"Antivirus" qui s'installe tout seul

Mr_Penguin · Août 11, 2010, 9:08

Bonjour a tous, je m’en viens à vous car j’ai un beau problème sur mon Pc sous Vista…

Hier soir, j’ai eu un message de mon PC qui me disait que j’étais infecté et tout le tralala… Ensuite j’ai eu un message du centre de sécurité m’expliquant, que mon antivirus, le pare-feu et tout les autres truc étaient désactivé… bien sur impossible de les réactiver, ensuite mon antivirus (AVG Free 9) se désinstalle tout seul et un antivirus in-desinstalable s’appelant « Antivirus » c’est installé, il lance un scan que je quitte et hop BSoD… Donc je relance le PC en Mode sans Echec, et lance un Restauration 1 journée plus tot, tout se passer bien jusqu’a maintenant ou j’ai le meme probleme, meme heure qu’hier Et sa me gave car j’etais sur un gros projet et sa l’a couper…
Si vous pourriez m’aider car j’ai trouver aucune solution : Supprimer le dossier du Disque dur, sa change rien, je ne peux pas acceder a internet pour telecharger un programme pour l’enlever ou autre donc je suis bloqué sur le mode sans echec

Merci d’avance.

Mr Penguin

city57 · Août 11, 2010, 9:24

je crois que t tomber sur un site qui ta fait installer a ton issu un faux antivirus en te disant que ten avait un…

moi quon c comme sa , je réinstalle windows

Mr_Penguin · Août 11, 2010, 9:36

Mais si je desinstalle Windows voila quoi Je cherche une solution aleatoire qui me permettrais de supprimer ce programme qui n’est pas sur mon Disque Dure lorsque je fais une Restauration systeme mais qui se reinstalle tout les jours a la meme heure

webmaster_A · Août 12, 2010, 12:07

Bonsoir,

Démarre en mode sans échec avec réseau.

Télécharge et installe PSV Carifred. C’est un nouveau logiciel de détection et suppression manuelle de virus et de récupération du système.

Double-clique sur PSV Carifred 2.3 sur le bureau. Tape 10 puis Entrée pour analyser le système et créer un rapport sur le bureau.

Choisis l’option 1: Rapport Express en tapant 1 puis Entrée. Le programme créera et ouvrira un rapport contenant des infos sur ton système. Poste-le.

A+.

Mr_Penguin · Août 12, 2010, 11:28

Voici ce que sa a donner J’ai aussi un message de Windows qui se met depuis ce matin sa me dit que un fichier systeme a été arétter, quand je fais fermer, j’ai soit IE soit ma barre des taches qui se met au format Win95 O_o

      Rapport Psv express du 12/08/2010 à 11:23

   Version Windows: Microsoft Windows [version 6.0.6001]


      Processus en exécution:

PROCESS PID PRIO PATH
smss.exe 504 Normal C:\Windows\System32\smss.exe
csrss.exe 636 Normal C:\Windows\system32\csrss.exe
wininit.exe 688 High C:\Windows\system32\wininit.exe
csrss.exe 696 Normal C:\Windows\system32\csrss.exe
avgchsvx.exe 708 Normal C:\Program Files\AVG\AVG9\avgchsvx.exe
avgrsx.exe 716 Normal C:\Program Files\AVG\AVG9\avgrsx.exe
services.exe 748 Normal C:\Windows\system32\services.exe
lsass.exe 760 Normal C:\Windows\system32\lsass.exe
lsm.exe 768 Normal C:\Windows\system32\lsm.exe
avgcsrvx.exe 868 Normal C:\Program Files\AVG\AVG9\avgcsrvx.exe
winlogon.exe 1060 High C:\Windows\system32\winlogon.exe
svchost.exe 1272 Normal C:\Windows\system32\svchost.exe
nvvsvc.exe 1316 Normal C:\Windows\system32\nvvsvc.exe
svchost.exe 1348 Normal C:\Windows\system32\svchost.exe
svchost.exe 1496 Normal C:\Windows\System32\svchost.exe
svchost.exe 1544 Normal C:\Windows\System32\svchost.exe
svchost.exe 1600 Normal C:\Windows\system32\svchost.exe
svchost.exe 1748 Normal C:\Windows\system32\svchost.exe
SLsvc.exe 1776 Normal C:\Windows\system32\SLsvc.exe
svchost.exe 1832 Normal C:\Windows\system32\svchost.exe
rundll32.exe 1856 Normal C:\Windows\system32\rundll32.exe
svchost.exe 2004 Normal C:\Windows\system32\svchost.exe
WLANExt.exe 1196 Normal C:\Windows\system32\WLANExt.exe
taskeng.exe 764 Below Normal C:\Windows\system32\taskeng.exe
spoolsv.exe 1472 Normal C:\Windows\System32\spoolsv.exe
svchost.exe 1700 Normal C:\Windows\system32\svchost.exe
taskeng.exe 1944 Normal C:\Windows\system32\taskeng.exe
Dwm.exe 2060 High C:\Windows\system32\Dwm.exe
Explorer.EXE 2108 Normal C:\Windows\Explorer.EXE
EasySpeedUpManager.exe 2280 Normal C:\Program Files\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe
EasyBatteryMgr3.exe 2304 Below Normal C:\Program Files\Samsung\EBM\EasyBatteryMgr3.exe
AppleMobileDeviceService.exe 2660 Normal C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
avgwdsvc.exe 2740 Normal C:\Program Files\AVG\AVG9\avgwdsvc.exe
BcmSqlStartupSvc.exe 2820 Normal C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
rundll32.exe 2860 Normal C:\Windows\System32\rundll32.exe
RtHDVCpl.exe 2904 Normal C:\Windows\RtHDVCpl.exe
SynTPEnh.exe 2916 Above Normal C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
realsched.exe 2952 Normal C:\Program Files\Common Files\Real\Update_OB\realsched.exe
jusched.exe 2960 Normal C:\Program Files\Java\jre6\bin\jusched.exe
avgnsx.exe 3092 Normal C:\Program Files\AVG\AVG9\avgnsx.exe
avgtray.exe 3116 Normal C:\Program Files\AVG\AVG9\avgtray.exe
XBoxStat.exe 3128 Normal C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
mswinext.exe 3200 Normal C:\Program Files\MSN Toolbar\Platform\5.0.1423.0\mswinext.exe
iTunesHelper.exe 3332 Normal C:\Program Files\iTunes\iTunesHelper.exe
MWSOEMON.EXE 3348 Normal C:\Program Files\MyWebSearch\bar\2.bin\MWSOEMON.EXE
msnmsgr.exe 3364 Normal C:\Program Files\Windows Live\Messenger\msnmsgr.exe
mDNSResponder.exe 3500 Normal C:\Program Files\Bonjour\mDNSResponder.exe
BTTray.exe 3624 Normal C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
dmhkcore.exe 3744 Normal C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe
svchost.exe 3932 Normal C:\Windows\system32\svchost.exe
EvtEng.exe 4016 Normal C:\Program Files\Intel\WiFi\bin\EvtEng.exe
FABS.exe 2092 Normal C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe
mwssvc.exe 1764 Normal C:\PROGRA~1\MYWEBS~1\bar\2.bin\mwssvc.exe
svchost.exe 1524 Normal C:\Windows\system32\svchost.exe
RegSrvc.exe 1532 Normal C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
SeaPort.exe 1996 Normal C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
sqlbrowser.exe 2216 Normal C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
sqlwriter.exe 3608 Normal C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
svchost.exe 2980 Normal C:\Windows\system32\svchost.exe
TeamViewer_Service.exe 3772 Normal C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe
WDDMService.exe 3684 Normal C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
WDSmartWareBackgroundService.exe 3856 Normal C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe
svchost.exe 3408 Normal C:\Windows\System32\svchost.exe
WLIDSVC.EXE 1804 Normal C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
SearchIndexer.exe 324 Normal C:\Windows\system32\SearchIndexer.exe
WLIDSvcM.exe 4252 Normal C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
unsecapp.exe 4440 Normal C:\Windows\system32\wbem\unsecapp.exe
wmiprvse.exe 4656 Normal C:\Windows\system32\wbem\wmiprvse.exe
iPodService.exe 5084 Normal C:\Program Files\iPod\bin\iPodService.exe
SynTPHelper.exe 5244 Above Normal C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
wlcomm.exe 5588 Normal C:\Program Files\Windows Live\Contacts\wlcomm.exe
wmpnetwk.exe 1244 Normal C:\Program Files\Windows Media Player\wmpnetwk.exe
vssvc.exe 5804 Normal C:\Windows\system32\vssvc.exe
svchost.exe 4692 Normal C:\Windows\System32\svchost.exe
taskeng.exe 2296 Below Normal C:\Windows\system32\taskeng.exe
iexplore.exe 4260 Normal C:\Program Files\Internet Explorer\iexplore.exe
iexplore.exe 4172 Normal C:\Program Files\Internet Explorer\iexplore.exe
conime.exe 1656 Normal C:\Windows\system32\conime.exe
JavaSetup6u21-rv[1].exe 3568 Normal C:\Users\Valentin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RBSMRG8F\JavaSetup6u21-rv[1].exe
PSV Carifred 2.exe 5080 Normal C:\Program Files\Carifred\PSV Carifred 2.3\PSV Carifred 2.exe
cmd.exe 4160 Normal C:\Windows\system32\cmd.exe
msiexec.exe 3944 Normal C:\Windows\system32\msiexec.exe
msiexec.exe 4640 Normal C:\Windows\system32\msiexec.exe
MsiExec.exe 4352 Normal C:\Windows\system32\MsiExec.exe
PSV Carifred 2.exe 2656 Normal C:\Program Files\Carifred\PSV Carifred 2.3\PSV Carifred 2.exe
cmd.exe 3788 Normal C:\Windows\system32\cmd.exe
MsiExec.exe 5628 Normal C:\Windows\system32\MsiExec.exe
pv.exe 5700 Normal C:\Windows\system32\pv.exe

   Fichiers exécutés au démarrage du système (non Microsoft):

C:\Program Files\KGB\MPK.exe
RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
c:\windows\rthdvcpl.exe
c:\program files\synaptics\syntp\syntpenh.exe
c:\program files\adobe\reader 8.0\reader\reader_sl.exe
c:\program files\common files\real\update_ob\realsched.exe
File not found: C:\Program Files\rkfree\rkfree.exe
c:\program files\java\jre6\bin\jusched.exe
c:\program files\common files\adobe\cs4servicemanager\cs4servicemanager.exe
c:\program files\sgpsa\ie3sh.exe
c:\program files\avg\avg9\avgtray.exe
c:\program files\corel\corel videostudio 12\uvpl.exe
c:\program files\magix\video_deluxe_16_plus_version à télécharger\trayserver.exe
c:\program files\quicktime\qttask.exe
c:\program files\itunes\ituneshelper.exe
File not found: C:\Users\Valentin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\V745UIHE\Spykey[1].exe
c:\program files\mywebsearch\bar\2.bin\m3srchmn.exe
c:\program files\mywebsearch\bar\2.bin\mwsoemon.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BTTray.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BumpTop.lnk
C:\Users\Valentin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
c:\program files\samsung\easy display manager\dmhkcore.exe
c:\program files\samsung\easy display manager\dmlauncher_vista.exe
c:\program files\daemon tools lite\daemon.exe
File not found: C:\Program Files\Electronic Arts\EADM\Core.exe
File not found: C:\Users\Valentin\AppData\Roaming\Microsoft\Crypto\AM\winproc.exe
File not found: C:\Users\Valentin\AppData\Roaming\Microsoft\Crypto\AM\windowskey.exe
c:\program files\manycam 2.4\manycam.exe
c:\users\valentin\appdata\local\google\update\googleupdate.exe
File not found: C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe
File not found: C:\Program Files\FlashGet Network\FlashGet 3\mxhelper.exe
c:\program files\mywebsearch\bar\2.bin\mwsoemon.exe
c:\windows\system32\adobe\shockwave 11\swhelper_1151601.exe

   Winlogon (non Microsoft):

C:\Windows\DEERDR~1.SCR

   BHO, plugins et add-ons d'Internet explorer (non Microsoft):

 c:\program files\mywebsearch\bar\2.bin\mwssrcas.dll
 c:\program files\yahoo!\companion\installs\cpn\yt.dll
 c:\program files\common files\adobe\acrobat\activex\acroiehelper.dll
 c:\program files\mywebsearch\bar\2.bin\mwsbar.dll
 c:\program files\is cool\toolbar.dll
 c:\program files\real\realplayer\rpbrowserrecordplugin.dll
 c:\program files\avg\avg9\avgssie.dll
 c:\program files\zynga\tbzyng.dll
 c:\program files\babylon\babylon-pro\utils\babyloniepi.dll
 c:\program files\mybabylon_english\tbmyba.dll
 c:\program files\radiodofus\tbradi.dll
 c:\program files\ask.com\genericasktoolbar.dll
 c:\program files\java\jre6\bin\jp2ssv.dll
 c:\program files\free-downloads.net\tbfre1.dll
 File not found: C:\Program Files\SGPSA\BHO.dll
 c:\program files\setuprog\tbsetu.dll
 c:\program files\fast browser search\ie\fbstoolbar.dll
 c:\program files\yahoo!\companion\installs\cpn\ytsingleinstance.dll
 c:\program files\ask.com\genericasktoolbar.dll
 c:\program files\sgpsa\mtwb3sh.dll
 c:\program files\radiodofus\tbradi.dll
 c:\program files\yahoo!\companion\installs\cpn\yt.dll
 c:\program files\free-downloads.net\tbfre1.dll
 c:\program files\mybabylon_english\tbmyba.dll
 c:\program files\is cool\helper.dll
 c:\program files\setuprog\tbsetu.dll
 c:\program files\zynga\tbzyng.dll
 c:\program files\mywebsearch\bar\2.bin\mwssrcas.dll
 File not found: C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
 c:\program files\radiodofus\tbradi.dll
 c:\program files\yahoo!\companion\installs\cpn\yt.dll
 c:\program files\fast browser search\ie\fbstoolbar.dll
 c:\program files\free-downloads.net\tbfre1.dll
 c:\program files\mybabylon_english\tbmyba.dll
 c:\program files\is cool\toolbar.dll
 c:\program files\setuprog\tbsetu.dll
 c:\program files\zynga\tbzyng.dll
 c:\program files\mywebsearch\bar\2.bin\mwsbar.dll
 c:\program files\ask.com\genericasktoolbar.dll
 C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
 c:\program files\widcomm\bluetooth software\btsendto_ie.htm
 C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm
 File not found: C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm


   Tâches planifiées (non Microsoft):

c:\program files\samsung\easyspeedupmanager\easyspeedupmanager.exe
c:\program files\google\update\googleupdate.exe
c:\program files\google\update\googleupdate.exe
c:\users\valentin\appdata\local\google\update\googleupdate.exe
c:\users\valentin\appdata\local\google\update\googleupdate.exe
c:\program files\dmv\maxtv4\maxtv.exe
File not found: C:\Program Files\Norton Security Scan\Engine\2.7.3.34\Nss.exe
c:\program files\ask.com\updatetask.exe
c:\program files\apple software update\softwareupdate.exe
c:\windows\system32\gatherwirelessinfo.vbs

   Services et pilotes (non-Microsoft):

c:\program files\common files\adobe systems shared\service\adobelmsvc.exe
c:\program files\common files\apple\mobile device support\applemobiledeviceservice.exe
c:\program files\avg\avg9\avgwdsvc.exe
c:\program files\bonjour\mdnsresponder.exe
c:\programdata\browserquest\browserquest129.exe
c:\program files\intel\wifi\bin\evteng.exe
c:\program files\common files\magix services\database\bin\fabs.exe
c:\program files\common files\magix services\database\bin\fbserver.exe
c:\program files\common files\macrovision shared\flexnet publisher\fnplicensingservice.exe
c:\program files\nos\bin\getplus_helper.dll
c:\program files\google\update\googleupdate.exe
c:\program files\ipod\bin\ipodservice.exe
c:\program files\mywebsearch\bar\2.bin\mwssvc.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
c:\program files\winpcap\rpcapd.exe
c:\program files\samsung\samsung update plus\slubackgroundservice.exe
c:\program files\teamviewer\version5\teamviewer_service.exe
c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe
c:\wamp\bin\mysql\mysql5.1.36\bin\mysqld.exe
c:\program files\western digital\wd smartware\wd drive manager\wddmservice.exe
c:\program files\western digital\wd smartware\front parlor\wdsmartwarebackgroundservice.exe
c:\windows\system32\drivers\agrsm.sys
c:\windows\system32\drivers\athr.sys
c:\windows\system32\drivers\avgldx86.sys
c:\windows\system32\drivers\avgmfx86.sys
c:\windows\system32\drivers\avgtdix.sys
c:\windows\system32\drivers\avwebcam.sys
c:\windows\system32\drivers\bcm4sbxp.sys
c:\windows\system32\drivers\brfiltlo.sys
c:\windows\system32\drivers\brfiltup.sys
c:\windows\system32\drivers\brusbser.sys
c:\windows\system32\drivers\btwaudio.sys
c:\windows\system32\drivers\btwavdt.sys
c:\windows\system32\drivers\btwrchid.sys
c:\windows\system32\drivers\e1g60i32.sys
c:\windows\system32\drivers\gearaspiwdm.sys
c:\windows\system32\drivers\hamachi.sys
c:\windows\system32\drivers\hpzid412.sys
c:\windows\system32\drivers\hpzipr12.sys
c:\windows\system32\drivers\hpzius12.sys
c:\windows\system32\drivers\igdkmd32.sys
c:\windows\system32\drivers\iastor.sys
c:\windows\system32\drivers\rtkvhda.sys
c:\windows\system32\drivers\kmdfmemio.sys
c:\windows\system32\drivers\manycam.sys
c:\windows\system32\drivers\netw3v32.sys
c:\windows\system32\drivers\npf.sys
c:\windows\system32\drivers\nvhda32v.sys
c:\windows\system32\drivers\nvlddmkm.sys
c:\windows\system32\drivers\secdrv.sys
c:\windows\system32\drivers\sis163u.sys
c:\windows\system32\drivers\sptd.sys
c:\windows\system32\drivers\syntp.sys
c:\windows\system32\drivers\usbaapl.sys
c:\windows\system32\drivers\vmc302.sys
c:\windows\system32\drivers\wdcsam.sys
??\C:\PROGRA~1\AVWEBC~1\WebCamHelper.sys
c:\program files\av webcam morpher gold\webcamhelper.sys
c:\windows\system32\drivers\yk60x86.sys
c:\windows\system32\drivers\zd1211bu.sys

      Fin de rapport PSV le 12/08/2010 à 11:23

Mr_Penguin · Août 12, 2010, 12:52

Je Up… Faut que je trouve d’où sa vient car j’ai du boulot pour demain

poisson9 · Août 12, 2010, 3:49

Bonjour

télécharge–> Malwarebytes’ (mbam)

==>http://www.malwarebytes.org/mbam/program/mbam-setup.exe

installe + mise à jour

Lance–> Malwarebytes (MBAM)
==> Puis vas dans l’onglet « Recherche », coche « Exécuter un examen complet » puis « Rechercher »
==> Sélectionne tes disques durs" puis clique sur « Lancer lexamen »
==> A la fin du scan, clique sur Afficher les résultats puis sur Enregistrer le rapport
==> Suppression des éléments détectés → clique sur Supprimer la sélection==>Important à faire
=> S’il t’ est demandé de redémarrer, clique sur "oui "

après la suppression(s) de ou des infections trouvées → poste le rapport ici

Mr_Penguin · Août 12, 2010, 3:54

En attendant la reponse, j’avais trouver ce logiciel, vraiment très bien Y parait que j’avais 600 et quelques programmes malveillant O_o peut etre du fait que cet « Antivirus » avait desactiver mon AV O_o Je cherche le rapport et le poste

Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org

Version de la base de données: 4052

Windows 6.0.6001 Service Pack 1
Internet Explorer 8.0.6001.18928

12/08/2010 14:36:05
mbam-log-2010-08-12 (14-36-05).txt

Type d’examen: Examen complet
Elément(s) analysé(s): 98362
Temps écoulé: 14 minute(s), 21 seconde(s)

Processus mémoire infecté(s): 1
Module(s) mémoire infecté(s): 7
Clé(s) du Registre infectée(s): 150
Valeur(s) du Registre infectée(s): 7
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 11
Fichier(s) infecté(s): 333

Processus mémoire infecté(s):
C:\Program Files\MyWebSearch\bar\2.bin\MWSOEMON.EXE (Adware.MyWebSearch) → Unloaded process successfully.

Module(s) mémoire infecté(s):
C:\Program Files\MyWebSearch\bar\2.bin\MWSOESTB.DLL (Adware.MyWebSearch) → Delete on reboot.
C:\Program Files\MyWebSearch\bar\2.bin\MWSSRCAS.DLL (Adware.MyWebSearch) → Delete on reboot.
C:\Program Files\MyWebSearch\bar\2.bin\MWSOEPLG.DLL (Adware.MyWebSearch) → Delete on reboot.
C:\Program Files\MyWebSearch\bar\2.bin\MWSBAR.DLL (Adware.MyWebSearch) → Delete on reboot.
C:\Program Files\MyWebSearch\bar\2.bin\M3AUXSTB.DLL (Adware.MyWebSearch) → Delete on reboot.
C:\Program Files\MyWebSearch\bar\2.bin\M3DLGHK.DLL (Adware.MyWebSearch) → Delete on reboot.
C:\Program Files\MyWebSearch\bar\2.bin\F3HTMLMU.DLL (Adware.MyWebSearch) → Delete on reboot.

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\CLSID{00a6faf1-072e-44cf-8957-5838f569a31d} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats{00a6faf1-072e-44cf-8957-5838f569a31d} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings{00a6faf1-072e-44cf-8957-5838f569a31d} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{00a6faf1-072e-44cf-8957-5838f569a31d} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{00a6faf6-072e-44cf-8957-5838f569a31d} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats{00a6faf6-072e-44cf-8957-5838f569a31d} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib{f42228fb-e84e-479e-b922-fbbd096e792c} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{6e74766c-4d93-4cc0-96d1-47b8e07ff9ca} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{de38c398-b328-4f4c-a3ad-1b5e4ed93477} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib{07b18ea0-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{07b18eaa-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{07b18eac-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{8e9cf769-3d3b-40eb-9e2d-76e7a205e4d2} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{f87d7fb5-9dc5-4c8c-b998-d8dfe02e2978} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{07b18ea1-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats{07b18ea1-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings{07b18ea1-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{07b18ea1-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{07b18ea9-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats{07b18ea9-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings{07b18ea9-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{07b18eab-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats{07b18eab-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved{07b18eab-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{53ced2d0-5e9a-4761-9005-648404e6f7e5} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib{819ffe20-35c7-4925-8cda-4e0e2db94302} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{819ffe21-35c7-4925-8cda-4e0e2db94302} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{819ffe22-35c7-4925-8cda-4e0e2db94302} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.datacontrol (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib{c8cecde3-1ae1-4c4a-ad82-6d5b00212144} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{17de5e5e-bfe3-4e83-8e1f-8755795359ec} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{1f52a5fa-a705-4415-b975-88503b291728} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{a626cdbd-3d13-4f78-b819-440a28d7e8fc} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{25560540-9571-4d7b-9389-0f166788785a} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved{25560540-9571-4d7b-9389-0f166788785a} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.datacontrol.1 (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.historykillerscheduler (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib{8ca01f0e-987c-49c3-b852-2f1ac4a7094c} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{1093995a-ba37-41d2-836e-091067c4ad17} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{120927bf-1700-43bc-810f-fab92549b390} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{247a115f-06c2-4fb3-967d-2d62d3cf4f0a} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{3e53e2cb-86db-4a4a-8bd9-ffeb7a64df82} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{90449521-d834-4703-bb4e-d3aa44042ff8} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{991aac62-b100-47ce-8b75-253965244f69} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{bbabdc90-f3d5-4801-863a-ee6ae529862d} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{d6ff3684-ad3b-48eb-bbb4-b9e6c5a355c1} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{eb9e5c1c-b1f9-4c2b-be8a-27d6446fdaf8} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{0f8ecf4f-3646-4c3a-8881-8e138ffcaf70} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{b813095c-81c0-4e40-aa14-67520372b987} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{c9d7be3e-141a-4c85-8cd6-32461f3df2c7} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{cff4ce82-3aa2-451f-9b77-7165605fb835} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.historykillerscheduler.1 (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.historyswattercontrolbar (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.historyswattercontrolbar.1 (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.htmlmenu (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib{e47caee0-deea-464a-9326-3f2801535a4d} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{3e1656ed-f60e-4597-b6aa-b6a58e171495} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{741de825-a6f0-4497-9aa6-8023cf9b0fff} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{3dc201fb-e9c9-499c-a11f-23c360d7c3f8} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved{3dc201fb-e9c9-499c-a11f-23c360d7c3f8} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{98d9753d-d73b-42d5-8c85-4469cda897ab} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved{98d9753d-d73b-42d5-8c85-4469cda897ab} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.htmlmenu.1 (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.htmlmenu.2 (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.iecookiesmanager (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.iecookiesmanager.1 (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.killerobjmanager (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.killerobjmanager.1 (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.popswatterbarbutton (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib{8e6f1830-9607-4440-8530-13be7c4b1d14} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{63d0ed2b-b45b-4458-8b3b-60c69bbbd83c} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{63d0ed2d-b45b-4458-8b3b-60c69bbbd83c} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{63d0ed2c-b45b-4458-8b3b-60c69bbbd83c} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved{63d0ed2c-b45b-4458-8b3b-60c69bbbd83c} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{8e6f1832-9607-4440-8530-13be7c4b1d14} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{a9571378-68a1-443d-b082-284f960c6d17} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.popswatterbarbutton.1 (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.popswattersettingscontrol (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.popswattersettingscontrol.1 (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\mywebsearch.chatsessionplugin (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib{e79dfbc0-5697-4fbd-94e5-5b2a9c7c1612} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{72ee7f04-15bd-4845-a005-d6711144d86a} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{e79dfbc9-5697-4fbd-94e5-5b2a9c7c1612} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{e79dfbcb-5697-4fbd-94e5-5b2a9c7c1612} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{e79dfbca-5697-4fbd-94e5-5b2a9c7c1612} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved{e79dfbca-5697-4fbd-94e5-5b2a9c7c1612} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\mywebsearch.chatsessionplugin.1 (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\mywebsearch.htmlpanel (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib{3e720450-b472-4954-b7aa-33069eb53906} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{3e720451-b472-4954-b7aa-33069eb53906} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{3e720453-b472-4954-b7aa-33069eb53906} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{3e720452-b472-4954-b7aa-33069eb53906} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved{3e720452-b472-4954-b7aa-33069eb53906} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\mywebsearch.htmlpanel.1 (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\mywebsearch.outlookaddin (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{adb01e81-3c79-4272-a0f1-7b2be7a782dc} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\mywebsearch.outlookaddin.1 (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\mywebsearch.pseudotransparentplugin (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib{7473d290-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{7473d291-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{7473d293-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{7473d295-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{7473d297-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{7473d292-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{7473d294-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved{7473d294-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{7473d296-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\mywebsearch.pseudotransparentplugin.1 (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\mywebsearchtoolbar.settingsplugin (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\mywebsearchtoolbar.settingsplugin.1 (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\mywebsearchtoolbar.toolbarplugin (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\mywebsearchtoolbar.toolbarplugin.1 (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\screensavercontrol.screensaverinstaller (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib{29d67d3c-509a-4544-903f-c8c1b8236554} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{2e3537fc-cf2f-4f56-af54-5a6a3dd375cc} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{2e9937fc-cf2f-4f56-af54-5a6a3dd375cc} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{938aa51a-996c-4884-98ce-80dd16a5c9da} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{9ff05104-b030-46fc-94b8-81276e4e27df} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved{9ff05104-b030-46fc-94b8-81276e4e27df} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\screensavercontrol.screensaverinstaller.1 (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{cf54be1c-9359-4395-8533-1657cf209cfe} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{e342af55-b78a-4cd0-a2bb-da7f52d9d25e} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface{e342af55-b78a-4cd0-a2bb-da7f52d9d25f} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{147a976f-eee1-4377-8ea7-4716e4cdd239} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{1e0de227-5ce4-4ea3-ab0c-8b03e1aa76bc} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{84da4fdf-a1cf-4195-8688-3e961f505983} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{a4730ebe-43a6-443e-9776-36915d323ad3} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{d9fffb27-d62a-4d64-8cec-1ff006528805} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib{0d26bc71-a633-4e71-ad31-eadc3a1b6a3a} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib{d518921a-4a03-425e-9873-b9a71756821e} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes{56256a51-b582-467e-b8d4-7786eda79ae0} (Trojan.Vundo) → Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats{6fd31ed6-7c94-4bbc-8e95-f927f4d3a949} (Adware.180Solutions) → Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats{1d4db7d2-6ec9-47a3-bd87-1e41684e07bb} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats{100eb1fd-d03e-47fd-81f3-ee91287f9465} (Adware.ShopperReports) → Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats{a7cddcdc-beeb-4685-a062-978f5e07ceee} (Adware.ShopperReports) → Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats{c5428486-50a0-4a02-9d20-520b59a9f9b2} (Adware.ShopperReports) → Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats{c5428486-50a0-4a02-9d20-520b59a9f9b3} (Adware.ShopperReports) → Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings{1d4db7d2-6ec9-47a3-bd87-1e41684e07bb} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings{100eb1fd-d03e-47fd-81f3-ee91287f9465} (Adware.ShopperReports) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units{1d4db7d2-6ec9-47a3-bd87-1e41684e07bb} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy{59c7fc09-1c83-4648-b3e6-003d2bbc7481} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy{68af847f-6e91-45dd-9b68-d6a12c30e5d7} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy{9170b96c-28d4-4626-8358-27e6caeef907} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy{d1a71fa0-ff48-48dd-9b6d-7a13a3e42127} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy{ddb1968e-ead6-40fd-8dae-ff14757f60c7} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy{f138d901-86f0-4383-99b6-9cdd406036da} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes{56256a51-b582-467e-b8d4-7786eda79ae0} (Trojan.Vundo) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{799391d3-eb86-4bac-9bd3-cbfea58a0e15} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID{d858dafc-9573-4811-b323-7011a3aa7e61} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MyWebSearchService (Adware.MyWebSearch) → Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks{00a6faf6-072e-44cf-8957-5838f569a31d} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\mywebsearch email plugin (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\mywebsearch email plugin (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser{07b18ea9-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar{07b18ea9-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\my web search bar search scope monitor (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser{90b8b761-df2b-48ac-bbe0-bcc03a819b3b} (Adware.Zango) → Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
C:\ProgramData\MPK (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\2 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\3 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\4 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\CPDA (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\CPDM (Refog.Keylogger) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch (Adware.MyWebSearch) → Delete on reboot.
C:\Program Files\MyWebSearch\bar (Adware.MyWebSearch) → Delete on reboot.
C:\Program Files\MyWebSearch\bar\2.bin (Adware.MyWebSearch) → Delete on reboot.
C:\Program Files\MyWebSearch\bar\icons (Adware.MyWebSearch) → Quarantined and deleted successfully.

Fichier(s) infecté(s):
C:\Users\Valentin\Local Settings\Application Data\vdestbbq_navps.dat (Adware.Navipromo.H) → Quarantined and deleted successfully.
C:\Users\Valentin\Local Settings\Application Data\vdestbbq_nav.dat (Adware.Navipromo.H) → Quarantined and deleted successfully.
C:\Users\Valentin\Local Settings\Application Data\vdestbbq.dat (Adware.Navipromo.H) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\MWSOESTB.DLL (Adware.MyWebSearch) → Delete on reboot.
C:\Program Files\MyWebSearch\bar\2.bin\MWSSRCAS.DLL (Adware.MyWebSearch) → Delete on reboot.
C:\Program Files\MyWebSearch\bar\2.bin\MWSOEMON.EXE (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\MWSOEPLG.DLL (Adware.MyWebSearch) → Delete on reboot.
C:\Program Files\MyWebSearch\bar\2.bin\MWSBAR.DLL (Adware.MyWebSearch) → Delete on reboot.
C:\Program Files\MyWebSearch\bar\2.bin\MWSSVC.EXE (Adware.MyWebSearch) → Delete on reboot.
C:\Program Files\MyWebSearch\bar\2.bin\M3AUXSTB.DLL (Adware.MyWebSearch) → Delete on reboot.
C:\Program Files\MyWebSearch\bar\2.bin\M3DLGHK.DLL (Adware.MyWebSearch) → Delete on reboot.
C:\Program Files\MyWebSearch\bar\2.bin\M3SRCHMN.EXE (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\F3DTACTL.DLL (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\F3HISTSW.DLL (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\F3HTMLMU.DLL (Adware.MyWebSearch) → Delete on reboot.
C:\Program Files\MyWebSearch\bar\2.bin\F3POPSWT.DLL (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\M3MSG.DLL (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\M3HTML.DLL (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\M3OUTLCN.DLL (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\M3SKIN.DLL (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\F3SCRCTR.DLL (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\F3CJPEG.DLL (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\F3HTTPCT.DLL (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\F3REPROX.DLL (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\ProgramData\MPK\M0000 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\mpk.db_ (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\S0000 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\D0000 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40312_4140293519 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40312_4407890046 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40312_4746233796 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40312_4751253241 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40312_4752045139 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40312_4876749653 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40312_4878260301 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40312_4878317940 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40312_4879855440 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40312_4969323148 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40312_4972696528 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40312_8067348032 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40312_9060351273 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40312_9246682292 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40313_6656380671 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40313_7866234028 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40314_3903817014 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40314_3903875347 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40314_4904205208 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40314_4912522569 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40316_7704139699 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40316_7704204051 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40316_7704895602 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40316_7705606713 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40317_5740731481 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40317_6008628241 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40317_6024171528 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40317_6102106481 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40317_6120808912 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40317_6127926157 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40317_6127930324 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40317_6127942940 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40317_6127948264 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40317_6127955440 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40317_6127958333 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40317_6127964236 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40317_6127967824 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40317_6127994329 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40317_6128056713 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40317_6128057986 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40317_6128174653 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40317_6693831481 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40318_7680600463 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40318_7681493171 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40318_7682481250 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40318_7683459491 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40318_7741363079 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40318_7743269907 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40318_7960713773 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40318_8268102083 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40318_8268160301 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40319_7887379977 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40320_4723480556 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40321_7772806134 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40321_7774510764 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40321_7776205093 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40321_7789500231 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40322_5844274190 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40322_5844336458 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40323_8218629398 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40323_8306175347 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40323_8540570833 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_5825173380 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_5825183565 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_5825196528 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_5825199769 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_5825203588 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_5825205440 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_5825210069 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_5825212847 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_5825238542 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_5825291204 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_5825298380 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_5825442477 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_5830186690 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_5830187963 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_5830189699 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_5830190972 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_5830193981 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_5830201505 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_5830206713 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_5830210185 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_5830217708 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_5866661574 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_5866662731 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_5866663889 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_5866665162 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_5866666319 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_5866673727 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_5866678588 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_5866681944 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_5866690046 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_8245645833 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_8287825347 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_8328340625 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_8768918403 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_8818350347 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_8890861806 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_8895825347 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_8906002315 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_8911537269 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_9042001736 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_9057907176 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_9085954861 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40324_9122101852 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40326_7098618287 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40327_6241558565 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40327_6242457292 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40328_4484563657 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40328_4487220718 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40331_8941268634 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40331_8983279630 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40332_3590578241 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40332_3658693634 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40346_3735486227 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40346_8333424421 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40346_8333532986 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40346_8335061690 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40346_8415032870 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40346_8535796296 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40346_8535959606 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40346_8788044444 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40349_7289641319 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40349_7293728935 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40351_9239132523 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40357_7380065625 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40357_8033432870 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40357_8033506366 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40360_4941258565 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40360_4942972801 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40360_4943032292 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40360_4943079630 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40360_4943154630 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40360_5592159028 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40360_5620172569 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40360_5640596065 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40360_6291281366 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40360_6384601736 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40360_6385474537 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40360_6655869213 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40360_7607106366 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40360_7612776273 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40360_7618548958 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40363_7880734144 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40363_7932582755 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40363_8762921759 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40363_8896989699 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40363_9057176389 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40363_9060603704 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40363_9060707755 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40363_9060876042 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40367_8777264699 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40369_0171920139 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40369_0171979630 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40369_0173513889 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40374_4960761806 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40374_4960835648 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40378_9098908565 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40379_8436746296 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40379_8441375579 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40380_0386142708 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40380_6062539931 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40380_6105583449 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40380_8692067014 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40380_8692165162 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40380_8692959028 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40380_8693058333 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40380_8730336343 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40380_8838496065 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40380_8838985185 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40380_8839033565 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40380_8839072454 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40380_8839117130 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40380_8839155903 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40380_8839194676 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40380_8839237616 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40380_8945964468 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40380_8946042014 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40380_9061629051 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40380_9086032060 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40380_9086088079 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40381_7686143750 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40381_7686203704 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40382_1780722917 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40382_1908745139 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40386_5974002083 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40386_5980210185 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40386_5984064583 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40386_5986814931 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40387_0622107060 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40388_6368847222 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40388_6536302894 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40388_6536367014 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40388_6538698380 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40388_6546372569 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40388_6546444560 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40391_9800677546 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_5860367708 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_5882269907 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_5882279514 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_5882293056 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_5882300347 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_5882301852 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_5882306482 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_5882309143 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_5882310185 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_5882313773 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_5882315741 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_5882320255 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_5882322106 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_5882323495 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_5882356829 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_5882414120 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_5882415509 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_5882631944 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_5920962731 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_5921029398 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_5946987500 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_5965272569 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_5965346528 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_5999084491 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_5999137963 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_6012627894 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_6025772222 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_6034013542 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_6041832870 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_6049859954 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_6053790162 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_6062612963 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40392_6180971528 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40394_7553659838 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40394_7553749190 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40394_8172361574 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40394_8172422917 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40394_8182495718 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40394_8206895718 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40394_8215892245 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40394_8597913889 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40394_8603879051 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40394_8779995255 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40394_8788415046 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40394_8830280208 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40394_8966421991 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40394_9009209028 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40394_9012543750 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40395_0573512616 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40395_0573580324 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40395_1314800810 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40395_1327303588 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40395_5743476389 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40395_5749531366 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40395_5762403704 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40395_5767820486 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40395_5828335532 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40395_5828339815 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40395_5828588194 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40395_9460567245 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40398_7730365278 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40398_7733513426 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40398_8103781481 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40398_9336254977 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40398_9336329051 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40401_4984019792 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40401_4984093287 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40401_6144878356 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40401_6240866435 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40401_6326184722 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40401_6326240857 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\I40401_6339204398 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\S0000 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\T40358_8642173843 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\T40392_5943137037 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\T40392_5963768403 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\2\D0000 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\2\S0000 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\3\D0000 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\3\S0000 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\4\D0000 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\4\S0000 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\CPDM\cpfm.bin (Refog.Keylogger) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\CHROME.MANIFEST (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\F3HKSTUB.DLL (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\F3IMSTUB.DLL (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\F3PSSAVR.SCR (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\F3REGHK.DLL (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\F3RESTUB.DLL (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\F3SCHMON.EXE (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\F3WPHOOK.DLL (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\M3HIGHIN.EXE (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\M3IDLE.DLL (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\M3IMPIPE.EXE (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\M3MEDINT.EXE (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\M3PLUGIN.DLL (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\M3SKPLAY.EXE (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\M3SLSRCH.EXE (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\MWSMLBTN.DLL (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\MWSUABTN.DLL (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\2.bin\NPMYWEBS.DLL (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\icons\CM.ICO (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\icons\MFC.ICO (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\icons\PSS.ICO (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\icons\SMILEY.ICO (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\icons\WB.ICO (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\icons\ZWINKY.ICO (Adware.MyWebSearch) → Quarantined and deleted successfully.
C:\Windows\System32\f3PSSavr.scr (Trojan.Agent) → Quarantined and deleted successfully.

J’en ai refait un par la suite pour vérifier, un rapide j’ai eu sa :

Malwarebytes’ Anti-Malware 1.46

Version de la base de données: 4052

Windows 6.0.6001 Service Pack 1 (Safe Mode)
Internet Explorer 8.0.6001.18928

12/08/2010 15:03:29
mbam-log-2010-08-12 (15-03-29).txt

Type d’examen: Examen rapide
Elément(s) analysé(s): 131905
Temps écoulé: 5 minute(s), 40 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 17
Valeur(s) du Registre infectée(s): 2
Elément(s) de données du Registre infecté(s): 1
Dossier(s) infecté(s): 4
Fichier(s) infecté(s): 3

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\mywebsearch.multiplebutton (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\mywebsearch.multiplebutton.1 (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\mywebsearch.urlalertbutton (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\mywebsearch.urlalertbutton.1 (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\fcn (Rogue.Residue) → Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\MyWebSearch (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\FocusInteractive (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Fun Web Products (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\FunWebProducts (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\Outlook\Addins\MyWebSearch.OutlookAddin (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\Word\Addins\MyWebSearch.OutlookAddin (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MyWebSearch bar Uninstall (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\MyWebSearch (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Refog Software (Refog.Keylogger) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins@mywebsearch.com/Plugin (Adware.MyWebSearch) → Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Media\WMSDK\Sources\f3popularscreensavers (Adware.MyWebSearch) → Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform\funwebproducts (Adware.MyWebSearch) → Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit (Refog.Keylogger) → Bad: (c:\windows\system32\userinit.exe,C:\Program Files\KGB\MPK.exe,) Good: (Userinit.exe) → Quarantined and deleted successfully.

Dossier(s) infecté(s):
C:\ProgramData\MPK (Refog.Keylogger) → Delete on reboot.
C:\ProgramData\MPK\1 (Refog.Keylogger) → Delete on reboot.
C:\ProgramData\MPK\CPDA (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\CPDM (Refog.Keylogger) → Quarantined and deleted successfully.

Fichier(s) infecté(s):
C:\ProgramData\MPK\M0000 (Refog.Keylogger) → Delete on reboot.
C:\ProgramData\MPK\S0000 (Refog.Keylogger) → Quarantined and deleted successfully.
C:\ProgramData\MPK\1\D0000 (Refog.Keylogger) → Delete on reboot.

poisson9 · Août 12, 2010, 3:59

Et ben ta été gâté ! Pas de soucis…

Ca décoiffe mdr sinon fais ça : Télécharge HijackThis : www.hijackthis.de... Ouvre le,clique sur Install puis sur I accept et clique sur Do a system scan and save a logfile puis copie colle le rapport sur le forum

Mr_Penguin · Août 12, 2010, 4:01

En gros vu que tout a été viré, je crains plus trop rien c’est sa ?

poisson9 · Août 12, 2010, 4:04

Ca dépend si Malwarebytes a tout vu…
Edité le 12/08/2010 à 16:04

Mr_Penguin · Août 12, 2010, 4:06

Bin je laisse comme c’est on verra si je me retape un autre BSoD je saurais que y’a encore du blem O_o

poisson9 · Août 12, 2010, 4:08

Et si c’est « invisible » tu sais tu peux avoir des virus sans que tu t’en rends compte…

Mr_Penguin · Août 12, 2010, 4:13

HijackThis :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:12:41, on 12/08/2010
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.18928)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\rundll32.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVG\AVG9\avgtray.exe
C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
C:\Program Files\MSN Toolbar\Platform\5.0.1423.0\mswinext.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Java\jre6\bin\javaw.exe
C:\Windows\system32\conime.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe
C:\Program Files\iTunes\iTunes.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
C:\Program Files\Common Files\Apple\Apple Application Support\distnoted.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Malwarebytes’ Anti-Malware\mbam.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = go.microsoft.com…
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.fr…
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http:\www.samsungcomputer.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = go.microsoft.com…
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = go.microsoft.com…
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = go.microsoft.com…
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll
R3 - URLSearchHook: SearchHelper Class - {91C18ED5-5E1C-4AE5-A148-A861DE8C8E16} - C:\Program Files\SGPSA\mtwb3sh.dll
R3 - URLSearchHook: radiodofus Toolbar - {b905bc9d-6059-4517-a6b4-950d26299a2b} - C:\Program Files\radiodofus\tbradi.dll
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
R3 - URLSearchHook: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfre1.dll
R3 - URLSearchHook: myBabylon English Toolbar - {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - C:\Program Files\myBabylon_English\tbmyBa.dll
R3 - URLSearchHook: FCToolbarURLSearchHook Class - {17402221-9032-45e3-9662-ba98be4e08b5} - C:\Program Files\Is Cool\Helper.dll
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: Setuprog Toolbar - {f4ef4468-9bbb-45a1-a2ce-f0c430a9a7e5} - C:\Program Files\Setuprog\tbSetu.dll
R3 - URLSearchHook: Zynga Toolbar - {7b13ec3e-999a-4b70-b9cb-2617b8323822} - C:\Program Files\Zynga\tbZyng.dll
O1 - Hosts: ::1 localhost
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d’Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: FCTBPos00Pos - {178E24B8-CAB5-4B50-A841-CB18A8DDBFB6} - C:\Program Files\Is Cool\Toolbar.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Zynga Toolbar - {7b13ec3e-999a-4b70-b9cb-2617b8323822} - C:\Program Files\Zynga\tbZyng.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Babylon IE plugin - {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll
O2 - BHO: myBabylon English Toolbar - {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - C:\Program Files\myBabylon_English\tbmyBa.dll
O2 - BHO: radiodofus Toolbar - {b905bc9d-6059-4517-a6b4-950d26299a2b} - C:\Program Files\radiodofus\tbradi.dll
O2 - BHO: Bing Bar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\MSN Toolbar\Platform\5.0.1423.0\npwinext.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfre1.dll
O2 - BHO: Search Assistant - {F0626A63-410B-45E2-99A1-3F2475B2D695} - C:\Program Files\SGPSA\BHO.dll (file missing)
O2 - BHO: Setuprog Toolbar - {f4ef4468-9bbb-45a1-a2ce-f0c430a9a7e5} - C:\Program Files\Setuprog\tbSetu.dll
O2 - BHO: XBTBPos00 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\Fast Browser Search\IE\FBStoolbar.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll (file missing)
O3 - Toolbar: radiodofus Toolbar - {b905bc9d-6059-4517-a6b4-950d26299a2b} - C:\Program Files\radiodofus\tbradi.dll
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Fast Browser Search - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - C:\Program Files\Fast Browser Search\IE\FBStoolbar.dll
O3 - Toolbar: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfre1.dll
O3 - Toolbar: myBabylon English Toolbar - {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - C:\Program Files\myBabylon_English\tbmyBa.dll
O3 - Toolbar: Is Cool - {CA127536-050A-49DF-B02A-3CE87231D790} - C:\Program Files\Is Cool\Toolbar.dll
O3 - Toolbar: @C:\Program Files\MSN Toolbar\Platform\5.0.1423.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\MSN Toolbar\Platform\5.0.1423.0\npwinext.dll
O3 - Toolbar: Setuprog Toolbar - {f4ef4468-9bbb-45a1-a2ce-f0c430a9a7e5} - C:\Program Files\Setuprog\tbSetu.dll
O3 - Toolbar: Zynga Toolbar - {7b13ec3e-999a-4b70-b9cb-2617b8323822} - C:\Program Files\Zynga\tbZyng.dll
O3 - Toolbar: CrowdStar Gamebar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O4 - HKLM..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] « C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe »
O4 - HKLM..\Run: [TkBellExe] « C:\Program Files\Common Files\Real\Update_OB\realsched.exe » -osboot
O4 - HKLM..\Run: [rkfree] « C:\Program Files\rkfree\rkfree.exe » /b
O4 - HKLM..\Run: [SunJavaUpdateSched] « C:\Program Files\Common Files\Java\Java Update\jusched.exe »
O4 - HKLM..\Run: [AdobeCS4ServiceManager] « C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe » -launchedbylogin
O4 - HKLM..\Run: [FBSSA] C:\Program Files\SGPSA\ie3sh.exe
O4 - HKLM..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe
O4 - HKLM..\Run: [XboxStat] « c:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe » silentrun
O4 - HKLM..\Run: [UVS12 Preload] C:\Program Files\Corel\Corel VideoStudio 12\uvPL.exe
O4 - HKLM..\Run: [TrayServer] C:\Program Files\MAGIX\Video_deluxe_16_Plus_Version à télécharger\TrayServer.exe
O4 - HKLM..\Run: [Bing Bar] « C:\Program Files\MSN Toolbar\Platform\5.0.1423.0\mswinext.exe »
O4 - HKLM..\Run: [Microsoft Default Manager] « C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe » -resume
O4 - HKLM..\Run: [QuickTime Task] « C:\Program Files\QuickTime\QTTask.exe » -atboottime
O4 - HKLM..\Run: [iTunesHelper] « C:\Program Files\iTunes\iTunesHelper.exe »
O4 - HKLM..\Run: [Spykey] C:\Users\Valentin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\V745UIHE\Spykey[1].exe
O4 - HKCU..\Run: [DAEMON Tools Lite] « C:\Program Files\DAEMON Tools Lite\daemon.exe » -autorun
O4 - HKCU..\Run: [EA Core] « C:\Program Files\Electronic Arts\EADM\Core.exe » -silent
O4 - HKCU..\Run: [winproc] C:\Users\Valentin\AppData\Roaming\Microsoft\Crypto\AM\winproc.exe
O4 - HKCU..\Run: [windowskey] C:\Users\Valentin\AppData\Roaming\Microsoft\Crypto\AM\windowskey.exe
O4 - HKCU..\Run: [msnmsgr] « C:\Program Files\Windows Live\Messenger\msnmsgr.exe » /background
O4 - HKCU..\Run: [ManyCam] « C:\Program Files\ManyCam 2.4\ManyCam.exe »
O4 - HKCU..\Run: [Google Update] « C:\Users\Valentin\AppData\Local\Google\Update\GoogleUpdate.exe » /c
O4 - HKCU..\Run: [FlashGet 3] « C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe » -minimize
O4 - HKCU..\Run: [FlashGetBHO] « C:\Program Files\FlashGet Network\FlashGet 3\mxhelper.exe »
O4 - HKCU..\RunOnce: [Shockwave Updater] C:\Windows\system32\Adobe\Shockwave 11\SwHelper_1151601.exe -Update -1151601 -« Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0; Trident/4.0; FBSMTWB; SLCC1; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30618; InfoPath.1; OfficeLiveConnector.1.3; OfficeLivePatch.0.0; AskTB5.3) » -« http://www.gamevial.com/linkers/spillgroup.php?game=pirates »
O4 - HKUS\S-1-5-19..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User ‹ SERVICE LOCAL ›)
O4 - HKUS\S-1-5-19..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User ‹ SERVICE LOCAL ›)
O4 - HKUS\S-1-5-20..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User ‹ SERVICE RÉSEAU ›)
O4 - Startup: dmhkcore - Raccourci.lnk = C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe
O4 - Startup: DMLauncher_Vista - Raccourci.lnk = C:\Program Files\Samsung\Easy Display Manager\DMLauncher_Vista.exe
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: BumpTop.lnk = C:\Program Files\BumpTop\BumpTop.exe
O8 - Extra context menu item: Download all by FlashGet3 - C:\Users\Valentin\AppData\Roaming\FlashGetBHO\GetAllUrl.htm
O8 - Extra context menu item: Download by FlashGet3 - C:\Users\Valentin\AppData\Roaming\FlashGetBHO\GetUrl.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE…
O8 - Extra context menu item: Translate this web page with Babylon - C:\Program… Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm
O8 - Extra context menu item: Translate with Babylon - C:\Program… Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Action.htm
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra ‹ Tools › menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra ‹ Tools › menuitem: Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra button: Add to VideoGet - {88CFA58B-A63F-4A94-9C54-0C7A58E3333E} - C:\PROGRA~1\NUCLEA~1\VideoGet\Plugins\VIDEOG~1.DLL
O9 - Extra ‹ Tools › menuitem: Add to &VideoGet - {88CFA58B-A63F-4A94-9C54-0C7A58E3333E} - C:\PROGRA~1\NUCLEA~1\VideoGet\Plugins\VIDEOG~1.DLL
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra ‹ Tools › menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll
O9 - Extra ‹ Tools › menuitem: Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll
O13 - Gopher Prefix:
O15 - Trusted Zone: www.chatroulette.com…
O15 - Trusted Zone: www.facebook.com…
O15 - Trusted Zone: software.kuaiche.com…
O16 - DPF: {2357B3CF-7F8D-4451-8D81-FD6097610AEE} (CamfrogWEB Advanced Unicode Control) - activex.camfrogweb.com…
O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} (DLM Control) - dlm.tools.akamai.com…
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - download.divx.com…
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - upload.facebook.com…
O16 - DPF: {9DF1C00D-8426-4337-972C-DC042D19A916} (FTMediaPlayer Class) - webtv.guidetv.orange.fr…
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - messenger.zone.msn.com…
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - platformdl.adobe.com…
O16 - DPF: {F7EDBBEA-1AD2-4EBF-AA07-D453CC29EE65} (Flash Casino Helper Control) - plugins.valueactive.eu…
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll
O20 - AppInit_DLLs: avgrsstx.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BrowserQuest Service - Unknown owner - C:\ProgramData\BrowserQuest\browserquest129.exe
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) - MAGIX AG - C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files\Common Files\MAGIX Services\Database\bin\fbserver.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Service de liPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: Samsung Update Plus - Unknown owner - C:\Program Files\Samsung\Samsung Update Plus\SLUBackgroundService.exe
O23 - Service: TeamViewer 5 (TeamViewer5) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe
O23 - Service: wampapache - Apache Software Foundation - c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe
O23 - Service: wampmysqld - Unknown owner - c:\wamp\bin\mysql\mysql5.1.36\bin\mysqld.exe
O23 - Service: WD SmartWare Drive Manager (WDDMService) - WDC - C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
O23 - Service: WD SmartWare Background Service (WDSmartWareBackgroundService) - Memeo - C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe

–
End of file - 18400 bytes

poisson9 · Août 12, 2010, 4:17

Toujours présents !
télécharge ToolBarSD >> eric.71.mespages.googlepages.com…
exécute et Tape F puis entrée et 1 puis entrée et colle le rapport.

Mr_Penguin · Août 12, 2010, 4:26

-----------\ ToolBar S&D 1.2.9 XP/Vista

Microsoft® Windows Vista Édition Familiale Basique ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Core™2 Duo CPU T6400 @ 2.00GHz )
BIOS : Phoenix SecureCore™ NB Version 02LK.MP00.20080926.SCY
USER : Valentin ( Not Administrator ! )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:111 Go (Free:42 Go)
D:\ (Local Disk) - NTFS - Total:111 Go (Free:72 Go)
E:\ (CD or DVD)
F:\ (CD or DVD)
H:\ (CD or DVD)

« C:\ToolBar SD » ( MAJ : 22-08-2009|18:42 )
Option : [1] ( 12/08/2010|16:21 )

[ UAC => 0 ]

-----------\ Recherche de Fichiers / Dossiers …

C:\Program Files\GamesBar
C:\Program Files\GamesBar\Localization-French.ini
C:\Program Files\GamesBar\Localization2-French.ini
C:\Users\Valentin\AppData\Roaming\MICROS~1\Windows\Cookies\valentin@myway[1].txt
C:\Users\Valentin\AppData\Roaming\MICROS~1\Windows\Cookies\valentin@mywebsearch[2].txt
C:\Windows\iun6002.exe

-----------\ […\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
« Local Page »=« C:\Windows\system32\blank.htm »
« Start Page »=« http://www.google.fr/ »
« Default_Page_URL »=« http://go.microsoft.com/fwlink/?LinkId=69157 »
« Url »=« http://go.microsoft.com/fwlink/?LinkId=75720 »

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
« Start Page »=« http://go.microsoft.com/fwlink/?LinkId=69157 »
« Default_Page_URL »=« http:\\www.samsungcomputer.com »
« Default_Search_URL »=« http://go.microsoft.com/fwlink/?LinkId=54896 »
« Search Page »=« http://go.microsoft.com/fwlink/?LinkId=54896 »
« Local Page »=« C:\Windows\System32\blank.htm »

--------------------\ Recherche d’autres infections

--------------------\ Cracks & Keygens …

C:\Users\Valentin\AppData\Local\Cracklock.settings
C:\Users\Valentin\AppData\Roaming\uTorrent\Alcohol 120% FR v1.9.6.5429 (XP_Vista) + Crack By GraineDH.zip.torrent
C:\Users\Valentin\AppData\Roaming\uTorrent\Cube Desktop - 6 Virtual Desktops! + Crack [June 20th Release].torrent
C:\Users\Valentin\AppData\Roaming\uTorrent\CubeDesktop PRO v1.1.3 Incl Crack.rar.torrent
C:\Users\Valentin\AppData\Roaming\uTorrent\CubeDesktop v.1.1.2 + Crack.rar.torrent
C:\Users\Valentin\AppData\Roaming\uTorrent\Deer Drive 1.5 + crack.rar.torrent
C:\Users\Valentin\AppData\Roaming\uTorrent\FUEL CRACK.rar.torrent
C:\Users\Valentin\AppData\Roaming\uTorrent\Fuel PC Crack.rar.torrent
C:\Users\Valentin\AppData\Roaming\uTorrent\Fuel-CrackOnly-Razor1911.torrent
C:\Users\Valentin\AppData\Roaming\uTorrent\FUEL.CRACK.ONLY-Razor1911.torrent
C:\Users\Valentin\AppData\Roaming\uTorrent\InTheCrack - E423 - Capri Anderson.torrent
C:\Users\Valentin\Desktop\Val\Jeux\Fuel-CrackOnly-Razor1911
C:\Users\Valentin\Desktop\Val\Jeux\Ballance\Crack
C:\Users\Valentin\Desktop\Val\Jeux\Ballance\Crack\Player.exe
C:\Users\Valentin\Desktop\Val\Jeux\Ballance\Crack\ReadMe.txt
C:\Users\Valentin\Desktop\Val\Jeux\Fuel-CrackOnly-Razor1911\1911.dll
C:\Users\Valentin\Desktop\Val\Jeux\Mystery Stories Island of Hope FR\Mystery Stories Island of Hope FR\CRACK
C:\Users\Valentin\Desktop\Val\Jeux\Mystery Stories Island of Hope FR\Mystery Stories Island of Hope FR\CRACK\Islandofhope.exe
C:\Users\Valentin\Favorites\http–www.planete-lolo.com-topic-252966–MU–Modern-Warfare–ISO-Originales-Crack–p1.html.url
C:\PROGRA~2\Microsoft\Windows\Start Menu\Programs\Cracklock
C:\PROGRA~2\Microsoft\Windows\Start Menu\Programs\Cracklock\Cracklock Manager.lnk
C:\PROGRA~2\Microsoft\Windows\Start Menu\Programs\Cracklock\Cracklock website.url
C:\PROGRA~2\Microsoft\Windows\Start Menu\Programs\Cracklock\Documentation.lnk
C:\PROGRA~2\Microsoft\Windows\Start Menu\Programs\Cracklock\Uninstall Cracklock.lnk

[ UAC => 1 ]

1 - « C:\ToolBar SD\TB_1.txt » - 12/08/2010|16:22 - Option : [1]

-----------\ Fin du rapport a 16:22:49,64

Si tu peux me dire ce qui ne va pas :/

poisson9 · Août 12, 2010, 4:26

Relance le logiciel tape F entrée et tape 2 entrée et poste rapport

Mr_Penguin · Août 12, 2010, 4:50

Voici le rapport :

-----------\ ToolBar S&D 1.2.9 XP/Vista

Microsoft® Windows Vista Édition Familiale Basique ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Core™2 Duo CPU T6400 @ 2.00GHz )
BIOS : Phoenix SecureCore™ NB Version 02LK.MP00.20080926.SCY
USER : Valentin ( Not Administrator ! )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:111 Go (Free:42 Go)
D:\ (Local Disk) - NTFS - Total:111 Go (Free:72 Go)
E:\ (CD or DVD)
F:\ (CD or DVD)
H:\ (CD or DVD)

« C:\ToolBar SD » ( MAJ : 22-08-2009|18:42 )
Option : [2] ( 12/08/2010|16:29 )

[ UAC => 1 ]

-----------\ SUPPRESSION

Supprime! - C:\Program Files\GamesBar\Localization-French.ini
Supprime! - C:\Program Files\GamesBar\Localization2-French.ini
Supprime! - C:\Users\Valentin\AppData\Roaming\MICROS~1\Windows\Cookies\valentin@myway[1].txt
Supprime! - C:\Users\Valentin\AppData\Roaming\MICROS~1\Windows\Cookies\valentin@mywebsearch[2].txt
Supprime! - C:\Windows\iun6002.exe
Supprime! - C:\Program Files\GamesBar

-----------\ Recherche de Fichiers / Dossiers …

-----------\ […\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
« Local Page »=« C:\Windows\system32\blank.htm »
« Start Page »=« http://www.google.fr/ »
« Default_Page_URL »=« http://go.microsoft.com/fwlink/?LinkId=69157 »
« Url »=« http://go.microsoft.com/fwlink/?LinkId=75720 »

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
« Start Page »=« http://www.msn.com/ »
« Default_Page_URL »=« http:\\www.samsungcomputer.com »
« Default_Search_URL »=« http://go.microsoft.com/fwlink/?LinkId=54896 »
« Search Page »=« http://go.microsoft.com/fwlink/?LinkId=54896 »
« Local Page »=« C:\Windows\System32\blank.htm »

--------------------\ Recherche d’autres infections

--------------------\ Cracks & Keygens …

C:\Users\Valentin\AppData\Local\Cracklock.settings
C:\Users\Valentin\AppData\Roaming\uTorrent\Alcohol 120% FR v1.9.6.5429 (XP_Vista) + Crack By GraineDH.zip.torrent
C:\Users\Valentin\AppData\Roaming\uTorrent\Cube Desktop - 6 Virtual Desktops! + Crack [June 20th Release].torrent
C:\Users\Valentin\AppData\Roaming\uTorrent\CubeDesktop PRO v1.1.3 Incl Crack.rar.torrent
C:\Users\Valentin\AppData\Roaming\uTorrent\CubeDesktop v.1.1.2 + Crack.rar.torrent
C:\Users\Valentin\AppData\Roaming\uTorrent\Deer Drive 1.5 + crack.rar.torrent
C:\Users\Valentin\AppData\Roaming\uTorrent\FUEL CRACK.rar.torrent
C:\Users\Valentin\AppData\Roaming\uTorrent\Fuel PC Crack.rar.torrent
C:\Users\Valentin\AppData\Roaming\uTorrent\Fuel-CrackOnly-Razor1911.torrent
C:\Users\Valentin\AppData\Roaming\uTorrent\FUEL.CRACK.ONLY-Razor1911.torrent
C:\Users\Valentin\AppData\Roaming\uTorrent\InTheCrack - E423 - Capri Anderson.torrent
C:\Users\Valentin\Desktop\Val\Jeux\Fuel-CrackOnly-Razor1911
C:\Users\Valentin\Desktop\Val\Jeux\Ballance\Crack
C:\Users\Valentin\Desktop\Val\Jeux\Ballance\Crack\Player.exe
C:\Users\Valentin\Desktop\Val\Jeux\Ballance\Crack\ReadMe.txt
C:\Users\Valentin\Desktop\Val\Jeux\Fuel-CrackOnly-Razor1911\1911.dll
C:\Users\Valentin\Desktop\Val\Jeux\Mystery Stories Island of Hope FR\Mystery Stories Island of Hope FR\CRACK
C:\Users\Valentin\Desktop\Val\Jeux\Mystery Stories Island of Hope FR\Mystery Stories Island of Hope FR\CRACK\Islandofhope.exe
C:\Users\Valentin\Favorites\http–www.planete-lolo.com-topic-252966–MU–Modern-Warfare–ISO-Originales-Crack–p1.html.url
C:\PROGRA~2\Microsoft\Windows\Start Menu\Programs\Cracklock
C:\PROGRA~2\Microsoft\Windows\Start Menu\Programs\Cracklock\Cracklock Manager.lnk
C:\PROGRA~2\Microsoft\Windows\Start Menu\Programs\Cracklock\Cracklock website.url
C:\PROGRA~2\Microsoft\Windows\Start Menu\Programs\Cracklock\Documentation.lnk
C:\PROGRA~2\Microsoft\Windows\Start Menu\Programs\Cracklock\Uninstall Cracklock.lnk

[ UAC => 1 ]

1 - « C:\ToolBar SD\TB_1.txt » - 12/08/2010|16:22 - Option : [1]
2 - « C:\ToolBar SD\TB_2.txt » - 12/08/2010|16:32 - Option : [2]

-----------\ Fin du rapport a 16:32:55,04

poisson9 · Août 12, 2010, 4:59

Lance–> Malwarebytes (MBAM)+mise à jour
==> Puis vas dans l’onglet « Recherche », coche « Exécuter un examen complet » puis « Rechercher »
==> Sélectionne tes disques durs" puis clique sur « Lancer lexamen »
==> A la fin du scan, clique sur Afficher les résultats puis sur Enregistrer le rapport
==> Suppression des éléments détectés → clique sur Supprimer la sélection==>Important à faire
=> S’il t’ est demandé de redémarrer, clique sur "oui "

après la suppression(s) de ou des infections trouvées → poste le rapport ici

puis

Désinstalle AVG et Installe Avira : ftp01net.telechargement.fr…

Fais la mise à jour et lance un scan complet… puis poste le rapport

Et refais un scan HijackThis comme tout à l’heure et poste le rapport

Si t’as une question,un problème ect… N’hésite pas

Mr_Penguin · Août 12, 2010, 5:00

Obliger de Desinstaller AVG ? Nan car j’aime pas Avira ;p