Ordi tout pourri de virus !!
hb92
-
hb92 -
hb92 -
Bonjour,
Mon ordinateur s'éteignait tout seul au bout de quelques minutes voire secondes dès que je l'allumais. J'ai réussi à ce qu'il ne s'éteigne pas (miracle) le temps d'executer RSIT, CCLEANER, MBAM. Par contre je n'ai pas réussi à installer Bitdefender en ligne. Le texte me dit que ce site web n'autorise pas l'installation de l'Activex.
Pour info, cet ordi est utilisé par de jeunes enfants 5 et 9 ans, et nous, les parents ne sommes pas des pros en informatique. En général, c'est mon frère qui vient faire du ménage, mais ça fait un moment qu'il n'est pas venu...
merci de vos conseils pour néophytes !
Cordialement
haude
Mon ordinateur s'éteignait tout seul au bout de quelques minutes voire secondes dès que je l'allumais. J'ai réussi à ce qu'il ne s'éteigne pas (miracle) le temps d'executer RSIT, CCLEANER, MBAM. Par contre je n'ai pas réussi à installer Bitdefender en ligne. Le texte me dit que ce site web n'autorise pas l'installation de l'Activex.
Pour info, cet ordi est utilisé par de jeunes enfants 5 et 9 ans, et nous, les parents ne sommes pas des pros en informatique. En général, c'est mon frère qui vient faire du ménage, mais ça fait un moment qu'il n'est pas venu...
merci de vos conseils pour néophytes !
Cordialement
haude
A voir également:
- Ordi tout pourri de virus !!
- Ordi qui rame - Guide
- Comment reinitialiser un ordi - Guide
- Virus mcafee - Accueil - Piratage
- Ordi scrabble - Télécharger - Jeux vidéo
- Plus de son sur mon ordi - Guide
2 réponses
C'est encore moi, j'avais oublié de mettre le lien des rapports pour RSIT.
J'espère que vous y comprendrez kelke chose, pour moi, c'est du chinois.
MERCI
Haude
http://www.cijoint.fr/cjlink.php?file=cj200909/cij6IgmTVO.txt
http://www.cijoint.fr/cjlink.php?file=cj200909/cijUPhPwMH.txt
Malwarebytes' Anti-Malware 1.41
Version de la base de données: 2819
Windows 5.1.2600 Service Pack 3
18/09/2009 13:49:24
mbam-log-2009-09-18 (13-49-24).txt
Type de recherche: Examen rapide
Eléments examinés: 151508
Temps écoulé: 10 minute(s), 2 second(s)
Processus mémoire infecté(s): 1
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 4
Valeur(s) du Registre infectée(s): 3
Elément(s) de données du Registre infecté(s): 2
Dossier(s) infecté(s): 3
Fichier(s) infecté(s): 10
Processus mémoire infecté(s):
C:\documents and settings\haude beneteau\local settings\application data\sejcb.exe (Adware.Navipromo.H) -> Unloaded process successfully.
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1d4db7d2-6ec9-47a3-bd87-1e41684e07bb} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{1d4db7d2-6ec9-47a3-bd87-1e41684e07bb} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\fcn (Rogue.Residue) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\FunWebProducts (Adware.MyWebSearch) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\sejcb (Adware.Navipromo.H) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow\host-domain-lookup.com (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow\www.host-domain-lookup.com (Malware.Trace) -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
Dossier(s) infecté(s):
C:\Program Files\FunWebProducts (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\FunWebProducts\Installr (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\FunWebProducts\Installr\1.bin (Adware.MyWebSearch) -> Quarantined and deleted successfully.
Fichier(s) infecté(s):
C:\Documents and Settings\haude beneteau\Local Settings\Application Data\sejcb_navps.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\haude beneteau\Local Settings\Application Data\sejcb_nav.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\haude beneteau\Local Settings\Application Data\sejcb.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\haude beneteau\Local Settings\Application Data\sejcb.exe (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Program Files\FunWebProducts\Installr\1.bin\F3EZSETP.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\AutoDetect.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\Program Files\libsb.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\Program Files\QueryDLL.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\Program Files\ReadDeviceInfo.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\Program Files\SyncGet.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
J'espère que vous y comprendrez kelke chose, pour moi, c'est du chinois.
MERCI
Haude
http://www.cijoint.fr/cjlink.php?file=cj200909/cij6IgmTVO.txt
http://www.cijoint.fr/cjlink.php?file=cj200909/cijUPhPwMH.txt
Malwarebytes' Anti-Malware 1.41
Version de la base de données: 2819
Windows 5.1.2600 Service Pack 3
18/09/2009 13:49:24
mbam-log-2009-09-18 (13-49-24).txt
Type de recherche: Examen rapide
Eléments examinés: 151508
Temps écoulé: 10 minute(s), 2 second(s)
Processus mémoire infecté(s): 1
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 4
Valeur(s) du Registre infectée(s): 3
Elément(s) de données du Registre infecté(s): 2
Dossier(s) infecté(s): 3
Fichier(s) infecté(s): 10
Processus mémoire infecté(s):
C:\documents and settings\haude beneteau\local settings\application data\sejcb.exe (Adware.Navipromo.H) -> Unloaded process successfully.
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1d4db7d2-6ec9-47a3-bd87-1e41684e07bb} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{1d4db7d2-6ec9-47a3-bd87-1e41684e07bb} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\fcn (Rogue.Residue) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\FunWebProducts (Adware.MyWebSearch) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\sejcb (Adware.Navipromo.H) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow\host-domain-lookup.com (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow\www.host-domain-lookup.com (Malware.Trace) -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
Dossier(s) infecté(s):
C:\Program Files\FunWebProducts (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\FunWebProducts\Installr (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\FunWebProducts\Installr\1.bin (Adware.MyWebSearch) -> Quarantined and deleted successfully.
Fichier(s) infecté(s):
C:\Documents and Settings\haude beneteau\Local Settings\Application Data\sejcb_navps.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\haude beneteau\Local Settings\Application Data\sejcb_nav.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\haude beneteau\Local Settings\Application Data\sejcb.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\haude beneteau\Local Settings\Application Data\sejcb.exe (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Program Files\FunWebProducts\Installr\1.bin\F3EZSETP.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\AutoDetect.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\Program Files\libsb.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\Program Files\QueryDLL.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\Program Files\ReadDeviceInfo.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\Program Files\SyncGet.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
