Bonjour, j'ai depuis quelque temps, à l'ouverture de firefox, de retrouver le serveur lost, avec plein de pubs intempestives, j'ai suivi les instructions de Apollo, que je remercie, j'ai donc télécharger ad-remover, scanner et voila le rapport : (que dois je faire ensuite ?)
.
======= RAPPORT D'AD-REMOVER 2.0.0.0,D | UNIQUEMENT XP/VISTA/7 =======
.
Mis à jour par C_XX le 19/05/10 à 19:20
Contact: AdRemover.contact@gmail.com
Site web: Orange
.
Lancé à: 12:38:47 le 25/10/2010 | Mode normal | Option: SCAN
Exécuté de: C:\Ad-Remover\ADR.exe
SE: Microsoft Windows XP Édition familiale (Service Pack 3 - X86)
Nom du PC: PROPRIET-E2950B
Utilisateur actuel: Proprietaire
.
============== ÉLÉMENT(S) TROUVÉ(S) ==============
.
Service: *Application Updater*
.
C:\Documents and Settings\All Users\Application Data\Games-Attack
C:\Documents and Settings\Proprietaire\Application Data\Dealio
C:\Documents and Settings\Proprietaire\Application Data\EoRezo
C:\Documents and Settings\Proprietaire\Application Data\Mozilla\FireFox\Profiles\fsjhifd2.default\SweetIMToolbarData
C:\Documents and Settings\Proprietaire\Application Data\Search Settings
C:\Documents and Settings\Proprietaire\Application Data\Soft2PC
C:\Documents and Settings\Proprietaire\Local Settings\Application Data\gffeeddc.dat
C:\Documents and Settings\Proprietaire\Local Settings\Application Data\gffeeddc_nav.dat
C:\Documents and Settings\Proprietaire\Local Settings\Application Data\gffeeddc_navps.dat
C:\Documents and Settings\Proprietaire\Local Settings\Application Data\Soft2PC
C:\Program Files\Application Updater
C:\Program Files\Dealio Toolbar
C:\Program Files\Mozilla FireFox\extensions\dealio@mybrowserbar.com
C:\Program Files\Mozilla Firefox\extensions\searchsettings@spigot.com
C:\Program Files\Search Settings
C:\Program Files\Soft2PC
.
HKCU\Software\AppDataLow\Software\Dealio
HKCU\Software\Dealio
HKCU\Software\EoRezo
HKCU\Software\fcn
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3475D2C4-BBD1-4255-A70D-4125A4D30956}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1A93C934-025B-4C3A-B38E-9654A7003239}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3475D2C4-BBD1-4255-A70D-4125A4D30956}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6F282B65-56BF-4BD1-A8B2-A4449A05863D}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
HKCU\Software\Search Settings
HKCU\Software\soft2PC
HKCU\Software\SweetIM
HKLM\Software\Application Updater
HKLM\Software\Classes\AppID\{AB67D16D-3824-4683-B81A-D66DBA61B1AF}
HKLM\Software\Classes\AppID\Soft2PCBHO.DLL
HKLM\Software\Classes\CLSID\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}
HKLM\Software\Classes\CLSID\{3475D2C4-BBD1-4255-A70D-4125A4D30956}
HKLM\Software\Classes\CLSID\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}
HKLM\Software\Classes\Installer\Products\96DC878CBD58B624183A7E1157AABE19
HKLM\Software\Classes\Interface\{CC883F50-95BB-4A25-9DBF-B801506F1BC4}
HKLM\Software\Classes\Interface\{D5A1EF9A-7948-435D-8B87-D6A598317288}
HKLM\Software\Classes\SearchSettings.BHO
HKLM\Software\Classes\SearchSettings.BHO.1
HKLM\Software\Classes\SoftwareBHO.SOFT2PCBHO
HKLM\Software\Classes\SoftwareBHO.SOFT2PCBHO.1
HKLM\Software\Classes\TypeLib\{B52F3553-49FA-4599-81A4-F98951E0B53B}
HKLM\Software\Classes\TypeLib\{CD082CCA-086F-4FD8-8FD7-247A0DBBD1CC}
HKLM\Software\Dealio
HKLM\Software\EoRezo
HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Soft2PC_is1
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3475D2C4-BBD1-4255-A70D-4125A4D30956}
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}
HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Userdata\S-1-5-18\Products\96DC878CBD58B624183A7E1157AABE19
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C878CD69-85DB-426B-81A3-E71175AAEB91}
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\gffeeddc
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Soft2PC_is1
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Software_is1
HKLM\Software\Search Settings
HKLM\Software\soft2PC
HKLM\Software\SweetIM
HKCU\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser|{EEE6C35B-6118-11DC-9C72-001320C79847}
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{EEE6C35B-6118-11DC-9C72-001320C79847}
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks|{E312764E-7706-43F1-8DAB-FCDD2B1E416D}
HKCU\Software\Microsoft\Windows\CurrentVersion\Run|gffeeddc
HKCU\Software\Microsoft\Windows\CurrentVersion\Run|winusr
HKLM\Software\Microsoft\Internet Explorer\Toolbar|{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}
HKLM\Software\Microsoft\Windows\CurrentVersion\Run|helper
HKLM\Software\Microsoft\Windows\CurrentVersion\Run|SearchSettings
HKLM\Software\Microsoft\Windows\CurrentVersion\Run|soft2PC
HKLM\Software\Microsoft\Windows\CurrentVersion\Run|Softwarehelper
HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs|C:\Program Files\Application Updater\ApplicationUpdater.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs|C:\Program Files\Dealio Toolbar\FF\chrome.manifest
HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs|C:\Program Files\Dealio Toolbar\FF\chrome\locale\EN-US\widgitoolbarplugin.properties
HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs|C:\Program Files\Dealio Toolbar\FF\components\dealioToolbarFF.dll
HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs|C:\Program Files\Dealio Toolbar\FF\install.rdf
HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs|C:\Program Files\Search Settings\FF\chrome\locale\en-US\searchsettingsplugin.dtd
HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs|C:\Program Files\Search Settings\FF\components\SearchSettingsFF.dll
HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs|C:\Program Files\Search Settings\FF\install.rdf
HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs|C:\Program Files\Search Settings\SearchSettings.dll
HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs|C:\Program Files\Search Settings\SearchSettings.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs|C:\Program Files\Search Settings\SearchSettingsRes409.dll
.
.
============== SCAN ADDITIONNEL ==============
.
* Mozilla FireFox Version 3.6.11 (fr) *
.
C:\Documents and Settings\Proprietaire\..\fsjhifd2.default\prefs.js - browser.download.lastDir: C:\\Documents and Settings\\Proprietaire\\Bureau
C:\Documents and Settings\Proprietaire\..\fsjhifd2.default\prefs.js - browser.search.defaultenginename: Yahoo
C:\Documents and Settings\Proprietaire\..\fsjhifd2.default\prefs.js - browser.search.defaulturl: hxxp://search.yahoo.com/search?ei=UTF-8&fr=ytff-&p=
C:\Documents and Settings\Proprietaire\..\fsjhifd2.default\prefs.js - browser.search.selectedEngine: Yahoo
C:\Documents and Settings\Proprietaire\..\fsjhifd2.default\prefs.js - browser.startup.homepage: hxxp://www.bing.com/
C:\Documents and Settings\Proprietaire\..\fsjhifd2.default\prefs.js - browser.startup.homepage_override.mstone: rv:1.9.2.11
C:\Documents and Settings\Proprietaire\..\fsjhifd2.default\prefs.js - keyword.URL: hxxp://ws.infospace.com/coolchaser/ws/redir?_iceUrl=true&user_id=35716907&tool_id=60531&qkw=
C:\Documents and Settings\Proprietaire\..\fsjhifd2.default\prefs.js - sweetim.toolbar.previous.browser.search.defaultenginename: Search the web
C:\Documents and Settings\Proprietaire\..\fsjhifd2.default\prefs.js - sweetim.toolbar.previous.browser.search.defaulturl: hxxp://search.babylon.com/web/{searchTerms}?babsrc=browsersearch
C:\Documents and Settings\Proprietaire\..\fsjhifd2.default\prefs.js - sweetim.toolbar.previous.browser.search.selectedEngine: Google
C:\Documents and Settings\Proprietaire\..\fsjhifd2.default\prefs.js - sweetim.toolbar.previous.browser.startup.homepage: hxxp://www.bing.com/
C:\Documents and Settings\Proprietaire\..\fsjhifd2.default\prefs.js - sweetim.toolbar.previous.keyword.URL: hxxp://www.yougoo.fr/meteo?search&q=
.
TROUVÉ: C:\Documents and Settings\Proprietaire\..\fsjhifd2.default\prefs.js - user_pref("sweetim.toolbar.highlight.colors", "#FFFF00,#00FFE4,#5AFF00,#0087FF,#FFCC00,#FF00F0");
TROUVÉ: C:\Documents and Settings\Proprietaire\..\fsjhifd2.default\prefs.js - user_pref("sweetim.toolbar.logger.ConsoleHandler.MinReportLevel", "7");
TROUVÉ: C:\Documents and Settings\Proprietaire\..\fsjhifd2.default\prefs.js - user_pref("sweetim.toolbar.logger.FileHandler.FileName", "ff-toolbar.log");
TROUVÉ: C:\Documents and Settings\Proprietaire\..\fsjhifd2.default\prefs.js - user_pref("sweetim.toolbar.logger.FileHandler.MaxFileSize", "200000");
TROUVÉ: C:\Documents and Settings\Proprietaire\..\fsjhifd2.default\prefs.js - user_pref("sweetim.toolbar.logger.FileHandler.MinReportLevel", "7");
TROUVÉ: C:\Documents and Settings\Proprietaire\..\fsjhifd2.default\prefs.js - user_pref("sweetim.toolbar.mode.debug", "false");
TROUVÉ: C:\Documents and Settings\Proprietaire\..\fsjhifd2.default\prefs.js - user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "Search the web");
TROUVÉ: C:\Documents and Settings\Proprietaire\..\fsjhifd2.default\prefs.js - user_pref("sweetim.toolbar.previous.browser.search.defaulturl", "hxxp://search.babylon.com/web/{searchTerms}?babsrc=browsersearch");
TROUVÉ: C:\Documents and Settings\Proprietaire\..\fsjhifd2.default\prefs.js - user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "Google");
TROUVÉ: C:\Documents and Settings\Proprietaire\..\fsjhifd2.default\prefs.js - user_pref("sweetim.toolbar.previous.browser.startup.homepage", "hxxp://www.bing.com/");
TROUVÉ: C:\Documents and Settings\Proprietaire\..\fsjhifd2.default\prefs.js - user_pref("sweetim.toolbar.previous.keyword.URL", "hxxp://www.yougoo.fr/meteo?search&q=");
.
* Internet Explorer Version 8.0.6001.18702 *
.
[HKCU\Software\Microsoft\Internet Explorer\Main]
.
Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=69157
Do404Search: 0x01000000
Enable Browser Extensions: yes
First Home Page: hxxp://y.lo.st
Local Page: C:\WINDOWS\system32\blank.htm
Show_ToolBar: yes
Start Page: hxxp://ads.regiedepub.com/cgi-bin/advert/getads?x_dp_id=160
Use Search Asst: no
.
[HKLM\Software\Microsoft\Internet Explorer\Main]
.
Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=69157
Default_Search_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Delete_Temp_Files_On_Exit: yes
Local Page: C:\WINDOWS\system32\blank.htm
Search bar: hxxp://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
Search Page: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Start Page: hxxp://go.microsoft.com/fwlink/?LinkId=69157
.
[HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS]
.
Tabs: res://ieframe.dll/tabswelcome.htm
Blank: res://mshtml.dll/blank.htm
.
========================================
.
C:\Ad-Remover\Quarantine: 0 Fichier(s)
C:\Ad-Remover\Backup: 0 Fichier(s)
.
C:\Ad-Report-SCAN[1].txt - 11537 Octet(s)
.
Fin à: 12:40:38, 25/10/2010
.
============== E.O.F - SCAN[1] ==============
