Sujet Précédent Sujet Suivant

Plus internet suite nettoyage!!HELP SVP!!!!!

Fermé
Utilisateur anonyme - 4 mars 2009 à 13:45
le lou achtung!! Messages postés 478 Date d'inscription mercredi 6 août 2008 Statut Membre Dernière intervention 21 mars 2010 - 4 mars 2009 à 16:18
Bonjour,

Après un nettoyage avec Malwarebytes d'un pc fixe HP XP familial IE 7, la connexion qui est wifi est bien active mais on ne peut accéder à aucune page internet.
J'ai tenté une restauration système rien de changé, et tenté une réinitialisation I.E, rien non plus.
Voici le rapprt Malwarebytes, peut être a t-il viré une clef utile ?

Pouvez vous m'aider ?

Malwarebytes' Anti-Malware 1.34
Version de la base de données: 1815
Windows 5.1.2600 Service Pack 3

03/03/2009 23:31:19
mbam-log-2009-03-03 (23-31-19).txt

Type de recherche: Examen complet (C:\|G:\|H:\|)
Eléments examinés: 127037
Temps écoulé: 24 minute(s), 32 second(s)

Processus mémoire infecté(s): 1
Module(s) mémoire infecté(s): 1
Clé(s) du Registre infectée(s): 10
Valeur(s) du Registre infectée(s): 8
Elément(s) de données du Registre infecté(s): 1
Dossier(s) infecté(s): 1
Fichier(s) infecté(s): 50

Processus mémoire infecté(s):
C:\WINDOWS\pp1.exe (Backdoor.Bot) -> Unloaded process successfully.

Module(s) mémoire infecté(s):
C:\WINDOWS\system32\nfr.dll (Trojan.Proxy) -> Delete on reboot.

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\i899.i899mgr (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{e63648f7-3933-440e-b4f6-a8584dd7b7eb} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{f7d09218-46d7-4d3d-9b7f-315204cd0836} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{5ff186e7-0957-4095-8a2c-577ce6ea1b1f} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5ff186e7-0957-4095-8a2c-577ce6ea1b1f} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5ff186e7-0957-4095-8a2c-577ce6ea1b1f} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\i899.i899mgr.1 (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{4e7bd74f-2b8d-469e-a0e8-ed6ab685fa7d} (Adware.2020Search) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{a5cdf7ec-751b-46aa-ad69-4005fe080de8} (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{bb4c402f-882a-4526-8c08-51278ea437c1} (Trojan.Agent) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\cocwy (Adware.Navipromo.H) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{4e7bd74f-2b8d-469e-a0e8-ed6ab685fa7d} (Adware.2020Search) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\sysftray2 (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\nfr (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\kamsoft (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\cdoosoft (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\pp (Backdoor.Bot) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\{bb4c402f-882a-4526-8c08-51278ea437c1} (Trojan.Agent) -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL\CheckedValue (Hijack.System.Hidden) -> Bad: (0) Good: (1) -> Quarantined and deleted successfully.

Dossier(s) infecté(s):
C:\WINDOWS\system32\887164 (Trojan.BHO) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
C:\Documents and Settings\jeremy\Local Settings\Application Data\cocwy_navps.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\jeremy\Local Settings\Application Data\cocwy_nav.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\jeremy\Local Settings\Application Data\cocwy.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\jeremy\Local Settings\Application Data\cocwy.exe (Adware.Navipromo.H) -> Delete on reboot.
C:\WINDOWS\system32\nfr.dll (Trojan.Proxy) -> Delete on reboot.
C:\WINDOWS\system32\887164\887164.dll (Trojan.BHO) -> Quarantined and deleted successfully.
C:\Documents and Settings\jeremy\Local Settings\Temp\32n1.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
C:\Documents and Settings\jeremy\Local Settings\Temp\kav1.tmp (Trojan.Pakes) -> Quarantined and deleted successfully.
C:\Documents and Settings\jeremy\Local Settings\Temp\fuc3.tmp (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\Documents and Settings\jeremy\Local Settings\Temp\nod1.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
C:\Documents and Settings\jeremy\Local Settings\Temp\nod11.tmp (Trojan.Vaklik) -> Quarantined and deleted successfully.
C:\Documents and Settings\jeremy\Local Settings\Temp\nod16.tmp (Spyware.Magania) -> Quarantined and deleted successfully.
C:\Documents and Settings\jeremy\Local Settings\Temp\nod1A.tmp (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\Documents and Settings\jeremy\Local Settings\Temp\nod6.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.
C:\Documents and Settings\jeremy\Local Settings\Temp\nodE.tmp (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\Documents and Settings\jeremy\Local Settings\Temp\nodF.tmp (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\kamsoft.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\m0vnonh.bat (Trojan.Agent) -> Quarantined and deleted successfully.
C:\taqhptr.bat (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\olhrwef.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ckvo.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ckvo0.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ckvo1.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\cqdis.cmd (Trojan.Agent) -> Quarantined and deleted successfully.
C:\gfqgq.cmd (Trojan.Agent) -> Quarantined and deleted successfully.
C:\autorun.inf (Trojan.Agent) -> Quarantined and deleted successfully.
C:\i6g6x.cmd (Trojan.Agent) -> Quarantined and deleted successfully.
C:\nq0cq.cmd (Trojan.Agent) -> Quarantined and deleted successfully.
C:\rcukd.cmd (Trojan.Agent) -> Quarantined and deleted successfully.
C:\x2tpc.cmd (Trojan.Agent) -> Quarantined and deleted successfully.
C:\yb12j.cmd (Trojan.Agent) -> Quarantined and deleted successfully.
C:\cv22.cmd (Trojan.Agent) -> Quarantined and deleted successfully.
C:\p1y2.cmd (Trojan.Agent) -> Quarantined and deleted successfully.
C:\xih9.cmd (Trojan.Agent) -> Quarantined and deleted successfully.
C:\v0s.cmd (Trojan.Agent) -> Quarantined and deleted successfully.
C:\2.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\b.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\i.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\WINDOWS\freddy35.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\WINDOWS\pp1.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\Bitkv0.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\Bitkv1.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\amvo0.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\amvo1.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\afmain0.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\afmain1.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\2fiy.bat (Trojan.Agent) -> Quarantined and deleted successfully.
C:\m2nl.bat (Trojan.Agent) -> Quarantined and deleted successfully.
C:\qoes.bat (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\nvs2.inf (Adware.EGDAccess) -> Quarantined and deleted successfully.

Merci de votre aide !!
A voir également:

8 réponses

Réponse 1 / 8
Utilisateur anonyme
4 mars 2009 à 14:15
SVP aidez moi si vous le pouvez !!
0
Réponse 2 / 8
le lou achtung!! Messages postés 478 Date d'inscription mercredi 6 août 2008 Statut Membre Dernière intervention 21 mars 2010 28
4 mars 2009 à 14:21
Avant de tout désinstaller/réinstaller,excuse moi, tu aurais pu faire un ping d'un quelconque serveur.
Regarde les connections établies, en attente, ou en écouteà l'aide de netstat -a.
0
Réponse 3 / 8
Utilisateur anonyme
4 mars 2009 à 14:26
J'ai lu les différentes réponses liées à ce genre de problème, mais l'histoire du ping je n'ai pas compris à quoi cela sert .
La manip que j'ai faite est sur un pc fixe, j'ai effectuée le même nettoyage sur mon pc portable et je n'ai pas eu de problèmes, c'est là que je ne comprend pas tout.
Comment puis-je regarder les connexions en attente ?
0
Réponse 4 / 8
le lou achtung!! Messages postés 478 Date d'inscription mercredi 6 août 2008 Statut Membre Dernière intervention 21 mars 2010 28
4 mars 2009 à 14:32
Démarrer / exécuter/ tape cmd/ netstat -a
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 8
Utilisateur anonyme
4 mars 2009 à 15:00
Voici le résultat :

Proto Adresse locale Adresse distante Etat
TCP Nomutilisateur:http utilisateur : 0 Listening
TCP Nu : epmap " "
TCP Nu : microsoft -ds " "
TCP Nu : 52671 " "
TCP Nu : 1026 " "
TCP Nu : 1036 localhost : 27015 Established
TCP Nu : 12025 utilisateur : 0 Listening
TCP Nu : 12080 " "
TCP Nu : 12110 " "
TCP Nu : 12119 " "
TCP Nu : 12143 " "
TCP Nu : 12346 " "
TCP Nu : 27015 " "
TCP Nu : 27015 localhost : 1036 Established
TCP Nu : netbios -ssn utilisateur : 0 listening
TCP Nu : epmap " "
TCP microsoft ds *:*

etc avec les astérisques
0
Réponse 6 / 8
le lou achtung!! Messages postés 478 Date d'inscription mercredi 6 août 2008 Statut Membre Dernière intervention 21 mars 2010 28
4 mars 2009 à 15:11
Donc tu n'as pas de connexion internet, je parie fort que ta box est en cause.
Réinstalle ta box ou essaye de la rebooté.
0
Réponse 7 / 8
Utilisateur anonyme
4 mars 2009 à 15:15
c'est une connexion wifi, et sur le pc portable pas de problème, même box qui appartient à ma voisine du dessus.
Donc comment faire, en sachant que la connexion sur le pc fixe est active, puisque msn se connecte (le ptit bonhom de discussion), mais je ne peux avoir aucune page sur le net.
0
Réponse 8 / 8
le lou achtung!! Messages postés 478 Date d'inscription mercredi 6 août 2008 Statut Membre Dernière intervention 21 mars 2010 28
4 mars 2009 à 16:18
J'ai franchement du mal à te saisir... c'est compliqué ton affaire.
Tu utilises quoi comme navigateurinternet?

Si c'est IE, télécharges mozilla firefox.
0

Discussions similaires

Formaté mais pas de connexion Internet ?
VissErale -
VissErale -

4 réponses
Comment consulter mon solde internet Lycamobile ?
MohandAmokraneHANDALA -
Matthews89 -

17 réponses
Je tiens combien de temps avec 2Go d'internet ?
champi100 -
dadout -

7 réponses