SOFTWARE\SweetIM"
.
[19/04/2008 12:25|d--------] C:\PROGRA~1\SweetIM
[19/04/2008 12:24|d--------] C:\PROGRA~1\SweetIM\MESSEN~1
[19/04/2008 12:25|d--------] C:\PROGRA~1\SweetIM\Toolbars
[03/02/2008 14:45|-ra------] C:\PROGRA~1\SweetIM\MESSEN~1\default.xml
[27/03/2008 18:31|-ra------] C:\PROGRA~1\SweetIM\MESSEN~1\MGADAP~1.DLL
[27/03/2008 18:31|-ra------] C:\PROGRA~1\SweetIM\MESSEN~1\MGAIMA~1.DLL
[27/03/2008 18:32|-ra------] C:\PROGRA~1\SweetIM\MESSEN~1\MGAIMM~1.DLL
[27/03/2008 18:31|-ra------] C:\PROGRA~1\SweetIM\MESSEN~1\MGARCH~1.DLL
[27/03/2008 18:31|-ra------] C:\PROGRA~1\SweetIM\MESSEN~1\mgcommon.dll
[27/03/2008 18:31|-ra------] C:\PROGRA~1\SweetIM\MESSEN~1\MGCOMM~1.DLL
[27/03/2008 18:31|-ra------] C:\PROGRA~1\SweetIM\MESSEN~1\mgconfig.dll
[27/03/2008 18:31|-ra------] C:\PROGRA~1\SweetIM\MESSEN~1\MGFLAS~1.DLL
[27/03/2008 18:31|-ra------] C:\PROGRA~1\SweetIM\MESSEN~1\MGHOOK~1.DLL
[27/03/2008 18:31|-ra------] C:\PROGRA~1\SweetIM\MESSEN~1\MGIEPL~1.DLL
[27/03/2008 18:31|-ra------] C:\PROGRA~1\SweetIM\MESSEN~1\mglogger.dll
[27/03/2008 18:31|-ra------] C:\PROGRA~1\SweetIM\MESSEN~1\MGMEDI~1.DLL
[27/03/2008 18:31|-ra------] C:\PROGRA~1\SweetIM\MESSEN~1\MGMSNA~1.DLL
[27/03/2008 18:31|-ra------] C:\PROGRA~1\SweetIM\MESSEN~1\MGMSNM~1.DLL
[27/03/2008 18:32|-ra------] C:\PROGRA~1\SweetIM\MESSEN~1\MGSIMC~1.DLL
[27/03/2008 18:31|-ra------] C:\PROGRA~1\SweetIM\MESSEN~1\MGSWEE~1.DLL
[27/03/2008 18:31|-ra------] C:\PROGRA~1\SweetIM\MESSEN~1\MGUPDA~1.DLL
[27/03/2008 18:31|-ra------] C:\PROGRA~1\SweetIM\MESSEN~1\MGXML_~1.DLL
[27/03/2008 18:31|-ra------] C:\PROGRA~1\SweetIM\MESSEN~1\MGYAHO~1.DLL
[27/03/2008 18:31|-ra------] C:\PROGRA~1\SweetIM\MESSEN~1\MGYAHO~2.DLL
[11/07/2006 17:35|--a------] C:\PROGRA~1\SweetIM\MESSEN~1\msvcp71.dll
[11/07/2006 17:35|--a------] C:\PROGRA~1\SweetIM\MESSEN~1\msvcr71.dll
[19/04/2008 12:24|d--------] C:\PROGRA~1\SweetIM\MESSEN~1\RESOUR~1
[27/03/2008 18:31|-ra------] C:\PROGRA~1\SweetIM\MESSEN~1\SweetIM.exe
[19/04/2008 12:24|d--------] C:\PROGRA~1\SweetIM\MESSEN~1\RESOUR~1\images
[03/02/2008 14:45|-ra------] C:\PROGRA~1\SweetIM\MESSEN~1\RESOUR~1\images\AUDIBL~1.PNG
[03/02/2008 14:45|-ra------] C:\PROGRA~1\SweetIM\MESSEN~1\RESOUR~1\images\DISPLA~1.PNG
[03/02/2008 14:45|-ra------] C:\PROGRA~1\SweetIM\MESSEN~1\RESOUR~1\images\EMOTIC~1.PNG
[03/02/2008 14:45|-ra------] C:\PROGRA~1\SweetIM\MESSEN~1\RESOUR~1\images\NUDGEB~1.PNG
[03/02/2008 14:45|-ra------] C:\PROGRA~1\SweetIM\MESSEN~1\RESOUR~1\images\SOUNDF~1.PNG
[03/02/2008 14:45|-ra------] C:\PROGRA~1\SweetIM\MESSEN~1\RESOUR~1\images\WINKSB~1.PNG
[19/04/2008 12:25|d--------] C:\PROGRA~1\SweetIM\Toolbars\INTERN~1
[27/03/2008 13:12|--a------] C:\PROGRA~1\SweetIM\Toolbars\INTERN~1\CLEARH~1.EXE
[19/04/2008 12:25|d--------] C:\PROGRA~1\SweetIM\Toolbars\INTERN~1\conf
[03/02/2008 14:45|-ra------] C:\PROGRA~1\SweetIM\Toolbars\INTERN~1\default.xml
[27/03/2008 13:12|--a------] C:\PROGRA~1\SweetIM\Toolbars\INTERN~1\mgcommon.dll
[27/03/2008 13:12|--a------] C:\PROGRA~1\SweetIM\Toolbars\INTERN~1\mgconfig.dll
[27/03/2008 13:12|--a------] C:\PROGRA~1\SweetIM\Toolbars\INTERN~1\mgHelper.dll
[27/03/2008 13:12|--a------] C:\PROGRA~1\SweetIM\Toolbars\INTERN~1\mglogger.dll
[27/03/2008 13:12|--a------] C:\PROGRA~1\SweetIM\Toolbars\INTERN~1\MGSIMC~1.DLL
[27/03/2008 13:12|--a------] C:\PROGRA~1\SweetIM\Toolbars\INTERN~1\MGTOOL~1.DLL
[27/03/2008 13:12|--a------] C:\PROGRA~1\SweetIM\Toolbars\INTERN~1\MGXML_~1.DLL
[11/07/2006 17:35|--a------] C:\PROGRA~1\SweetIM\Toolbars\INTERN~1\msvcp71.dll
[11/07/2006 17:35|--a------] C:\PROGRA~1\SweetIM\Toolbars\INTERN~1\msvcr71.dll
[19/04/2008 12:25|d--------] C:\PROGRA~1\SweetIM\Toolbars\INTERN~1\RESOUR~1
[03/02/2008 14:45|-ra------] C:\PROGRA~1\SweetIM\Toolbars\INTERN~1\conf\logger.xml
[03/02/2008 14:45|-ra------] C:\PROGRA~1\SweetIM\Toolbars\INTERN~1\RESOUR~1\affid.dat
[18/03/2008 19:10|-ra------] C:\PROGRA~1\SweetIM\Toolbars\INTERN~1\RESOUR~1\basis.xml
[03/02/2008 14:45|-ra------] C:\PROGRA~1\SweetIM\Toolbars\INTERN~1\RESOUR~1\BOOKMA~1.BMP
[03/02/2008 14:45|-ra------] C:\PROGRA~1\SweetIM\Toolbars\INTERN~1\RESOUR~1\EMAIL_~1.BMP
[03/02/2008 14:45|-ra------] C:\PROGRA~1\SweetIM\Toolbars\INTERN~1\RESOUR~1\GAMES_~1.BMP
[03/02/2008 14:45|-ra------] C:\PROGRA~1\SweetIM\Toolbars\INTERN~1\RESOUR~1\GREETI~1.BMP
[27/03/2008 17:03|-ra------] C:\PROGRA~1\SweetIM\Toolbars\INTERN~1\RESOUR~1\Logo.bmp
[03/02/2008 14:45|-ra------] C:\PROGRA~1\SweetIM\Toolbars\INTERN~1\RESOUR~1\MOBILE~1.BMP
[03/02/2008 14:45|-ra------] C:\PROGRA~1\SweetIM\Toolbars\INTERN~1\RESOUR~1\MUSIC_~1.BMP
[03/02/2008 14:45|-ra------] C:\PROGRA~1\SweetIM\Toolbars\INTERN~1\RESOUR~1\NEWS_2~1.BMP
[03/02/2008 14:45|-ra------] C:\PROGRA~1\SweetIM\Toolbars\INTERN~1\RESOUR~1\SHOPIN~1.BMP
[03/02/2008 14:45|-ra------] C:\PROGRA~1\SweetIM\Toolbars\INTERN~1\RESOUR~1\SMILEY~1.BMP
[03/02/2008 14:45|-ra------] C:\PROGRA~1\SweetIM\Toolbars\INTERN~1\RESOUR~1\SMILEY~2.BMP
[27/03/2008 17:03|-ra------] C:\PROGRA~1\SweetIM\Toolbars\INTERN~1\RESOUR~1\SWEETI~1.BMP
[27/03/2008 12:41|-ra------] C:\PROGRA~1\SweetIM\Toolbars\INTERN~1\RESOUR~1\toolbar.xml
[03/02/2008 14:45|-ra------] C:\PROGRA~1\SweetIM\Toolbars\INTERN~1\RESOUR~1\version.txt
[19/04/2008 12:24|d--------] C:\PROGRA~2\SweetIM
[19/04/2008 12:24|d--------] C:\PROGRA~2\SweetIM\MESSEN~1
[19/04/2008 12:24|d--------] C:\PROGRA~2\SweetIM\MESSEN~1\conf
[19/04/2008 12:24|d--------] C:\PROGRA~2\SweetIM\MESSEN~1\data
[19/04/2008 12:24|d--------] C:\PROGRA~2\SweetIM\MESSEN~1\logs
[19/04/2008 12:24|d--------] C:\PROGRA~2\SweetIM\MESSEN~1\update
[03/02/2008 14:45|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\conf\adapter.xml
[03/02/2008 14:45|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\conf\AUTOUP~1.XML
[03/02/2008 14:45|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\conf\logger.xml
[03/02/2008 14:45|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\conf\messages.xml
[03/02/2008 14:45|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\conf\sweetim.xml
[03/02/2008 14:45|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\conf\SWEETI~1.XML
[23/04/2008 13:07|d--------] C:\PROGRA~2\SweetIM\MESSEN~1\conf\users
[23/04/2008 13:07|d--------] C:\PROGRA~2\SweetIM\MESSEN~1\conf\users\BERNIE~1.FR
[31/05/2008 18:06|d--------] C:\PROGRA~2\SweetIM\MESSEN~1\conf\users\LALACH~1.FR
[19/04/2008 12:25|--a------] C:\PROGRA~2\SweetIM\MESSEN~1\conf\users\MAIN_U~1.XML
[23/05/2008 21:50|d--------] C:\PROGRA~2\SweetIM\MESSEN~1\conf\users\N_YB@H~1.FR
[22/04/2008 21:31|d--------] C:\PROGRA~2\SweetIM\MESSEN~1\conf\users\PTIDEM~1.FR
[23/04/2008 13:07|--a------] C:\PROGRA~2\SweetIM\MESSEN~1\conf\users\BERNIE~1.FR\EMOTIC~1.XML
[23/04/2008 13:07|--a------] C:\PROGRA~2\SweetIM\MESSEN~1\conf\users\BERNIE~1.FR\USER_C~1.XML
[19/04/2008 18:07|--a------] C:\PROGRA~2\SweetIM\MESSEN~1\conf\users\LALACH~1.FR\EMOTIC~1.XML
[31/05/2008 18:07|--a------] C:\PROGRA~2\SweetIM\MESSEN~1\conf\users\LALACH~1.FR\LASTUS~1.XML
[19/04/2008 18:07|--a------] C:\PROGRA~2\SweetIM\MESSEN~1\conf\users\LALACH~1.FR\USER_C~1.XML
[24/06/2008 12:11|--a------] C:\PROGRA~2\SweetIM\MESSEN~1\conf\users\N_YB@H~1.FR\EMOTIC~1.XML
[23/05/2008 21:14|--a------] C:\PROGRA~2\SweetIM\MESSEN~1\conf\users\N_YB@H~1.FR\LASTUS~3.XML
[24/06/2008 11:38|--a------] C:\PROGRA~2\SweetIM\MESSEN~1\conf\users\N_YB@H~1.FR\LASTUS~4.XML
[15/06/2008 17:11|--a------] C:\PROGRA~2\SweetIM\MESSEN~1\conf\users\N_YB@H~1.FR\LASTUS~2.XML
[15/06/2008 17:12|--a------] C:\PROGRA~2\SweetIM\MESSEN~1\conf\users\N_YB@H~1.FR\LASTUS~1.XML
[15/06/2008 12:32|--a------] C:\PROGRA~2\SweetIM\MESSEN~1\conf\users\N_YB@H~1.FR\USER_C~1.XML
[22/04/2008 21:31|--a------] C:\PROGRA~2\SweetIM\MESSEN~1\conf\users\PTIDEM~1.FR\EMOTIC~1.XML
[22/04/2008 21:31|--a------] C:\PROGRA~2\SweetIM\MESSEN~1\conf\users\PTIDEM~1.FR\USER_C~1.XML
[24/07/2008 09:20|d--------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1
[16/12/2005 11:23|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\000100AD.dat
[23/08/2006 18:57|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\00010852.dat
[23/08/2006 18:57|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\00010859.dat
[28/09/2006 14:41|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\00010864.dat
[01/11/2006 15:01|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\0001086E.dat
[10/01/2007 10:27|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\0001088C.dat
[21/03/2007 19:27|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\00010893.dat
[11/04/2007 17:21|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\00010896.dat
[29/04/2007 15:36|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\00010898.dat
[13/05/2007 20:13|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\0001089A.dat
[13/05/2007 20:13|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\0001089B.dat
[13/05/2007 20:13|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\0001089D.dat
[15/07/2007 10:46|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\000108A8.dat
[13/08/2007 21:21|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\000108A9.dat
[17/09/2007 11:06|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\000108AA.dat
[17/09/2007 11:06|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\000108AB.dat
[02/12/2007 12:30|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\000108BE.dat
[16/12/2007 09:54|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\000108C2.dat
[16/12/2007 09:54|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\000108C4.dat
[13/01/2008 19:33|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\000108CD.dat
[17/02/2008 11:49|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\000108D1.dat
[13/03/2008 16:25|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\000108DD.dat
[24/04/2008 17:20|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\000108F4.dat
[22/05/2008 20:21|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\00010900.dat
[16/12/2005 11:23|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\0002006E.dat
[16/12/2005 11:23|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\00020075.dat
[16/12/2005 11:23|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\0002007B.dat
[16/12/2005 11:23|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\0002007C.dat
[16/12/2005 11:23|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\0002007D.dat
[19/01/2006 17:33|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\000200BF.dat
[23/05/2006 19:52|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\000200DB.dat
[07/06/2006 20:48|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\000200E1.dat
[07/06/2006 20:48|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\000200ED.dat
[07/06/2006 20:48|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\000200FB.dat
[31/07/2006 19:25|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\00020114.dat
[28/09/2006 14:41|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\0002011E.dat
[10/01/2007 10:27|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\0002013F.dat
[01/03/2007 15:52|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\00020144.dat
[01/03/2007 15:52|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\00020148.dat
[29/04/2007 15:36|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\00020153.dat
[09/10/2007 10:41|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\00020185.dat
[21/10/2007 18:48|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\0002019D.dat
[02/12/2007 12:28|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\000201C5.dat
[02/12/2007 12:28|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\000201C7.dat
[16/12/2007 09:53|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\000201D6.dat
[28/01/2008 19:00|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\00020236.dat
[29/02/2008 00:23|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\00020267.dat
[29/02/2008 00:23|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\0002027D.dat
[29/02/2008 00:23|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\00020280.dat
[29/02/2008 00:23|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\00020283.dat
[29/02/2008 10:52|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\00020284.dat
[27/03/2008 17:11|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\00020291.dat
[21/10/2007 18:48|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\0003005F.dat
[16/12/2005 11:23|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\00040024.dat
[31/07/2006 19:25|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\0004005A.dat
[09/09/2007 13:35|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\00050004.dat
[11/07/2007 12:20|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\00050005.dat
[07/06/2006 20:48|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\00060053.dat
[10/01/2007 10:27|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\0006009E.dat
[22/10/2007 09:46|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\000600DA.dat
[10/04/2008 19:26|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\0006019A.dat
[12/05/2008 03:29|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\000601AA.dat
[31/03/2008 14:26|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\0008000B.dat
[16/04/2008 12:13|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\0008000D.dat
[10/04/2008 19:26|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\0008000F.dat
[10/04/2008 19:26|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\00080010.dat
[10/04/2008 19:26|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\00080011.dat
[24/04/2008 17:18|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\00080014.dat
[12/05/2008 03:29|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\00080017.dat
[18/05/2008 16:55|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\00080018.dat
[21/10/2007 18:48|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\010108A7.dat
[17/09/2007 18:03|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\01050001.dat
[11/07/2007 12:19|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\01050002.dat
[11/12/2007 18:20|-ra------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\01050007.dat
[24/07/2008 09:20|--a------] C:\PROGRA~2\SweetIM\MESSEN~1\data\CONTEN~1\CACHE_~1.DAT
[19/04/2008 12:25|d--------] C:\Users\Doudoune\AppData\LocalLow\SweetIM
[19/04/2008 12:25|d--------] C:\Users\Doudoune\AppData\LocalLow\SweetIM\Toolbars
[19/04/2008 12:25|d--------] C:\Users\Doudoune\AppData\LocalLow\SweetIM\Toolbars\INTERN~1
[19/04/2008 12:25|d--------] C:\Users\Doudoune\AppData\LocalLow\SweetIM\Toolbars\INTERN~1\cache
[19/05/2008 10:27|--a------] C:\Users\Doudoune\AppData\LocalLow\SweetIM\Toolbars\INTERN~1\cache\F64A71~1.XML

+-----------------------| ADDED SCAN :



+---------- Scanning prefs.js ... ( # Mozilla User Preferences )

...\ur3hxwt2.default\prefs.js :

~~~~ Mozilla FireFox version 3.0.4 ~~~~


+----------+


+---------------------------------------------------------------------------+

+--[HKEY_CURRENT_USER\..\Run]

Sidebar REG_SZ C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
SpybotSD TeaTimer REG_SZ C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
SmpcSys REG_SZ C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe

+--[HKEY_LOCAL_MACHINE\..\Run]

SynTPEnh REG_SZ C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
StartCCC REG_SZ C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
RtHDVCpl REG_SZ RtHDVCpl.exe
Skytel REG_SZ Skytel.exe
RoxWatchTray REG_SZ "C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe"
toolbar_eula_launcher REG_SZ C:\Program Files\Packard Bell\GOOGLE_EULA\EULALauncher.exe
Adobe Reader Speed Launcher REG_SZ "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
SweetIM REG_SZ C:\Program Files\SweetIM\Messenger\SweetIM.exe
HP Software Update REG_SZ C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
avast! REG_SZ C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
QuickTime Task REG_SZ "C:\Program Files\QuickTime\qttask.exe" -atboottime
SunJavaUpdateSched REG_SZ "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"

+--[HKEY_USERS\.DEFAULT\..\Run]

Picasa Media Detector REG_SZ C:\Program Files\Picasa2\PicasaMediaDetector.exe
msnmsgr REG_SZ "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background

+--[HKEY_CURRENT_USER\..\Internet Explorer\MAIN]


+--[HKEY_LOCAL_MACHINE\..\Internet Explorer\MAIN]

Start Page : hxxp://home.sweetim.com

+---------------------------------------------------------------------------+

- "C:\AD-report-Scan-14.12.2008.log" (~29079 bytes)

# END at: 17:58:38 | 14/12/2008 - Time elapsed: 10.3 seconds

+---------------------------------------------------------------------------+
+------------------------------- [ E.O.F - 377 lines ]
+---------------------------------------------------------------------------+
0
Réponse 24 / 42
nyb9
 
-----------\\ ToolBar S&D 1.2.6 XP/Vista

Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual-Core Processor TK-55 )
BIOS : Default System BIOS
USER : Doudoune ( Not Administrator ! )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 081203-0] 4.8.1229 (Activated)
C:\ (Local Disk) - NTFS - Total:141 Go (Free:83 Go)
D:\ (CD or DVD)

"C:\ToolBar SD" ( MAJ : 04-12-2008|20:40 )
Option : [1] ( 18/12/2008|16:39 )

[ UAC => 0 ]

-----------\\ Recherche de Fichiers / Dossiers ...

C:\Program Files\AskTBar
C:\Program Files\AskTBar\SrchAstt
C:\Program Files\AskTBar\SrchAstt\1.bin
C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL

-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\Windows\\system32\\blank.htm"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Url"="https://www.msn.com/fr-fr/actualite/"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://home.sweetim.com"
"Default_Page_URL"="https://www.msn.com/fr-fr/?ocid=iehp"
"Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"


--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[ UAC => 1 ]


1 - "C:\ToolBar SD\TB_1.txt" - 18/12/2008|16:40 - Option : [1]

-----------\\ Fin du rapport a 16:40:00,59



j'espère que ça a bien fonctionné, car il fallait que j'enlève encore le c.u, seulement élévation des privilèges ss Vista ne suffisait pas.
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 42
159753
 
hi le probleme peux le resoudre par le entu virus
0
Réponse 26 / 42
g!rly Messages postés 18462 Statut Contributeur 406
 
ok nyb9,

passe l´option 2 de toolbar sd avec l´uac désactivé

post son rapport puis un nouveau rapport hijack this; précise tes soucis

@+
0
Réponse 27 / 42
nyb9
 
-----------\\ ToolBar S&D 1.2.6 XP/Vista

Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual-Core Processor TK-55 )
BIOS : Default System BIOS
USER : Doudoune ( Not Administrator ! )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 081203-0] 4.8.1229 (Activated)
C:\ (Local Disk) - NTFS - Total:141 Go (Free:84 Go)
D:\ (CD or DVD)

"C:\ToolBar SD" ( MAJ : 04-12-2008|20:40 )
Option : [2] ( 19/12/2008| 8:12 )

[ UAC => 1 ]

-----------\\ SUPPRESSION

Supprime! - C:\Program Files\AskTBar\SrchAstt
Supprime! - C:\Program Files\AskTBar

-----------\\ Recherche de Fichiers / Dossiers ...


-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\Windows\\system32\\blank.htm"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Url"="https://www.msn.com/fr-fr/actualite/"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.msn.com/fr-fr/"
"Default_Page_URL"="https://www.msn.com/fr-fr/?ocid=iehp"
"Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"


--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[ UAC => 1 ]


1 - "C:\ToolBar SD\TB_1.txt" - 18/12/2008|16:40 - Option : [1]
2 - "C:\ToolBar SD\TB_2.txt" - 19/12/2008| 8:13 - Option : [2]

-----------\\ Fin du rapport a 8:13:34,68
0
Réponse 28 / 42
nyb9
 
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 08:15:53, on 19/12/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\LimeWire\LimeWire.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\CPSHelpRunner.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\IEUser.exe
C:\Windows\system32\conime.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\system32\taskeng.exe
C:\Users\Doudoune\Desktop\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: (no name) - {EEE6C35D-6118-11DC-9C72-001320C79847} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dll
O3 - Toolbar: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} - (no file)
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe"
O4 - HKLM\..\Run: [toolbar_eula_launcher] C:\Program Files\Packard Bell\GOOGLE_EULA\EULALauncher.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [SmpcSys] C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Plugin Control) - http://appldnld.apple.com/QuickTime/qtactivex/qtplugin.cab
O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-24-0.cab
O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) - https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ATK Hotkey\ASLDRSrv.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe (file missing)
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
0
Réponse 29 / 42
nyb9
 
Juste une dernière question: est ce que je peux désinstaller les logiciels que tu m'as fait télécharger, vu que c'est qu'avec des pros comme toi qu'il faut les utiliser?
0
Réponse 30 / 42
nyb9
 
ok je vais faire tout ça, par contre ça ne risque rien si je télécharge un pare feu, alors que j'ai déjà le pare feu "windows defender"?
0
Réponse 31 / 42
nyb9
 
[ Rapport ToolsCleaner version 2.2.7 (par A.Rothstein & dj QUIOU) ]

-->- Recherche:

C:\TB.txt: trouvé !
C:\_OtMoveIt: trouvé !
C:\Toolbar SD: trouvé !
C:\Program Files\Ad-remover\TOOLS\NIRCMD.exe: trouvé !
C:\Users\Doudoune\Desktop\HijackThis.exe: trouvé !
C:\Users\Doudoune\Desktop\ToolBarSD.exe: trouvé !
C:\Users\Doudoune\Desktop\OTMoveIt3.exe: trouvé !
C:\Windows\NIRCMD.exe: trouvé !

---------------------------------
-->- Suppression:

C:\Users\Doudoune\Desktop\HijackThis.exe: supprimé !
C:\Users\Doudoune\Desktop\ToolBarSD.exe: supprimé !
C:\TB.txt: supprimé !
C:\Program Files\Ad-remover\TOOLS\NIRCMD.exe: supprimé !
C:\Users\Doudoune\Desktop\OTMoveIt3.exe: supprimé !
C:\Windows\NIRCMD.exe: supprimé !
C:\_OtMoveIt: supprimé !
C:\Toolbar SD: supprimé !




SpywareBlaster je l'ai déjà :) mais merci quand même.

Là il me reste Ad-remover je peux le supprimer dans le panneau de configuration? Et Toolscleaner ou ça peut me servir encore?
0
Réponse 32 / 42
g!rly Messages postés 18462 Statut Contributeur 406
 
salut nyb9,

je ne comprends pas ?

tu click sur l´un des liens ci dessous et telecharge le set up ?!

par feu : kerio

telechargement : http://www.filehippo.com/download_sunbelt_personal_firewall/tech/468/

tuto :

http://www.malekal.com/kerio_firewall.php#mozTocId721480

https://www.vulgarisation-informatique.com/kerio.php

https://kerio.probb.fr/f2-sunbelt-kerio-personal-firewall

Comodo 3 pro :

https://www.commentcamarche.net/telecharger/ 34055041 comodo firewall pro

tuto : https://www.malekal.com/tutorial-comodo-firewall/

Online armor :

https://www.commentcamarche.net/telecharger/ 34055356 online armor personal firewall

tuto : https://www.malekal.com/tutorial-online-armor-free/

ou zone alarm plus facil a configurer mais moins performant

https://www.malekal.com/tutoriel-zonealarm-firewall/

@+
0
nyb9
 
bon cette fois j'ai réussi à installer kiero, mais le problème quand il m'a demandée de redémarrer l'ordi, j'ai cliquer OK, puis là écran bleu toute la page écrit en anglais, donc j'ai fait Ctrl+Alt+Supp pour essayer de redémarrer, mais l'ordi était obligé de faire une restauration, car il ne voulait plus redémarrer. Donc je vais laisser tomber pour le pare feu j'ai eu trop peur, mais merci quand même.
Je vais juste redésinstaller les logiciels qui sont revenus.
0
Réponse 33 / 42
g!rly Messages postés 18462 Statut Contributeur 406
 
salut,

passe l´option 2 de toolbar sd

si tu ne l´as plus :

Télécharge Toolbar-S&D de Eric_71 :
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cqJWPphpudyTqv7TRo5RQ3nm_Sx8JluVMO59X5E9cyE3j3LqKlmStIqiDqJdIgMJLi7MXn2nKVajQfoWuVvZZ2wIx_vkqO4k4P0K9jh-ra9jaKPXdZcoaVF2UqJZNH8ubL_42uIwh6f35xJ2GJMuzddVj2Qth1DgZ839lxEIFGkgWz3TdfvNMy-YtxfA3gqBUrj4U4LFeAPiWr3ClmjIP0t_Xs5PQ%3D%3D&attredirects=2

puis a l´aide de hijack this coche et fix :

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R3 - URLSearchHook: (no name) - {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (file missing)
O2 - BHO: (no name) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - (no file)
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - http://appldnld.apple.com.edgesuite.net/...
O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-24-0.cab
O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) - https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

pour plus de secu :

zone alarm ( y a pas de risque avec celui ci ) avec kerio l´ecran bleu peut arriver mais j´ai jamais rencontré le probleme que tu as eu (restauration de system)???

https://www.malekal.com/tutoriel-zonealarm-firewall/

anti spyware :

spywareblaster :

http://www.brightfort.com/spywareblaster.html

c´est un resident, il suffit de le mettre a jour de temps en temps car la version gratuite ne le fait pas toute seul , une fois installé et mis a jour tu mets toutes les protections sur "enable"

tuto : https://www.malekal.com/tutorial-spywareblaster/

pour supprimer les outils utilisés, si tout va bien :

Télécharge ToolsCleaner sur ton bureau.
--> http://www.commentcamarche.net/telecharger/telechargement 34055291 toolsclean(...)
# Clique sur Recherche et laisse le scan agir ...
# Clique sur Suppression pour finaliser.
# Tu peux, si tu le souhaites, te servir des Options facultatives.
# Clique sur Quitter pour obtenir le rapport.
# Poste le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur (C:\).

@+
0
nyb9
 
Salut g!rly,

je les ai déjà Spywareblaster et ToolsCleaner, merci quand même pour l'info!

Je vais faire les étapes suivantes maintenant.


Voilà le rapport pour option 2

-----------\\ ToolBar S&D 1.2.8 XP/Vista

Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual-Core Processor TK-55 )
BIOS : Default System BIOS
USER : Doudoune ( Not Administrator ! )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 081203-0] 4.8.1229 (Activated)
C:\ (Local Disk) - NTFS - Total:141 Go (Free:83 Go)
D:\ (CD or DVD)

"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
Option : [2] ( 27/12/2008|17:59 )

[ UAC => 1 ]

-----------\\ Recherche de Fichiers / Dossiers ...


-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\Windows\\system32\\blank.htm"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Url"="https://www.msn.com/fr-fr/actualite/"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.msn.com/fr-fr/"
"Default_Page_URL"="https://www.msn.com/fr-fr/?ocid=iehp"
"Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"


--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[ UAC => 1 ]


1 - "C:\ToolBar SD\TB_1.txt" - 27/12/2008|17:59 - Option : [2]

-----------\\ Fin du rapport a 17:59:57,12
0
Réponse 34 / 42
g!rly Messages postés 18462 Statut Contributeur 406
 
ok

fix aussi :

O3 - Toolbar: Ask Toolbar - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (file missing)

et vas vérifier et supprimer ceci : C:\Program Files\AskTBar si present

@+
0
nyb9
 
ok c'est fait et j'ai téléchargé le pare feu, par contre où est ce que je vérifie et supprime ceci : C:\Program Files\AskTBar ?
0
Réponse 35 / 42
g!rly Messages postés 18462 Statut Contributeur 406
 
démarrer > mon ordinateur > disk c > program files > askbar si le dossier est la supprime le.
@+
0
Réponse 36 / 42
nyb9
 
ah c'est ce que j'avais fait, mais vu que je ne le trouvais pas, je pensais qu'il fallait peut être faire autre chose.

Est ce que tout est bon maintenant? Je peux supprimer les logiciels hijackthis et toolbar ou j'en ai encore besoin?
0
Réponse 37 / 42
g!rly Messages postés 18462 Statut Contributeur 406
 
bon d´accord...
oui tu peux tout supprimer a l´aide de tool cleaner et en suite supprime tool cleaner...
0
Réponse 38 / 42
nyb9
 
ok je vais faire ça. Merci beaucoup !!!
0
Réponse 39 / 42
g!rly Messages postés 18462 Statut Contributeur 406
 
ok nyb9,

nos chemins se séparent maintenant...

je te souhaite une heureuse nouvelle année :)

ps : si tu trouves le bouton > résolu, sers t´en :)

c!ao`

g!rly`
0
Réponse 40 / 42
nyb9
 
merci maître g!rly :)

je te souhaite également une bonne année 2009 et meilleurs voeux!!! :)

nyb9
0

Discussions similaires

Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
Désinstaller Softonic
Diguimette -
lilidurhone -

5 réponses
Message Apple virus !!
Souclik67 -
MPMP10 -

3 réponses
virus Artemis!
mabiche37 -
Malekal_morte- -

14 réponses