Bonsoir à tous !
Quelqu'un pourrait m'aider à supprimer "Protected Searh" ?
Nous allons essayer de régler ton problème ensemble. D'abord, quelques rappels:
- N'ouvres pas d'autres sujets pour le même problème autre part.
- N'hésites pas à poser des questions en cas de besoin.
- Sois patient(e) quand tu postes un message, je ne réponds pas instantanément:
Je ne suis pas en permanence devant mon ordinateur.
- La désinfection (si nécessaire) va se dérouler en plusieurs étapes. Même si les symptômes de l'infection disparaissent, la désinfection ne sera terminée que quand je te le confirmerai
--> Merci de revenir jusqu'au bout, sinon ce qu'on a fait n'aura servi à rien.
R0 - HKCU\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.rpidity.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = http://www.alnaddy.com
O2 - BHO: Search-Results Toolbar - {377e5d4d-77e5-476a-8716-7e70a9272da0} . (.APN LLC - dtx Dynamic Link Library.) -- C:\Program Files\Search Results Toolbar\Datamngr\SRTOOL~1\searchresultsDx.dll
O3 - Toolbar: Alnaddy.com Toolbar - [HKLM]{CD3AED25-23AB-4543-B915-159449C37197} . (.Alnaddy.com - Pas de description.) -- C:\Program Files\Alnaddy.com\alnaddyToolbar\1.8.4.9\alnaddyToolbarTlbr.dll
O3 - Toolbar: Search-Results Toolbar - [HKLM]{377e5d4d-77e5-476a-8716-7e70a9272da0} . (.APN LLC - dtx Dynamic Link Library.) -- C:\Program Files\Search Results Toolbar\Datamngr\SRTOOL~1\searchresultsDx.dll
O4 - GS\QuickLaunch: iLivid.lnk . (...) -- C:\Users\admin\AppData\Local\iLivid\iLivid.exe (.not file.)
O23 - Service: Datamngr Coordinator (DatamngrCoordinator) . (.Bandoo Media Inc. - Datamngr Coordinator.) - C:\Program Files\Search Results Toolbar\Datamngr\DatamngrCoordinator.exe
[MD5.00000000000000000000000000000000] [APT] [FGRun] (...) -- C:\Users\admin\AppData\Roaming\pack.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{398AB17C-FB41-44D5-B937-3CC96D0BD005}] (...) -- C:\Users\admin\AppData\Local\Temp\IS1668~1\MyBabylonTB.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{E1FFC1F6-1B89-49EF-90D1-7AD8905CE54E}] (...) -- C:\Program Files\Babylon\Babylon-Pro\Utils\uninstbb.exe (.not file.) [0]
O42 - Logiciel: Alnaddy.com toolbar on IE and Chrome - (.Alnaddy.com.) [HKLM] -- alnaddyToolbar
O42 - Logiciel: Search-Results Toolbar - (.APN LLC.) [HKLM] -- ilividtoolbargaw
[HKCU\Software\Alnaddy.com]
[HKLM\Software\Alnaddy.com]
O43 - CFD: 11/09/2012 - 14:39:46 - [4,588] ----D C:\Program Files\Alnaddy.com
O43 - CFD: 24/03/2013 - 18:35:09 - [34,948] ----D C:\Program Files\Search Results Toolbar
O43 - CFD: 27/03/2013 - 23:03:57 - [0,008] ----D C:\ProgramData\Datamngr
O45 - LFCP:[MD5.F34B3DFE2727CC3051B0E91B6B80E485] - 27/03/2013 - 18:52:02 ---A- - C:\Windows\Prefetch\DATAMNGRUI.EXE-62AADE7B.pf
O69 - SBI: SearchScopes [HKCU] {1209CCB9-308C-46B6-A7A2-3FA0770B31E9} - (Alnaddy) - http://www.alnaddy.com
O69 - SBI: SearchScopes [HKCU] {9BB47C17-9C68-4BB3-B188-DD9AF0FD2455} - (Search Results) - http://search.fantastigames.com
[MD5.E94F6DE5D8EAF2E0DC17804EBDEF23CA] [SPRF][12/09/2012] (...) -- C:\Users\admin\AppData\Local\funmoods.exe [262144]
[MD5.0F871F3D13B8736D0FE59983ADAB5E81] [SPRF][02/01/2013] (.Babylon Ltd. - Babylon Client Setup.) -- C:\Users\admin\AppData\Local\Temp\MyBabylonTB.exe [867480]
[MD5.0F871F3D13B8736D0FE59983ADAB5E81] [SPRF][02/01/2013] (.Babylon Ltd. - Babylon Client Setup.) -- C:\Users\admin\AppData\Local\Temp\MyBabylonTB[1].exe [867480]
[MD5.E35C4CA0FC282238E0A2BAFB1CAAFE5A] [SPRF][17/10/2012] (.Babylon Ltd. - Uninstaller Application.) -- C:\Users\admin\AppData\Local\Temp\uninst1.exe [340632]
[MD5.F82CD0F8DA52615B1ED9695C48A9FB6D] [SPRF][16/03/2013] (.Bandoo Media Inc - iLivid Install.) -- C:\Users\admin\Desktop\iLividSetup.exe [1307696]
O87 - FAEL: "{1A84E9BA-7127-44C4-A30D-25F1D162CC3A}" | In - Public - P6 - TRUE | .(.APN LLC - DtUser.) -- C:\Program Files\Search Results Toolbar\Datamngr\SRTOOL~1\dtUser.exe
O87 - FAEL: "{D8D9EBE6-3A41-4790-A635-8FB5E7F4B6AC}" | In - Public - P17 - TRUE | .(.APN LLC - DtUser.) -- C:\Program Files\Search Results Toolbar\Datamngr\SRTOOL~1\dtUser.exe
[HKLM\Software\Classes\Interface\{35039355-8B79-4EA2-8175-F18BAFC5E685}]
[HKLM\Software\Classes\Interface\{B119FBCC-0FFA-4C0F-AEA6-2FCE4A3D3E12}]
[HKLM\Software\Classes\Interface\{CFC4F268-E789-42E1-B255-FDFAE36C547F}]
[HKLM\Software\Classes\Interface\{BDCF34FD-97CD-4707-9266-1DC19A9EF01D}]
[HKLM\Software\Classes\Interface\{E55E0B19-457D-4ED3-B589-0103D41C83EC}]
[HKCU\Software\Alnaddy.com]
[HKLM\Software\Alnaddy.com]
[HKLM\Software\Classes\CLSID\{CD3AED25-23AB-4543-B915-159449C37197}]
[HKLM\Software\Classes\AppID\{AFE75FBA-AF4F-4F93-BE4E-9B58EDF370BF}]
[HKLM\Software\Classes\TypeLib\{AFE75FBA-AF4F-4F93-BE4E-9B58EDF370BF}]
[HKLM\Software\Classes\AppID\{D651E893-3D08-458D-A242-0E6B862E6507}]
[HKLM\Software\Classes\CLSID\{0367444F-D6D9-4F8B-9323-BD44CC862221}]
[HKLM\Software\Classes\CLSID\{064BE2C6-2B35-4976-A13C-753C133105C7}]
[HKLM\Software\Classes\CLSID\{226EDA32-AC74-4FEB-913E-A299631E45E2}]
[HKLM\Software\Classes\CLSID\{EE20B4F0-A56F-41CE-BFFC-FB7389CCB627}]
[HKLM\Software\Classes\Interface\{063922B3-931A-481A-A55E-4EB198BD9DFE}]
[HKLM\Software\Classes\Interface\{1088C560-0B2F-48A8-A449-3DB6D53FF8BA}]
[HKLM\Software\Classes\Interface\{1A897D73-1756-4251-B841-D633A63BA73F}]
[HKLM\Software\Classes\Interface\{FEDFBB0E-4889-47EE-90E6-F88BFD927629}]
[HKLM\Software\Classes\Interface\{23E0C19C-6650-4788-88BB-71979CC3263F}]
[HKLM\Software\Classes\Interface\{F7F4F65C-DA43-486C-92F4-5D35ACB81D11}]
[HKLM\Software\Classes\Interface\{F3E11C16-FC77-47EB-9314-931BEB9C5C55}]
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2455}]
C:\Program Files\Search Results Toolbar
C:\Program Files\Alnaddy.com
C:\Users\admin\AppData\LocalLow\Alnaddy.com
C:\Users\admin\AppData\Local\Temp\uninst1.exe
C:\Users\admin\AppData\Local\Temp\MyBabylonTB.exe
C:\Users\admin\AppData\Local\Temp\MyBabylonTB[1].exe
C:\Users\admin\AppData\Local\facemoods.bmp
C:\Users\admin\Desktop\iLividSetup.exe
SR - | Auto 13/03/2013 4557312 | (DatamngrCoordinator) . (.Bandoo Media Inc..) - C:\Program Files\Search Results Toolbar\Datamngr\DatamngrCoordinator.exe
O4 - HKCU\..\Run: [LG LinkAir] Clé orpheline
O4 - HKUS\S-1-5-21-363736971-3104962305-1934155404-1000\..\Run: [LG LinkAir] Clé orpheline
O4 - GS\Desktop: Ordinateur - Raccourci.lnk - Clé orpheline
O20 - AppInit_DLLs: . (...) - C:\Program Files\Wincert\WIN32C~1.dll (.not file.)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-363736971-3104962305-1934155404-1000Core.job [906]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-363736971-3104962305-1934155404-1000UA.job [928]
[MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-363736971-3104962305-1934155404-1000Core] (.Facebook Inc..) -- C:\Users\admin\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096]
[MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-363736971-3104962305-1934155404-1000UA] (.Facebook Inc..) -- C:\Users\admin\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096]
[MD5.00000000000000000000000000000000] [APT] [{5350E913-DD55-4C25-B0F7-E23579CE91EA}] (...) -- C:\Users\admin\Desktop\rayane\gta9\setup.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{83FB0F8B-9D0C-4744-AB2C-36E6FCDFF72D}] (...) -- C:\Users\admin\Desktop\Downloads\Documents\gta\GTA - Vice City\gta Vice City full!!!! working version.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{C8884D38-296E-4FFB-AF83-EEF23DA1904F}] (...) -- F:\GTA San Andreas\install.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{D5213AF1-49B8-4BA5-9191-C13F596F94AD}] (...) -- C:\Users\admin\Desktop\setupDofus2.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{D5733B47-2333-41B0-A1B6-D0CC5050EFAC}] (...) -- F:\gta9.exe (.not file.) [0]
[HKCU\Software\IncrediMail]
[HKCU\Software\MLSync]
[HKLM\Software\IncrediMail]
O43 - CFD: 12/02/2013 - 19:44:29 - [11,498] ----D C:\Program Files\McAfee Security Scan
O43 - CFD: 14/09/2012 - 22:08:26 - [0,000] ----D C:\ProgramData\ls
O43 - CFD: 12/01/2013 - 19:41:00 - [0,001] ----D C:\ProgramData\McAfee Security Scan
O44 - LFC:[MD5.5993D9E5874CB4E6D56788A599BEB6C1] - 27/03/2013 - 23:00:06 ---A- . (...) -- C:\Windows\DeleteOnReboot.bat [321]
O45 - LFCP:[MD5.3F843FFC19ABB9F95696D555AD538973] - 24/03/2013 - 13:36:28 ---A- - C:\Windows\Prefetch\WMPRPH.EXE-D438CDC4.pf
O45 - LFCP:[MD5.8B6D0058F7712D4815B95259312C2C20] - 24/03/2013 - 17:48:30 ---A- - C:\Windows\Prefetch\STIKYNOT.EXE-AD181651.pf
O45 - LFCP:[MD5.65453D4550B8A4627E6CB2B67287A66A] - 24/03/2013 - 22:04:57 ---A- - C:\Windows\Prefetch\FACEBOOKVIDEOCALLING.EXE-588A2DF8.pf
O45 - LFCP:[MD5.B83D6BB115B9FA78C1CD5C24909D0545] - 25/03/2013 - 10:25:31 ---A- - C:\Windows\Prefetch\SWHELPER_1168638.EXE-FDE23D4A.pf
O45 - LFCP:[MD5.F4A0850C3D140C5AC4E15193468A7799] - 25/03/2013 - 18:07:57 ---A- - C:\Windows\Prefetch\LPREMOVE.EXE-284EF282.pf
O45 - LFCP:[MD5.DD4BFA4AB819A68E5CEC984CCCB37975] - 25/03/2013 - 21:26:36 ---A- - C:\Windows\Prefetch\IGFXCFG.EXE-B68F9666.pf
O45 - LFCP:[MD5.A9AE9BFD4BDDCA253AF296C22B27F19B] - 26/03/2013 - 10:41:28 ---A- - C:\Windows\Prefetch\YAHOOMESSENGER.EXE-FB86A911.pf
O45 - LFCP:[MD5.DBF39990A76FD683301962F522975C32] - 26/03/2013 - 10:41:29 ---A- - C:\Windows\Prefetch\E_FATIEDE.EXE-55E78DA3.pf
O45 - LFCP:[MD5.24BDCE280DF4ECFD6C6E8DDFE18A3672] - 26/03/2013 - 10:41:29 ---A- - C:\Windows\Prefetch\NMBGMONITOR.EXE-625F6DC5.pf
O45 - LFCP:[MD5.7A41023527EE53524E85264BE898C0C0] - 26/03/2013 - 18:26:24 ---A- - C:\Windows\Prefetch\CRASHREPORTER.EXE-749FB729.pf
O45 - LFCP:[MD5.9F1AB869693F622BB30C71774C0750F1] - 27/03/2013 - 09:23:31 ---A- - C:\Windows\Prefetch\SPMTRAY.EXE-71E39638.pf
O45 - LFCP:[MD5.3E67AEC65D5ED42B91BCABF56CB18AFB] - 27/03/2013 - 10:54:28 ---A- - C:\Windows\Prefetch\DISTNOTED.EXE-BFFB20F1.pf
O45 - LFCP:[MD5.01DCAE5BCCF41094403F289B47AE5DAB] - 27/03/2013 - 14:26:56 ---A- - C:\Windows\Prefetch\COMPUTERDEFAULTS.EXE-7B8D71A3.pf
O45 - LFCP:[MD5.E9BF57C5ADFD441FFBC17983E569F439] - 27/03/2013 - 14:27:45 ---A- - C:\Windows\Prefetch\HELPPANE.EXE-FEDC965B.pf
O45 - LFCP:[MD5.68264946CE3D63A03F62D5ABABD70127] - 27/03/2013 - 14:35:59 ---A- - C:\Windows\Prefetch\TVWIZARD2FT.EXE-AA5AD521.pf
O45 - LFCP:[MD5.078900BF519BCB58556929209D828476] - 27/03/2013 - 18:04:28 ---A- - C:\Windows\Prefetch\MCUICNT.EXE-9B22BF7E.pf
O45 - LFCP:[MD5.0A24290B7D5D240942575267626BD555] - 27/03/2013 - 18:04:49 ---A- - C:\Windows\Prefetch\MCCHSVC.EXE-91F1E75A.pf
O45 - LFCP:[MD5.745D5CA6C9AA38F349BCC4B25F5DF8B6] - 27/03/2013 - 19:06:32 ---A- - C:\Windows\Prefetch\NEROCHECK.EXE-25887EC3.pf
O45 - LFCP:[MD5.9E89BB008A0BE2409C7B2A204E2AA9DA] - 27/03/2013 - 19:06:34 ---A- - C:\Windows\Prefetch\NBKEYSCAN.EXE-47CFE9D7.pf
O45 - LFCP:[MD5.7317EC6CEAA09F2EC83AC79640054A84] - 27/03/2013 - 19:07:07 ---A- - C:\Windows\Prefetch\NMINDEXINGSERVICE.EXE-BAABA37B.pf
O45 - LFCP:[MD5.AFDBC0DF0FBBD3343B37A0E5814AD07F] - 27/03/2013 - 19:07:08 ---A- - C:\Windows\Prefetch\NMINDEXSTORESVR.EXE-D98D8FC0.pf
O45 - LFCP:[MD5.9DDEFA15B24B195DBE91A086956D1C06] - 27/03/2013 - 20:45:00 ---A- - C:\Windows\Prefetch\UPDATER.EXE-AC3844D8.pf
O45 - LFCP:[MD5.C3580D8C7DACD863F0AF1A04A67D4A26] - 27/03/2013 - 23:03:09 ---A- - C:\Windows\Prefetch\SSSCHEDULER.EXE-E9FA8200.pf
O45 - LFCP:[MD5.7D15C6A1D677462E488DFBE7551CD2C3] - 27/03/2013 - 23:03:26 ---A- - C:\Windows\Prefetch\YMSGR_TRAY.EXE-E13FAA59.pf
O61 - LFC: 25/03/2013 - 10:34:19 ---A- C:\Users\admin\AppData\Local\Temp\temp0112 [136]
O61 - LFC: 25/03/2013 - 10:34:20 ---A- C:\Users\admin\AppData\Local\Temp\temp0113 [156]
O61 - LFC: 25/03/2013 - 10:39:06 ---A- C:\Users\admin\AppData\Local\Temp\temp0114 [136]
O61 - LFC: 25/03/2013 - 10:39:06 ---A- C:\Users\admin\AppData\Local\Temp\temp0115 [156]
O61 - LFC: 25/03/2013 - 10:41:19 ---A- C:\Users\admin\AppData\Local\Temp\temp0116 [136]
O61 - LFC: 25/03/2013 - 10:41:19 ---A- C:\Users\admin\AppData\Local\Temp\temp0117 [156]
O61 - LFC: 25/03/2013 - 10:46:34 ---A- C:\Users\admin\AppData\Local\Temp\temp0118 [136]
O61 - LFC: 25/03/2013 - 10:46:35 ---A- C:\Users\admin\AppData\Local\Temp\temp0119 [156]
O61 - LFC: 26/03/2013 - 21:53:51 ---A- C:\Users\admin\AppData\Local\Temp\CRX_75DAF8CB7768\crl-set [850]
O61 - LFC: 26/03/2013 - 21:53:51 ---A- C:\Users\admin\AppData\Local\Temp\CRX_75DAF8CB7768\manifest.json [34]
[MD5.6FD1ABED770C87AC6B62EEF0C65B8288] [SPRF][16/03/2013] (...) -- C:\Users\admin\AppData\Local\Temp\apnuserid.dat [16]
[MD5.6F3EF77AC0E3619E98159E9B6FEBF557] [SPRF][16/03/2013] (...) -- C:\Users\admin\AppData\Local\Temp\appid.dat [3]
[MD5.3C6322871BEDDFA51D3DE6EDF12627AD] [SPRF][21/12/2012] (...) -- C:\Users\admin\AppData\Local\Temp\SCC.dll [64119]
[MD5.8CB22BDD0B7BA1AB13D742E22EED8DA2] [SPRF][16/03/2013] (...) -- C:\Users\admin\AppData\Local\Temp\sysid.dat [3]
[MD5.BDEE9D936EFB7C76DF778F45F1CF130D] [SPRF][16/03/2013] (...) -- C:\Users\admin\AppData\Local\Temp\trackid.dat [6]
[MD5.917BB282052965A9E6BFF4F115AA24EC] [SPRF][20/04/2011] (.Fuhu. Inc - unInstall2.) -- C:\Users\admin\AppData\Local\Temp\unInstall2.exe [336896]
[MD5.ECA09C0AB7AF910917D21DCA7B8DB2B6] [SPRF][20/02/2013] (...) -- C:\Users\admin\AppData\Local\Temp\update323280.exe [131032]
O87 - FAEL: "TCP Query User{9D47B178-5EA4-43D4-8E55-312BED3ED763}C:\program files\wino\grand theft auto.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files\wino\grand theft auto.exe (.not file.)
O87 - FAEL: "UDP Query User{94978B19-6367-4744-AEEA-9D3699C14182}C:\program files\wino\grand theft auto.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files\wino\grand theft auto.exe (.not file.)
O87 - FAEL: "TCP Query User{5DD0C43D-3F3C-4A84-8817-CED4BBA7EEBB}C:\program files\rockstar games\grand theft auto\wino\grand theft auto.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files\rockstar games\grand theft auto\wino\grand theft auto.exe (.not file.)
O87 - FAEL: "UDP Query User{4A750AE5-7C76-4CEF-B2F5-AEC54CC6844E}C:\program files\rockstar games\grand theft auto\wino\grand theft auto.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files\rockstar games\grand theft auto\wino\grand theft auto.exe (.not file.)
C:\Users\admin\AppData\Local\Temp\tb4sha.dll
[MD5.00000000000000000000000000000000] [APT] [Scheduled Update for Ask Toolbar] (...) -- C:\Program Files\Ask.com\UpdateTask.exe (.not file.) [0]
[HKCU\Software\softonicToolbar]
O69 - SBI: SearchScopes [HKCU] {21E140CB-C920-4C5F-94A8-0D59BA5748D5} - (Search the web (Softonic)) - http://search.softonic.com
O69 - SBI: SearchScopes [HKCU] {E94817A4-7DCB-40A7-9649-A3ABB26781C9} - (Ask Search) - http://websearch.ask.com
[MD5.C726AF6F55E45BA693FF8BBB622E9509] [SPRF][12/03/2013] (.Softonic - Pas de description.) -- C:\Users\admin\AppData\Local\Temp\Softonic_chr_1-8-8-11.exe [2086680]
[MD5.73406FA9287B36CA4163797C73A2CD04] [SPRF][16/07/2012] (.Conduit Ltd. - Conduit Toolbar.) -- C:\Users\admin\AppData\Local\Temp\tb4sha.dll [4451144]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{09ec805c-cb2e-4d53-b0d3-a75a428b81c7}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{37483b40-c254-4a72-bda4-22ee90182c1e}]
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
EmptyTemp
EmptyFlash
FirewallRaz
ProxyFix
Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 5 invités
.: Nous contacter :: Flux RSS :: Données personnelles :. |