/!\ Blocage de la pub détectée /!\
Vous
diminuez les moyens dont nous disposons pour vous proposer des contenus de qualités gratuits.
SVP laissez les publicités s'afficher ou soutenez le site :
Accélérer son PC et résoudre les problèmes de lenteur PC et Windows
Modérateur : Mods Windows
geronimo
par geronimo 30 mai 2011 11:31
Bonjour,
me revoila avec un autre ordi à optimiser...
je te laisse le rapport hijackthis :
Code : Tout sélectionner
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:42:29, on 30/05/2011
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16766)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\ProgramData\Badoo\Badoo Desktop\1.4.0.925\Badoo.Desktop.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe
C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe
C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
C:\Users\asf\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\asf\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\asf\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\asf\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Users\asf\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\asf\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=080c&m=aspire_7715z&r=27360810p505l04c4z1h5t4492e87r
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.facebook.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=080c&m=aspire_7715z&r=27360810p505l04c4z1h5t4492e87r
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACAW&l=080c&m=aspire_7715z&r=27360810p505l04c4z1h5t4492e87r
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
R3 - URLSearchHook: iWin Toolbar - {ce0c2586-da36-452b-acdb-320d9bcb19bf} - C:\Program Files (x86)\iWin\tbiWin.dll
R3 - URLSearchHook: dgfr Toolbar - {5e1e5b07-85fa-4930-b100-66efa0562444} - C:\Program Files (x86)\dgfr\tbdgf1.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
O2 - BHO: dgfr Toolbar - {5e1e5b07-85fa-4930-b100-66efa0562444} - C:\Program Files (x86)\dgfr\tbdgf1.dll
O2 - BHO: IEHlprObj Class - {8CA5ED52-F3FB-4414-A105-2E3491156990} - C:\Program Files (x86)\iWin Games\iWinGamesHookIE.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: MediaBar - {ABB49B3B-AB7D-4ED0-9135-93FD5AA4F69F} - C:\PROGRA~2\IMESHA~1\MediaBar\ToolBar\iMeshMediaBarDx.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.6.6209.1142\swg.dll
O2 - BHO: iWin Toolbar - {ce0c2586-da36-452b-acdb-320d9bcb19bf} - C:\Program Files (x86)\iWin\tbiWin.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - "C:\Program Files\BitDefender\BitDefender 2010\Antispam32\IEToolbar.dll" (file missing)
O3 - Toolbar: iWin Toolbar - {ce0c2586-da36-452b-acdb-320d9bcb19bf} - C:\Program Files (x86)\iWin\tbiWin.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: MediaBar - {ABB49B3B-AB7D-4ED0-9135-93FD5AA4F69F} - C:\PROGRA~2\IMESHA~1\MediaBar\ToolBar\iMeshMediaBarDx.dll
O3 - Toolbar: dgfr Toolbar - {5e1e5b07-85fa-4930-b100-66efa0562444} - C:\Program Files (x86)\dgfr\tbdgf1.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [EgisTecLiveUpdate] "C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED
O4 - HKLM\..\Run: [ArcadeDeluxeAgent] "C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe"
O4 - HKLM\..\Run: [PlayMovie] "C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\asf\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Badoo Desktop] "C:\ProgramData\Badoo\Badoo Desktop\1.4.0.925\Badoo.Desktop.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU')
O4 - Startup: LimeWire On Startup.lnk = C:\Program Files (x86)\LimeWire\LimeWire.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O13 - Gopher Prefix:
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game.zylom.com/activex/zylomgamesplayer.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: BitDefender Serveur Arrakis (Arrakis3) - BitDefender S.R.L. http://www.bitdefender.com - C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GRegService (Greg_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Service Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: iWinTrusted - iWin Inc. - C:\Program Files (x86)\iWin Games\iWinTrusted.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender S.R.L. - C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Updater Service - Acer - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2010\vsserv.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 14631 bytes
merci
Dernière modification par geronimo le 04 juin 2011 13:59, modifié 1 fois.
geronimo
par geronimo 30 mai 2011 12:15
excuse, voici un second rapport après une première épuration :
Code : Tout sélectionner
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:42:29, on 30/05/2011
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16766)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\ProgramData\Badoo\Badoo Desktop\1.4.0.925\Badoo.Desktop.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe
C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe
C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
C:\Users\asf\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\asf\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\asf\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\asf\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Users\asf\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\asf\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=080c&m=aspire_7715z&r=27360810p505l04c4z1h5t4492e87r
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.facebook.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=080c&m=aspire_7715z&r=27360810p505l04c4z1h5t4492e87r
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACAW&l=080c&m=aspire_7715z&r=27360810p505l04c4z1h5t4492e87r
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
R3 - URLSearchHook: iWin Toolbar - {ce0c2586-da36-452b-acdb-320d9bcb19bf} - C:\Program Files (x86)\iWin\tbiWin.dll
R3 - URLSearchHook: dgfr Toolbar - {5e1e5b07-85fa-4930-b100-66efa0562444} - C:\Program Files (x86)\dgfr\tbdgf1.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
O2 - BHO: dgfr Toolbar - {5e1e5b07-85fa-4930-b100-66efa0562444} - C:\Program Files (x86)\dgfr\tbdgf1.dll
O2 - BHO: IEHlprObj Class - {8CA5ED52-F3FB-4414-A105-2E3491156990} - C:\Program Files (x86)\iWin Games\iWinGamesHookIE.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: MediaBar - {ABB49B3B-AB7D-4ED0-9135-93FD5AA4F69F} - C:\PROGRA~2\IMESHA~1\MediaBar\ToolBar\iMeshMediaBarDx.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.6.6209.1142\swg.dll
O2 - BHO: iWin Toolbar - {ce0c2586-da36-452b-acdb-320d9bcb19bf} - C:\Program Files (x86)\iWin\tbiWin.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - "C:\Program Files\BitDefender\BitDefender 2010\Antispam32\IEToolbar.dll" (file missing)
O3 - Toolbar: iWin Toolbar - {ce0c2586-da36-452b-acdb-320d9bcb19bf} - C:\Program Files (x86)\iWin\tbiWin.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: MediaBar - {ABB49B3B-AB7D-4ED0-9135-93FD5AA4F69F} - C:\PROGRA~2\IMESHA~1\MediaBar\ToolBar\iMeshMediaBarDx.dll
O3 - Toolbar: dgfr Toolbar - {5e1e5b07-85fa-4930-b100-66efa0562444} - C:\Program Files (x86)\dgfr\tbdgf1.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [EgisTecLiveUpdate] "C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED
O4 - HKLM\..\Run: [ArcadeDeluxeAgent] "C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe"
O4 - HKLM\..\Run: [PlayMovie] "C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\asf\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Badoo Desktop] "C:\ProgramData\Badoo\Badoo Desktop\1.4.0.925\Badoo.Desktop.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU')
O4 - Startup: LimeWire On Startup.lnk = C:\Program Files (x86)\LimeWire\LimeWire.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O13 - Gopher Prefix:
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game.zylom.com/activex/zylomgamesplayer.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: BitDefender Serveur Arrakis (Arrakis3) - BitDefender S.R.L. http://www.bitdefender.com - C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GRegService (Greg_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Service Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: iWinTrusted - iWin Inc. - C:\Program Files (x86)\iWin Games\iWinTrusted.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender S.R.L. - C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Updater Service - Acer - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2010\vsserv.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 14631 bytes
Topxm Messages : 7943 Inscription : 08 nov. 2007 22:53Localisation : Cognac !!!!!
par Topxm 30 mai 2011 15:08
Salut,
Histoire d'avancer Sky,
Tu as des toolbars bien pourries à qui en veux-tu en voila, vires les...
Badoo à virer aussi
à priori
Après tu fais ce qui est indiqué ici :
http://forum.malekal.com/optimiser-mon- ... ml#p255696
geronimo
par geronimo 30 mai 2011 18:30
merci Topxm,
voici le rapport adremover :
Code : Tout sélectionner
======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======
Mis à jour par TeamXscript le 12/04/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org
C:\Program Files (x86)\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 18:35:35 le 30/05/2011, Mode normal
Microsoft Windows 7 Édition Familiale Premium (X64)
asf@ASF-PC (Acer Aspire 7715Z)
============== ACTION(S) ==============
Dossier supprimé: C:\Users\asf\Documents\Imesh
Fichier supprimé: C:\Users\asf\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\imesh.lnk
Dossier supprimé: C:\Users\asf\Music\Imesh
Dossier supprimé: C:\Program Files (x86)\Ask.com
Dossier supprimé: C:\Users\asf\AppData\LocalLow\Conduit
Dossier supprimé: C:\Users\asf\AppData\LocalLow\ConduitEngine
Dossier supprimé: C:\Program Files (x86)\ConduitEngine
Dossier supprimé: C:\ProgramData\Trymedia
Dossier supprimé: C:\ProgramData\iMesh
Dossier supprimé: C:\Users\asf\AppData\Local\iMesh
Dossier supprimé: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iMesh
Dossier supprimé: C:\Program Files (x86)\iMesh Applications
(!) -- Fichiers temporaires supprimés.
Clé supprimée: HKLM\Software\Classes\CLSID\{01AD9322-02FF-4f4f-AC52-92FDA5AE65F0}
Clé supprimée: HKLM\Software\Classes\CLSID\{03F14321-8FED-4CBC-B01A-4B57FC199062}
Clé supprimée: HKLM\Software\Classes\AppID\{F54A0D21-6A53-460C-8301-C694EC9E1033}
Clé supprimée: HKLM\Software\Classes\CLSID\{148132E6-626D-4A5E-8063-A761EB29A50B}
Clé supprimée: HKLM\Software\Classes\AppID\{403A885F-CB00-40C1-BDC1-EB09053194F7}
Clé supprimée: HKLM\Software\Classes\CLSID\{23BDC78C-B7BB-42E5-B970-54B292592D72}
Clé supprimée: HKLM\Software\Classes\AppID\{69E54DE2-C4ED-4BEC-8046-E3F9AC74B4B0}
Clé supprimée: HKLM\Software\Classes\CLSID\{2656B92B-0207-4afb-BEBF-F5FD231ECD39}
Clé supprimée: HKLM\Software\Classes\CLSID\{27BF8F8D-58B8-D41C-F913-B7EEB57EF6F6}
Clé supprimée: HKLM\Software\Classes\AppID\{A7DDCBDE-5C86-415c-8A37-763AE183E7E4}
Clé supprimée: HKLM\Software\Classes\CLSID\{2C6F7E96-73BC-47A5-9F51-B67F0BAFE24D}
Clé supprimée: HKLM\Software\Classes\AppID\{F7BCCFD4-2FA6-477D-A1B0-EF7500B3C49E}
Clé supprimée: HKLM\Software\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé supprimée: HKLM\Software\Classes\CLSID\{34CB0620-E343-4772-BBA8-D3074BC47516}
Clé supprimée: HKLM\Software\Classes\CLSID\{3BF72F68-72D8-461D-A884-329D936C5581}
Clé supprimée: HKLM\Software\Classes\CLSID\{412CD209-DDA4-4275-8C79-55F1C93FBD47}
Clé supprimée: HKLM\Software\Classes\CLSID\{4C58EB04-7B72-4D3D-A36E-66167A99BC31}
Clé supprimée: HKLM\Software\Classes\CLSID\{4EE0B011-604C-47F3-8F2B-39F79640B85E}
Clé supprimée: HKLM\Software\Classes\CLSID\{59570C1F-B692-48c9-91B4-7809E6945287}
Clé supprimée: HKLM\Software\Classes\CLSID\{5D637FAD-E202-48D1-8F18-5B9C459BD1E3}
Clé supprimée: HKLM\Software\Classes\CLSID\{5D9E7BE9-95E5-4392-8CD2-D82DE89589ED}
Clé supprimée: HKLM\Software\Classes\CLSID\{5EB0259D-AB79-4ae6-A6E6-24FFE21C3DA4}
Clé supprimée: HKLM\Software\Classes\AppID\{AD71F65D-CD13-4837-A2DC-E4D90020E7D4}
Clé supprimée: HKLM\Software\Classes\CLSID\{63A0F7FA-2C95-4d7e-AF25-EFCC303D20A1}
Clé supprimée: HKLM\Software\Classes\CLSID\{6559E502-6EE1-46b8-A83C-F3A45BDA23EE}
Clé supprimée: HKLM\Software\Classes\CLSID\{69D3F709-9DE2-479F-980F-532D46895703}
Clé supprimée: HKLM\Software\Classes\Interface\{69D3F709-9DE2-479F-980F-532D46895703}
Clé supprimée: HKLM\Software\Classes\CLSID\{6BC38BF4-E84D-46E1-920B-42D31AEA617E}
Clé supprimée: HKLM\Software\Classes\CLSID\{78E9D883-93CD-4072-BEF3-38EE581E2839}
Clé supprimée: HKLM\Software\Classes\CLSID\{7C3B01BC-53A5-48A0-A43B-0C67731134B9}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7C3B01BC-53A5-48A0-A43B-0C67731134B9}
Clé supprimée: HKLM\Software\Classes\AppID\{21493C1F-D071-496A-9C27-450578888291}
Clé supprimée: HKLM\Software\Classes\CLSID\{83AC1413-FCE4-4A46-9DD5-4F31F306E71F}
Clé supprimée: HKLM\Software\Classes\CLSID\{87CD3140-EEC0-463F-8872-6E564D9DEDE5}
Clé supprimée: HKLM\Software\Classes\CLSID\{98ED0D10-F1FC-4113-A095-9BD7F96040C9}
Clé supprimée: HKLM\Software\Classes\AppID\{5E50AE1D-BC76-418B-94C4-EFEAC0CEF80C}
Clé supprimée: HKLM\Software\Classes\CLSID\{A2858A72-758F-4486-B6A1-7F1DCC0924FA}
Clé supprimée: HKLM\Software\Classes\CLSID\{ABB49B3B-AB7D-4ED0-9135-93FD5AA4F69F}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{ABB49B3B-AB7D-4ED0-9135-93FD5AA4F69F}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{ABB49B3B-AB7D-4ED0-9135-93FD5AA4F69F}
Clé supprimée: HKLM\Software\Classes\CLSID\{B0639356-335C-4E47-B63C-12531A7A5206}
Clé supprimée: HKLM\Software\Classes\CLSID\{B162A975-6C7C-4202-9167-306028913A3D}
Clé supprimée: HKLM\Software\Classes\CLSID\{B6F8DA9F-2696-419e-A8A3-19BE41EF51BD}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B6F8DA9F-2696-419e-A8A3-19BE41EF51BD}
Clé supprimée: HKLM\Software\Classes\AppID\{55C1727F-5535-4C2A-9601-8C2458608B48}
Clé supprimée: HKLM\Software\Classes\CLSID\{C63CA8A4-AB4E-49e5-A6C0-33FC86D80205}
Clé supprimée: HKLM\Software\Classes\CLSID\{C6A7847E-8931-4a9a-B4EF-72A91E3CCF4D}
Clé supprimée: HKLM\Software\Classes\CLSID\{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B}
Clé supprimée: HKLM\Software\Classes\CLSID\{CD5175E2-7CC1-418C-B66C-0AB95DAD4103}
Clé supprimée: HKLM\Software\Classes\CLSID\{D8BFC514-1135-4393-B09A-193D2AAC5037}
Clé supprimée: HKLM\Software\Classes\CLSID\{DD0F1D24-E250-4e93-966C-65615720AEFB}
Clé supprimée: HKLM\Software\Classes\CLSID\{DEF4ED0D-E666-4631-A35A-A634332F0550}
Clé supprimée: HKLM\Software\Classes\CLSID\{EBBDF505-94A4-4356-B8B1-0D6438350CF4}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EBBDF505-94A4-4356-B8B1-0D6438350CF4}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EBBDF505-94A4-4356-B8B1-0D6438350CF4}
Clé supprimée: HKLM\Software\Classes\CLSID\{EC1277BB-1C71-4c0d-BA6D-BFEA16E773A6}
Clé supprimée: HKLM\Software\Classes\CLSID\{F42C7B47-5234-4BF5-8882-DAAC0D64870D}
Clé supprimée: HKLM\Software\Classes\Interface\{F42C7B47-5234-4BF5-8882-DAAC0D64870D}
Clé supprimée: HKLM\Software\Classes\CLSID\{F8AB43ED-EC88-4de7-B213-F89157D29C62}
Clé supprimée: HKLM\Software\Classes\AppID\{1FC41815-FA4C-4F8B-B143-2C045C8EA2FC}
Clé supprimée: HKLM\Software\Classes\CLSID\{FD675817-9EFE-40cd-A75E-E94D1C85D1FE}
Clé supprimée: HKLM\Software\Classes\Interface\{E3ED53C5-7AD5-4DF5-9734-AFB6E7E5D9DB}
Clé supprimée: HKLM\Software\Classes\Interface\{F7BEBBB1-7E6B-4561-9444-6F4866D60C7C}
Clé supprimée: HKLM\Software\Classes\TypeLib\{252C2315-CCE0-4446-8DA7-C00292A690BA}
Clé supprimée: HKLM\Software\Classes\TypeLib\{2D77AC8A-0A4C-40D0-9557-51907A575E45}
Clé supprimée: HKLM\Software\Classes\TypeLib\{403A885F-CB00-40C1-BDC1-EB09053194F7}
Clé supprimée: HKLM\Software\Classes\TypeLib\{43B4B831-F41F-4F73-8F14-4FFF0BA75B1B}
Clé supprimée: HKLM\Software\Classes\TypeLib\{55C1727F-5535-4C2A-9601-8C2458608B48}
Clé supprimée: HKLM\Software\Classes\TypeLib\{6C9945B7-1D19-46CB-88C0-45A24DF6CD6E}
Clé supprimée: HKLM\Software\Classes\TypeLib\{81CA8FCD-1420-4A07-B47D-B30F3DDA79E1}
Clé supprimée: HKLM\Software\Classes\TypeLib\{84B9B044-17C0-48FB-A300-C9747D5DF29C}
Clé supprimée: HKLM\Software\Classes\TypeLib\{85672EDB-2CC8-40B9-A9E8-77D3478F2EFB}
Clé supprimée: HKLM\Software\Classes\TypeLib\{969D2C61-9B16-407C-86B7-397BF4579BE6}
Clé supprimée: HKLM\Software\Classes\TypeLib\{96F7FABC-5789-EFA4-B6ED-1272F4C1D27B}
Clé supprimée: HKLM\Software\Classes\TypeLib\{ADEA3C4E-2184-40A2-9556-488456427E80}
Clé supprimée: HKLM\Software\Classes\TypeLib\{C4C4F1F4-3074-4CB6-9FB8-0A64273166F0}
Clé supprimée: HKLM\Software\Classes\TypeLib\{EC96F516-51B2-4B46-8451-8665F5A6BA2B}
Clé supprimée: HKLM\Software\Classes\TypeLib\{F07FBD3E-2048-44A4-9065-71BF551E2672}
Clé supprimée: HKLM\Software\Classes\Conduit.Engine
Clé supprimée: HKLM\Software\Classes\DiscoveryHelper.iMesh6Discovery
Clé supprimée: HKLM\Software\Classes\DiscoveryHelper.iMesh6Discovery.1
Clé supprimée: HKLM\Software\Classes\iMesh.AudioCD
Clé supprimée: HKLM\Software\Classes\iMesh.Device
Clé supprimée: HKLM\Software\Classes\iMesh.file
Clé supprimée: HKLM\Software\Classes\iMesh.LauncherEventHandler
Clé supprimée: HKLM\Software\Classes\iMesh.LauncherEventHandler.1
Clé supprimée: HKLM\Software\Classes\Toolbar.CT1678857
Clé supprimée: HKLM\Software\Classes\Toolbar.CT2642814
Clé supprimée: HKLM\Software\Conduit
Clé supprimée: HKLM\Software\conduitEngine
Clé supprimée: HKLM\Software\iMesh
Clé supprimée: HKLM\Software\Trymedia Systems
Clé supprimée: HKCU\Software\iMesh
Clé supprimée: HKCU\Software\AppDataLow\Toolbar
Clé supprimée: HKCU\Software\AppDataLow\Software\Conduit
Clé supprimée: HKCU\Software\AppDataLow\Software\conduitEngine
Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}
Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2A59}
Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2A59}
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0ABE0FED-50E7-4e42-A125-57C0A11DBCDE}
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{53EA6515-3460-4A6A-BAD9-7DB7F23BD627}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Imesh
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Valeur supprimée: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{30F9B915-B755-4826-820B-08FBA6BD249D}
Valeur supprimée: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{D4027C7F-154A-4066-A1AD-4243D8127440}
Valeur supprimée: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{30F9B915-B755-4826-820B-08FBA6BD249D}
============== SCAN ADDITIONNEL ==============
**** Google Chrome Version [11.0.696.71] ****
-- C:\Users\asf\AppData\Local\Google\Chrome\User Data\Default --
Preferences - default_search_provider: "Google" (Activé: true) (?)
Preferences - homepage: hxxp://www.google.com/
Preferences - homepage_is_newtabpage: false
Plugin - Skype Toolbars (Activé: true) (C:\Users\asf\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.0.0.6778_0\npSkypeChromePlugin.dll) (x)
Plugin - "Skype Toolbars" (Activé: true)
Preferences - urls_to_restore_on_startup: hxxp://www.google.be/
========================================
**** Internet Explorer Version [8.0.7600.16385] ****
HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896
HKCU_Main|Start Page - hxxp://fr.msn.com/
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm
HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Start Page - hxxp://fr.msn.com/
HKCU_URLSearchHooks|{5e1e5b07-85fa-4930-b100-66efa0562444} (x)
HKCU_Toolbar\WebBrowser|{5E1E5B07-85FA-4930-B100-66EFA0562444} (x)
HKLM_Toolbar|{381FFDE8-2394-4f90-B10D-FC6124A40F8C} ("C:\Program Files\BitDefender\BitDefender 2010\Antispam32\IEToolbar.dll") (x)
HKLM_ElevationPolicy\487b13a0-a330-46ba-985f-3a249fffc4ff - C:\Program Files (x86)\iWin\iWinToolbarHelper.exe (x)
HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\SysWOW64\wpcer.exe (x)
HKLM_ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695} - C:\Windows\SysWOW64\winfxdocobj.exe (x)
HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files (x86)\Internet Explorer\iedw.exe (x)
HKLM_ElevationPolicy\{A6E2003F-95C5-4591-BA9A-0093080FDB5C} - C:\Program Files (x86)\Common Files\Oberon Media\OberonBroker\1.0.0.63\OberonBroker.exe (?)
HKLM_ElevationPolicy\{B43A0C1E-B63F-4691-B68F-CD807A45DA01} - C:\Windows\system32\TSWbPrxy.exe (x)
========================================
C:\Program Files (x86)\Ad-Remover\Quarantine: 354 Fichier(s)
C:\Program Files (x86)\Ad-Remover\Backup: 14 Fichier(s)
C:\Ad-Report-CLEAN[1].txt - 30/05/2011 18:37:29 (13260 Octet(s))
Fin à: 18:38:38, 30/05/2011
============== E.O.F ==============
SkyTech
par SkyTech 30 mai 2011 18:43
Salut,
geronimo
par geronimo 30 mai 2011 19:32
Code : Tout sélectionner
Delete file: C:\Program Files (x86)\Ad-Remover\Erunt\ERDNT.E_E
Delete file: C:\Program Files (x86)\Ad-Remover\Erunt\ERDNTDOS.LOC
Delete file: C:\Program Files (x86)\Ad-Remover\Erunt\ERDNTWIN.LOC
Delete file: C:\Program Files (x86)\Ad-Remover\Erunt\ERUNT.exe
Delete file: C:\Program Files (x86)\Ad-Remover\Erunt\ERUNT.LOC
Delete file: C:\Program Files (x86)\Ad-Remover\Erunt\README.TXT
Delete file: C:\Program Files (x86)\Ad-Remover\Backup\30.05.2011-Ad-Report-CLEAN[1].txt
Delete file: C:\Program Files (x86)\Ad-Remover\Backup\AD-R.exe
Delete file: C:\Program Files (x86)\Ad-Remover\res\Icons\icon.ico
Delete file: C:\Program Files (x86)\Ad-Remover\res\Icons\install.ico
Delete file: C:\Program Files (x86)\Ad-Remover\res\Icons\ReadMe_Install.ico.txt
Delete file: C:\Program Files (x86)\Ad-Remover\res\Icons\uninstall.ico
Delete file: C:\Program Files (x86)\Ad-Remover\res\Images\AboutImg.jpg
Delete file: C:\Program Files (x86)\Ad-Remover\res\Images\Logo.jpg
Delete file: C:\Program Files (x86)\Ad-Remover\res\Images\Paypal-EN.jpg
Delete file: C:\Program Files (x86)\Ad-Remover\res\Images\Paypal-FR.jpg
Delete file: C:\Program Files (x86)\Ad-Remover\bin\CTbUninstaller.exe
Delete file: C:\Program Files (x86)\Ad-Remover\main.exe
Delete file: C:\Program Files (x86)\Ad-Remover\Uninstall.exe
Delete file: \Ad-Report-CLEAN[1].txt
Delete file: C:\Users\asf\Desktop\AD-R.lnk
Delete file: C:\Program Files (x86)\Ad-Remover\Backup\Registry-5-30-2011\BCD
Delete file: C:\Program Files (x86)\Ad-Remover\Backup\Registry-5-30-2011\DEFAULT
Delete file: C:\Program Files (x86)\Ad-Remover\Backup\Registry-5-30-2011\ERDNT.CON
Delete file: C:\Program Files (x86)\Ad-Remover\Backup\Registry-5-30-2011\ERDNT.EXE
Delete file: C:\Program Files (x86)\Ad-Remover\Backup\Registry-5-30-2011\ERDNT.INF
Delete file: C:\Program Files (x86)\Ad-Remover\Backup\Registry-5-30-2011\ERDNTDOS.LOC
Delete file: C:\Program Files (x86)\Ad-Remover\Backup\Registry-5-30-2011\ERDNTWIN.LOC
Delete file: C:\Program Files (x86)\Ad-Remover\Backup\Registry-5-30-2011\SAM
Delete file: C:\Program Files (x86)\Ad-Remover\Backup\Registry-5-30-2011\SECURITY
Delete file: C:\Program Files (x86)\Ad-Remover\Backup\Registry-5-30-2011\SOFTWARE
Delete file: C:\Program Files (x86)\Ad-Remover\Backup\Registry-5-30-2011\SYSTEM
Delete file: C:\Program Files (x86)\Ad-Remover\Backup\Registry-5-30-2011\Users\00000001\NTUSER.DAT
Remove folder: C:\Program Files (x86)\Ad-Remover\Backup\Registry-5-30-2011\Users\00000001\
Delete file: C:\Program Files (x86)\Ad-Remover\Backup\Registry-5-30-2011\Users\00000002\UsrClass.dat
Remove folder: C:\Program Files (x86)\Ad-Remover\Backup\Registry-5-30-2011\Users\00000002\
Remove folder: C:\Program Files (x86)\Ad-Remover\Backup\Registry-5-30-2011\Users\
Remove folder: C:\Program Files (x86)\Ad-Remover\Backup\Registry-5-30-2011\
Remove folder: C:\Program Files (x86)\Ad-Remover\Backup\
Remove folder: C:\Program Files (x86)\Ad-Remover\bin\
Remove folder: C:\Program Files (x86)\Ad-Remover\Erunt\
Delete file: C:\Program Files (x86)\Ad-Remover\Lang\Lang-EN.ini
Delete file: C:\Program Files (x86)\Ad-Remover\Lang\Lang-FR.ini
Delete file: C:\Program Files (x86)\Ad-Remover\Lang\Lang-NE.ini
Remove folder: C:\Program Files (x86)\Ad-Remover\Lang\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\Ask.com\btn_search.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\Ask.com\limewire_logo.png.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\Ask.com\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\ConduitEngine\appContextMenu.xml.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\ConduitEngine\ConduitEngine.dll.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\ConduitEngine\ConduitEngineHelper.exe.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\ConduitEngine\ConduitEngineUninstall.exe.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\ConduitEngine\engineContextMenu.xml.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\ConduitEngine\EngineSettings.json.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\ConduitEngine\INSTALL.LOG.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\ConduitEngine\toolbar.cfg.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\ConduitEngine\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\ammp3.dll.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\avcodec-51.dll.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\avformat-51.dll.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\avutil-49.dll.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\BerkeleyLoader.dll.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Copy_Folder.bat.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\DiscoveryHelper.dll.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\FFPage.exe.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\FixAudioDriverSignature.reg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\GIFAnimator.dll.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\HTML\error.html.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\HTML\Images\bg-top.jpg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\HTML\Images\closeRecommend.gif.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\HTML\Images\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\HTML\loading.html.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\HTML\noInternet.html.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\HTML\offline.html.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\HTML\Recommendation_Offline.html.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\HTML\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\htmlayout.dll.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\ImageUploader5.ocx.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\iMesh.ico.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\IMTrProgress.dll.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\IMWebControl.dll.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Launcher_x64.exe.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\libungif4.dll.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\license.txt.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\lic_helper.dll.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\NCTAudioCDGrabber2.dll.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\NCTAudioCDWriter2.dll.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\NCTAudioCompress3.dll.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\NCTAudioFile3.dll.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\NCTAudioFileWMA3.dll.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\NCTAudioFormatSettings3.dll.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\NCTDataCDWriter2.dll.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Nickel.ocx.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\ResourcesLoc.dll.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\SHW32.DLL.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\Default.skn.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\Default.xml.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\albumsview\albums.html.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\albumsview\images\defpreview.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\albumsview\images\playbtn.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\albumsview\images\playing.png.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\albumsview\images\
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\albumsview\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\artistsview\artists.html.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\artistsview\images\defpreview.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\artistsview\images\play.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\artistsview\images\play_disabled.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\artistsview\images\play_down.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\artistsview\images\play_over.png.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\artistsview\images\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\artistsview\menu.html.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\artistsview\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\cdripview\cdrip.html.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\cdripview\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\colorschemebubble\images\active.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\colorschemebubble\images\azure.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\colorschemebubble\images\black.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\colorschemebubble\images\blue.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\colorschemebubble\images\byzantium.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\colorschemebubble\images\close-hovered.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\colorschemebubble\images\close-normal.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\colorschemebubble\images\close-pressed.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\colorschemebubble\images\close.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\colorschemebubble\images\dark-blue.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\colorschemebubble\images\green.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\colorschemebubble\images\grey.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\colorschemebubble\images\hover.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\colorschemebubble\images\inactive.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\colorschemebubble\images\magenta.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\colorschemebubble\images\olive.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\colorschemebubble\images\orange.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\colorschemebubble\images\pink.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\colorschemebubble\images\pro.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\colorschemebubble\images\red.png.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\colorschemebubble\images\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\colorschemebubble\pro-view.html.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\colorschemebubble\view.html.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\colorschemebubble\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\images\defalbum.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\images\defbutton.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\images\ls_btn.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\images\ls_btn_hover.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\images\ls_btn_pressed.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\images\sbv_bottom.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\images\sbv_bottom_over.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\images\sbv_bottom_pressed.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\images\sbv_fill.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\images\sbv_slider.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\images\sbv_slider_center.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\images\sbv_slider_center_over.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\images\sbv_slider_center_pressed.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\images\sbv_slider_over.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\images\sbv_slider_pressed.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\images\sbv_top.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\images\sbv_top_over.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\images\sbv_top_pressed.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\images\th_btn.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\images\th_btn_hover.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\images\th_btn_pressed.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\images\tip.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\images\tipb.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\images\white.png.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\images\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\videosview\images\defpreview.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\videosview\images\list_btn.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\videosview\images\playbtn.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\videosview\images\playing.png.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\videosview\images\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\videosview\videos.html.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\videosview\
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\html\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\Images\DefArtwork.jpg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\Images\DefFemale.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\Images\DefMale.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\Images\FriendshipNotif.jpg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\Images\SendPlaylist.jpg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\Images\TAFLogo.PNG.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\Images\ToGoLogo.PNG.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\Images\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\RemoteSkin.wmz.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\Settings.xml.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Skins\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\Smiley.ico.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\UninstallUsers.exe.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\UpdateInst.exe.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\WMAProfiles.prx.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\WMHelper.dll.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\WMHelper.log.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\iMesh\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\MediaBar\uninstall.exe.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\MediaBar\
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\iMesh Applications\
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Program Files (x86)\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\Creatives.xml.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\1.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\10.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\1040.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\1043.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\1044.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\1050.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\1054.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\1055.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\1057.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\1058.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\1060.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\1062.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\1063.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\1070.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\11.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\12.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\13.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\14.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\15.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\16.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\17.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\18.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\19.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\2.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\20.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\21.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\22.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\23.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\24.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\25.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\26.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\27.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\28.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\29.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\3.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\30.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\31.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\32.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\33.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\34.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\35.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\36.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\37.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\38.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\4.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\5.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\6.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\7.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\8.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\9.gif.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\CreativesFiles\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\Player.swf.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\iMesh\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\Microsoft\Windows\Start Menu\Programs\iMesh\iMesh.lnk.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\Microsoft\Windows\Start Menu\Programs\iMesh\
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\Microsoft\Windows\Start Menu\Programs\
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\Microsoft\Windows\Start Menu\
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\Microsoft\Windows\
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\Microsoft\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\Trymedia\data\{09D908CE-BF2A-4DE8-3A97-3F7EC8B367FA}.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\Trymedia\data\{3B48C3FA-05A0-F759-CF67-107915A9A2A6}.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\Trymedia\data\{5AEFE20F-8A1F-503D-0817-107B0285ECA5}.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\Trymedia\data\{748FE70A-2714-29B4-4468-B8410598C19D}.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\Trymedia\data\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\Trymedia\licenses\8b8c6cffbb97dfa3f10938d801ce115b.dlcn.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\Trymedia\licenses\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\Trymedia\stats\8b8c6cffbb97dfa3f10938d801ce115b.xml.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\Trymedia\stats\
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\Trymedia\
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\ProgramData\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAE0ATwBWADAANAA3ADAAMwA=(150x82).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAE0ATwBWADAANAA3ADAAMwA=.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAE0AVgBJAF8AMgA0ADQANgA=(150x82).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAE0AVgBJAF8AMgA0ADQANgA=.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAE0AVgBJAF8AMgA0ADQANwA=(150x82).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAE0AVgBJAF8AMgA0ADQANwA=.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAE0AVgBJAF8AMgA0ADQAOAA=(150x82).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAE0AVgBJAF8AMgA0ADQAOAA=.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAE0AVgBJAF8AMgA0ADQAOQA=(150x82).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAE0AVgBJAF8AMgA0ADQAOQA=.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAE0AVgBJAF8AMgA0ADUAMAA=(150x82).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAE0AVgBJAF8AMgA0ADUAMAA=.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAE0AVgBJAF8AMgA0ADUAMgA=(150x82).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAE0AVgBJAF8AMgA0ADUAMgA=.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAE0AVgBJAF8AMgA0ADUAMQA=(150x82).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAE0AVgBJAF8AMgA0ADUAMQA=.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAE0AVgBJAF8AMgA0ADUAMwA=(150x82).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAE0AVgBJAF8AMgA0ADUAMwA=.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAE0AVgBJAF8AMgA0ADUANAA=(150x82).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAE0AVgBJAF8AMgA0ADUANAA=.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAE0AVgBJAF8AMgA0ADUANQA=(150x82).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAE0AVgBJAF8AMgA0ADUANQA=.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAEQAbwBpAGcAdABlAA==(150x82).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAEQAbwBpAGcAdABlAA==.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAEUAZgBpAGMAaQBlAG4AYwBpAGEAMQA=(150x82).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAEUAZgBpAGMAaQBlAG4AYwBpAGEAMQA=.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAEUAZgBpAGMAaQBlAG4AYwBpAGEAMQAoADEAKQA=(150x82).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAEUAZgBpAGMAaQBlAG4AYwBpAGEAMQAoADEAKQA=.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAFAAaABvAHQAbwAgADAAOAAxAA==(150x82).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAFAAaABvAHQAbwAgADAAOAAxAA==.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAFAAaABvAHQAbwAgADAAOQAyAA==(150x82).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAFAAaABvAHQAbwAgADAAOQAyAA==.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAFcAaQBsAGQAbABpAGYAZQAgAGkAbgAgAEgARAA=(150x82).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAFcAaQBsAGQAbABpAGYAZQAgAGkAbgAgAEgARAA=.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAFoAYQB0AHQAZQBuAEQAcgBlAGkA(150x82).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAFoAYQB0AHQAZQBuAEQAcgBlAGkA.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAFYAaQBkAOkAbwAgADEA(150x82).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAFYAaQBkAOkAbwAgADEA.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAGIAcgBhAGgAaQBtAA==(150x82).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\dgBpAGQAZQBvACAALQAgAGIAcgBhAGgAaQBtAA==.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\eQBvAHUAdAB1AGIAZQAgAC0AIABGAE8ATQBrAHMAYwBYAF8ATABaADgA(150x150).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\eQBvAHUAdAB1AGIAZQAgAC0AIABGAE8ATQBrAHMAYwBYAF8ATABaADgA(150x82).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\eQBvAHUAdAB1AGIAZQAgAC0AIABGAE8ATQBrAHMAYwBYAF8ATABaADgA.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\QgBvAGIAIABBAGMAcgBpACAALQAgAEIAbwBiACAAQQBjAHIAaQA=(150x82).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\QgBvAGIAIABBAGMAcgBpACAALQAgAEIAbwBiACAAQQBjAHIAaQA=.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\QwBsAGEAdQBkAGUAIABGAHIAYQBuAOcAbwBpAHMAIAAtACAAQQBuAG4A6QBlACAAOAAwAA==(150x82).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\QwBsAGEAdQBkAGUAIABGAHIAYQBuAOcAbwBpAHMAIAAtACAAQQBuAG4A6QBlACAAOAAwAA==.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\TQByAC4AIABTAGMAcgB1AGYAZgAgAC0AIABOAGkAbgBqAGEAIABUAHUAbgBhAA==(150x82).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\TQByAC4AIABTAGMAcgB1AGYAZgAgAC0AIABOAGkAbgBqAGEAIABUAHUAbgBhAA==.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\UgBpAGMAaABhAHIAZAAgAFMAdABvAGwAdAB6AG0AYQBuACAALQAgAEYAaQBuAGUAIABNAHUAcwBpAGMALAAgAFYAbwBsAC4AIAAxAA==(150x82).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\UgBpAGMAaABhAHIAZAAgAFMAdABvAGwAdAB6AG0AYQBuACAALQAgAEYAaQBuAGUAIABNAHUAcwBpAGMALAAgAFYAbwBsAC4AIAAxAA==.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\YQBsAGIAdQBtACAALQAgAE4AaQBuAGoAYQAgAFQAdQBuAGEAIAAtACAAZgBmAGYAZgBmAGYAZgBmAA==(100x100).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\YQBsAGIAdQBtACAALQAgAE4AaQBuAGoAYQAgAFQAdQBuAGEAIAAtACAAZgBmAGYAZgBmAGYAZgBmAA==(150x150).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\YQBsAGIAdQBtACAALQAgAE4AaQBuAGoAYQAgAFQAdQBuAGEAIAAtACAAZgBmAGYAZgBmAGYAZgBmAA==.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\YQBsAGIAdQBtACAALQAgAEEAbgBuAOkAZQAgADgAMAAgAC0AIABmAGYAZgBmAGYAZgBmAGYA(100x100).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\YQBsAGIAdQBtACAALQAgAEEAbgBuAOkAZQAgADgAMAAgAC0AIABmAGYAZgBmAGYAZgBmAGYA(150x150).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\YQBsAGIAdQBtACAALQAgAEEAbgBuAOkAZQAgADgAMAAgAC0AIABmAGYAZgBmAGYAZgBmAGYA.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\YQBsAGIAdQBtACAALQAgAEIAbwBiACAAQQBjAHIAaQAgAC0AIABmAGYAZgBmAGYAZgBmAGYA(100x100).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\YQBsAGIAdQBtACAALQAgAEIAbwBiACAAQQBjAHIAaQAgAC0AIABmAGYAZgBmAGYAZgBmAGYA(150x150).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\YQBsAGIAdQBtACAALQAgAEIAbwBiACAAQQBjAHIAaQAgAC0AIABmAGYAZgBmAGYAZgBmAGYA.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\YQBsAGIAdQBtACAALQAgAEoAdQBzAHQAZQAgAEEAdgBhAG4AdAAgAC0AIAAxAGMANQA5AGEAZQA3AA==(100x100).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\YQBsAGIAdQBtACAALQAgAEoAdQBzAHQAZQAgAEEAdgBhAG4AdAAgAC0AIAAxAGMANQA5AGEAZQA3AA==(150x150).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\YQBsAGIAdQBtACAALQAgAEoAdQBzAHQAZQAgAEEAdgBhAG4AdAAgAC0AIAAxAGMANQA5AGEAZQA3AA==.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\YQBsAGIAdQBtACAALQAgAEYAaQBuAGUAIABNAHUAcwBpAGMALAAgAFYAbwBsAC4AIAAxACAALQAgAGYAZgBmAGYAZgBmAGYAZgA=(100x100).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\YQBsAGIAdQBtACAALQAgAEYAaQBuAGUAIABNAHUAcwBpAGMALAAgAFYAbwBsAC4AIAAxACAALQAgAGYAZgBmAGYAZgBmAGYAZgA=(150x150).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\YQBsAGIAdQBtACAALQAgAEYAaQBuAGUAIABNAHUAcwBpAGMALAAgAFYAbwBsAC4AIAAxACAALQAgAGYAZgBmAGYAZgBmAGYAZgA=.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\YQByAHQAaQBzAHQAIAAtACAAQgBvAGIAIABBAGMAcgBpAA==.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\YQByAHQAaQBzAHQAIAAtACAAQwBsAGEAdQBkAGUAIABGAHIAYQBuAOcAbwBpAHMA(146x65).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\YQByAHQAaQBzAHQAIAAtACAAQwBsAGEAdQBkAGUAIABGAHIAYQBuAOcAbwBpAHMA.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\YQByAHQAaQBzAHQAIAAtACAARgBsAG8AIABSAGkAZABhAA==(146x65).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\YQByAHQAaQBzAHQAIAAtACAARgBsAG8AIABSAGkAZABhAA==.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\YQByAHQAaQBzAHQAIAAtACAASgBlAHMAcwB5ACAATQBhAHQAYQBkAG8AcgA=.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\YQByAHQAaQBzAHQAIAAtACAATQByAC4AIABTAGMAcgB1AGYAZgA=.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\YQByAHQAaQBzAHQAIAAtACAAUABhAHQAcgBpAGMAawAgAEIAcgB1AGUAbAA=(146x65).jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\YQByAHQAaQBzAHQAIAAtACAAUABhAHQAcgBpAGMAawAgAEIAcgB1AGUAbAA=.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\YQByAHQAaQBzAHQAIAAtACAAUwB0AHIAbwBtAGEAZQA=.jpeg.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\YQByAHQAaQBzAHQAIAAtACAAWQBvAGwAYQBuAGQAYQAgAEIAZQAgAEMAbwBvAGwAIAAmACAARABDAFUAUAA=.jpeg.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Artwork\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Creatives.xml.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\1.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\10.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\1040.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\1043.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\1044.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\1050.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\1054.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\1055.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\1057.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\1058.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\1060.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\1062.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\1063.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\1070.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\11.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\12.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\13.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\14.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\15.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\16.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\17.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\18.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\19.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\2.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\20.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\21.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\22.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\23.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\24.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\25.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\26.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\27.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\28.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\29.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\3.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\30.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\31.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\32.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\33.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\34.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\35.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\36.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\37.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\38.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\4.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\5.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\6.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\7.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\8.gif.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\9.gif.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\CreativesFiles\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Data\BackUp\BitTorrent.db.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Data\BackUp\Cddb.db.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Data\BackUp\ContentDirs.db.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Data\BackUp\ContentFile.db.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Data\BackUp\DownloadFile.db.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Data\BackUp\PartsHashes.db.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Data\BackUp\Playlists.db.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Data\BackUp\VirtualFile.db.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Data\BackUp\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Data\BitTorrent.db.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Data\Cddb.db.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Data\ContentDirs.db.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Data\ContentFile.db.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Data\DownloadFile.db.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Data\PartsHashes.db.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Data\Playlists.db.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Data\VirtualFile.db.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Data\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\Player.swf.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\shistory.im.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\iMesh\
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Local\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\LocalLow\Conduit\Toolbar\Facebook\http___facebook_conduit-services_com_Settings_ashx_locale=fr&browserType=IE&toolbarVersion=6_2_7_3.xml.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\LocalLow\Conduit\Toolbar\Facebook\
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\LocalLow\Conduit\Toolbar\
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\LocalLow\Conduit\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\LocalLow\ConduitEngine\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_About_png.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\LocalLow\ConduitEngine\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_Browse_png.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\LocalLow\ConduitEngine\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_Contact_png.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\LocalLow\ConduitEngine\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_Hide_png.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\LocalLow\ConduitEngine\CacheIcons\http___storage_Conduit_com_bankImages_ConduitEngine_ContextMenu_LikeIcon_png.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\LocalLow\ConduitEngine\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_MoreFromPublisher_png.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\LocalLow\ConduitEngine\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_More_png.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\LocalLow\ConduitEngine\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_MoveLeft_png.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\LocalLow\ConduitEngine\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_MoveRight_png.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\LocalLow\ConduitEngine\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_Options_png.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\LocalLow\ConduitEngine\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_Privacy_png.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\LocalLow\ConduitEngine\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_Refresh_png.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\LocalLow\ConduitEngine\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_Share_png.png.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\LocalLow\ConduitEngine\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_Upgrade_png.png.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\LocalLow\ConduitEngine\CacheIcons\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\LocalLow\ConduitEngine\EngineSettings.json.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\LocalLow\ConduitEngine\ExternalComponent\http___contextmenu_app_conduit-services_com_apps_TranslatedApps_ashx_productId=1&name=appContextMenu&locale=fr-be.xml.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\LocalLow\ConduitEngine\ExternalComponent\http___contextmenu_app_conduit-services_com_apps_TranslatedApps_ashx_productId=1&name=appContextMenu2_0&locale=fr-be.xml.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\LocalLow\ConduitEngine\ExternalComponent\http___contextmenu_engine_conduit-services_com_apps_TranslatedApps_ashx_productId=1&name=engineContextMenu&locale=fr-be.xml.vir
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\LocalLow\ConduitEngine\ExternalComponent\http___contextmenu_engine_conduit-services_com_apps_TranslatedApps_ashx_productId=1&name=engineContextMenu2_0&locale=fr-be.xml.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\LocalLow\ConduitEngine\ExternalComponent\
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\LocalLow\ConduitEngine\
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\LocalLow\
Delete file: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\imesh.lnk.vir
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Roaming\Microsoft\Internet Explorer\
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Roaming\Microsoft\
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\Roaming\
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\AppData\
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\asf\
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\Users\
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\C\
Remove folder: C:\Program Files (x86)\Ad-Remover\Quarantine\
Remove folder: C:\Program Files (x86)\Ad-Remover\res\Icons\
Remove folder: C:\Program Files (x86)\Ad-Remover\res\Images\
Remove folder: C:\Program Files (x86)\Ad-Remover\res\
Remove folder: C:\Program Files (x86)\Ad-Remover\
Completed
geronimo
par geronimo 30 mai 2011 19:34
voici hijackthis:
Code : Tout sélectionner
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:42:29, on 30/05/2011
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16766)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\ProgramData\Badoo\Badoo Desktop\1.4.0.925\Badoo.Desktop.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe
C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe
C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
C:\Users\asf\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\asf\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\asf\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\asf\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Users\asf\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\asf\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=080c&m=aspire_7715z&r=27360810p505l04c4z1h5t4492e87r
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.facebook.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=080c&m=aspire_7715z&r=27360810p505l04c4z1h5t4492e87r
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACAW&l=080c&m=aspire_7715z&r=27360810p505l04c4z1h5t4492e87r
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
R3 - URLSearchHook: iWin Toolbar - {ce0c2586-da36-452b-acdb-320d9bcb19bf} - C:\Program Files (x86)\iWin\tbiWin.dll
R3 - URLSearchHook: dgfr Toolbar - {5e1e5b07-85fa-4930-b100-66efa0562444} - C:\Program Files (x86)\dgfr\tbdgf1.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
O2 - BHO: dgfr Toolbar - {5e1e5b07-85fa-4930-b100-66efa0562444} - C:\Program Files (x86)\dgfr\tbdgf1.dll
O2 - BHO: IEHlprObj Class - {8CA5ED52-F3FB-4414-A105-2E3491156990} - C:\Program Files (x86)\iWin Games\iWinGamesHookIE.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: MediaBar - {ABB49B3B-AB7D-4ED0-9135-93FD5AA4F69F} - C:\PROGRA~2\IMESHA~1\MediaBar\ToolBar\iMeshMediaBarDx.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.6.6209.1142\swg.dll
O2 - BHO: iWin Toolbar - {ce0c2586-da36-452b-acdb-320d9bcb19bf} - C:\Program Files (x86)\iWin\tbiWin.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - "C:\Program Files\BitDefender\BitDefender 2010\Antispam32\IEToolbar.dll" (file missing)
O3 - Toolbar: iWin Toolbar - {ce0c2586-da36-452b-acdb-320d9bcb19bf} - C:\Program Files (x86)\iWin\tbiWin.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: MediaBar - {ABB49B3B-AB7D-4ED0-9135-93FD5AA4F69F} - C:\PROGRA~2\IMESHA~1\MediaBar\ToolBar\iMeshMediaBarDx.dll
O3 - Toolbar: dgfr Toolbar - {5e1e5b07-85fa-4930-b100-66efa0562444} - C:\Program Files (x86)\dgfr\tbdgf1.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [EgisTecLiveUpdate] "C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED
O4 - HKLM\..\Run: [ArcadeDeluxeAgent] "C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe"
O4 - HKLM\..\Run: [PlayMovie] "C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\asf\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Badoo Desktop] "C:\ProgramData\Badoo\Badoo Desktop\1.4.0.925\Badoo.Desktop.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU')
O4 - Startup: LimeWire On Startup.lnk = C:\Program Files (x86)\LimeWire\LimeWire.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O13 - Gopher Prefix:
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game.zylom.com/activex/zylomgamesplayer.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: BitDefender Serveur Arrakis (Arrakis3) - BitDefender S.R.L. http://www.bitdefender.com - C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GRegService (Greg_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Service Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: iWinTrusted - iWin Inc. - C:\Program Files (x86)\iWin Games\iWinTrusted.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender S.R.L. - C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Updater Service - Acer - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2010\vsserv.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 14631 bytes
pour info:
1 qd j'ai lancé le scan y avait un message d'erreur... " denied write access to the hosts file..."
2 il y a une mise a jour java qui bloque...
merci
SkyTech
par SkyTech 30 mai 2011 19:59
C'est le même rapport, ne pas oublier d'exécuter HijackThis en tant qu'administrateur /!\
geronimo
par geronimo 30 mai 2011 20:10
ok, je fais cela comment pour me mettre en administrateur ?
j'ai trouvé..
Dernière modification par geronimo le 30 mai 2011 20:17, modifié 1 fois.
geronimo
par geronimo 30 mai 2011 20:16
voila, j'ai fais un clic droit exécuter en tant qu'admin...
Code : Tout sélectionner
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:27:58, on 30/05/2011
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16766)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe
C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe
C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\BitDefender\BitDefender 2010\antispam32\bdimguiaux.exe
C:\Users\asf\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\asf\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Users\asf\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\asf\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {5e1e5b07-85fa-4930-b100-66efa0562444} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - "C:\Program Files\BitDefender\BitDefender 2010\Antispam32\IEToolbar.dll" (file missing)
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [EgisTecLiveUpdate] "C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED
O4 - HKLM\..\Run: [ArcadeDeluxeAgent] "C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe"
O4 - HKLM\..\Run: [PlayMovie] "C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\asf\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [BrowserChoice] "C:\Windows\System32\browserchoice.exe" /run
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O13 - Gopher Prefix:
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} - http://game.zylom.com/activex/zylomgamesplayer.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: BitDefender Serveur Arrakis (Arrakis3) - BitDefender S.R.L. http://www.bitdefender.com - C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GRegService (Greg_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Service Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender S.R.L. - C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Updater Service - Acer - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2010\vsserv.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10528 bytes
et là hijack c'est bien lancé !
SkyTech
par SkyTech 30 mai 2011 21:13
Re,
Relance HijackThis en tant qu'administrateur, coche ces lignes en rouge et clic sur Fix checked.
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896 http://fr.msn.com/ http://go.microsoft.com/fwlink/?LinkId=54896 http://fr.msn.com/ http://game.zylom.com/activex/zylomgamesplayer.cab
Redémarre et poste un nouveau rapport.
Liste moi les programmes installés :
https://www.malekal.com/tutorial-et-guide-hijackthis/
geronimo
par geronimo 30 mai 2011 21:40
voici :
Code : Tout sélectionner
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:53:23, on 30/05/2011
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16766)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Users\asf\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\asf\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\BitDefender\BitDefender 2010\antispam32\bdimguiaux.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Users\asf\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - "C:\Program Files\BitDefender\BitDefender 2010\Antispam32\IEToolbar.dll" (file missing)
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O13 - Gopher Prefix:
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: BitDefender Serveur Arrakis (Arrakis3) - BitDefender S.R.L. http://www.bitdefender.com - C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GRegService (Greg_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Service Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender S.R.L. - C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Updater Service - Acer - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2010\vsserv.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 7351 bytes
geronimo
par geronimo 30 mai 2011 21:43
voici les progs :
Code : Tout sélectionner
Update for Microsoft Office 2007 (KB2508958)
2007 Microsoft Office Suite Service Pack 2 (SP2)
2007 Microsoft Office Suite Service Pack 2 (SP2)
2007 Microsoft Office Suite Service Pack 2 (SP2)
2007 Microsoft Office Suite Service Pack 2 (SP2)
2007 Microsoft Office Suite Service Pack 2 (SP2)
2007 Microsoft Office Suite Service Pack 2 (SP2)
2007 Microsoft Office Suite Service Pack 2 (SP2)
2007 Microsoft Office Suite Service Pack 2 (SP2)
2007 Microsoft Office Suite Service Pack 2 (SP2)
2007 Microsoft Office Suite Service Pack 2 (SP2)
2007 Microsoft Office Suite Service Pack 2 (SP2)
2007 Microsoft Office Suite Service Pack 2 (SP2)
2007 Microsoft Office Suite Service Pack 2 (SP2)
Acer Arcade Deluxe
Acer Arcade Deluxe
Acer ePower Management
Acer eRecovery Management
Acer GameZone Console
Acer GridVista
Acer Registration
Acer ScreenSaver
Acer Updater
Acrobat.com
Adobe AIR
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader 9.2 MUI
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
D3DX10
Galerie de photos Windows Live
Google Update Helper
HijackThis 2.0.2
Identity Card
iMesh
Java(TM) 6 Update 21
Junk Mail filter update
Launch Manager
Malwarebytes' Anti-Malware
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Access MUI (French) 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office Excel MUI (French) 2007
Microsoft Office Groove MUI (French) 2007
Microsoft Office Home and Student 2007
Microsoft Office Home and Student 2007
Microsoft Office InfoPath MUI (French) 2007
Microsoft Office Language Pack 2007 - French/Français
Microsoft Office Live Add-in 1.5
Microsoft Office O MUI (French) 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office OneNote MUI (French) 2007
Microsoft Office Outlook MUI (French) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office PowerPoint MUI (French) 2007
Microsoft Office PowerPoint Viewer 2007 (French)
Microsoft Office Proof (Arabic) 2007
Microsoft Office Proof (Dutch) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (German) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing (French) 2007
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Publisher MUI (French) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared MUI (French) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office SharePoint Designer 2007 Service Pack 2 (SP2)
Microsoft Office SharePoint Designer MUI (French) 2007
Microsoft Office Suite Activation Assistant
Microsoft Office Word MUI (English) 2007
Microsoft Office Word MUI (French) 2007
Microsoft Office X MUI (French) 2007
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable - KB2467175
Microsoft Works
Mise à jour Microsoft Office Excel 2007 Help (KB963678)
Mise à jour Microsoft Office Outlook 2007 Help (KB963677)
Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669)
Mise à jour Microsoft Office Word 2007 Help (KB963665)
Module de compatibilité pour Microsoft Office System 2007
MSVCRT
MSVCRT_amd64
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MyWinLocker
Norton Online Backup
NTI Backup Now 5
NTI Media Maker 8
Realtek High Definition Audio Driver
Realtek USB 2.0 Card Reader
Security Update for 2007 Microsoft Office System (KB2288621)
Security Update for 2007 Microsoft Office System (KB2288931)
Security Update for 2007 Microsoft Office System (KB2345043)
Security Update for 2007 Microsoft Office System (KB2466156)
Security Update for 2007 Microsoft Office System (KB2509488)
Security Update for 2007 Microsoft Office System (KB969559)
Security Update for 2007 Microsoft Office System (KB976321)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft Office Excel 2007 (KB2464583)
Security Update for Microsoft Office InfoPath 2007 (KB979441)
Security Update for Microsoft Office PowerPoint 2007 (KB2535818)
Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623)
Security Update for Microsoft Office system 2007 (972581)
Security Update for Microsoft Office system 2007 (KB974234)
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
Security Update for Microsoft Office Word 2007 (KB2344993)
Skype™ 5.0
Update for 2007 Microsoft Office System (KB2284654)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Welcome Center
Windows Live
Windows Live
Windows Live Communications Platform
Windows Live FolderShare
Windows Live Installer
Windows Live Mail
Windows Live Mail
Windows Live Messenger
Windows Live Messenger
Windows Live Movie Maker
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer
Windows Live Writer
Windows Live Writer Resources
Windows Media Player Firefox Plugin
SkyTech
par SkyTech 30 mai 2011 22:40
Re,
Tu peux désinstaller :
Acer GameZone Console
---
Utilise cette astuce :
http://forum.malekal.com/executer-dans- ... tml#p64205
Et :
Menu démarrer, exécuter, tape services.msc, entrée
Dans la fenêtre qui s'ouvre cherche :
Double clique dessus, dans type de démarrage mets
manuel .
---
Télécharge
OTM (de
OldTimer ). Sauvegarde-le sur ton
Bureau .
Copie (
Ctrl+C ) le texte se situant dans le
cadre ci-dessous :
:services
Double clique sur
OTM.exe afin de le lancer.
Colle (ou
Ctrl+V ) le texte précédemment copié dans le cadre
Paste Instructions for Items to be Moved .
Clique maintenant sur le bouton
MoveIt! puis ferme
OTM .
Si un fichier ou dossier
ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur
YES .
Poste le rapport situé dans ce dossier :
C:\_OTM\ MovedFiles \
Le nom du rapport correspond au moment de sa création :
date_heure.log
Poste un nouveau rapport HijackThis.
geronimo
par geronimo 30 mai 2011 23:03
voici amigo :
Code : Tout sélectionner
All processes killed
========== SERVICES/DRIVERS ==========
Service gupdate stopped successfully!
Service gupdate deleted successfully!
Service gupdatem stopped successfully!
Service gupdatem deleted successfully!
========== FILES ==========
C:\Program Files (x86)\Google\Update\Install folder moved successfully.
C:\Program Files (x86)\Google\Update\Download\{E818ECA5-6BFE-4CF5-996F-4D35D248647F} folder moved successfully.
C:\Program Files (x86)\Google\Update\Download\{3329A138-B7A4-49B3-8C6D-997BECD8A682} folder moved successfully.
C:\Program Files (x86)\Google\Update\Download folder moved successfully.
C:\Program Files (x86)\Google\Update\1.3.21.53 folder moved successfully.
C:\Program Files (x86)\Google\Update folder moved successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: asf
->Temp folder emptied: 466668271 bytes
->Temporary Internet Files folder emptied: 1717252182 bytes
->Java cache emptied: 1301106 bytes
->Google Chrome cache emptied: 422847637 bytes
->Flash cache emptied: 1344640 bytes
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Public
User: TEMP
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 110461 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50540 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 2,489.00 mb
OTM by OldTimer - Version 3.1.18.0 log created on 05302011_230629
Files moved on Reboot...
File C:\Users\asf\AppData\Local\Temp\etilqs_TNWF2He8rYYBsittnzz8 not found!
File C:\Users\asf\AppData\Local\Temp\etilqs_Ysa4pPDY6poeMuYAVrcb not found!
C:\Users\asf\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\asf\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0 moved successfully.
C:\Users\asf\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1 moved successfully.
C:\Users\asf\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2 moved successfully.
C:\Users\asf\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3 moved successfully.
C:\Users\asf\AppData\Local\Google\Chrome\User Data\Default\Cache\data_4 moved successfully.
C:\Users\asf\AppData\Local\Google\Chrome\User Data\Default\Cache\index moved successfully.
Registry entries deleted on Reboot...
5 Réponses
69 Vues
Dernier message par angelique 14 juil. 2023 08:13
0 Réponses
69 Vues
Dernier message par Parisien_entraide 23 juin 2023 14:40
2 Réponses
101 Vues
Dernier message par Malekal_morte 07 nov. 2022 17:17
0 Réponses
42 Vues
Dernier message par Mathis1445 05 déc. 2022 23:14
4 Réponses
121 Vues
Dernier message par Malekal_morte 30 janv. 2023 14:59
