qulauee

Merci pour toutes ces infos ki m'ont bien aidé ainsi que la disponibilité !! de vrais GEEKS ! @ ++

Malwarebytes' Anti-Malware 1.51.1.1800 www.malwarebytes.org Version de la base de données: 7337 Windows 6.0.6002 Service Pack 2 Internet Explorer 7.0.6002.18005 31/07/2011 17:17:22 mbam-log-2011-07-31 (17-17-22).txt Type d'examen: Examen complet (C:\|H:\|) Elément(s) analysé(s): 405738 Temps écoulé: 2 heure(s), 43 minute(s), 26 seconde(s) Processus mémoire infecté(s): 2 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 6 Valeur(s) du Registre infectée(s): 1 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 9 Processus mémoire infecté(s): c:\Windows\System32\config\systemprofile\AppData\Local\windows internet name service\wins.exe (Trojan.P2P) -> 2932 -> Unloaded process successfully. c:\Windows\System32\config\systemprofile\AppData\Local\windows internet name service\wins.exe (Trojan.P2P) -> 2960 -> Unloaded process successfully. Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): HKEY_CLASSES_ROOT\CLSID\{1E0DE227-5CE4-4ea3-AB0C-8B03E1AA76BC} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\H3O8CABBPI (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\JP595IR86O (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\NtWqIVLZEWZU (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\ (Hijack.Zones) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WINDOWS INTERNET NAME SERVICE (Trojan.P2P) -> Quarantined and deleted successfully. Valeur(s) du Registre infectée(s): HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Windows Internet Name Service\ImagePath (Trojan.P2P) -> Value: ImagePath -> Quarantined and deleted successfully. Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): c:\program files\ZHPFix\quarantine\npmywebs.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully. c:\program files\ZHPFix\quarantine\f3pssavr.scr.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully. c:\program files\ZHPFix\quarantine\mwsoemon.exe.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully. c:\program files\ZHPFix\quarantine\mwssrcas.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully. c:\program files\ZHPFix\quarantine\mwssvc.exe.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully. c:\program files\ZHPFix\quarantine\mwsbar.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully. c:\program files\ZHPFix\quarantine\m3srchmn.exe.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully. c:\Windows\System32\config\systemprofile\local settings\application data\windows internet name service\wins.exe (Trojan.P2P) -> Quarantined and deleted successfully. c:\Windows\System32\config\systemprofile\AppData\Local\windows internet name service\wins.exe (Trojan.P2P) -> Quarantined and deleted successfully. Merci pour les indications !!! c'était long mais UTILE !! Thanks

======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 ======= Mis à jour par TeamXscript le 12/04/11 Contact: AdRemover[DOT]contact[AT]gmail[DOT]com Site web: http://www.teamxscript.org C:\Program Files\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 13:43:15 le 31/07/2011, Mode normal Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 2 (X86) kLOuTe@PC-DE-KLOUTE (Sony Corporation VGN-CR42S_L) ============== ACTION(S) ============== Service: "MyWebSearchService" Stoppé et supprimé Fichier supprimé: C:\Windows\system32\f3PSSavr.scr Dossier supprimé: C:\Users\kLOuTe\AppData\LocalLow\FunWebProducts Dossier supprimé: C:\Program Files\FunWebProducts Dossier supprimé: C:\Users\kLOuTe\AppData\LocalLow\MyWebSearch Dossier supprimé: C:\Program Files\MyWebSearch Fichier supprimé: C:\Program Files\Windows Live\Messenger\Riched20.dll Fichier supprimé: C:\Program Files\Windows Live\Messenger\Msimg32.dll (!) -- Fichiers temporaires supprimés. Clé supprimée: HKLM\Software\Classes\CLSID\{00A6FAF1-072E-44cf-8957-5838F569A31D} Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00A6FAF1-072E-44cf-8957-5838F569A31D} Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00A6FAF1-072E-44cf-8957-5838F569A31D} Clé supprimée: HKLM\Software\Classes\CLSID\{00A6FAF6-072E-44cf-8957-5838F569A31D} Clé supprimée: HKLM\Software\Classes\CLSID\{07B18EA1-A523-4961-B6BB-170DE4475CCA} Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{07B18EA1-A523-4961-B6BB-170DE4475CCA} Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EA1-A523-4961-B6BB-170DE4475CCA} Clé supprimée: HKLM\Software\Classes\CLSID\{07B18EA9-A523-4961-B6BB-170DE4475CCA} Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EA9-A523-4961-B6BB-170DE4475CCA} Clé supprimée: HKLM\Software\Classes\CLSID\{07B18EAB-A523-4961-B6BB-170DE4475CCA} Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{07B18EAB-A523-4961-B6BB-170DE4475CCA} Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EAB-A523-4961-B6BB-170DE4475CCA} Clé supprimée: HKLM\Software\Classes\CLSID\{08858AF6-42AD-4914-95D2-AC3AB0DC8E28} Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{08858AF6-42AD-4914-95D2-AC3AB0DC8E28} Clé supprimée: HKLM\Software\Classes\CLSID\{0F8ECF4F-3646-4C3A-8881-8E138FFCAF70} Clé supprimée: HKLM\Software\Classes\CLSID\{25560540-9571-4D7B-9389-0F166788785A} Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{25560540-9571-4D7B-9389-0F166788785A} Clé supprimée: HKLM\Software\Classes\CLSID\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8} Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8} Clé supprimée: HKLM\Software\Classes\CLSID\{3E720452-B472-4954-B7AA-33069EB53906} Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3E720452-B472-4954-B7AA-33069EB53906} Clé supprimée: HKLM\Software\Classes\CLSID\{53CED2D0-5E9A-4761-9005-648404E6F7E5} Clé supprimée: HKLM\Software\Classes\CLSID\{63D0ED2C-B45B-4458-8B3B-60C69BBBD83C} Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{63D0ED2C-B45B-4458-8B3B-60C69BBBD83C} Clé supprimée: HKLM\Software\Classes\CLSID\{7473D292-B7BB-4f24-AE82-7E2CE94BB6A9} Clé supprimée: HKLM\Software\Classes\CLSID\{7473D294-B7BB-4f24-AE82-7E2CE94BB6A9} Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7473D294-B7BB-4f24-AE82-7E2CE94BB6A9} Clé supprimée: HKLM\Software\Classes\CLSID\{7473D296-B7BB-4f24-AE82-7E2CE94BB6A9} Clé supprimée: HKLM\Software\Classes\CLSID\{799391D3-EB86-4bac-9BD3-CBFEA58A0E15} Clé supprimée: HKLM\Software\Classes\CLSID\{819FFE22-35C7-4925-8CDA-4E0E2DB94302} Clé supprimée: HKLM\Software\Classes\CLSID\{84DA4FDF-A1CF-4195-8688-3E961F505983} Clé supprimée: HKLM\Software\Classes\CLSID\{8E6F1832-9607-4440-8530-13BE7C4B1D14} Clé supprimée: HKLM\Software\Classes\CLSID\{938AA51A-996C-4884-98CE-80DD16A5C9DA} Clé supprimée: HKLM\Software\Classes\CLSID\{98D9753D-D73B-42D5-8C85-4469CDA897AB} Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{98D9753D-D73B-42D5-8C85-4469CDA897AB} Clé supprimée: HKLM\Software\Classes\CLSID\{9FF05104-B030-46FC-94B8-81276E4E27DF} Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{9FF05104-B030-46FC-94B8-81276E4E27DF} Clé supprimée: HKLM\Software\Classes\CLSID\{A9571378-68A1-443d-B082-284F960C6D17} Clé supprimée: HKLM\Software\Classes\CLSID\{ADB01E81-3C79-4272-A0F1-7B2BE7A782DC} Clé supprimée: HKLM\Software\Classes\CLSID\{B813095C-81C0-4E40-AA14-67520372B987} Clé supprimée: HKLM\Software\Classes\CLSID\{C9D7BE3E-141A-4C85-8CD6-32461F3DF2C7} Clé supprimée: HKLM\Software\Classes\CLSID\{CFF4CE82-3AA2-451F-9B77-7165605FB835} Clé supprimée: HKLM\Software\Classes\CLSID\{D858DAFC-9573-4811-B323-7011A3AA7E61} Clé supprimée: HKLM\Software\Classes\CLSID\{D9FFFB27-D62A-4D64-8CEC-1FF006528805} Clé supprimée: HKLM\Software\Classes\CLSID\{E79DFBCA-5697-4fbd-94E5-5B2A9C7C1612} Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E79DFBCA-5697-4fbd-94E5-5B2A9C7C1612} Clé supprimée: HKLM\Software\Classes\Interface\{07B18EAA-A523-4961-B6BB-170DE4475CCA} Clé supprimée: HKLM\Software\Classes\Interface\{07B18EAC-A523-4961-B6BB-170DE4475CCA} Clé supprimée: HKLM\Software\Classes\Interface\{1093995A-BA37-41D2-836E-091067C4AD17} Clé supprimée: HKLM\Software\Classes\Interface\{120927BF-1700-43BC-810F-FAB92549B390} Clé supprimée: HKLM\Software\Classes\Interface\{17DE5E5E-BFE3-4E83-8E1F-8755795359EC} Clé supprimée: HKLM\Software\Classes\Interface\{1F52A5FA-A705-4415-B975-88503B291728} Clé supprimée: HKLM\Software\Classes\Interface\{247A115F-06C2-4FB3-967D-2D62D3CF4F0A} Clé supprimée: HKLM\Software\Classes\Interface\{2E3537FC-CF2F-4F56-AF54-5A6A3DD375CC} Clé supprimée: HKLM\Software\Classes\Interface\{2E9937FC-CF2F-4F56-AF54-5A6A3DD375CC} Clé supprimée: HKLM\Software\Classes\Interface\{3E1656ED-F60E-4597-B6AA-B6A58E171495} Clé supprimée: HKLM\Software\Classes\Interface\{3E53E2CB-86DB-4A4A-8BD9-FFEB7A64DF82} Clé supprimée: HKLM\Software\Classes\Interface\{3E720451-B472-4954-B7AA-33069EB53906} Clé supprimée: HKLM\Software\Classes\Interface\{3E720453-B472-4954-B7AA-33069EB53906} Clé supprimée: HKLM\Software\Classes\Interface\{63D0ED2B-B45B-4458-8B3B-60C69BBBD83C} Clé supprimée: HKLM\Software\Classes\Interface\{63D0ED2D-B45B-4458-8B3B-60C69BBBD83C} Clé supprimée: HKLM\Software\Classes\Interface\{6E74766C-4D93-4CC0-96D1-47B8E07FF9CA} Clé supprimée: HKLM\Software\Classes\Interface\{72EE7F04-15BD-4845-A005-D6711144D86A} Clé supprimée: HKLM\Software\Classes\Interface\{741DE825-A6F0-4497-9AA6-8023CF9B0FFF} Clé supprimée: HKLM\Software\Classes\Interface\{7473D291-B7BB-4F24-AE82-7E2CE94BB6A9} Clé supprimée: HKLM\Software\Classes\Interface\{7473D293-B7BB-4F24-AE82-7E2CE94BB6A9} Clé supprimée: HKLM\Software\Classes\Interface\{7473D295-B7BB-4F24-AE82-7E2CE94BB6A9} Clé supprimée: HKLM\Software\Classes\Interface\{7473D297-B7BB-4F24-AE82-7E2CE94BB6A9} Clé supprimée: HKLM\Software\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5} Clé supprimée: HKLM\Software\Classes\Interface\{8E9CF769-3D3B-40EB-9E2D-76E7A205E4D2} Clé supprimée: HKLM\Software\Classes\Interface\{90449521-D834-4703-BB4E-D3AA44042FF8} Clé supprimée: HKLM\Software\Classes\Interface\{991AAC62-B100-47CE-8B75-253965244F69} Clé supprimée: HKLM\Software\Classes\Interface\{A626CDBD-3D13-4F78-B819-440A28D7E8FC} Clé supprimée: HKLM\Software\Classes\Interface\{BBABDC90-F3D5-4801-863A-EE6AE529862D} Clé supprimée: HKLM\Software\Classes\Interface\{CF54BE1C-9359-4395-8533-1657CF209CFE} Clé supprimée: HKLM\Software\Classes\Interface\{D6FF3684-AD3B-48EB-BBB4-B9E6C5A355C1} Clé supprimée: HKLM\Software\Classes\Interface\{DE38C398-B328-4F4C-A3AD-1B5E4ED93477} Clé supprimée: HKLM\Software\Classes\Interface\{E342AF55-B78A-4CD0-A2BB-DA7F52D9D25E} Clé supprimée: HKLM\Software\Classes\Interface\{E342AF55-B78A-4CD0-A2BB-DA7F52D9D25F} Clé supprimée: HKLM\Software\Classes\Interface\{E79DFBC9-5697-4FBD-94E5-5B2A9C7C1612} Clé supprimée: HKLM\Software\Classes\Interface\{E79DFBCB-5697-4FBD-94E5-5B2A9C7C1612} Clé supprimée: HKLM\Software\Classes\Interface\{EB9E5C1C-B1F9-4C2B-BE8A-27D6446FDAF8} Clé supprimée: HKLM\Software\Classes\Interface\{F87D7FB5-9DC5-4C8C-B998-D8DFE02E2978} Clé supprimée: HKLM\Software\Classes\TypeLib\{07B18EA0-A523-4961-B6BB-170DE4475CCA} Clé supprimée: HKLM\Software\Classes\TypeLib\{0D26BC71-A633-4E71-AD31-EADC3A1B6A3A} Clé supprimée: HKLM\Software\Classes\TypeLib\{29D67D3C-509A-4544-903F-C8C1B8236554} Clé supprimée: HKLM\Software\Classes\TypeLib\{3E720450-B472-4954-B7AA-33069EB53906} Clé supprimée: HKLM\Software\Classes\TypeLib\{7473D290-B7BB-4F24-AE82-7E2CE94BB6A9} Clé supprimée: HKLM\Software\Classes\TypeLib\{819FFE20-35C7-4925-8CDA-4E0E2DB94302} Clé supprimée: HKLM\Software\Classes\TypeLib\{8CA01F0E-987C-49C3-B852-2F1AC4A7094C} Clé supprimée: HKLM\Software\Classes\TypeLib\{8E6F1830-9607-4440-8530-13BE7C4B1D14} Clé supprimée: HKLM\Software\Classes\TypeLib\{8FFDF636-0D87-4B33-B9E9-79A53F6E1DAE} Clé supprimée: HKLM\Software\Classes\TypeLib\{C8CECDE3-1AE1-4C4A-AD82-6D5B00212144} Clé supprimée: HKLM\Software\Classes\TypeLib\{D518921A-4A03-425E-9873-B9A71756821E} Clé supprimée: HKLM\Software\Classes\TypeLib\{E47CAEE0-DEEA-464A-9326-3F2801535A4D} Clé supprimée: HKLM\Software\Classes\TypeLib\{E79DFBC0-5697-4FBD-94E5-5B2A9C7C1612} Clé supprimée: HKLM\Software\Classes\TypeLib\{F42228FB-E84E-479E-B922-FBBD096E792C} Clé supprimée: HKLM\Software\Classes\FunWebProducts.DataControl Clé supprimée: HKLM\Software\Classes\FunWebProducts.DataControl.1 Clé supprimée: HKLM\Software\Classes\FunWebProducts.HistoryKillerScheduler Clé supprimée: HKLM\Software\Classes\FunWebProducts.HistoryKillerScheduler.1 Clé supprimée: HKLM\Software\Classes\FunWebProducts.HistorySwatterControlBar Clé supprimée: HKLM\Software\Classes\FunWebProducts.HistorySwatterControlBar.1 Clé supprimée: HKLM\Software\Classes\FunWebProducts.HTMLMenu Clé supprimée: HKLM\Software\Classes\FunWebProducts.HTMLMenu.1 Clé supprimée: HKLM\Software\Classes\FunWebProducts.HTMLMenu.2 Clé supprimée: HKLM\Software\Classes\FunWebProducts.IECookiesManager Clé supprimée: HKLM\Software\Classes\FunWebProducts.IECookiesManager.1 Clé supprimée: HKLM\Software\Classes\FunWebProducts.KillerObjManager Clé supprimée: HKLM\Software\Classes\FunWebProducts.KillerObjManager.1 Clé supprimée: HKLM\Software\Classes\FunWebProducts.PopSwatterBarButton Clé supprimée: HKLM\Software\Classes\FunWebProducts.PopSwatterBarButton.1 Clé supprimée: HKLM\Software\Classes\FunWebProducts.PopSwatterSettingsControl Clé supprimée: HKLM\Software\Classes\FunWebProducts.PopSwatterSettingsControl.1 Clé supprimée: HKLM\Software\Classes\MyWebSearch.ChatSessionPlugin Clé supprimée: HKLM\Software\Classes\MyWebSearch.ChatSessionPlugin.1 Clé supprimée: HKLM\Software\Classes\MyWebSearch.HTMLPanel Clé supprimée: HKLM\Software\Classes\MyWebSearch.HTMLPanel.1 Clé supprimée: HKLM\Software\Classes\MyWebSearch.MultipleButton Clé supprimée: HKLM\Software\Classes\MyWebSearch.MultipleButton.1 Clé supprimée: HKLM\Software\Classes\MyWebSearch.OutlookAddin Clé supprimée: HKLM\Software\Classes\MyWebSearch.OutlookAddin.1 Clé supprimée: HKLM\Software\Classes\MyWebSearch.PseudoTransparentPlugin Clé supprimée: HKLM\Software\Classes\MyWebSearch.PseudoTransparentPlugin.1 Clé supprimée: HKLM\Software\Classes\MyWebSearch.ThirdPartyInstaller Clé supprimée: HKLM\Software\Classes\MyWebSearch.ThirdPartyInstaller.1 Clé supprimée: HKLM\Software\Classes\MyWebSearch.UrlAlertButton Clé supprimée: HKLM\Software\Classes\MyWebSearch.UrlAlertButton.1 Clé supprimée: HKLM\Software\Classes\MyWebSearchToolBar.SettingsPlugin Clé supprimée: HKLM\Software\Classes\MyWebSearchToolBar.SettingsPlugin.1 Clé supprimée: HKLM\Software\Classes\MyWebSearchToolBar.ToolbarPlugin Clé supprimée: HKLM\Software\Classes\MyWebSearchToolBar.ToolbarPlugin.1 Clé supprimée: HKLM\Software\Classes\ScreenSaverControl.ScreenSaverInstaller Clé supprimée: HKLM\Software\Classes\ScreenSaverControl.ScreenSaverInstaller.1 Clé supprimée: HKLM\Software\FocusInteractive Clé supprimée: HKLM\Software\Fun Web Products Clé supprimée: HKLM\Software\MyWebSearch Clé supprimée: HKLM\Software\Trymedia Systems Clé supprimée: HKCU\Software\MyWebSearch Clé supprimée: HKCU\Software\AppDataLow\Software\Fun Web Products Clé supprimée: HKCU\Software\AppDataLow\Software\FunWebProducts Clé supprimée: HKCU\Software\AppDataLow\Software\MyWebSearch Clé supprimée: HKLM\Software\Canneverbe Limited\OpenCandy Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59C7FC09-1C83-4648-B3E6-003D2BBC7481} Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9170B96C-28D4-4626-8358-27E6CAEEF907} Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D1A71FA0-FF48-48dd-9B6D-7A13A3E42127} Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DDB1968E-EAD6-40fd-8DAE-FF14757F60C7} Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F138D901-86F0-4383-99B6-9CDD406036DA} Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} Clé supprimée: HKLM\Software\Classes\CLSID\{147a976f-eee1-4377-8ea7-4716e4cdd239} Clé supprimée: HKLM\Software\Classes\CLSID\{A4730EBE-43A6-443e-9776-36915D323AD3} Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68AF847F-6E91-45DD-9B68-D6A12C30E5D7} Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll Clé supprimée: HKLM\Software\Microsoft\Multimedia\WMPlayer\Schemes\f3pss Clé supprimée: HKLM\Software\Microsoft\Office\Outlook\Addins\MyWebSearch.OutlookAddin Clé supprimée: HKLM\Software\Microsoft\Office\Word\Addins\MyWebSearch.OutlookAddin Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} Clé supprimée: HKLM\Software\MozillaPlugins\@mywebsearch.com/Plugin Valeur supprimée: HKLM\Software\Microsoft\Windows Media\Wmsdk\Sources|F3PopularScreenSavers Valeur supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\post platform|FunWebProducts Valeur supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform|FunWebProducts Valeur supprimée: HKLM\Software\Mozilla\Firefox\Extensions|m3ffxtbr@mywebsearch.com Valeur supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Run|My Web Search Bar Search Scope Monitor Valeur supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Run|MyWebSearch Email Plugin Valeur supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Run|MyWebSearch Email Plugin Valeur supprimée: HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks|{00A6FAF6-072E-44CF-8957-5838F569A31D} Valeur supprimée: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{07B18EA9-A523-4961-B6BB-170DE4475CCA} Valeur supprimée: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{07B18EA9-A523-4961-B6BB-170DE4475CCA} ============== SCAN ADDITIONNEL ============== **** Google Chrome Version [12.0.742.122] **** Extension\fheoggkfdfchfphceeifdbepaooicaho (C:\Program Files\McAfee\SiteAdvisor\McChPlg.crx) (?) -- C:\Users\kLOuTe\AppData\Local\Google\Chrome\User Data\Default -- Preferences - default_search_provider: "Google" (Activé: true) (?) Preferences - homepage: hxxp://www.google.com/ Preferences - homepage_is_newtabpage: false Plugin - Chrome NaCl (Activé: false) (C:\Users\kLOuTe\AppData\Local\Google\Chrome\Application\12.0.742.122\ppGoogleNaClPluginChrome.dll) Plugin - "Java" (Activé: true) Plugin - "Silverlight" (Activé: true) Plugin - "Chrome NaCl" (Activé: false) Plugin - "McAfee SiteAdvisor" (Activé: true) Plugin - "Orbit Downloader" (Activé: true) Plugin - "NPCIG.dll" (Activé: true) Plugin - "DivX Player Netscape Plugin" (Activé: true) Plugin - "Picasa" (Activé: true) Plugin - "My Web Search Plugin Stub" (Activé: true) Plugin - "McAfee SecurityCenter" (Activé: true) ======================================== **** Internet Explorer Version [7.0.6002.18005] **** HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896 HKCU_Main|Start Page - hxxp://fr.msn.com/ HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM_Main|Start Page - hxxp://fr.msn.com/ HKCU_URLSearchHooks|{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - "McAfee SiteAdvisor Toolbar" (c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll) HKCU_Toolbar\WebBrowser|{47833539-D0C5-4125-9FA8-0819E2EAAC93} (C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll) HKCU_Toolbar\WebBrowser|{C55BBCD6-41AD-48AD-9953-3609C48EACC7} (C:\Program Files\Orbitdownloader\GrabPro.dll) HKLM_Toolbar|{47833539-D0C5-4125-9FA8-0819E2EAAC93} (C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll) HKLM_Toolbar|{517BDDE4-E3A7-4570-B21E-2B52B6139FC7} (C:\Program Files\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll) HKLM_Toolbar|{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} (c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll) HKLM_Toolbar|{C55BBCD6-41AD-48AD-9953-3609C48EACC7} (C:\Program Files\Orbitdownloader\GrabPro.dll) HKLM_ElevationPolicy\{1FCCD250-A453-4348-86C1-E5EA9B76FADB} - C:\Program Files\McAfee\VirusScan\mcvsmap.exe (McAfee, Inc.) HKLM_ElevationPolicy\{4250488A-CB24-0893-C066-B1AEA57BCFF2} - C:\Program Files\Orbitdownloader\orbitdm.exe (Orbitdownloader.com) HKLM_ElevationPolicy\{A8F94DF3-F6C6-422a-8BFC-7EE0F60A8609} - C:\Program Files\McAfee\VirusScan\mcvsshld.exe (McAfee, Inc.) HKLM_ElevationPolicy\{DAABE21E-DB8C-49b8-9511-9E6547ECBC5F} - c:\Program Files\McAfee\SiteAdvisor\McSACore.exe (McAfee, Inc.) HKLM_ElevationPolicy\{F365CC6C-656A-4108-8CF0-16DF98696395} - C:\Program Files\Canon\ZoomBrowser EX\Program\ZoomBrowser.exe (?) HKLM_Extensions\{CCA281CA-C863-46ef-9331-5C8D4460577F} - "@btrez.dll,-4015" (C:\Program Files\WIDCOMM\Bluetooth Software\bt_cold_icon.ico) BHO\{000123B4-9B42-4900-B3F7-F4B073EFC214} - "Octh Class" (C:\Program Files\Orbitdownloader\orbitcth.dll) BHO\{27B4851A-3207-45A2-B947-BE8AFE6163AB} (?) BHO\{7DB2D5A0-7241-4E79-B68D-6309F01C5231} - "scriptproxy" (C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20110620204003.dll) BHO\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} - "McAfee SiteAdvisor BHO" (c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll) ======================================== C:\Program Files\Ad-Remover\Quarantine: 92 Fichier(s) C:\Program Files\Ad-Remover\Backup: 16 Fichier(s) C:\Ad-Report-CLEAN[1].txt - 31/07/2011 13:43:23 (19652 Octet(s)) C:\Ad-Report-SCAN[1].txt - 31/07/2011 13:38:25 (21019 Octet(s)) Fin à: 13:46:00, 31/07/2011 ============== E.O.F ============== Et voilou, les actions sont exécutées !

======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 ======= PREMIER RAPPORT Mis à jour par TeamXscript le 12/04/11 Contact: AdRemover[DOT]contact[AT]gmail[DOT]com Site web: http://www.teamxscript.org C:\Program Files\Ad-Remover\main.exe (SCAN [1]) -> Lancé à 13:38:19 le 31/07/2011, Mode normal Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 2 (X86) kLOuTe@PC-DE-KLOUTE (Sony Corporation VGN-CR42S_L) ============== RECHERCHE ============== Service: "MyWebSearchService" Présent Fichier trouvé: C:\Windows\system32\f3PSSavr.scr Dossier trouvé: C:\Users\kLOuTe\AppData\LocalLow\FunWebProducts Dossier trouvé: C:\Program Files\FunWebProducts Dossier trouvé: C:\Users\kLOuTe\AppData\LocalLow\MyWebSearch Dossier trouvé: C:\Program Files\MyWebSearch Fichier trouvé: C:\Program Files\Windows Live\Messenger\Riched20.dll Fichier trouvé: C:\Program Files\Windows Live\Messenger\Msimg32.dll Clé trouvée: HKLM\Software\Classes\CLSID\{00A6FAF1-072E-44cf-8957-5838F569A31D} Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00A6FAF1-072E-44cf-8957-5838F569A31D} Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00A6FAF1-072E-44cf-8957-5838F569A31D} Clé trouvée: HKLM\Software\Classes\CLSID\{00A6FAF6-072E-44cf-8957-5838F569A31D} Clé trouvée: HKLM\Software\Classes\CLSID\{07B18EA1-A523-4961-B6BB-170DE4475CCA} Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{07B18EA1-A523-4961-B6BB-170DE4475CCA} Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EA1-A523-4961-B6BB-170DE4475CCA} Clé trouvée: HKLM\Software\Classes\CLSID\{07B18EA9-A523-4961-B6BB-170DE4475CCA} Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EA9-A523-4961-B6BB-170DE4475CCA} Clé trouvée: HKLM\Software\Classes\CLSID\{07B18EAB-A523-4961-B6BB-170DE4475CCA} Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{07B18EAB-A523-4961-B6BB-170DE4475CCA} Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EAB-A523-4961-B6BB-170DE4475CCA} Clé trouvée: HKLM\Software\Classes\CLSID\{08858AF6-42AD-4914-95D2-AC3AB0DC8E28} Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{08858AF6-42AD-4914-95D2-AC3AB0DC8E28} Clé trouvée: HKLM\Software\Classes\CLSID\{0F8ECF4F-3646-4C3A-8881-8E138FFCAF70} Clé trouvée: HKLM\Software\Classes\CLSID\{25560540-9571-4D7B-9389-0F166788785A} Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{25560540-9571-4D7B-9389-0F166788785A} Clé trouvée: HKLM\Software\Classes\CLSID\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8} Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8} Clé trouvée: HKLM\Software\Classes\CLSID\{3E720452-B472-4954-B7AA-33069EB53906} Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3E720452-B472-4954-B7AA-33069EB53906} Clé trouvée: HKLM\Software\Classes\CLSID\{53CED2D0-5E9A-4761-9005-648404E6F7E5} Clé trouvée: HKLM\Software\Classes\CLSID\{63D0ED2C-B45B-4458-8B3B-60C69BBBD83C} Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{63D0ED2C-B45B-4458-8B3B-60C69BBBD83C} Clé trouvée: HKLM\Software\Classes\CLSID\{7473D292-B7BB-4f24-AE82-7E2CE94BB6A9} Clé trouvée: HKLM\Software\Classes\CLSID\{7473D294-B7BB-4f24-AE82-7E2CE94BB6A9} Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7473D294-B7BB-4f24-AE82-7E2CE94BB6A9} Clé trouvée: HKLM\Software\Classes\CLSID\{7473D296-B7BB-4f24-AE82-7E2CE94BB6A9} Clé trouvée: HKLM\Software\Classes\CLSID\{799391D3-EB86-4bac-9BD3-CBFEA58A0E15} Clé trouvée: HKLM\Software\Classes\CLSID\{819FFE22-35C7-4925-8CDA-4E0E2DB94302} Clé trouvée: HKLM\Software\Classes\CLSID\{84DA4FDF-A1CF-4195-8688-3E961F505983} Clé trouvée: HKLM\Software\Classes\CLSID\{8E6F1832-9607-4440-8530-13BE7C4B1D14} Clé trouvée: HKLM\Software\Classes\CLSID\{938AA51A-996C-4884-98CE-80DD16A5C9DA} Clé trouvée: HKLM\Software\Classes\CLSID\{98D9753D-D73B-42D5-8C85-4469CDA897AB} Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{98D9753D-D73B-42D5-8C85-4469CDA897AB} Clé trouvée: HKLM\Software\Classes\CLSID\{9FF05104-B030-46FC-94B8-81276E4E27DF} Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{9FF05104-B030-46FC-94B8-81276E4E27DF} Clé trouvée: HKLM\Software\Classes\CLSID\{A9571378-68A1-443d-B082-284F960C6D17} Clé trouvée: HKLM\Software\Classes\CLSID\{ADB01E81-3C79-4272-A0F1-7B2BE7A782DC} Clé trouvée: HKLM\Software\Classes\CLSID\{B813095C-81C0-4E40-AA14-67520372B987} Clé trouvée: HKLM\Software\Classes\CLSID\{C9D7BE3E-141A-4C85-8CD6-32461F3DF2C7} Clé trouvée: HKLM\Software\Classes\CLSID\{CFF4CE82-3AA2-451F-9B77-7165605FB835} Clé trouvée: HKLM\Software\Classes\CLSID\{D858DAFC-9573-4811-B323-7011A3AA7E61} Clé trouvée: HKLM\Software\Classes\CLSID\{D9FFFB27-D62A-4D64-8CEC-1FF006528805} Clé trouvée: HKLM\Software\Classes\CLSID\{E79DFBCA-5697-4fbd-94E5-5B2A9C7C1612} Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E79DFBCA-5697-4fbd-94E5-5B2A9C7C1612} Clé trouvée: HKLM\Software\Classes\Interface\{07B18EAA-A523-4961-B6BB-170DE4475CCA} Clé trouvée: HKLM\Software\Classes\Interface\{07B18EAC-A523-4961-B6BB-170DE4475CCA} Clé trouvée: HKLM\Software\Classes\Interface\{1093995A-BA37-41D2-836E-091067C4AD17} Clé trouvée: HKLM\Software\Classes\Interface\{120927BF-1700-43BC-810F-FAB92549B390} Clé trouvée: HKLM\Software\Classes\Interface\{17DE5E5E-BFE3-4E83-8E1F-8755795359EC} Clé trouvée: HKLM\Software\Classes\Interface\{1F52A5FA-A705-4415-B975-88503B291728} Clé trouvée: HKLM\Software\Classes\Interface\{247A115F-06C2-4FB3-967D-2D62D3CF4F0A} Clé trouvée: HKLM\Software\Classes\Interface\{2E3537FC-CF2F-4F56-AF54-5A6A3DD375CC} Clé trouvée: HKLM\Software\Classes\Interface\{2E9937FC-CF2F-4F56-AF54-5A6A3DD375CC} Clé trouvée: HKLM\Software\Classes\Interface\{3E1656ED-F60E-4597-B6AA-B6A58E171495} Clé trouvée: HKLM\Software\Classes\Interface\{3E53E2CB-86DB-4A4A-8BD9-FFEB7A64DF82} Clé trouvée: HKLM\Software\Classes\Interface\{3E720451-B472-4954-B7AA-33069EB53906} Clé trouvée: HKLM\Software\Classes\Interface\{3E720453-B472-4954-B7AA-33069EB53906} Clé trouvée: HKLM\Software\Classes\Interface\{63D0ED2B-B45B-4458-8B3B-60C69BBBD83C} Clé trouvée: HKLM\Software\Classes\Interface\{63D0ED2D-B45B-4458-8B3B-60C69BBBD83C} Clé trouvée: HKLM\Software\Classes\Interface\{6E74766C-4D93-4CC0-96D1-47B8E07FF9CA} Clé trouvée: HKLM\Software\Classes\Interface\{72EE7F04-15BD-4845-A005-D6711144D86A} Clé trouvée: HKLM\Software\Classes\Interface\{741DE825-A6F0-4497-9AA6-8023CF9B0FFF} Clé trouvée: HKLM\Software\Classes\Interface\{7473D291-B7BB-4F24-AE82-7E2CE94BB6A9} Clé trouvée: HKLM\Software\Classes\Interface\{7473D293-B7BB-4F24-AE82-7E2CE94BB6A9} Clé trouvée: HKLM\Software\Classes\Interface\{7473D295-B7BB-4F24-AE82-7E2CE94BB6A9} Clé trouvée: HKLM\Software\Classes\Interface\{7473D297-B7BB-4F24-AE82-7E2CE94BB6A9} Clé trouvée: HKLM\Software\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5} Clé trouvée: HKLM\Software\Classes\Interface\{8E9CF769-3D3B-40EB-9E2D-76E7A205E4D2} Clé trouvée: HKLM\Software\Classes\Interface\{90449521-D834-4703-BB4E-D3AA44042FF8} Clé trouvée: HKLM\Software\Classes\Interface\{991AAC62-B100-47CE-8B75-253965244F69} Clé trouvée: HKLM\Software\Classes\Interface\{A626CDBD-3D13-4F78-B819-440A28D7E8FC} Clé trouvée: HKLM\Software\Classes\Interface\{BBABDC90-F3D5-4801-863A-EE6AE529862D} Clé trouvée: HKLM\Software\Classes\Interface\{CF54BE1C-9359-4395-8533-1657CF209CFE} Clé trouvée: HKLM\Software\Classes\Interface\{D6FF3684-AD3B-48EB-BBB4-B9E6C5A355C1} Clé trouvée: HKLM\Software\Classes\Interface\{DE38C398-B328-4F4C-A3AD-1B5E4ED93477} Clé trouvée: HKLM\Software\Classes\Interface\{E342AF55-B78A-4CD0-A2BB-DA7F52D9D25E} Clé trouvée: HKLM\Software\Classes\Interface\{E342AF55-B78A-4CD0-A2BB-DA7F52D9D25F} Clé trouvée: HKLM\Software\Classes\Interface\{E79DFBC9-5697-4FBD-94E5-5B2A9C7C1612} Clé trouvée: HKLM\Software\Classes\Interface\{E79DFBCB-5697-4FBD-94E5-5B2A9C7C1612} Clé trouvée: HKLM\Software\Classes\Interface\{EB9E5C1C-B1F9-4C2B-BE8A-27D6446FDAF8} Clé trouvée: HKLM\Software\Classes\Interface\{F87D7FB5-9DC5-4C8C-B998-D8DFE02E2978} Clé trouvée: HKLM\Software\Classes\TypeLib\{07B18EA0-A523-4961-B6BB-170DE4475CCA} Clé trouvée: HKLM\Software\Classes\TypeLib\{0D26BC71-A633-4E71-AD31-EADC3A1B6A3A} Clé trouvée: HKLM\Software\Classes\TypeLib\{29D67D3C-509A-4544-903F-C8C1B8236554} Clé trouvée: HKLM\Software\Classes\TypeLib\{3E720450-B472-4954-B7AA-33069EB53906} Clé trouvée: HKLM\Software\Classes\TypeLib\{7473D290-B7BB-4F24-AE82-7E2CE94BB6A9} Clé trouvée: HKLM\Software\Classes\TypeLib\{819FFE20-35C7-4925-8CDA-4E0E2DB94302} Clé trouvée: HKLM\Software\Classes\TypeLib\{8CA01F0E-987C-49C3-B852-2F1AC4A7094C} Clé trouvée: HKLM\Software\Classes\TypeLib\{8E6F1830-9607-4440-8530-13BE7C4B1D14} Clé trouvée: HKLM\Software\Classes\TypeLib\{8FFDF636-0D87-4B33-B9E9-79A53F6E1DAE} Clé trouvée: HKLM\Software\Classes\TypeLib\{C8CECDE3-1AE1-4C4A-AD82-6D5B00212144} Clé trouvée: HKLM\Software\Classes\TypeLib\{D518921A-4A03-425E-9873-B9A71756821E} Clé trouvée: HKLM\Software\Classes\TypeLib\{E47CAEE0-DEEA-464A-9326-3F2801535A4D} Clé trouvée: HKLM\Software\Classes\TypeLib\{E79DFBC0-5697-4FBD-94E5-5B2A9C7C1612} Clé trouvée: HKLM\Software\Classes\TypeLib\{F42228FB-E84E-479E-B922-FBBD096E792C} Clé trouvée: HKLM\Software\Classes\FunWebProducts.DataControl Clé trouvée: HKLM\Software\Classes\FunWebProducts.DataControl.1 Clé trouvée: HKLM\Software\Classes\FunWebProducts.HistoryKillerScheduler Clé trouvée: HKLM\Software\Classes\FunWebProducts.HistoryKillerScheduler.1 Clé trouvée: HKLM\Software\Classes\FunWebProducts.HistorySwatterControlBar Clé trouvée: HKLM\Software\Classes\FunWebProducts.HistorySwatterControlBar.1 Clé trouvée: HKLM\Software\Classes\FunWebProducts.HTMLMenu Clé trouvée: HKLM\Software\Classes\FunWebProducts.HTMLMenu.1 Clé trouvée: HKLM\Software\Classes\FunWebProducts.HTMLMenu.2 Clé trouvée: HKLM\Software\Classes\FunWebProducts.IECookiesManager Clé trouvée: HKLM\Software\Classes\FunWebProducts.IECookiesManager.1 Clé trouvée: HKLM\Software\Classes\FunWebProducts.KillerObjManager Clé trouvée: HKLM\Software\Classes\FunWebProducts.KillerObjManager.1 Clé trouvée: HKLM\Software\Classes\FunWebProducts.PopSwatterBarButton Clé trouvée: HKLM\Software\Classes\FunWebProducts.PopSwatterBarButton.1 Clé trouvée: HKLM\Software\Classes\FunWebProducts.PopSwatterSettingsControl Clé trouvée: HKLM\Software\Classes\FunWebProducts.PopSwatterSettingsControl.1 Clé trouvée: HKLM\Software\Classes\MyWebSearch.ChatSessionPlugin Clé trouvée: HKLM\Software\Classes\MyWebSearch.ChatSessionPlugin.1 Clé trouvée: HKLM\Software\Classes\MyWebSearch.HTMLPanel Clé trouvée: HKLM\Software\Classes\MyWebSearch.HTMLPanel.1 Clé trouvée: HKLM\Software\Classes\MyWebSearch.MultipleButton Clé trouvée: HKLM\Software\Classes\MyWebSearch.MultipleButton.1 Clé trouvée: HKLM\Software\Classes\MyWebSearch.OutlookAddin Clé trouvée: HKLM\Software\Classes\MyWebSearch.OutlookAddin.1 Clé trouvée: HKLM\Software\Classes\MyWebSearch.PseudoTransparentPlugin Clé trouvée: HKLM\Software\Classes\MyWebSearch.PseudoTransparentPlugin.1 Clé trouvée: HKLM\Software\Classes\MyWebSearch.ThirdPartyInstaller Clé trouvée: HKLM\Software\Classes\MyWebSearch.ThirdPartyInstaller.1 Clé trouvée: HKLM\Software\Classes\MyWebSearch.UrlAlertButton Clé trouvée: HKLM\Software\Classes\MyWebSearch.UrlAlertButton.1 Clé trouvée: HKLM\Software\Classes\MyWebSearchToolBar.SettingsPlugin Clé trouvée: HKLM\Software\Classes\MyWebSearchToolBar.SettingsPlugin.1 Clé trouvée: HKLM\Software\Classes\MyWebSearchToolBar.ToolbarPlugin Clé trouvée: HKLM\Software\Classes\MyWebSearchToolBar.ToolbarPlugin.1 Clé trouvée: HKLM\Software\Classes\ScreenSaverControl.ScreenSaverInstaller Clé trouvée: HKLM\Software\Classes\ScreenSaverControl.ScreenSaverInstaller.1 Clé trouvée: HKLM\Software\FocusInteractive Clé trouvée: HKLM\Software\Fun Web Products Clé trouvée: HKLM\Software\MyWebSearch Clé trouvée: HKLM\Software\Trymedia Systems Clé trouvée: HKCU\Software\MyWebSearch Clé trouvée: HKCU\Software\AppDataLow\Software\Fun Web Products Clé trouvée: HKCU\Software\AppDataLow\Software\FunWebProducts Clé trouvée: HKCU\Software\AppDataLow\Software\MyWebSearch Clé trouvée: HKLM\Software\Canneverbe Limited\OpenCandy Clé trouvée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59C7FC09-1C83-4648-B3E6-003D2BBC7481} Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9170B96C-28D4-4626-8358-27E6CAEEF907} Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D1A71FA0-FF48-48dd-9B6D-7A13A3E42127} Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DDB1968E-EAD6-40fd-8DAE-FF14757F60C7} Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F138D901-86F0-4383-99B6-9CDD406036DA} Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} Clé trouvée: HKLM\Software\Classes\CLSID\{147a976f-eee1-4377-8ea7-4716e4cdd239} Clé trouvée: HKLM\Software\Classes\CLSID\{A4730EBE-43A6-443e-9776-36915D323AD3} Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68AF847F-6E91-45DD-9B68-D6A12C30E5D7} Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll Clé trouvée: HKLM\Software\Microsoft\Multimedia\WMPlayer\Schemes\f3pss Clé trouvée: HKLM\Software\Microsoft\Office\Outlook\Addins\MyWebSearch.OutlookAddin Clé trouvée: HKLM\Software\Microsoft\Office\Word\Addins\MyWebSearch.OutlookAddin Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} Clé trouvée: HKLM\Software\MozillaPlugins\@mywebsearch.com/Plugin Valeur trouvée: HKLM\Software\Microsoft\Windows Media\Wmsdk\Sources|F3PopularScreenSavers Valeur trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\post platform|FunWebProducts Valeur trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform|FunWebProducts Valeur trouvée: HKLM\Software\Mozilla\Firefox\Extensions|m3ffxtbr@mywebsearch.com Valeur trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Run|My Web Search Bar Search Scope Monitor Valeur trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Run|MyWebSearch Email Plugin Valeur trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Run|MyWebSearch Email Plugin Valeur trouvée: HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks|{00A6FAF6-072E-44CF-8957-5838F569A31D} Valeur trouvée: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{07B18EA9-A523-4961-B6BB-170DE4475CCA} Valeur trouvée: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{07B18EA9-A523-4961-B6BB-170DE4475CCA} ============== SCAN ADDITIONNEL ============== **** Google Chrome Version [12.0.742.122] **** Extension\fheoggkfdfchfphceeifdbepaooicaho (C:\Program Files\McAfee\SiteAdvisor\McChPlg.crx) (?) -- C:\Users\kLOuTe\AppData\Local\Google\Chrome\User Data\Default -- Preferences - default_search_provider: "Google" (Activé: true) (?) Preferences - homepage: hxxp://www.google.com/ Preferences - homepage_is_newtabpage: false Plugin - Chrome NaCl (Activé: false) (C:\Users\kLOuTe\AppData\Local\Google\Chrome\Application\12.0.742.122\ppGoogleNaClPluginChrome.dll) Plugin - "Java" (Activé: true) Plugin - "Silverlight" (Activé: true) Plugin - "Chrome NaCl" (Activé: false) Plugin - "McAfee SiteAdvisor" (Activé: true) Plugin - "Orbit Downloader" (Activé: true) Plugin - "NPCIG.dll" (Activé: true) Plugin - "DivX Player Netscape Plugin" (Activé: true) Plugin - "Picasa" (Activé: true) Plugin - "My Web Search Plugin Stub" (Activé: true) Plugin - "McAfee SecurityCenter" (Activé: true) ======================================== **** Internet Explorer Version [7.0.6002.18005] **** HKCU_Main|Default_Page_URL - hxxp://www.club-vaio.com HKCU_Main|Default_Search_URL - hxxp://www.google.com/ie HKCU_Main|Search bar - hxxp://www.google.com/ie HKCU_Main|Search Page - hxxp://www.google.com HKCU_Main|Start Page - hxxp://home.mywebsearch.com/index.jhtml?n=77C09F4F&ptnrS=ZRxpt115YYFR&ptb=iryw5WdCwuSKlQaUYKUzCg HKLM_Main|Default_Page_URL - hxxp://www.club-vaio.com HKLM_Main|Default_Search_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM_Main|Start Page - hxxp://go.microsoft.com/fwlink/?LinkId=69157 HKCU_URLSearchHooks|{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - "McAfee SiteAdvisor Toolbar" (c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll) HKCU_URLSearchHooks|{00A6FAF6-072E-44cf-8957-5838F569A31D} - "?" (C:\Program Files\MyWebSearch\bar\1.bin\MWSSRCAS.DLL) HKCU_SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} - "My Web Search" (hxxp://search.mywebsearch.com/mywebsearch/GGmain.jhtml?id=ZRxpt115YYFR&ptb=iryw5...) HKLM_SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} - "My Web Search" (hxxp://search.mywebsearch.com/mywebsearch/GGmain.jhtml?id=ZRxpt115YYFR&ptb=iryw5...) HKCU_Toolbar\WebBrowser|{47833539-D0C5-4125-9FA8-0819E2EAAC93} (C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll) HKCU_Toolbar\WebBrowser|{C55BBCD6-41AD-48AD-9953-3609C48EACC7} (C:\Program Files\Orbitdownloader\GrabPro.dll) HKCU_Toolbar\WebBrowser|{07B18EA9-A523-4961-B6BB-170DE4475CCA} (C:\Program Files\MyWebSearch\bar\1.bin\MWSBAR.DLL) HKLM_Toolbar|{47833539-D0C5-4125-9FA8-0819E2EAAC93} (C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll) HKLM_Toolbar|{517BDDE4-E3A7-4570-B21E-2B52B6139FC7} (C:\Program Files\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll) HKLM_Toolbar|{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} (c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll) HKLM_Toolbar|{07B18EA9-A523-4961-B6BB-170DE4475CCA} (C:\Program Files\MyWebSearch\bar\1.bin\MWSBAR.DLL) HKLM_Toolbar|{C55BBCD6-41AD-48AD-9953-3609C48EACC7} (C:\Program Files\Orbitdownloader\GrabPro.dll) HKLM_ElevationPolicy\{1FCCD250-A453-4348-86C1-E5EA9B76FADB} - C:\Program Files\McAfee\VirusScan\mcvsmap.exe (McAfee, Inc.) HKLM_ElevationPolicy\{4250488A-CB24-0893-C066-B1AEA57BCFF2} - C:\Program Files\Orbitdownloader\orbitdm.exe (Orbitdownloader.com) HKLM_ElevationPolicy\{59C7FC09-1C83-4648-B3E6-003D2BBC7481} - C:\Program Files\MyWebSearch\bar\1.bin\m3impipe.exe (MyWebSearch.com) HKLM_ElevationPolicy\{68AF847F-6E91-45dd-9B68-D6A12C30E5D7} - C:\Windows\system32\f3PSSavr.scr (FunWebProducts.com) HKLM_ElevationPolicy\{9170B96C-28D4-4626-8358-27E6CAEEF907} - C:\Program Files\MyWebSearch\bar\1.bin\m3SkPlay.exe (MyWebSearch.com) HKLM_ElevationPolicy\{A8F94DF3-F6C6-422a-8BFC-7EE0F60A8609} - C:\Program Files\McAfee\VirusScan\mcvsshld.exe (McAfee, Inc.) HKLM_ElevationPolicy\{D1A71FA0-FF48-48dd-9B6D-7A13A3E42127} - C:\Program Files\MyWebSearch\bar\1.bin\m3medint.exe (MyWebSearch.com) HKLM_ElevationPolicy\{DAABE21E-DB8C-49b8-9511-9E6547ECBC5F} - c:\Program Files\McAfee\SiteAdvisor\McSACore.exe (McAfee, Inc.) HKLM_ElevationPolicy\{DDB1968E-EAD6-40fd-8DAE-FF14757F60C7} - C:\Program Files\MyWebSearch\bar\1.bin\m3SlSrch.exe (MyWebSearch.com) HKLM_ElevationPolicy\{F138D901-86F0-4383-99B6-9CDD406036DA} - C:\Program Files\MyWebSearch\bar\1.bin\m3SrchMn.exe (MyWebSearch.com) HKLM_ElevationPolicy\{F365CC6C-656A-4108-8CF0-16DF98696395} - C:\Program Files\Canon\ZoomBrowser EX\Program\ZoomBrowser.exe (?) HKLM_Extensions\{CCA281CA-C863-46ef-9331-5C8D4460577F} - "@btrez.dll,-4015" (C:\Program Files\WIDCOMM\Bluetooth Software\bt_cold_icon.ico) BHO\{000123B4-9B42-4900-B3F7-F4B073EFC214} - "Octh Class" (C:\Program Files\Orbitdownloader\orbitcth.dll) BHO\{00A6FAF1-072E-44cf-8957-5838F569A31D} - "MyWebSearch Search Assistant BHO" (C:\Program Files\MyWebSearch\bar\1.bin\MWSSRCAS.DLL) BHO\{07B18EA1-A523-4961-B6BB-170DE4475CCA} - "mwsBar BHO" (C:\Program Files\MyWebSearch\bar\1.bin\MWSBAR.DLL) BHO\{27B4851A-3207-45A2-B947-BE8AFE6163AB} (?) BHO\{7DB2D5A0-7241-4E79-B68D-6309F01C5231} - "scriptproxy" (C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20110620204003.dll) BHO\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} - "McAfee SiteAdvisor BHO" (c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll) ======================================== C:\Program Files\Ad-Remover\Quarantine: 0 Fichier(s) C:\Program Files\Ad-Remover\Backup: 1 Fichier(s) C:\Ad-Report-SCAN[1].txt - 31/07/2011 13:38:25 (20880 Octet(s)) Fin à: 13:39:54, 31/07/2011 ============== E.O.F ==============

moi aussi j'ai des bestioles, merci pour analyse ;o) Cijoint.fr - Service gratuit de dépôt de fichiers

D'habitude je comprends les bidouillages, mais là je ne sais pas comment analyser mon rapport : Cijoint.fr - Service gratuit de dépôt de fichiers , si kelkun(e) pourrait m'expliquer comment trouver les lignes Helper et Fixer tt ça ? Merci