Ordinateur infecté

Résolu
streetlight Messages postés 30 Statut Membre -  
 Utilisateur anonyme -
Bonjour,
Hier soir mon ordinateur a attrapé plusieurs virus qui se font passer pour des logiciels antivirus/anti-spyware. J'ai tenté de faire un scan avec AVG il a trouvé 2 fichiers infectés mais meme en les supprimant le probleme n'a pas été réglé. Le centre de sécurité windows me dit maintenant que ma version de avast! antivirus 4.8.1351 est périmée mais j'ai fait la mise a jour hier. Le(s) virus me bloque aussi internet explorer et firefox(je n'est pas essayer d'autres logiciels de navigation). J'ai donc eu besoin de changer d'utilisateur pour venir vous demander de l'aide
Merci!
P.S.: Je fait en ce moment un autre scan avec Avast! et un autre avec Ad-Aware
Configuration: Windows XP Internet Explorer 8.0

12 réponses

  1. ddede67 Messages postés 79 Statut Membre 4
     
    Bonsoir àtous, je laisse
    0
  2. Utilisateur anonyme
     
    Bonsoir

    Peux tu acceder a internet en mode sans echec.

    Dans tous les cas fait ceci:
    Ouvre ce lien et télécharge ZHPDiag :

    https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html

    Une fois le téléchargement achevé, dézippe le fichier obtenu et place ZHPDiag.exe sur ton Bureau.

    Double-clique sur l'icône pour lancer le programme.

    Clique sur Tous pour cocher toutes les cases des options.

    Clique sur la loupe pour lancer l'analyse.

    Laisse l'outil travailler, il peut être assez long.

    Ferme ZHPDiag en fin d'analyse.

    Pour transmettre le rapport clique sur ce lien :

    http://www.cijoint.fr/

    Clique sur Parcourir et cherche le répertoire où est installé ZHPDiag (en général C:\Program Files\ZHPDiag).

    Sélectionne le fichier ZHPDiag.txt.

    Clique sur "Cliquez ici pour déposer le fichier".

    Un lien de cette forme :

    http://www.cijoint.fr/cjlink.php?file=cj200905/cijSKAP5fU.txt

    est ajouté dans la page.

    Copie ce lien dans ta réponse.

    @+
    0
    1. streetlight Messages postés 30 Statut Membre
       
      Est-ce que tu me suggère d'arreter les scans en cours pour faire ce que tu me dis ou alors j'attend qu'ils soient terminés? Et est-ce que je devrais faire cela dans l'utilisateur qui reçoit les pop-ups ou ça n'a aucune importance?
      0
      1. Utilisateur anonyme > streetlight Messages postés 30 Statut Membre
         
        Re

        Quels scans as tu lancé?
        Poste moi le ou les rapport(s)de ce ou ces divers scans.
        Merci.

        Ensuite ;fait ce que je t'ai demandé.

        @+

        0
      2. streetlight Messages postés 30 Statut Membre > Utilisateur anonyme
         
        J'ai lancé le scan d'avast et d'ad-aware. Selon toi qu'est-ce que je devrais faire pour éviter ce genre de virus?(J'ai commencé a voir des problemes sur un site que je visite souvent, je crois qu'il est fiable et je fait attention à ce que je télécharge.
        0
      3. Utilisateur anonyme > streetlight Messages postés 30 Statut Membre
         
        Re

        Commence par faire ce qu'il t'est demandé.S'il te plait .
        Merci.
        0
  3. streetlight Messages postés 30 Statut Membre
     
    Le scan ad-aware est maintenant terminé voila le rapport j'envoi lui de avast dès qu'il est prêt et ensuite je fait ce que tu m'as dit

    Logfile created: 2009-11-28 17:11:14
    Lavasoft Ad-Aware version: 8.1.2
    User performing scan: NORMAND

    *********************** Definitions database information ***********************
    Lavasoft definition file: 149.103
    Genotype definition file version: 2009/11/26 16:51:00

    ******************************** Scan results: *********************************
    Scan profile name: Analyse complète (ID: full)
    Objects scanned: 189243
    Objects detected: 307

    Type Detected
    ==========================
    Processes.......: 0
    Registry entries: 0
    Hostfile entries: 0
    Files...........: 0
    Folders.........: 0
    LSPs............: 0
    Cookies.........: 307
    Browser hijacks.: 0
    MRU objects.....: 0

    Removed items:
    Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
    Description: *7search* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408939 Family ID: 0
    Description: *adserver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408737 Family ID: 0
    Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
    Description: *adtech* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409018 Family ID: 0
    Description: *adserve* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409020 Family ID: 0
    Description: *atdmt* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408910 Family ID: 0
    Description: *adbureau* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409027 Family ID: 0
    Description: *weborama* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408955 Family ID: 0
    Description: *bs.serving-sys* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408902 Family ID: 0
    Description: *serving-sys* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409130 Family ID: 0
    Description: *doubleclick* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408875 Family ID: 0
    Description: *estat* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408873 Family ID: 0
    Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
    Description: *insightexpressai* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409259 Family ID: 0
    Description: *mediaplex* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408991 Family ID: 0
    Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
    Description: *perf.overture* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408828 Family ID: 0
    Description: *overture* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408834 Family ID: 0
    Description: *questionmarket* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408819 Family ID: 0
    Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
    Description: *serving-sys* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409130 Family ID: 0
    Description: *adserver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408737 Family ID: 0
    Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
    Description: *adserve* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409020 Family ID: 0
    Description: *weborama* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408955 Family ID: 0
    Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
    Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
    Description: *247realmedia* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408945 Family ID: 0
    Description: *realmedia* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409139 Family ID: 0
    Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
    Description: *.adtoma* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409297 Family ID: 0
    Description: *doubleclick* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408875 Family ID: 0
    Description: *ad.yieldmanager* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409172 Family ID: 0
    Description: *adbrite* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409218 Family ID: 0
    Description: *adbureau* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409027 Family ID: 0
    Description: *adlegend* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409170 Family ID: 0
    Description: *adopt.euroclick* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409169 Family ID: 0
    Description: *specificclick* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408807 Family ID: 0
    Description: *pointroll* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408826 Family ID: 0
    Description: *ads.pointroll* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408927 Family ID: 0
    Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
    Description: *adserve* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409020 Family ID: 0
    Description: *adserver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408737 Family ID: 0
    Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
    Description: *adtech* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409018 Family ID: 0
    Description: *adserve* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409020 Family ID: 0
    Description: *adserver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408737 Family ID: 0
    Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
    Description: *adserve* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409020 Family ID: 0
    Description: *adserver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408737 Family ID: 0
    Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
    Description: *adserve* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409020 Family ID: 0
    Description: *adserver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408737 Family ID: 0
    Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
    Description: *adserve* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409020 Family ID: 0
    Description: *adserver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408737 Family ID: 0
    Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
    Description: *adserve* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409020 Family ID: 0
    Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
    Description: *adserve* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409020 Family ID: 0
    Description: *adtech* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409018 Family ID: 0
    Description: *advertis* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408918 Family ID: 0
    Description: *advertising* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409017 Family ID: 0
    Description: *advertis* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408918 Family ID: 0
    Description: *advertising* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409017 Family ID: 0
    Description: *adviva* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409016 Family ID: 0
    Description: *tacoda* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409123 Family ID: 0
    Description: *apmebf* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409163 Family ID: 0
    Description: *atdmt* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408910 Family ID: 0
    Description: *adbureau* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409027 Family ID: 0
    Description: *weborama* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408955 Family ID: 0
    Description: *bs.serving-sys* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408902 Family ID: 0
    Description: *serving-sys* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409130 Family ID: 0
    Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
    Description: *casalemedia* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409152 Family ID: 0
    Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
    Description: *specificclick* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408807 Family ID: 0
    Description: *weborama* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408955 Family ID: 0
    Description: *adbureau* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409027 Family ID: 0
    Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
    Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
    Description: *.bridgetrack* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409095 Family ID: 0
    Description: *clickbank* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408890 Family ID: 0
    Description: *doubleclick* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408875 Family ID: 0
    Description: *adrevolver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408932 Family ID: 0
    Description: *media.adrevolver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409144 Family ID: 0
    Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
    Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
    Description: *.hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409072 Family ID: 0
    Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
    Description: *.hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409072 Family ID: 0
    Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
    Description: *.hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409072 Family ID: 0
    Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
    Description: *.hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409072 Family ID: 0
    Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
    Description: *.hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409072 Family ID: 0
    Description: *estat* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408873 Family ID: 0
    Description: *fastclick* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408869 Family ID: 0
    Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
    Description: *advertis* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408918 Family ID: 0
    Description: *advertising* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409017 Family ID: 0
    Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
    Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
    Description: *adbureau* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409027 Family ID: 0
    Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
    Description: *insightexpressai* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409259 Family ID: 0
    Description: *iwon* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408852 Family ID: 0
    Description: *kontera* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409363 Family ID: 0
    Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
    Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
    Description: *webtrends* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 599640 Family ID: 0
    Description: *adrevolver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408932 Family ID: 0
    Description: *media.adrevolver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409144 Family ID: 0
    Description: *adrevolver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408932 Family ID: 0
    Description: *media.adrevolver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409144 Family ID: 0
    Description: *mediaplex* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408991 Family ID: 0
    Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
    Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
    Description: *metriweb* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408990 Family ID: 0
    Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
    Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
    Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
    Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
    Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
    Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
    Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
    Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
    Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
    Description: *247realmedia* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408945 Family ID: 0
    Description: *realmedia* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409139 Family ID: 0
    Description: *overture* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408834 Family ID: 0
    Description: *perf.overture* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408828 Family ID: 0
    Description: *overture* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408834 Family ID: 0
    Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
    Description: *adbureau* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409027 Family ID: 0
    Description: *questionmarket* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408819 Family ID: 0
    Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
    Description: *realmedia* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409139 Family ID: 0
    Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
    Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
    Description: *rotator.adjuggler* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409135 Family ID: 0
    Description: *weborama* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408955 Family ID: 0
    Description: *serving-sys* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409130 Family ID: 0
    Description: *adserver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408737 Family ID: 0
    Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
    Description: *adserve* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409020 Family ID: 0
    Description: *specificclick* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408807 Family ID: 0
    Description: *statcounter* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409185 Family ID: 0
    Description: *statse.webtrends* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408803 Family ID: 0
    Description: *webtrendslive* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408954 Family ID: 0
    Description: *.webtrendslive* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409033 Family ID: 0
    Description: *statse.webtrendslive* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409269 Family ID: 0
    Description: *webtrends* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 599640 Family ID: 0
    Description: *tacoda* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409123 Family ID: 0
    Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
    Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
    Description: *tradedoubler* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408964 Family ID: 0
    Description: *trafficmp* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408787 Family ID: 0
    Description: *adbureau* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409027 Family ID: 0
    Description: *tribalfusion* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408785 Family ID: 0
    Description: *unicast* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409281 Family ID: 0
    Description: *adbureau* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409027 Family ID: 0
    Description: *adbureau* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409027 Family ID: 0
    Description: *weborama* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408955 Family ID: 0
    Description: *webtrends* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 599640 Family ID: 0
    Description: *wunderloop* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 599639 Family ID: 0
    Description: *klo* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408848 Family ID: 0
    Description: *.counter-gratis* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409082 Family ID: 0
    Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
    Description: *iwon* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408852 Family ID: 0
    Description: www.luckynugget* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408758 Family ID: 0
    Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
    Description: *adbureau* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409027 Family ID: 0
    Description: zedo* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408736 Family ID: 0
    Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
    Description: *247realmedia* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408945 Family ID: 0
    Description: *realmedia* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409139 Family ID: 0
    Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
    Description: *ad.yieldmanager* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409172 Family ID: 0
    Description: *adlegend* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409170 Family ID: 0
    Description: *adopt.euroclick* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409169 Family ID: 0
    Description: *.bridgetrack* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409095 Family ID: 0
    Description: *pointroll* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408826 Family ID: 0
    Description: *ads.pointroll* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408927 Family ID: 0
    Description: *adserver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408737 Family ID: 0
    Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
    Description: *adtech* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409018 Family ID: 0
    Description: *adserve* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409020 Family ID: 0
    Description: *adserver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408737 Family ID: 0
    Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
    Description: *adserve* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409020 Family ID: 0
    Description: *adserver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408737 Family ID: 0
    Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
    Description: *adserve* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409020 Family ID: 0
    Description: *adtech* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409018 Family ID: 0
    Description: *advertis* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408918 Family ID: 0
    Description: *advertising* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409017 Family ID: 0
    Description: *adviva* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409016 Family ID: 0
    Description: *tacoda* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409123 Family ID: 0
    Description: *apmebf* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409163 Family ID: 0
    Description: *atdmt* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408910 Family ID: 0
    Description: *weborama* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408955 Family ID: 0
    Description: *adbureau* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409027 Family ID: 0
    Description: *bilbo.counted* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408906 Family ID: 0
    Description: *bravenet* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409013 Family ID: 0
    Description: *bs.serving-sys* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408902 Family ID: 0
    Description: *serving-sys* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409130 Family ID: 0
    Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
    Description: *casalemedia* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409152 Family ID: 0
    Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
    Description: *content.ipro* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409190 Family ID: 0
    Description: *counter.hitslink* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408884 Family ID: 0
    Description: *.hitslink* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409071 Family ID: 0
    Description: *bravenet* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409013 Family ID: 0
    Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
    Description: *coremetrics* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409008 Family ID: 0
    Description: *data.coremetrics* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409220 Family ID: 0
    Description: *dealtime* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409235 Family ID: 0
    Description: *doubleclick* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408875 Family ID: 0
    Description: *omniture* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408835 Family ID: 0
    Description: *.stats.esomniture* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409181 Family ID: 0
    Description: *.ru4* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409055 Family ID: 0
    Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
    Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
    Description: *.hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409072 Family ID: 0
    Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
    Description: *.hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409072 Family ID: 0
    Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
    Description: *.hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409072 Family ID: 0
    Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
    Description: *.hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409072 Family ID: 0
    Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
    Description: *.hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409072 Family ID: 0
    Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
    Description: *.hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409072 Family ID: 0
    Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
    Description: *.hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409072 Family ID: 0
    Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
    Description: *.hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409072 Family ID: 0
    Description: *estat* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408873 Family ID: 0
    Description: *fastclick* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408869 Family ID: 0
    Description: *.comclick* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409086 Family ID: 0
    Description: *estat* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408873 Family ID: 0
    Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
    Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
    Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
    Description: *kelkoo* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408851 Family ID: 0
    Description: *kelkoo* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408851 Family ID: 0
    Description: *weborama* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408955 Family ID: 0
    Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
    Description: *webtrends* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 599640 Family ID: 0
    Description: *webstat* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409228 Family ID: 0
    Description: *adrevolver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408932 Family ID: 0
    Description: *media.adrevolver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409144 Family ID: 0
    Description: *mediaplex* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408991 Family ID: 0
    Description: *bravenet* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409013 Family ID: 0
    Description: *bravenet* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409013 Family ID: 0
    Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
    Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
    Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
    Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
    Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
    Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
    Description: *overture* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408834 Family ID: 0
    Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
    Description: *perf.overture* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408828 Family ID: 0
    Description: *overture* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408834 Family ID: 0
    Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
    Description: *.hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409072 Family ID: 0
    Description: *questionmarket* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408819 Family ID: 0
    Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
    Description: *realmedia* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409139 Family ID: 0
    Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
    Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
    Description: *rotator.adjuggler* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409135 Family ID: 0
    Description: *serving-sys* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409130 Family ID: 0
    Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
    Description: *adserver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408737 Family ID: 0
    Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
    Description: *adserve* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409020 Family ID: 0
    Description: *specificclick* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408807 Family ID: 0
    Description: *statcounter* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409185 Family ID: 0
    Description: *statse.webtrends* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408803 Family ID: 0
    Description: *webtrendslive* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408954 Family ID: 0
    Description: *.webtrendslive* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409033 Family ID: 0
    Description: *statse.webtrendslive* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409269 Family ID: 0
    Description: *webtrends* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 599640 Family ID: 0
    Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
    Description: *tacoda* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409123 Family ID: 0
    Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
    Description: *tradedoubler* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408964 Family ID: 0
    Description: *advertis* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408918 Family ID: 0
    Description: *advertising* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409017 Family ID: 0
    Description: *tribalfusion* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408785 Family ID: 0
    Description: *tripod* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408784 Family ID: 0
    Description: *adbureau* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409027 Family ID: 0
    Description: *adbureau* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409027 Family ID: 0
    Description: *weborama* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408955 Family ID: 0
    Description: *webstat* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409228 Family ID: 0
    Description: *webtrends* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 599640 Family ID: 0
    Description: *webtrends* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 599640 Family ID: 0
    Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
    Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
    Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
    Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0

    Scan and cleaning complete: Finished correctly after 11957 seconds

    *********************************** Settings ***********************************

    Scan profile:
    ID: full, enabled:1, value: Analyse complète
    ID: folderstoscan, enabled:1, value: C:\
    ID: useantivirus, enabled:0, value: true
    ID: sections, enabled:1
    ID: scancriticalareas, enabled:1, value: true
    ID: scanrunningapps, enabled:1, value: true
    ID: scanregistry, enabled:1, value: true
    ID: scanlsp, enabled:1, value: true
    ID: scanads, enabled:1, value: true
    ID: scanhostsfile, enabled:1, value: true
    ID: scanmru, enabled:1, value: true
    ID: scanbrowserhijacks, enabled:1, value: true
    ID: scantrackingcookies, enabled:1, value: true
    ID: closebrowsers, enabled:1, value: false
    ID: filescanningoptions, enabled:1
    ID: archives, enabled:1, value: true
    ID: onlyexecutables, enabled:1, value: false
    ID: skiplargerthan, enabled:1, value: 20480
    ID: scanrootkits, enabled:1, value: true
    ID: rootkitlevel, enabled:1, value: mild, domain: medium,mild,strict
    ID: usespywareheuristics, enabled:1, value: true
    ID: heuristicslevel, enabled:1, value: mild, domain: medium,mild,strict

    Scan global:
    ID: global, enabled:1
    ID: addtocontextmenu, enabled:1, value: true
    ID: playsoundoninfection, enabled:1, value: false
    ID: soundfile, enabled:0, value: *to be filled in automatically*\alert.wav

    Scheduled scan settings:
    <Empty>

    Update settings:
    ID: updates, enabled:1
    ID: launchthreatworksafterscan, enabled:1, value: off, domain: normal,off,silently
    ID: deffiles, enabled:1, value: downloadandinstall, domain: dontcheck,downloadandinstall
    ID: softwareupdates, enabled:1, value: downloadandinstall, domain: dontcheck,downloadandinstall
    ID: licenseandinfo, enabled:1, value: downloadandinstall, domain: dontcheck,downloadandinstall
    ID: schedules, enabled:1, value: true
    ID: updatedaily1, enabled:0, value: Daily 1
    ID: time, enabled:0, value: Sat Nov 28 17:08:00 2009
    ID: frequency, enabled:0, value: daily, domain: daily,monthly,once,systemstart,weekly
    ID: weekdays, enabled:0
    ID: monday, enabled:0, value: false
    ID: tuesday, enabled:0, value: false
    ID: wednesday, enabled:0, value: false
    ID: thursday, enabled:0, value: false
    ID: friday, enabled:0, value: false
    ID: saturday, enabled:0, value: false
    ID: sunday, enabled:0, value: false
    ID: monthly, enabled:0, value: 1, minvalue: 1, maxvalue: 31
    ID: scanprofile, enabled:0, value:
    ID: auto_deal_with_infections, enabled:0, value: false
    ID: updatedaily2, enabled:0, value: Daily 2
    ID: time, enabled:0, value: Sat Nov 28 23:08:00 2009
    ID: frequency, enabled:0, value: daily, domain: daily,monthly,once,systemstart,weekly
    ID: weekdays, enabled:0
    ID: monday, enabled:0, value: false
    ID: tuesday, enabled:0, value: false
    ID: wednesday, enabled:0, value: false
    ID: thursday, enabled:0, value: false
    ID: friday, enabled:0, value: false
    ID: saturday, enabled:0, value: false
    ID: sunday, enabled:0, value: false
    ID: monthly, enabled:0, value: 1, minvalue: 1, maxvalue: 31
    ID: scanprofile, enabled:0, value:
    ID: auto_deal_with_infections, enabled:0, value: false
    ID: updatedaily3, enabled:0, value: Daily 3
    ID: time, enabled:0, value: Sat Nov 28 05:08:00 2009
    ID: frequency, enabled:0, value: daily, domain: daily,monthly,once,systemstart,weekly
    ID: weekdays, enabled:0
    ID: monday, enabled:0, value: false
    ID: tuesday, enabled:0, value: false
    ID: wednesday, enabled:0, value: false
    ID: thursday, enabled:0, value: false
    ID: friday, enabled:0, value: false
    ID: saturday, enabled:0, value: false
    ID: sunday, enabled:0, value: false
    ID: monthly, enabled:0, value: 1, minvalue: 1, maxvalue: 31
    ID: scanprofile, enabled:0, value:
    ID: auto_deal_with_infections, enabled:0, value: false
    ID: updatedaily4, enabled:0, value: Daily 4
    ID: time, enabled:0, value: Sat Nov 28 11:08:00 2009
    ID: frequency, enabled:0, value: daily, domain: daily,monthly,once,systemstart,weekly
    ID: weekdays, enabled:0
    ID: monday, enabled:0, value: false
    ID: tuesday, enabled:0, value: false
    ID: wednesday, enabled:0, value: false
    ID: thursday, enabled:0, value: false
    ID: friday, enabled:0, value: false
    ID: saturday, enabled:0, value: false
    ID: sunday, enabled:0, value: false
    ID: monthly, enabled:0, value: 1, minvalue: 1, maxvalue: 31
    ID: scanprofile, enabled:0, value:
    ID: auto_deal_with_infections, enabled:0, value: false
    ID: updateweekly1, enabled:1, value: Weekly
    ID: time, enabled:1, value: Sat Nov 28 17:08:00 2009
    ID: frequency, enabled:1, value: weekly, domain: daily,monthly,once,systemstart,weekly
    ID: weekdays, enabled:1
    ID: monday, enabled:1, value: false
    ID: tuesday, enabled:1, value: true
    ID: wednesday, enabled:1, value: false
    ID: thursday, enabled:1, value: false
    ID: friday, enabled:1, value: false
    ID: saturday, enabled:1, value: true
    ID: sunday, enabled:1, value: false
    ID: monthly, enabled:1, value: 1, minvalue: 1, maxvalue: 31
    ID: scanprofile, enabled:1, value:
    ID: auto_deal_with_infections, enabled:1, value: false

    Appearance settings:
    ID: appearance, enabled:1
    ID: skin, enabled:1, value: default.egl, reglocation: HKEY_LOCAL_MACHINE\SOFTWARE\Lavasoft\Ad-Aware\Resource
    ID: showtrayicon, enabled:1, value: true
    ID: autoentertainmentmode, enabled:0, value: true
    ID: guimode, enabled:1, value: mode_simple, domain: mode_advanced,mode_simple
    ID: language, enabled:1, value: fr, reglocation: HKEY_LOCAL_MACHINE\SOFTWARE\Lavasoft\Ad-Aware\Language

    Realtime protection settings:
    ID: realtime, enabled:1
    ID: modules, enabled:1
    ID: processprotection, enabled:1, value: true
    ID: registryprotection, enabled:0, value: true
    ID: networkprotection, enabled:0, value: true
    ID: layers, enabled:1
    ID: useantivirus, enabled:0, value: true
    ID: usespywareheuristics, enabled:0, value: true
    ID: heuristicslevel, enabled:0, value: mild, domain: medium,mild,strict
    ID: infomessages, enabled:1, value: onlyimportant, domain: display,dontnotify,onlyimportant

    ****************************** System information ******************************
    Computer name: WADE3
    Processor name: Intel(R) Pentium(R) 4 CPU 3.00GHz
    Processor identifier: x86 Family 15 Model 4 Stepping 1
    Processor speed: ~2992MHZ
    Raw info: processorarchitecture 0, processortype 586, processorlevel 15, processor revision 1025, number of processors 2, processor features: [MMX,SSE,SSE2]
    Physical memory available: 280571904 bytes
    Physical memory total: 1071722496 bytes
    Virtual memory available: 1978249216 bytes
    Virtual memory total: 2147352576 bytes
    Memory load: 73%
    Microsoft Windows XP Professional Service Pack 3 (build 2600)
    Windows startup mode:

    Running processes:
    PID: 700 name: \SystemRoot\System32\smss.exe owner: SYSTEM domain: AUTORITE NT
    PID: 748 name: \??\C:\WINDOWS\system32\csrss.exe owner: SYSTEM domain: AUTORITE NT
    PID: 784 name: \??\C:\WINDOWS\SYSTEM32\winlogon.exe owner: SYSTEM domain: AUTORITE NT
    PID: 828 name: C:\WINDOWS\system32\services.exe owner: SYSTEM domain: AUTORITE NT
    PID: 840 name: C:\WINDOWS\system32\lsass.exe owner: SYSTEM domain: AUTORITE NT
    PID: 1040 name: C:\WINDOWS\system32\Ati2evxx.exe owner: SYSTEM domain: AUTORITE NT
    PID: 1060 name: C:\WINDOWS\system32\svchost.exe owner: SYSTEM domain: AUTORITE NT
    PID: 1116 name: C:\WINDOWS\system32\svchost.exe owner: SERVICE RÉSEAU domain: AUTORITE NT
    PID: 1236 name: C:\WINDOWS\System32\svchost.exe owner: SYSTEM domain: AUTORITE NT
    PID: 1276 name: C:\WINDOWS\system32\svchost.exe owner: SYSTEM domain: AUTORITE NT
    PID: 1444 name: C:\WINDOWS\system32\svchost.exe owner: SERVICE RÉSEAU domain: AUTORITE NT
    PID: 1592 name: C:\WINDOWS\system32\svchost.exe owner: SERVICE LOCAL domain: AUTORITE NT
    PID: 1640 name: C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe owner: SYSTEM domain: AUTORITE NT
    PID: 1688 name: C:\Program Files\Alwil Software\Avast4\ashServ.exe owner: SYSTEM domain: AUTORITE NT
    PID: 2040 name: C:\WINDOWS\system32\spoolsv.exe owner: SYSTEM domain: AUTORITE NT
    PID: 736 name: C:\WINDOWS\system32\svchost.exe owner: SERVICE LOCAL domain: AUTORITE NT
    PID: 912 name: C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe owner: SYSTEM domain: AUTORITE NT
    PID: 1172 name: C:\Program Files\Bonjour\mDNSResponder.exe owner: SYSTEM domain: AUTORITE NT
    PID: 1308 name: C:\Program Files\Java\jre6\bin\jqs.exe owner: SYSTEM domain: AUTORITE NT
    PID: 1560 name: C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE owner: SYSTEM domain: AUTORITE NT
    PID: 1740 name: C:\WINDOWS\system32\PnkBstrA.exe owner: SYSTEM domain: AUTORITE NT
    PID: 1808 name: C:\WINDOWS\system32\svchost.exe owner: SYSTEM domain: AUTORITE NT
    PID: 448 name: C:\WINDOWS\wanmpsvc.exe owner: SYSTEM domain: AUTORITE NT
    PID: 2120 name: C:\Program Files\Canon\CAL\CALMAIN.exe owner: SYSTEM domain: AUTORITE NT
    PID: 2408 name: C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe owner: SYSTEM domain: AUTORITE NT
    PID: 2432 name: C:\Program Files\Alwil Software\Avast4\ashWebSv.exe owner: SYSTEM domain: AUTORITE NT
    PID: 2632 name: C:\WINDOWS\System32\alg.exe owner: SERVICE LOCAL domain: AUTORITE NT
    PID: 3072 name: C:\Program Files\iPod\bin\iPodService.exe owner: SYSTEM domain: AUTORITE NT
    PID: 4564 name: C:\WINDOWS\SYSTEM32\rundll32.exe owner: SYSTEM domain: AUTORITE NT
    PID: 7484 name: \??\C:\WINDOWS\system32\csrss.exe owner: SYSTEM domain: AUTORITE NT
    PID: 9784 name: \??\C:\WINDOWS\SYSTEM32\winlogon.exe owner: SYSTEM domain: AUTORITE NT
    PID: 3384 name: C:\WINDOWS\SYSTEM32\Ati2evxx.exe owner: SYSTEM domain: AUTORITE NT
    PID: 4196 name: C:\WINDOWS\system32\wscntfy.exe owner: NORMAND domain: WADE3
    PID: 7332 name: C:\WINDOWS\Explorer.EXE owner: NORMAND domain: WADE3
    PID: 6252 name: C:\WINDOWS\stsystra.exe owner: NORMAND domain: WADE3
    PID: 9252 name: C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe owner: NORMAND domain: WADE3
    PID: 9396 name: C:\Program Files\Dell\Media Experience\DMXLauncher.exe owner: NORMAND domain: WADE3
    PID: 6704 name: C:\Program Files\Dell Photo AIO Printer 922\dlbtbmgr.exe owner: NORMAND domain: WADE3
    PID: 2824 name: C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe owner: NORMAND domain: WADE3
    PID: 10140 name: C:\WINDOWS\system32\dla\tfswctrl.exe owner: NORMAND domain: WADE3
    PID: 4900 name: C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe owner: NORMAND domain: WADE3
    PID: 7000 name: C:\Program Files\PowerISO\PWRISOVM.EXE owner: NORMAND domain: WADE3
    PID: 8444 name: C:\Program Files\Microsoft IntelliPoint\ipoint.exe owner: NORMAND domain: WADE3
    PID: 7400 name: C:\Program Files\iTunes\iTunesHelper.exe owner: NORMAND domain: WADE3
    PID: 8512 name: C:\WINDOWS\system32\ctfmon.exe owner: NORMAND domain: WADE3
    PID: 808 name: C:\Program Files\Dell Photo AIO Printer 922\dlbtbmon.exe owner: NORMAND domain: WADE3
    PID: 5600 name: C:\Program Files\Windows Live\Messenger\msnmsgr.exe owner: NORMAND domain: WADE3
    PID: 7280 name: C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe owner: NORMAND domain: WADE3
    PID: 6592 name: C:\Program Files\Fichiers communs\InstallShield\UpdateService\isuspm.exe owner: NORMAND domain: WADE3
    PID: 8292 name: C:\Program Files\WiFiConnector\NintendoWFCReg.exe owner: NORMAND domain: WADE3
    PID: 6980 name: C:\Program Files\Internet Explorer\iexplore.exe owner: NORMAND domain: WADE3
    PID: 8312 name: C:\Program Files\Internet Explorer\iexplore.exe owner: NORMAND domain: WADE3
    PID: 1180 name: C:\Program Files\Alwil Software\Avast4\ashSimpl.exe owner: NORMAND domain: WADE3
    PID: 3016 name: C:\WINDOWS\system32\msiexec.exe owner: SYSTEM domain: AUTORITE NT
    PID: 3980 name: C:\WINDOWS\system32\wbem\wmiprvse.exe owner: SYSTEM domain: AUTORITE NT
    PID: 4896 name: C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe owner: SYSTEM domain: AUTORITE NT
    PID: 9012 name: C:\WINDOWS\system32\wbem\unsecapp.exe owner: SYSTEM domain: AUTORITE NT
    PID: 8932 name: C:\Program Files\Lavasoft\Ad-Aware\Ad-Aware.exe owner: NORMAND domain: WADE3
    PID: 9780 name: C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe owner: NORMAND domain: WADE3

    Startup items:
    Name: {438755C2-A8BA-11D1-B96B-00A0C90312E1}
    imagepath: Pré-chargeur Browseui
    Name: {8C7461EF-2B13-11d2-BE35-3078302C2030}
    imagepath: Démon de cache des catégories de composant
    Name: CTFMON.EXE
    imagepath: C:\WINDOWS\system32\CTFMON.EXE
    Name: swg
    imagepath: C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    Name: PostBootReminder
    imagepath: {7849596a-48ea-486e-8937-a2a3009f31a9}
    Name: CDBurn
    imagepath: {fbeb8a05-beee-4442-804e-409d6c4515e9}
    Name: WebCheck
    imagepath: {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
    Name: SysTray
    imagepath: {35CEC8A3-2BE6-11D2-8773-92E220524153}
    Name: WPDShServiceObj
    imagepath: {AAA288BA-9A4C-45B0-95D7-94D524869DB5}
    Name: SigmatelSysTrayApp
    imagepath: stsystra.exe
    Name: ATIPTA
    imagepath: C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
    Name: IntelMeM
    imagepath: C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe
    Name: DVDLauncher
    imagepath: "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
    Name: ISUSScheduler
    imagepath: "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
    Name: DMXLauncher
    imagepath: C:\Program Files\Dell\Media Experience\DMXLauncher.exe
    Name: Dell Photo AIO Printer 922
    imagepath: "C:\Program Files\Dell Photo AIO Printer 922\dlbtbmgr.exe"
    Name:
    location: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Compagnon d'AOL.lnk
    imagepath: C:\Program Files\AOL Companion\companion.exe
    Name:
    imagepath: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\desktop.ini
    Name:
    location: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Lancer l'utilitaire d'enregistrement.lnk
    imagepath: C:\Program Files\WiFiConnector\NintendoWFCReg.exe
    Name:
    location: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Mini-icône d'AOL 8.0.lnk
    imagepath: C:\Program Files\AOL 8.0\aoltray.exe
    Name:
    imagepath: C:\Documents and Settings\Default User\Menu Démarrer\Programmes\Démarrage\desktop.ini

    Bootexecute items:
    Name:
    imagepath: autocheck autochk *
    Name:
    imagepath: PFDNNT C:\WINDOWS\SYSTEM32\F3PSSAVR.SCR
    Name:
    imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\1.BIN\F3SCRCTR.DLL
    Name:
    imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\1.BIN\F3CJPEG.DLL
    Name:
    imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\1.BIN\F3HISTSW.DLL
    Name:
    imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\1.BIN\F3HTTPCT.DLL
    Name:
    imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\1.BIN\F3PSSAVR.SCR
    Name:
    imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\1.BIN\F3REPROX.DLL
    Name:
    imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\1.BIN\F3RESTUB.DLL
    Name:
    imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\1.BIN\F3WPHOOK.DLL
    Name:
    imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\1.BIN\M3HTML.DLL
    Name:
    imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\1.BIN\M3IDLE.DLL
    Name:
    imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\1.BIN\M3SKPLAY.EXE
    Name:
    imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\1.BIN\MWSOEPLG.DLL
    Name:
    imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\1.BIN\MWSOESTB.DLL
    Name:
    imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\1.BIN\NPMYWEBS.DLL
    Name:
    imagepath: PFDNNT C:\Program Files\MyWebSearch\bar\1.bin
    Name:
    imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\CACHE\015641AD.BIN
    Name:
    imagepath: PFDNNT C:\Program Files\MyWebSearch\bar\Cache
    Name:
    imagepath: PFDNNT C:\Program Files\MyWebSearch\bar\Game
    Name:
    imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\SETTINGS\PREVCFG2.HTM
    Name:
    imagepath: PFDNNT C:\Program Files\MyWebSearch\bar\Settings
    Name:
    imagepath: PFDNNT C:\Program Files\MyWebSearch

    Running services:
    Name: ALG
    displayname: Service de la passerelle de la couche Application
    Name: Apple Mobile Device
    displayname: Apple Mobile Device
    Name: aswUpdSv
    displayname: avast! iAVS4 Control Service
    Name: Ati HotKey Poller
    displayname: Ati HotKey Poller
    Name: AudioSrv
    displayname: Audio Windows
    Name: avast! Antivirus
    displayname: avast! Antivirus
    Name: avast! Mail Scanner
    displayname: avast! Mail Scanner
    Name: avast! Web Scanner
    displayname: avast! Web Scanner
    Name: Bonjour Service
    displayname: Service Bonjour
    Name: CCALib8
    displayname: Canon Camera Access Library 8
    Name: CryptSvc
    displayname: Services de cryptographie
    Name: DcomLaunch
    displayname: Lanceur de processus serveur DCOM
    Name: Dhcp
    displayname: Client DHCP
    Name: Dnscache
    displayname: Client DNS
    Name: ERSvc
    displayname: Service de rapport d'erreurs
    Name: Eventlog
    displayname: Journal des événements
    Name: EventSystem
    displayname: Système d'événements de COM+
    Name: FastUserSwitchingCompatibility
    displayname: Compatibilité avec le Changement rapide d'utilisateur
    Name: helpsvc
    displayname: Aide et support
    Name: HidServ
    displayname: HID Input Service
    Name: iPod Service
    displayname: Service de l’iPod
    Name: JavaQuickStarterService
    displayname: Java Quick Starter
    Name: lanmanserver
    displayname: Serveur
    Name: lanmanworkstation
    displayname: Station de travail
    Name: LmHosts
    displayname: Assistance TCP/IP NetBIOS
    Name: MDM
    displayname: Machine Debug Manager
    Name: MSIServer
    displayname: Windows Installer
    Name: Netman
    displayname: Connexions réseau
    Name: Nla
    displayname: NLA (Network Location Awareness)
    Name: PlugPlay
    displayname: Plug-and-Play
    Name: PnkBstrA
    displayname: PnkBstrA
    Name: PolicyAgent
    displayname: Services IPSEC
    Name: ProtectedStorage
    displayname: Emplacement protégé
    Name: RasMan
    displayname: Gestionnaire de connexions d'accès distant
    Name: RpcSs
    displayname: Appel de procédure distante (RPC)
    Name: SamSs
    displayname: Gestionnaire de comptes de sécurité
    Name: Schedule
    displayname: Planificateur de tâches
    Name: seclogon
    displayname: Connexion secondaire
    Name: SENS
    displayname: Notification d'événement système
    Name: SharedAccess
    displayname: Pare-feu Windows / Partage de connexion Internet
    Name: ShellHWDetection
    displayname: Détection matériel noyau
    Name: Spooler
    displayname: Spouleur d'impression
    Name: srservice
    displayname: Service de restauration système
    Name: SSDPSRV
    displayname: Service de découvertes SSDP
    Name: stisvc
    displayname: Acquisition d'image Windows (WIA)
    Name: TapiSrv
    displayname: Téléphonie
    Name: TermService
    displayname: Services Terminal Server
    Name: Themes
    displayname: Thèmes
    Name: TrkWks
    displayname: Client de suivi de lien distribué
    Name: upnphost
    displayname: Hôte de périphérique universel Plug-and-Play
    Name: w32time
    displayname: Windows Time
    Name: WANMiniportService
    displayname: WAN Miniport (ATW) Service
    Name: WebClient
    displayname: WebClient
    Name: winmgmt
    displayname: Infrastructure de gestion Windows
    Name: wscsvc
    displayname: Centre de sécurité
    Name: wuauserv
    displayname: Mises à jour automatiques
    Name: WudfSvc
    displayname: Windows Driver Foundation - User-mode Driver Framework
    Name: WZCSVC
    displayname: Configuration automatique sans fil
    Name: Lavasoft Ad-Aware Service
    displayname: Lavasoft Ad-Aware Service
    0
  4. streetlight Messages postés 30 Statut Membre
     
    ok j'ai fait ce que tu m'as demandé voici le lien:
    http://www.cijoint.fr/cjlink.php?file=cj200911/cijIn5eSou.txt
    0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. caillouditcouocu Messages postés 592 Statut Membre 59
     
    Il ne faut jamais avoir deux antivirus d'installer en meme temps car ils créent des conflits, car j'ai cru voir que tu avais avast et AVG.
    0
  7. streetlight Messages postés 30 Statut Membre
     
    Ah désolé j'ai écris AVG dans mon premier message mais je voulais dire avast! c'est mon seul antivirus.
    0
    1. Utilisateur anonyme
       
      Bonjour

      Télécharge combofix : http://download.bleepingcomputer.com/sUBs/ComboFix.exe
      ->Renomme le pour l’enregistrer sur ton bureau en asdehi (tout simplement pour que l’infection ne le contre pas)
      -> Double clique combofix.exe.
      -> Tape sur la touche 1 (Yes) pour démarrer le scan.
      -> Lorsque le scan sera complété, un rapport apparaîtra. Copie/colle ce rapport dans ta prochaine réponse.

      NOTE : Le rapport se trouve également ici : C:\Combofix.txt

      Avant d'utiliser ComboFix :

      -> Déconnecte toi d'Internet et referme les fenêtres de tous les programmes en cours.

      -> Désactive provisoirement et seulement le temps de l'utilisation de ComboFix, la protection en temps réel de ton Antivirus et de tes Antispywares, qui peuvent gêner fortement la procédure de recherche et de nettoyage de l'outil.

      Une fois fait, sur ton bureau double-clic sur Combofix.exe.

      - Répond oui au message d'avertissement, pour que le programme commence à procéder à l'analyse du pc.

      - Attention Pendant la durée de cette étape, ne te sert pas du pc et n'ouvre aucun programme. Risque de figer l'ordinateur

      - En fin de scan il est possible que ComboFix ait besoin de redémarrer le pc pour finaliser la désinfection\recherche, laisses-le faire.

      - Un rapport s'ouvrira ensuite dans le bloc notes, ce fichier rapport Combofix.txt, est automatiquement sauvegardé et rangé à C:\Combofix.txt)

      -> Réactive la protection en temps réel de ton Antivirus et de tes Antispywares, avant de te reconnecter à internet.

      -> Reviens sur le forum, et copie et colle la totalité du contenu de C:\Combofix.txt dans ton prochain message.

      /!\ Ne touche à rien tant que le scan n'est pas terminé. /!\ : risque de figer l'ordinateur (plantage complet)


      ::Si combofix détecte quelque chose et de demande a redémarrer tu acceptes

      @+
      0
      1. streetlight Messages postés 30 Statut Membre > Utilisateur anonyme
         
        Voici le scan de combofix




        ComboFix 09-11-28.04 - NORMAND 2009-11-29 11:56.1.2 - x86
        Microsoft Windows XP Édition familiale 5.1.2600.3.1252.33.1036.18.1022.468 [GMT -5:00]
        Lancé depuis: c:\documents and settings\NORMAND\Bureau\asdehi.exe
        AV: avast! antivirus 4.8.1368 [VPS 091129-0] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}

        AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !!
        .

        (((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
        .

        c:\documents and settings\MARC-ANDRÉ\Local Settings\Application Data\tphphl
        c:\documents and settings\MARC-ANDRÉ\Local Settings\Application Data\tphphl\jeebsysguard.exe
        c:\documents and settings\MARC-ANDR\Mes documents\ZbThumbnail.info
        C:\install.exe
        c:\program files\autorun.inf
        c:\program files\Mozilla Firefox\plugins\npclntax.dll
        c:\windows\system32\win.ini
        c:\windows\Tasks\utqbgqlk.job

        .
        ((((((((((((((((((((((((((((( Fichiers créés du 2009-10-28 au 2009-11-29 ))))))))))))))))))))))))))))))))))))
        .

        2009-11-29 16:53 . 2009-11-29 16:53 -------- d-sh--w- c:\windows\system32\config\systemprofile\IETldCache
        2009-11-29 05:41 . 2009-11-29 06:12 -------- d-----w- c:\program files\ZHPDiag
        2009-11-29 01:34 . 2009-11-28 22:08 15880 ----a-w- c:\windows\system32\lsdelete.exe
        2009-11-28 22:07 . 2009-11-28 22:07 5908024 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\Resources.dll
        2009-11-28 22:07 . 2009-11-28 22:07 87496 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\PrivacyClean.dll
        2009-11-28 22:07 . 2009-11-28 22:07 327000 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\RPAPI.dll
        2009-11-28 22:07 . 2009-11-28 22:07 933120 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\CEAPI.dll
        2009-11-28 22:07 . 2009-11-28 22:07 641632 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\AutoLaunch.exe
        2009-11-28 22:07 . 2009-11-28 22:07 816272 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\Ad-AwareCommand.exe
        2009-11-28 22:07 . 2009-11-28 22:07 822904 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\Ad-AwareAdmin.exe
        2009-11-28 22:07 . 2009-11-28 22:07 1638640 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\Ad-Aware.exe
        2009-11-28 22:07 . 2009-11-28 22:07 788880 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\AAWTray.exe
        2009-11-28 22:07 . 2009-11-28 22:07 1184912 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\AAWService.exe
        2009-11-28 22:06 . 2009-11-28 22:06 -------- dc-h--w- c:\documents and settings\All Users\Application Data\{CFBD8779-FAAB-4357-84F2-1EC8619FADA6}
        2009-11-28 22:06 . 2009-10-03 08:15 2924848 -c--a-w- c:\documents and settings\All Users\Application Data\{CFBD8779-FAAB-4357-84F2-1EC8619FADA6}\Ad-AwareInstallation.exe
        2009-11-28 22:05 . 2009-11-28 22:08 -------- d-----w- c:\documents and settings\All Users\Application Data\Lavasoft
        2009-11-28 22:05 . 2009-11-28 22:05 -------- d-----w- c:\program files\Lavasoft
        2009-11-28 05:34 . 2009-11-28 05:34 -------- d-sh--w- c:\documents and settings\LocalService\IETldCache
        2009-11-27 21:33 . 2009-11-27 21:33 31432 ---ha-w- c:\windows\system32\mlfcache.dat
        2009-11-22 15:58 . 2009-11-29 00:54 -------- d-----w- c:\documents and settings\NORMAND\Tracing
        2009-11-22 01:38 . 2009-09-04 22:29 453456 ----a-w- c:\windows\system32\d3dx10_42.dll
        2009-11-22 01:38 . 2009-09-04 22:29 1892184 ----a-w- c:\windows\system32\D3DX9_42.dll
        2009-11-22 01:37 . 2009-11-22 01:38 -------- d-----w- c:\program files\Microsoft Games for Windows - LIVE
        2009-11-22 00:54 . 2009-11-22 00:54 -------- d-----w- c:\windows\Logs
        2009-11-22 00:53 . 2009-11-22 00:53 -------- d-----w- c:\windows\system32\xlive
        2009-11-12 21:54 . 2009-11-12 21:56 -------- d-----w- c:\documents and settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
        2009-11-12 21:50 . 2009-11-12 21:50 -------- d-----w- c:\program files\Bonjour
        2009-11-12 21:43 . 2009-08-29 00:42 2065696 ----a-w- c:\windows\system32\usbaaplrc.dll
        2009-11-12 21:40 . 2009-11-12 21:40 79144 ----a-w- c:\documents and settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 9.0.2.25\SetupAdmin.exe
        2009-11-10 11:17 . 2009-11-10 11:17 79488 ----a-w- c:\documents and settings\RITA\Application Data\Sun\Java\jre1.6.0_17\gtapi.dll
        2009-11-08 14:46 . 2009-11-24 19:13 -------- d-----w- c:\documents and settings\RITA\Tracing
        2009-11-06 15:59 . 2009-11-06 15:59 15406728 ----a-w- c:\windows\system32\xlive.dll
        2009-11-06 15:59 . 2009-11-06 15:59 13642888 ----a-w- c:\windows\system32\xlivefnt.dll
        2009-11-06 02:14 . 2009-11-06 02:14 41872 ----a-w- c:\windows\system32\xfcodec.dll
        2009-11-06 00:24 . 2009-11-06 00:27 -------- d-----w- c:\program files\Microsoft
        2009-11-06 00:24 . 2009-11-06 00:24 -------- d-----w- c:\program files\Windows Live SkyDrive
        2009-11-06 00:20 . 2009-11-06 00:20 -------- d-----w- c:\program files\Fichiers communs\Windows Live
        2009-11-02 23:05 . 2009-11-02 23:05 167064 ----a-w- c:\windows\system32\xliveinstall.dll
        2009-11-02 23:05 . 2009-11-02 23:05 71832 ----a-w- c:\windows\system32\xliveinstallhost.exe

        .
        (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
        .
        2009-11-28 22:11 . 2006-04-19 22:11 44768 ----a-w- c:\documents and settings\NORMAND\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
        2009-11-28 01:46 . 2006-07-16 22:31 -------- d-----w- c:\program files\Warcraft III
        2009-11-27 21:33 . 2005-08-31 14:59 -------- d-----w- c:\program files\Mp3
        2009-11-26 03:13 . 2009-09-30 23:17 -------- d-----w- c:\program files\Incomplete
        2009-11-25 19:46 . 2008-10-23 22:21 -------- d-----w- c:\program files\DNA
        2009-11-25 02:39 . 2005-09-08 23:52 -------- d-----w- c:\program files\Dl_cats
        2009-11-24 23:54 . 2007-03-06 15:28 1280480 ----a-w- c:\windows\system32\aswBoot.exe
        2009-11-24 23:51 . 2007-03-06 15:28 93424 ----a-w- c:\windows\system32\drivers\aswmon.sys
        2009-11-24 23:50 . 2007-03-06 15:28 94160 ----a-w- c:\windows\system32\drivers\aswmon2.sys
        2009-11-24 23:50 . 2008-06-09 19:16 114768 ----a-w- c:\windows\system32\drivers\aswSP.sys
        2009-11-24 23:50 . 2008-06-09 19:16 20560 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
        2009-11-24 23:49 . 2007-03-06 15:28 48560 ----a-w- c:\windows\system32\drivers\aswTdi.sys
        2009-11-24 23:48 . 2007-03-06 15:28 23120 ----a-w- c:\windows\system32\drivers\aswRdr.sys
        2009-11-24 23:47 . 2007-03-06 15:28 27408 ----a-w- c:\windows\system32\drivers\aavmker4.sys
        2009-11-24 23:47 . 2007-03-06 15:28 97480 ----a-w- c:\windows\system32\AVASTSS.scr
        2009-11-22 00:55 . 2009-11-22 00:55 -------- d-----w- c:\program files\Bethesda Softworks
        2009-11-12 21:56 . 2008-12-26 05:42 -------- d-----w- c:\program files\iTunes
        2009-11-12 21:55 . 2008-12-26 05:42 -------- d-----w- c:\program files\iPod
        2009-11-12 21:49 . 2006-03-28 00:53 -------- d-----w- c:\program files\QuickTime
        2009-11-12 21:45 . 2008-12-26 05:38 -------- d-----w- c:\program files\Fichiers communs\Apple
        2009-11-06 00:24 . 2008-03-08 15:56 -------- d-----w- c:\program files\Windows Live
        2009-11-01 23:38 . 2004-08-20 15:24 86274 ----a-w- c:\windows\system32\perfc00C.dat
        2009-11-01 23:38 . 2004-08-20 15:24 514630 ----a-w- c:\windows\system32\perfh00C.dat
        2009-10-31 20:12 . 2007-06-12 00:39 -------- d-----w- c:\program files\SystemRequirementsLab
        2009-09-23 12:55 . 2009-11-28 22:08 64288 ----a-w- c:\windows\system32\drivers\Lbd.sys
        2009-09-11 14:18 . 2004-08-20 15:23 136192 ----a-w- c:\windows\system32\msv1_0.dll
        2009-09-04 21:04 . 2004-08-20 15:23 58880 ----a-w- c:\windows\system32\msasn1.dll
        2009-05-10 20:30 . 2009-05-10 20:14 789505503 ----a-w- c:\program files\CombatArmsSetupV22.exe
        2006-10-25 19:17 . 2006-11-01 20:20 380928 ----a-w- c:\program files\server.dll
        2006-10-25 19:17 . 2006-11-01 20:20 1462 ----a-w- c:\program files\server.cfg
        2006-10-25 19:17 . 2006-11-01 20:18 528384 ----a-w- c:\program files\AutoRunGUI.dll
        2006-10-25 19:17 . 2006-11-01 20:18 258 ----a-w- c:\program files\dat.bin
        2006-10-25 19:17 . 2006-11-01 20:18 193 ----a-w- c:\program files\common_filelist.txt
        2006-10-25 19:17 . 2006-11-01 20:18 720896 ----a-w- c:\program files\EAInstall.dll
        2006-10-25 19:17 . 2006-11-01 20:18 499712 ----a-w- c:\program files\msvcp71.dll
        2006-10-25 19:17 . 2006-11-01 20:18 348160 ----a-w- c:\program files\msvcr71.dll
        2006-10-25 19:17 . 2006-11-01 20:18 625035295 ----a-w- c:\program files\0compressed.zip
        2006-04-30 23:07 . 2006-04-30 23:06 15557928 ----a-w- c:\program files\DivXPlay.exe
        2006-06-08 20:41 . 2005-10-31 00:30 56 --sh--r- c:\windows\system32\5E63218C3C.sys
        2006-06-08 20:41 . 2006-06-08 20:41 848 --sha-w- c:\windows\system32\KGyGaAvL.sys
        .

        ((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
        .
        .
        *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
        REGEDIT4

        [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
        "msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856]

        [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
        "ATIPTA"="c:\program files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2005-04-15 344064]
        "IntelMeM"="c:\program files\Intel\Modem Event Monitor\IntelMEM.exe" [2003-09-04 221184]
        "DVDLauncher"="c:\program files\CyberLink\PowerDVD\DVDLauncher.exe" [2005-02-23 53248]
        "ISUSScheduler"="c:\program files\Fichiers communs\InstallShield\UpdateService\issch.exe" [2007-08-28 73728]
        "DMXLauncher"="c:\program files\Dell\Media Experience\DMXLauncher.exe" [2005-01-27 86016]
        "Dell Photo AIO Printer 922"="c:\program files\Dell Photo AIO Printer 922\dlbtbmgr.exe" [2004-11-10 290816]
        "DLBTCATS"="c:\windows\System32\spool\DRIVERS\W32X86\3\DLBTtime.dll" [2004-11-09 69632]
        "Xfire Music"="c:\program files\Jeux\Xfire\xfiremusic.exe" [2006-11-21 253650]
        "avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-11-24 81000]
        "dla"="c:\windows\system32\dla\tfswctrl.exe" [2005-05-31 122941]
        "TkBellExe"="c:\program files\Fichiers communs\Real\Update_OB\realsched.exe" [2008-04-16 185896]
        "PWRISOVM.EXE"="c:\program files\PowerISO\PWRISOVM.EXE" [2008-11-02 167936]
        "IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2007-08-31 1037736]
        "QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2009-09-05 417792]
        "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-10-29 141600]
        "SigmatelSysTrayApp"="stsystra.exe" - c:\windows\STSYSTRA.EXE [2005-03-23 339968]

        [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
        "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

        c:\documents and settings\MARC-ANDR\Menu D‚marrer\Programmes\D‚marrage\
        Adobe Gamma.lnk - c:\program files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe [2005-3-16 113664]
        GameSpot Download Manager.lnk - c:\program files\GameSpot\GameSpotDownloadManager_Win32.exe [2007-11-15 876544]
        Xfire.lnk - c:\program files\Jeux\Xfire\Xfire.exe [2009-11-5 3152272]

        c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
        Compagnon d'AOL.lnk - c:\program files\AOL Companion\companion.exe [2005-8-22 221258]
        Lancer l'utilitaire d'enregistrement.lnk - c:\program files\WiFiConnector\NintendoWFCReg.exe [2007-12-25 1073152]
        Mini-ic“ne d'AOL 8.0.lnk - c:\program files\AOL 8.0\aoltray.exe [2005-8-22 36937]

        [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
        BootExecute REG_MULTI_SZ autocheck autochk *\0PFDNNT c:\windows\SYSTEM32\F3PSSAVR.SCR\0PFDNNT c:\program files\MYWEBSEARCH\BAR\1.BIN\F3SCRCTR.DLL\0PFDNNT c:\program files\MYWEBSEARCH\BAR\1.BIN\F3CJPEG.DLL\0PFDNNT c:\program files\MYWEBSEARCH\BAR\1.BIN\F3HISTSW.DLL\0PFDNNT c:\program files\MYWEBSEARCH\BAR\1.BIN\F3HTTPCT.DLL\0PFDNNT c:\program files\MYWEBSEARCH\BAR\1.BIN\F3PSSAVR.SCR\0PFDNNT c:\program files\MYWEBSEARCH\BAR\1.BIN\F3REPROX.DLL\0PFDNNT c:\program files\MYWEBSEARCH\BAR\1.BIN\F3RESTUB.DLL\0PFDNNT c:\program files\MYWEBSEARCH\BAR\1.BIN\F3WPHOOK.DLL\0PFDNNT c:\program files\MYWEBSEARCH\BAR\1.BIN\M3HTML.DLL\0PFDNNT c:\program files\MYWEBSEARCH\BAR\1.BIN\M3IDLE.DLL\0PFDNNT c:\program files\MYWEBSEARCH\BAR\1.BIN\M3SKPLAY.EXE\0PFDNNT c:\program files\MYWEBSEARCH\BAR\1.BIN\MWSOEPLG.DLL\0PFDNNT c:\program files\MYWEBSEARCH\BAR\1.BIN\MWSOESTB.DLL\0PFDNNT c:\program files\MYWEBSEARCH\BAR\1.BIN\NPMYWEBS.DLL\0PFDNNT c:\program files\MyWebSearch\bar\1.bin\0PFDNNT c:\program files\MYWEBSEARCH\BAR\CACHE\015641AD.BIN\0PFDNNT c:\program files\MyWebSearch\bar\Cache\0PFDNNT c:\program files\MyWebSearch\bar\Game\0PFDNNT c:\program files\MYWEBSEARCH\BAR\SETTINGS\PREVCFG2.HTM\0PFDNNT c:\program files\MyWebSearch\bar\Settings\0PFDNNT c:\program files\MyWebSearch\0lsdelete

        [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
        @="Service"

        [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
        "%windir%\\system32\\sessmgr.exe"=
        "c:\\Program Files\\BitTorrent\\bittorrent.exe"=
        "c:\\Program Files\\Messenger\\msmsgs.exe"=
        "%windir%\\Network Diagnostic\\xpnetdiag.exe"=
        "c:\\Program Files\\LimeWire\\LimeWire.exe"=
        "c:\\Program Files\\Jeux\\Xfire\\Xfire.exe"=
        "c:\\Program Files\\NetMeeting\\conf.exe"=
        "c:\\WINDOWS\\system32\\rtcshare.exe"=
        "c:\\Program Files\\THQ\\Dawn Of War\\W40kWA.exe"=
        "c:\\Program Files\\THQ\\Dawn Of War\\W40k.exe"=
        "c:\\Program Files\\Veoh Networks\\Veoh\\VeohClient.exe"=
        "c:\\Program Files\\WiFiConnector\\NintendoWFCReg.exe"=
        "c:\\WINDOWS\\system32\\PnkBstrA.exe"=
        "c:\\WINDOWS\\system32\\PnkBstrB.exe"=
        "c:\\Program Files\\Joost\\xulrunner\\tvprunner.exe"=
        "c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
        "c:\\WINDOWS\\system32\\dpvsetup.exe"=
        "c:\\Program Files\\Real\\RealPlayer\\realplay.exe"=
        "c:\\Program Files\\Warcraft III\\Warcraft III.exe"=
        "c:\\Program Files\\DNA\\btdna.exe"=
        "c:\\WINDOWS\\Soulstorm.exe"=
        "c:\\WINDOWS\\system32\\dxdiag.exe"=
        "c:\\Documents and Settings\\All Users\\Application Data\\NexonUS\\NGM\\NGM.exe"=
        "c:\\WINDOWS\\system32\\dpnsvr.exe"=
        "c:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=
        "c:\\Program Files\\Turbine\\DDO Unlimited\\dndclient.exe"=
        "c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
        "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
        "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
        "c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
        "c:\\Program Files\\iTunes\\iTunes.exe"=

        [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
        "3724:TCP"= 3724:TCP:Blizzard Downloader: 3724
        "58123:TCP"= 58123:TCP:Pando Media Booster
        "58123:UDP"= 58123:UDP:Pando Media Booster
        "57218:TCP"= 57218:TCP:Pando Media Booster
        "57218:UDP"= 57218:UDP:Pando Media Booster

        R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2009-11-28 64288]
        R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2008-06-09 114768]
        R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2008-06-09 20560]
        R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\Lavasoft\Ad-Aware\AAWService.exe [2009-09-24 1184912]
        S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [2006-06-03 717296]
        S3 ComFiltr;Panda Anti-Dialer;\??\c:\windows\system32\DRIVERS\COMFiltr.sys --> c:\windows\system32\DRIVERS\COMFiltr.sys [?]
        S3 npkycryp;npkycryp;\??\c:\program files\Gravity\RO\npkycryp.sys --> c:\program files\Gravity\RO\npkycryp.sys [?]
        S3 PavSRK.sys;PavSRK.sys;\??\c:\windows\system32\PavSRK.sys --> c:\windows\system32\PavSRK.sys [?]
        S3 SCREAMINGBDRIVER;Screaming Bee Audio;c:\windows\system32\drivers\ScreamingBAudio.sys --> c:\windows\system32\drivers\ScreamingBAudio.sys [?]
        .
        Contenu du dossier 'Tâches planifiées'

        2009-11-29 c:\windows\Tasks\Ad-Aware Update (Weekly).job
        - c:\program files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2009-10-01 22:07]

        2009-11-26 c:\windows\Tasks\AppleSoftwareUpdate.job
        - c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 17:34]

        2008-12-25 c:\windows\Tasks\Microsoft_Hardware_Launch_IPoint_exe.job
        - c:\program files\Microsoft IntelliPoint\ipoint.exe [2007-08-31 19:01]
        .
        .
        ------- Examen supplémentaire -------
        .
        uStart Page = hxxp://www.cyberpresse.ca/
        mSearch Bar = hxxp://us.rd.yahoo.com/customize/ie/defaults/sb/msgr8/*http://www.yahoo.com/ext/search/search.html
        uInternet Connection Wizard,ShellNext = hxxp://www.dell.ca/index.htm
        IE: &Search -
        IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
        DPF: {BFD90062-6B5E-4F8F-87B1-5F022C14E32F} - hxxp://www.meetstream.com/activex/28055/activereceiver.cab
        DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} - hxxps://secure.gopetslive.com/dev/GoPetsWeb.cab
        DPF: {FA30EC32-668B-4B60-B13C-4C84EB90C3C9} - hxxp://www.meetstream.com/activex/28055/activeid.cab
        FF - ProfilePath - c:\documents and settings\NORMAND\Application Data\Mozilla\Firefox\Profiles\s161m67o.default\
        FF - prefs.js: browser.search.selectedEngine - Google
        FF - component: c:\program files\Real\RealPlayer\browserrecord\components\nprpbrowserrecordplugin.dll
        FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

        ---- PARAMETRES FIREFOX ----
        c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);
        .
        - - - - ORPHELINS SUPPRIMES - - - -

        HKU-Default-Run-swg - c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
        Notify-jkkiiHwW - jkkiiHwW.dll
        AddRemove-Ad-Aware - c:\documents and settings\All Users\Application Data\{CFBD8779-FAAB-4357-84F2-1EC8619FADA6}\Ad-AwareInstallation.exe REMOVE=TRUE MODIFY=FALSE
        AddRemove-War - c:\program files\KumaWar\uninst.exe
        AddRemove-RealJukebox 1.0 - c:\program files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
        AddRemove-RealPlayer 6.0 - c:\program files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0



        **************************************************************************

        catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
        Rootkit scan 2009-11-29 12:14
        Windows 5.1.2600 Service Pack 3 NTFS

        Recherche de processus cachés ...

        Recherche d'éléments en démarrage automatique cachés ...

        HKLM\Software\Microsoft\Windows\CurrentVersion\Run
        DLBTCATS = rundll32 c:\windows\System32\spool\DRIVERS\W32X86\3\DLBTtime.dll,_RunDLLEntry@16???????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????

        Recherche de fichiers cachés ...

        Scan terminé avec succès
        Fichiers cachés: 0

        **************************************************************************

        Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net

        device: opened successfully
        user: MBR read successfully
        called modules: ntkrnlpa.exe catchme.sys CLASSPNP.SYS disk.sys >>UNKNOWN [0x86F4F618]<<
        kernel: MBR read successfully
        detected MBR rootkit hooks:
        \Driver\Disk -> CLASSPNP.SYS @ 0xf7516f28
        \Driver\ACPI -> ACPI.sys @ 0xf73a8cb8
        \Driver\atapi -> atapi.sys @ 0xf7360852
        IoDeviceObjectType -> DeleteProcedure -> ntkrnlpa.exe @ 0x805836a8
        \Device\Harddisk0\DR0 -> DeleteProcedure -> ntkrnlpa.exe @ 0x805836a8
        NDIS: -> SendCompleteHandler -> 0x0
        PacketIndicateHandler -> 0x0
        SendHandler -> 0x0
        user & kernel MBR OK

        **************************************************************************
        .
        --------------------- CLES DE REGISTRE BLOQUEES ---------------------

        [HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\Ø•€|ÿÿÿÿ•€|ù•9~*]
        "C040311900063D11C8EF10054038389C"="C?\\WINDOWS\\system32\\FM20ENU.DLL"
        .
        --------------------- DLLs chargées dans les processus actifs ---------------------

        - - - - - - - > 'winlogon.exe'(780)
        c:\windows\SYSTEM32\Ati2evxx.dll
        .
        Heure de fin: 2009-11-29 12:21
        ComboFix-quarantined-files.txt 2009-11-29 17:20

        Avant-CF: 21 760 622 592 octets libres
        Après-CF: 26 193 420 288 octets libres

        - - End Of File - - 58F851BDDF00D04D002D3973BD36C592
        0
      2. Utilisateur anonyme > streetlight Messages postés 30 Statut Membre
         
        Re

        Combo a bien travaillé.

        fait ceci:Télécharge Malwarebytes anti malware ici
        http://www.malwarebytes.org/mbam.php

        * Installe le (choisis bien "français" ; ne modifie pas les paramètres d'installe ) et mets le à jour .

        (NB : S'il te manque "COMCTL32.OCX" lors de l'installe, alors télécharge le ici : https://www.malekal.com/tutorial-aboutbuster/

        * Potasse le tuto pour te familiariser avec le prg :

        https://forum.pcastuces.com/sujet.asp?f=31&s=3

        (cela dis, il est très simple d’utilisation).

        relance malwarebytes en suivant scrupuleusement ces consignes :

        ! Déconnecte toi et ferme toutes applications en cours !

        * Lance Malwarebyte's .

        Fais un examen dit "Complet" .

        --> Laisse le programme travailler ( et ne rien faire d'autre avec le PC durant le scan ).
        --> à la fin tu cliques sur "résultat" .
        --> Vérifie que tous les objets infectés soient validés, puis clique sur " suppression " .

        Note : si il faut redémarrer ton PC pour finir le nettoyage, fais le !


        Poste le rapport sauvegardé après la suppression des objets infectés (dans l'onglet "rapport/log"de Malwarebytes, le dernier en date)

        @+
        0
  8. streetlight Messages postés 30 Statut Membre
     
    Voici le rapport

    Malwarebytes' Anti-Malware 1.41
    Version de la base de données: 3258
    Windows 5.1.2600 Service Pack 3

    2009-11-29 16:21:57
    mbam-log-2009-11-29 (16-21-57).txt

    Type de recherche: Examen complet (C:\|)
    Eléments examinés: 245298
    Temps écoulé: 1 hour(s), 45 minute(s), 44 second(s)

    Processus mémoire infecté(s): 0
    Module(s) mémoire infecté(s): 0
    Clé(s) du Registre infectée(s): 1
    Valeur(s) du Registre infectée(s): 0
    Elément(s) de données du Registre infecté(s): 0
    Dossier(s) infecté(s): 0
    Fichier(s) infecté(s): 4

    Processus mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Module(s) mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Clé(s) du Registre infectée(s):
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256a51-b582-467e-b8d4-7786eda79ae0} (Trojan.Vundo) -> Quarantined and deleted successfully.

    Valeur(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Elément(s) de données du Registre infecté(s):
    (Aucun élément nuisible détecté)

    Dossier(s) infecté(s):
    (Aucun élément nuisible détecté)

    Fichier(s) infecté(s):
    C:\Qoobox\Quarantine\C\Documents and Settings\MARC-ANDRÉ\Local Settings\Application Data\tphphl\jeebsysguard.exe.vir (Trojan.FakeAlert) -> Delete on reboot.
    C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP1445\A0294472.exe (Trojan.FakeAlert) -> Delete on reboot.
    C:\Program Files\EAInstall.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
    C:\Program Files\server.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
    0
  9. streetlight Messages postés 30 Statut Membre
     
    J'ai fait le redémarrage et j'ai maintenant un message d'erreur sur internet explorerr quand je tente de l'utiliser mais firefox fonctionne correctement.
    0
    1. Utilisateur anonyme
       
      Bonjour

      Quel est ce message d'erreur?

      1)Supprime Ad aware et conserve Malwaresbytes.

      2)Mise à jour Java.
      Pour java utilises javaRa https://www.commentcamarche.net/faq/15645-supprimer-les-anciennes-versions-de-java-avec-javara

      et un autre tutoriel javaRa http://www.libellules.ch/dotclear/index.php?post/2008/07/13/2689-javara

      Décompresse le fichier sur le Bureau (Clic droit > Extraire tout).
      * Double-cliques sur le répertoire JavaRa.
      * Puis double-cliques sur le fichier JavaRa.exe (le exe peut ne pas s'afficher).
      * Choisis Français puis cliques sur Select.
      * Cliques sur Recherche de mises à jour.
      * Sélectionne Mettre à jour via jucheck.exe puis clique sur Rechercher.
      * Autorises le processus à se connecter s'il le demande, cliques sur Installer et suis les instructions d'installation qui prennent quelques minutes.
      * L'installation est terminée, reviens à l'écran de JavaRa et cliques sur Effacer les anciennes versions.
      * Cliques sur Oui pour confirmer. Laisses travailler et cliques ensuite sur OK, puis une deuxième fois sur OK.
      * Un rapport va s'ouvrir. Postes-le dans ta prochaine réponse.
      * Ferme l'application.

      Note : le rapport se trouve aussi dans C:\ sous le nom JavaRa.log.

      3)C - Ccleaner :

      https://www.commentcamarche.net/telecharger/utilitaires/5647-ccleaner/

      .enregistres le sur le bureau
      .double-cliques sur le fichier pour lancer l'installation
      .sur la fenêtre de l'installation langage bien choisir français et OK
      .cliques sur <gras>suivant

      .lis la licence et j'accepte
      .cliques sur suivant
      .la tu ne gardes de coché que mettre un raccourci sur le bureau et puis contrôler automatiquement les mises à jour de Ccleaner
      .cliques sur installer
      .cliques sur fermer
      .double-cliques sur <gras>l'icône de Ccleaner pour l'ouvrir
      .une fois ouvert tu cliques sur <gras>option
      et puis avancé
      .tu décoches effacer uniquement les fichiers, du dossier temp de windows plus vieux que 48 heures
      .cliques sur nettoyeur
      .cliques sur windows et dans la colonne avancé
      . coches la première case vieilles données du perfetch ce qui te donnes la case vielles données du perfetch et la case avancé qui c'est coché automatiquement mais que celle-la
      .cliques sur analyse une fois l'analyse terminé
      .cliques sur lancer le nettoyage et sur la demande de confirmation OK il vas falloir que tu le refasses une autre fois une fois fini vérifies en appuyant de nouveau sur analyse pour être sur qu'il n'y est plus rien
      .clique maintenant sur registre et puis sur rechercher les erreurs
      .laisse tout coché et clique sur réparer les erreurs sélectionnées
      .il te demande de sauvegarder OUI
      .tu lui donnes un nom pour pouvoir la retrouver et enregistre
      .clique sur corriger toutes les erreurs sélectionnées et sur la demande de confirmation OK
      .il supprime et <gras>fermer tu vérifies en relançant <gras>rechercher les erreurs

      .tu retournes dans option et tu recoches la case effacer uniquement les fichiers, du dossier temp de windows plus vieux que 48 heures et sur nettoyeur, windows sous avancé tu décoches la première case vieilles données du perfetch
      .tu peux fermer Ccleaner.

      Tuto : https://jesses.pagesperso-orange.fr/Docs/Logiciels/CCleaner.htm

      @+
      0
  10. streetlight Messages postés 30 Statut Membre
     
    Le rapport JavaRa:

    JavaRa 1.15 Removal Log.

    Report follows after line.

    ------------------------------------

    The JavaRa removal process was started on Mon Nov 30 18:14:34 2009

    Found and removed: C:\Program Files\Java\j2re1.4.2_03

    Found and removed: C:\Program Files\Java\jre1.6.0

    Found and removed: C:\Program Files\Java\jre1.6.0_01

    Found and removed: C:\Program Files\Java\jre1.6.0_02

    Found and removed: C:\Program Files\Java\jre1.6.0_03

    Found and removed: C:\Program Files\Java\jre1.6.0_05

    Found and removed: C:\Program Files\Java\jre1.6.0_07

    Found and removed: C:\Documents and Settings\NORMAND\Application Data\Sun\Java\jre1.6.0_15

    Found and removed: C:\Windows\Installer\{7148F0A8-6813-11D6-A77B-00B0D0142030}

    Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.4

    Found and removed: SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D610000

    Found and removed: SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D610001

    Found and removed: SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D610002

    Found and removed: SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D610003

    Found and removed: SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D610005

    Found and removed: SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D610000

    Found and removed: SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D610001

    Found and removed: SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D610002

    Found and removed: SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D610003

    Found and removed: SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D610005

    Found and removed: SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610000

    Found and removed: SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610001

    Found and removed: SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610002

    Found and removed: SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610003

    Found and removed: SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610005

    Found and removed: SOFTWARE\Classes\JavaPlugin.160

    Found and removed: SOFTWARE\Classes\JavaPlugin.160_01

    Found and removed: SOFTWARE\Classes\JavaPlugin.160_02

    Found and removed: SOFTWARE\Classes\JavaPlugin.160_03

    Found and removed: SOFTWARE\Classes\JavaPlugin.160_05

    Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.6.0

    Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.6.0_01

    Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.6.0_02

    Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.6.0_03

    Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.6.0_05

    Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0

    Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0_01

    Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0_02

    Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0_03

    Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0_05

    Found and removed: SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}

    Found and removed: SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}

    Found and removed: SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}

    Found and removed: SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}

    Found and removed: SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610000

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610001

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610002

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610003

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610005

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D610000

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D610001

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D610002

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D610003

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D610005

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D610000

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D610001

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D610002

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D610003

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D610005

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0160000}

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0160010}

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0160020}

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0160030}

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0160050}

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7148F0A8-6813-11D6-A77B-00B0D0142030}

    Found and removed: SOFTWARE\Classes\Installer\Products\8A0F841731866D117AB7000B0D410203

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F841731866D117AB7000B0D410203

    Found and removed: SOFTWARE\Classes\JavaPlugin.142_03

    Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.4.2_03

    Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.4.2_03

    Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.4.2_03

    Found and removed: SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA}

    Found and removed: Software\Classes\JavaPlugin.142_03

    Found and removed: Software\Classes\JavaPlugin.160

    Found and removed: Software\Classes\JavaPlugin.160_01

    Found and removed: Software\Classes\JavaPlugin.160_02

    Found and removed: Software\Classes\JavaPlugin.160_03

    Found and removed: Software\Classes\JavaPlugin.160_05

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0000-0003-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0000-0004-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0000-0005-ABCDEFFEDCBA}

    Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1

    Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_02

    Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_03

    Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_04

    Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.2

    Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.2.0_01

    Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.6.0

    Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.6.0_01

    Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.6.0_02

    Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.6.0_03

    Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.6.0_05

    Found and removed: Software\JavaSoft\Java2D\1.6.0_03

    Found and removed: Software\JavaSoft\Java2D\1.6.0_05

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0000-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0026-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0026-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0027-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0027-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0028-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0028-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0029-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0029-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0030-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0030-ABCDEFFEDCBB}

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACB9B14518A96D117A58000B0D410203

    Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.6.0_07

    Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0_07

    Found and removed: SOFTWARE\Microsoft\Active Setup\Installed Components\{08B0E5C0-4FCB-11CF-AAA5-00401C608500}

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D610007

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D610007

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0160070}

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0\

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_01\

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_02\

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_03\

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_05\

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0\bin\

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_01\bin\

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_02\bin\

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_03\bin\

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_05\bin\

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_07\bin\

    JavaRa 1.15 Removal Log.

    Report follows after line.

    ------------------------------------

    The JavaRa removal process was started on Mon Nov 30 18:15:37 2009

    ------------------------------------

    Finished reporting.
    0
    1. Utilisateur anonyme
       
      Bonjour

      As tu fais Ccleaner?

      Quel est le message d'erreur sur internet explorer?

      Fait ceci stp merci.
      • Télécharge Ad-remover ( de C_XX ) sur ton bureau :

      http://pagesperso-orange.fr/NosTools/C_XX/AD-R.exe

      ! Déconnecte toi et ferme toutes applications en cours !

      • Double clique ou clic droit (exécuter en tant que admin…sur Vista) sur "Ad-R.exe" pour lancer l'installation et laisse les paramètres d'installation par défaut.

      • Double-clique ou clic droit (exécuter en tant que admin…sur Vista) sur le raccourci Ad-remover qui est sur ton bureau pour lancer l'outil .

      • Au menu principal choisis l'option "S" et sur [entrée] .

      • Laisse travailler l'outil et ne touche à rien ...

      --> Poste le rapport qui apparaît à la fin , sur le forum ...

      ( Le rapport est sauvegardé aussi sous C:\Ad-report.log )
      ( CTRL+A Pour tout sélectionner , CTRL+C pour copier et CTRL+V pour coller )

      Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
      Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
      Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.

      Aides en images (Installation) : http://pagesperso-orange.fr/NosTools/tuto_ad_r1.html
      Aides en images (Recherche) : http://pagesperso-orange.fr/NosTools/tuto_ad_r2.html

      @+
      0
  11. streetlight Messages postés 30 Statut Membre
     
    Il est simplement écrit "Internet Explorer ne peut afficher cette page web"(peu importe la page). Oui j'ai utiliser Ccleaner. Voici le rapport Ad-remover

    .
    ======= RAPPORT D'AD-REMOVER 1.1.4.6_D | UNIQUEMENT XP/VISTA/7 =======
    .
    Mit à jour par C_XX le 04.12.2009 à 19:30
    Contact: AdRemover.contact@gmail.com
    Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
    .
    Lancé à: 20:54:23, 2009-12-04 | Mode Normal | Option: SCAN
    Exécuté de: C:\Program Files\Ad-Remover\
    Système d'exploitation: Microsoft® Windows XP™ Service Pack 3 v5.1.2600
    Nom du PC: WADE3 | Utilisateur actuel: MARC-ANDR
    .
    ============== ÉLÉMENT(S) TROUVÉ(S) ==============
    .

    C:\Program Files\Viewpoint
    C:\DOCUME~1\MARC-A~1\Cookies\marc-andr‚@ask[1].txt
    C:\DOCUME~1\MARC-A~1\Cookies\marc-andr‚@dealio[1].txt
    .
    HKCU\software\FunWebProducts
    HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F}
    HKLM\Software\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}
    HKLM\Software\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
    HKLM\Software\Classes\TypeLib\{4F7D1B07-6203-41F0-947B-A29CC9ECD9B0}
    HKLM\Software\Classes\TypeLib\{9DBB28C1-1925-11D3-A498-00104B6EB52E}
    HKLM\software\MetaStream
    HKLM\Software\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
    HKLM\Software\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
    HKLM\software\microsoft\windows\currentversion\uninstall\ViewpointMediaPlayer
    HKLM\software\Viewpoint
    HKU\s-1-5-21-4214786534-1026011330-2526274324-1009\software\FunWebProducts
    .
    ============== Scan additionnel ==============
    .
    .
    * Mozilla FireFox Version 3.5.5 [en-US] *
    .
    Nom du profil: 60hn2ee5.default (MARC-ANDR)
    .
    (MARC-A~1, prefs.js) Browser.download.dir, C:\Documents and Settings\MARC-ANDRÉ\Mes documents
    (MARC-A~1, prefs.js) Browser.download.lastDir, C:\Documents and Settings\MARC-ANDRÉ\Mes documents\Mes images
    (MARC-A~1, prefs.js) Browser.startup.homepage, www.gamespot.com
    .
    .
    * Internet Explorer Version 8.0.6001.18702 *
    .
    [HKEY_CURRENT_USER\..\Internet Explorer\Main]
    .
    Start Page: hxxp://www.kissonline.com/
    Search Page: hxxp://www.google.com
    Default_Page_URL: hxxp://www.dell.ca/index.htm
    Search Bar: hxxp://www.google.com/ie
    .
    [HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]
    .
    Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=69157
    Default_Search_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
    Search Page: hxxp://go.microsoft.com/fwlink/?LinkId=54896
    Start Page: hxxp://go.microsoft.com/fwlink/?LinkId=69157
    Search Bar: hxxp://us.rd.yahoo.com/customize/ie/defaults/sb/msgr8/*hxxp://www.yahoo.com/ext/search/search.html
    .
    [HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]
    .
    Tabs: res://ieframe.dll/tabswelcome.htm
    .
    ============== Suspect (Cracks, Serials, ...) ==============
    .
    C:\Documents and Settings\MARC-ANDR\Application Data\BitTorrent\Warhammer.40000.Dawn.of.War.Soulstorm.CRACKFIX-ViTALiTY.torrent
    C:\Documents and Settings\MARC-ANDR\Application Data\BitTorrent\Warhammer.40000.Dawn.of.War.Soulstorm.PROPER.CRACKONLY-ViTALiTY by seeker.torrent
    C:\Documents and Settings\MARC-ANDR\Application Data\BitTorrent\Warhammer.40000.Dawn.of.War.Soulstorm.PROPER.CRACKONLY-ViTALiTY.torrent
    C:\Documents and Settings\MARC-ANDR\Mes documents\pdark0.0.1.1686to0.0.1.1730patch.exe
    C:\Documents and Settings\MARC-ANDR\Mes documents\CoD4MWDemoSetup\Downloads\Baldur's Gate II - SoA + ToB expansion\Baldur's Gate II - ToB - NoCd Crack 26498.zip
    C:\Documents and Settings\MARC-ANDR\Mes documents\CoD4MWDemoSetup\Downloads\Baldur's Gate II - SoA + ToB expansion\BGII-ThroneofBhaal_Patch_26498_ENGLISH.exe
    C:\Documents and Settings\MARC-ANDR\Mes documents\Downloads\Dungeon Siege 2\DS2_Patch_2.2.exe
    C:\Documents and Settings\MARC-ANDR\Mes documents\Downloads\Dungeon Siege 2\Dungeon Siege 2 Broken World\serial.nfo
    C:\Documents and Settings\MARC-ANDR\Mes documents\Macromedia.Studio.v8.0.Incl.Keymaker-ZWT\keygen.exe
    .
    ===================================
    .
    3927 Octet(s) - C:\Ad-Report-SCAN[1].log
    .
    60 Fichier(s) - C:\DOCUME~1\MARC-A~1\LOCALS~1\Temp
    8 Fichier(s) - C:\WINDOWS\Temp
    .
    1 Fichier(s) - C:\Program Files\Ad-Remover\BACKUP
    0 Fichier(s) - C:\Program Files\Ad-Remover\QUARANTINE
    .
    Fin à: 21:37:18 | 2009-12-04 - SCAN[1]
    .
    ============== E.O.F ==============
    .
    0
    1. Utilisateur anonyme
       
      Bonjour

      • Relance Ad-remover,
      • Au menu principal choisis l'option "L" et tape sur [entrée] .

      • Laisse travailler l'outil et ne touche à rien ...

      --> Poste le rapport qui apparait à la fin , sur le forum ...

      ( Le rapport est sauvegardé sous C:\Ad-report-clean.log )

      ( CTRL+A Pour tout sélectionner , CTRL+C pour copier et CTRL+V pour coller )


      Internet explorer fonctionne t' il?

      @+
      0
  12. streetlight Messages postés 30 Statut Membre
     
    J'ai fait ce que tu m'as dit et j'ai encore le meme probleme avec internet explorer. Voici le rapport Ad-Remover:

    .
    ======= RAPPORT D'AD-REMOVER 1.1.4.6_D | UNIQUEMENT XP/VISTA/7 =======
    .
    Mit à jour par C_XX le 04.12.2009 à 19:30
    Contact: AdRemover.contact@gmail.com
    Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
    .
    Lancé à: 14:33:15, 2009-12-05 | Mode Normal | Option: CLEAN
    Exécuté de: C:\Program Files\Ad-Remover\
    Système d'exploitation: Microsoft® Windows XP™ Service Pack 3 v5.1.2600
    Nom du PC: WADE3 | Utilisateur actuel: MARC-ANDR
    .
    ============== ÉLÉMENT(S) NEUTRALISÉ(S) ==============
    .

    C:\Program Files\Viewpoint
    C:\DOCUME~1\MARC-A~1\Cookies\marc-andr‚@ask[1].txt
    C:\DOCUME~1\MARC-A~1\Cookies\marc-andr‚@dealio[1].txt

    (!) -- Fichiers temporaires supprimés.

    .
    HKCU\software\FunWebProducts
    HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F}
    HKLM\Software\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}
    HKLM\Software\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
    HKLM\Software\Classes\TypeLib\{4F7D1B07-6203-41F0-947B-A29CC9ECD9B0}
    HKLM\Software\Classes\TypeLib\{9DBB28C1-1925-11D3-A498-00104B6EB52E}
    HKLM\software\MetaStream
    HKLM\Software\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
    HKLM\Software\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
    HKLM\software\microsoft\windows\currentversion\uninstall\ViewpointMediaPlayer
    HKLM\software\Viewpoint
    .
    ============== Scan additionnel ==============
    .
    .
    * Mozilla FireFox Version 3.5.5 [en-US] *
    .
    Nom du profil: 60hn2ee5.default (MARC-ANDR)
    .
    (MARC-A~1, prefs.js) Browser.download.dir, C:\Documents and Settings\MARC-ANDRÉ\Mes documents
    (MARC-A~1, prefs.js) Browser.download.lastDir, C:\Documents and Settings\MARC-ANDRÉ\Mes documents\Mes images
    (MARC-A~1, prefs.js) Browser.startup.homepage, www.gamespot.com
    .
    .
    * Internet Explorer Version 8.0.6001.18702 *
    .
    [HKEY_CURRENT_USER\..\Internet Explorer\Main]
    .
    Start Page: hxxp://fr.msn.com/
    Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
    Search Bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
    Default_search_url: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    .
    [HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]
    .
    Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
    Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    Start Page: hxxp://fr.msn.com/
    Search Bar: hxxp://search.msn.com/spbasic.htm
    .
    [HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]
    .
    Tabs: res://ieframe.dll/tabswelcome.htm
    .
    ============== Suspect (Cracks, Serials, ...) ==============
    .
    C:\Documents and Settings\MARC-ANDR\Application Data\BitTorrent\Warhammer.40000.Dawn.of.War.Soulstorm.CRACKFIX-ViTALiTY.torrent
    C:\Documents and Settings\MARC-ANDR\Application Data\BitTorrent\Warhammer.40000.Dawn.of.War.Soulstorm.PROPER.CRACKONLY-ViTALiTY by seeker.torrent
    C:\Documents and Settings\MARC-ANDR\Application Data\BitTorrent\Warhammer.40000.Dawn.of.War.Soulstorm.PROPER.CRACKONLY-ViTALiTY.torrent
    C:\Documents and Settings\MARC-ANDR\Mes documents\pdark0.0.1.1686to0.0.1.1730patch.exe
    C:\Documents and Settings\MARC-ANDR\Mes documents\CoD4MWDemoSetup\Downloads\Baldur's Gate II - SoA + ToB expansion\Baldur's Gate II - ToB - NoCd Crack 26498.zip
    C:\Documents and Settings\MARC-ANDR\Mes documents\CoD4MWDemoSetup\Downloads\Baldur's Gate II - SoA + ToB expansion\BGII-ThroneofBhaal_Patch_26498_ENGLISH.exe
    C:\Documents and Settings\MARC-ANDR\Mes documents\Downloads\Dungeon Siege 2\DS2_Patch_2.2.exe
    C:\Documents and Settings\MARC-ANDR\Mes documents\Downloads\Dungeon Siege 2\Dungeon Siege 2 Broken World\serial.nfo
    C:\Documents and Settings\MARC-ANDR\Mes documents\Macromedia.Studio.v8.0.Incl.Keymaker-ZWT\keygen.exe
    .
    ===================================
    .
    3952 Octet(s) - C:\Ad-Report-CLEAN[1].log
    4255 Octet(s) - C:\Ad-Report-SCAN[1].log
    .
    0 Fichier(s) - C:\DOCUME~1\MARC-A~1\LOCALS~1\Temp
    3 Fichier(s) - C:\WINDOWS\Temp
    .
    18 Fichier(s) - C:\Program Files\Ad-Remover\BACKUP
    131 Fichier(s) - C:\Program Files\Ad-Remover\QUARANTINE
    .
    Fin à: 15:18:54 | 2009-12-05 - CLEAN[1]
    .
    ============== E.O.F ==============
    .
    0
    1. Utilisateur anonyme
       
      Re

      Essaye de réparer Internet explorer.Si cela ne fonctionne pas réinstalle pour contrôle IE7.
      Tiens moi au courant

      @+
      0
  13. streetlight Messages postés 30 Statut Membre
     
    Comment est-ce que je fait pour le réparer?
    J'ai trouver cela dans le journal de diagnostique d'IE:

    info HTTPS: Connexion réussie à www.microsoft.com.
    info FTP (passif): Connexion réussie à ftp.microsoft.com.
    warn HTTP: Erreur 12029 lors de la connexion à www.microsoft.com : A connection with the server could not be established
    warn HTTP: Erreur 12029 lors de la connexion à www.hotmail.com : A connection with the server could not be established
    error Impossible d'établir une connexion HTTP.
    info Redirection de l'utilisateur vers l'appel d'aide
    0
    1. Utilisateur anonyme
       
      Bonjour

      Essaie ceci:
      Tu fais bouton "Démarrer"; "Exécuter"dans la fenêtre tu tapes :
      netsh winsock reset et tu valides"OK".

      Astuce trouvé sur Google.Tiens moi au courant
      0
      1. streetlight Messages postés 30 Statut Membre > Utilisateur anonyme
         
        Le netsh winsock reset n'a pas réglé le problème
        0
      2. Utilisateur anonyme > streetlight Messages postés 30 Statut Membre
         
        Re

        On va essayer ceci:
        Télécharge Zeb Restore
        http://telechargement.zebulon.fr/zeb-restore.html
        Zeb-Restore est un petit utilitaire de restauration de clés de la base de registre. Le but du programme n'est pas de restaurer l'ensemble du système mais uniquement les points les plus souvent touchés afin de solutionner différents problèmes qui peuvent revenir de façon récurrente.

        Voici les éléments qui peuvent être restaurés : coche les lignes en gras
        - RegEdit : réactive l'accès à RegEdit
        - Clés RUN : réactive le lancement de programmes par clés RunXXX
        - Bouton Arrêter : rétablit le bouton Arrêter
        - Windows Update : rétablit la fonction Windows Update
        - Gestionnaire des tâches : réactive le gestionnaire des tâches
        - Panneau de configuration : réactive le Panneau de configuration
        - Ajout/Suppression de programmes : restaure la fonction Ajout-Suppression de programmes
        - Policies : remet en place des éléments désactivés par "Policies"
        - Bureau : réactive le Bureau
        - Réparation IE : répare Internet Exploreur (pages de recherche)
        - Extension des fichiers : répare les extensions des fichiers .exe .bat .reg. Pif.cmd.scr .com
        - Sites de confiance et sensibles : efface le contenu de ces zones (à utiliser si vous êtes infecté par des malwares)
        - Préfixes et Protocoles Internet : restore les clés des protocoles Internet (ZoneMap etc.)
        - Réinitialiser Fichier Hosts : réinitialise le fichier Hosts

        Tiens moi au courant.Merci

        @+
        0
      3. streetlight Messages postés 30 Statut Membre > Utilisateur anonyme
         
        Le problème n'est pas encore réglé. Merci de continuer a tenter de m'aider.
        0
      4. Utilisateur anonyme > streetlight Messages postés 30 Statut Membre
         
        Bonsoir

        Essaye de réparer IE.

        Regarde ici:https://www.commentcamarche.net/faq/5192-reinstaller-internet-explorer
        @+
        0