Sujet Précédent Sujet Suivant

Ordinateur infecté

Résolu/Fermé
streetlight Messages postés 29 Date d'inscription samedi 28 novembre 2009 Statut Membre Dernière intervention 9 mai 2011 - 28 nov. 2009 à 23:36
 Utilisateur anonyme - 7 déc. 2009 à 18:42
Bonjour,
Hier soir mon ordinateur a attrapé plusieurs virus qui se font passer pour des logiciels antivirus/anti-spyware. J'ai tenté de faire un scan avec AVG il a trouvé 2 fichiers infectés mais meme en les supprimant le probleme n'a pas été réglé. Le centre de sécurité windows me dit maintenant que ma version de avast! antivirus 4.8.1351 est périmée mais j'ai fait la mise a jour hier. Le(s) virus me bloque aussi internet explorer et firefox(je n'est pas essayer d'autres logiciels de navigation). J'ai donc eu besoin de changer d'utilisateur pour venir vous demander de l'aide
Merci!
P.S.: Je fait en ce moment un autre scan avec Avast! et un autre avec Ad-Aware
A voir également:

12 réponses

Réponse 1 / 12
ddede67 Messages postés 76 Date d'inscription vendredi 6 novembre 2009 Statut Membre Dernière intervention 8 mars 2010 4
28 nov. 2009 à 23:39
Bonsoir àtous, je laisse
0
Réponse 2 / 12
Utilisateur anonyme
28 nov. 2009 à 23:39
Bonsoir

Peux tu acceder a internet en mode sans echec.

Dans tous les cas fait ceci:
Ouvre ce lien et télécharge ZHPDiag :

https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html

Une fois le téléchargement achevé, dézippe le fichier obtenu et place ZHPDiag.exe sur ton Bureau.

Double-clique sur l'icône pour lancer le programme.

Clique sur Tous pour cocher toutes les cases des options.

Clique sur la loupe pour lancer l'analyse.

Laisse l'outil travailler, il peut être assez long.

Ferme ZHPDiag en fin d'analyse.


Pour transmettre le rapport clique sur ce lien :

http://www.cijoint.fr/

Clique sur Parcourir et cherche le répertoire où est installé ZHPDiag (en général C:\Program Files\ZHPDiag).

Sélectionne le fichier ZHPDiag.txt.

Clique sur "Cliquez ici pour déposer le fichier".

Un lien de cette forme :

http://www.cijoint.fr/cjlink.php?file=cj200905/cijSKAP5fU.txt

est ajouté dans la page.

Copie ce lien dans ta réponse.


@+
0
streetlight Messages postés 29 Date d'inscription samedi 28 novembre 2009 Statut Membre Dernière intervention 9 mai 2011
28 nov. 2009 à 23:46
Est-ce que tu me suggère d'arreter les scans en cours pour faire ce que tu me dis ou alors j'attend qu'ils soient terminés? Et est-ce que je devrais faire cela dans l'utilisateur qui reçoit les pop-ups ou ça n'a aucune importance?
0
Utilisateur anonyme > streetlight Messages postés 29 Date d'inscription samedi 28 novembre 2009 Statut Membre Dernière intervention 9 mai 2011
28 nov. 2009 à 23:52
Re

Quels scans as tu lancé?
Poste moi le ou les rapport(s)de ce ou ces divers scans.
Merci.

Ensuite ;fait ce que je t'ai demandé.

@+

0
streetlight Messages postés 29 Date d'inscription samedi 28 novembre 2009 Statut Membre Dernière intervention 9 mai 2011 > Utilisateur anonyme
28 nov. 2009 à 23:57
J'ai lancé le scan d'avast et d'ad-aware. Selon toi qu'est-ce que je devrais faire pour éviter ce genre de virus?(J'ai commencé a voir des problemes sur un site que je visite souvent, je crois qu'il est fiable et je fait attention à ce que je télécharge.
0
Utilisateur anonyme > streetlight Messages postés 29 Date d'inscription samedi 28 novembre 2009 Statut Membre Dernière intervention 9 mai 2011
29 nov. 2009 à 00:08
Re

Commence par faire ce qu'il t'est demandé.S'il te plait .
Merci.
0
Réponse 3 / 12
streetlight Messages postés 29 Date d'inscription samedi 28 novembre 2009 Statut Membre Dernière intervention 9 mai 2011
29 nov. 2009 à 02:40
Le scan ad-aware est maintenant terminé voila le rapport j'envoi lui de avast dès qu'il est prêt et ensuite je fait ce que tu m'as dit

Logfile created: 2009-11-28 17:11:14
Lavasoft Ad-Aware version: 8.1.2
User performing scan: NORMAND

*********************** Definitions database information ***********************
Lavasoft definition file: 149.103
Genotype definition file version: 2009/11/26 16:51:00

******************************** Scan results: *********************************
Scan profile name: Analyse complète (ID: full)
Objects scanned: 189243
Objects detected: 307


Type Detected
==========================
Processes.......: 0
Registry entries: 0
Hostfile entries: 0
Files...........: 0
Folders.........: 0
LSPs............: 0
Cookies.........: 307
Browser hijacks.: 0
MRU objects.....: 0



Removed items:
Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
Description: *7search* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408939 Family ID: 0
Description: *adserver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408737 Family ID: 0
Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
Description: *adtech* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409018 Family ID: 0
Description: *adserve* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409020 Family ID: 0
Description: *atdmt* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408910 Family ID: 0
Description: *adbureau* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409027 Family ID: 0
Description: *weborama* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408955 Family ID: 0
Description: *bs.serving-sys* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408902 Family ID: 0
Description: *serving-sys* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409130 Family ID: 0
Description: *doubleclick* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408875 Family ID: 0
Description: *estat* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408873 Family ID: 0
Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
Description: *insightexpressai* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409259 Family ID: 0
Description: *mediaplex* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408991 Family ID: 0
Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
Description: *perf.overture* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408828 Family ID: 0
Description: *overture* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408834 Family ID: 0
Description: *questionmarket* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408819 Family ID: 0
Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
Description: *serving-sys* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409130 Family ID: 0
Description: *adserver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408737 Family ID: 0
Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
Description: *adserve* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409020 Family ID: 0
Description: *weborama* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408955 Family ID: 0
Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
Description: *247realmedia* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408945 Family ID: 0
Description: *realmedia* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409139 Family ID: 0
Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
Description: *.adtoma* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409297 Family ID: 0
Description: *doubleclick* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408875 Family ID: 0
Description: *ad.yieldmanager* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409172 Family ID: 0
Description: *adbrite* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409218 Family ID: 0
Description: *adbureau* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409027 Family ID: 0
Description: *adlegend* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409170 Family ID: 0
Description: *adopt.euroclick* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409169 Family ID: 0
Description: *specificclick* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408807 Family ID: 0
Description: *pointroll* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408826 Family ID: 0
Description: *ads.pointroll* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408927 Family ID: 0
Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
Description: *adserve* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409020 Family ID: 0
Description: *adserver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408737 Family ID: 0
Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
Description: *adtech* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409018 Family ID: 0
Description: *adserve* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409020 Family ID: 0
Description: *adserver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408737 Family ID: 0
Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
Description: *adserve* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409020 Family ID: 0
Description: *adserver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408737 Family ID: 0
Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
Description: *adserve* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409020 Family ID: 0
Description: *adserver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408737 Family ID: 0
Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
Description: *adserve* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409020 Family ID: 0
Description: *adserver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408737 Family ID: 0
Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
Description: *adserve* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409020 Family ID: 0
Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
Description: *adserve* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409020 Family ID: 0
Description: *adtech* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409018 Family ID: 0
Description: *advertis* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408918 Family ID: 0
Description: *advertising* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409017 Family ID: 0
Description: *advertis* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408918 Family ID: 0
Description: *advertising* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409017 Family ID: 0
Description: *adviva* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409016 Family ID: 0
Description: *tacoda* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409123 Family ID: 0
Description: *apmebf* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409163 Family ID: 0
Description: *atdmt* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408910 Family ID: 0
Description: *adbureau* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409027 Family ID: 0
Description: *weborama* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408955 Family ID: 0
Description: *bs.serving-sys* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408902 Family ID: 0
Description: *serving-sys* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409130 Family ID: 0
Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
Description: *casalemedia* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409152 Family ID: 0
Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
Description: *specificclick* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408807 Family ID: 0
Description: *weborama* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408955 Family ID: 0
Description: *adbureau* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409027 Family ID: 0
Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
Description: *.bridgetrack* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409095 Family ID: 0
Description: *clickbank* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408890 Family ID: 0
Description: *doubleclick* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408875 Family ID: 0
Description: *adrevolver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408932 Family ID: 0
Description: *media.adrevolver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409144 Family ID: 0
Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
Description: *.hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409072 Family ID: 0
Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
Description: *.hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409072 Family ID: 0
Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
Description: *.hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409072 Family ID: 0
Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
Description: *.hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409072 Family ID: 0
Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
Description: *.hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409072 Family ID: 0
Description: *estat* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408873 Family ID: 0
Description: *fastclick* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408869 Family ID: 0
Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
Description: *advertis* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408918 Family ID: 0
Description: *advertising* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409017 Family ID: 0
Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
Description: *adbureau* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409027 Family ID: 0
Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
Description: *insightexpressai* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409259 Family ID: 0
Description: *iwon* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408852 Family ID: 0
Description: *kontera* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409363 Family ID: 0
Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
Description: *webtrends* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 599640 Family ID: 0
Description: *adrevolver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408932 Family ID: 0
Description: *media.adrevolver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409144 Family ID: 0
Description: *adrevolver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408932 Family ID: 0
Description: *media.adrevolver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409144 Family ID: 0
Description: *mediaplex* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408991 Family ID: 0
Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
Description: *metriweb* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408990 Family ID: 0
Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
Description: *247realmedia* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408945 Family ID: 0
Description: *realmedia* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409139 Family ID: 0
Description: *overture* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408834 Family ID: 0
Description: *perf.overture* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408828 Family ID: 0
Description: *overture* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408834 Family ID: 0
Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
Description: *adbureau* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409027 Family ID: 0
Description: *questionmarket* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408819 Family ID: 0
Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
Description: *realmedia* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409139 Family ID: 0
Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
Description: *rotator.adjuggler* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409135 Family ID: 0
Description: *weborama* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408955 Family ID: 0
Description: *serving-sys* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409130 Family ID: 0
Description: *adserver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408737 Family ID: 0
Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
Description: *adserve* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409020 Family ID: 0
Description: *specificclick* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408807 Family ID: 0
Description: *statcounter* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409185 Family ID: 0
Description: *statse.webtrends* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408803 Family ID: 0
Description: *webtrendslive* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408954 Family ID: 0
Description: *.webtrendslive* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409033 Family ID: 0
Description: *statse.webtrendslive* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409269 Family ID: 0
Description: *webtrends* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 599640 Family ID: 0
Description: *tacoda* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409123 Family ID: 0
Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
Description: *tradedoubler* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408964 Family ID: 0
Description: *trafficmp* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408787 Family ID: 0
Description: *adbureau* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409027 Family ID: 0
Description: *tribalfusion* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408785 Family ID: 0
Description: *unicast* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409281 Family ID: 0
Description: *adbureau* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409027 Family ID: 0
Description: *adbureau* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409027 Family ID: 0
Description: *weborama* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408955 Family ID: 0
Description: *webtrends* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 599640 Family ID: 0
Description: *wunderloop* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 599639 Family ID: 0
Description: *klo* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408848 Family ID: 0
Description: *.counter-gratis* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409082 Family ID: 0
Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
Description: *iwon* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408852 Family ID: 0
Description: www.luckynugget* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408758 Family ID: 0
Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
Description: *adbureau* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409027 Family ID: 0
Description: zedo* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408736 Family ID: 0
Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
Description: *247realmedia* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408945 Family ID: 0
Description: *realmedia* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409139 Family ID: 0
Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
Description: *ad.yieldmanager* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409172 Family ID: 0
Description: *adlegend* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409170 Family ID: 0
Description: *adopt.euroclick* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409169 Family ID: 0
Description: *.bridgetrack* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409095 Family ID: 0
Description: *pointroll* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408826 Family ID: 0
Description: *ads.pointroll* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408927 Family ID: 0
Description: *adserver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408737 Family ID: 0
Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
Description: *adtech* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409018 Family ID: 0
Description: *adserve* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409020 Family ID: 0
Description: *adserver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408737 Family ID: 0
Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
Description: *adserve* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409020 Family ID: 0
Description: *adserver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408737 Family ID: 0
Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
Description: *adserve* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409020 Family ID: 0
Description: *adtech* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409018 Family ID: 0
Description: *advertis* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408918 Family ID: 0
Description: *advertising* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409017 Family ID: 0
Description: *adviva* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409016 Family ID: 0
Description: *tacoda* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409123 Family ID: 0
Description: *apmebf* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409163 Family ID: 0
Description: *atdmt* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408910 Family ID: 0
Description: *weborama* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408955 Family ID: 0
Description: *adbureau* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409027 Family ID: 0
Description: *bilbo.counted* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408906 Family ID: 0
Description: *bravenet* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409013 Family ID: 0
Description: *bs.serving-sys* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408902 Family ID: 0
Description: *serving-sys* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409130 Family ID: 0
Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
Description: *casalemedia* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409152 Family ID: 0
Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
Description: *content.ipro* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409190 Family ID: 0
Description: *counter.hitslink* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408884 Family ID: 0
Description: *.hitslink* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409071 Family ID: 0
Description: *bravenet* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409013 Family ID: 0
Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
Description: *coremetrics* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409008 Family ID: 0
Description: *data.coremetrics* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409220 Family ID: 0
Description: *dealtime* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409235 Family ID: 0
Description: *doubleclick* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408875 Family ID: 0
Description: *omniture* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408835 Family ID: 0
Description: *.stats.esomniture* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409181 Family ID: 0
Description: *.ru4* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409055 Family ID: 0
Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
Description: *.hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409072 Family ID: 0
Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
Description: *.hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409072 Family ID: 0
Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
Description: *.hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409072 Family ID: 0
Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
Description: *.hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409072 Family ID: 0
Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
Description: *.hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409072 Family ID: 0
Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
Description: *.hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409072 Family ID: 0
Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
Description: *.hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409072 Family ID: 0
Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
Description: *.hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409072 Family ID: 0
Description: *estat* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408873 Family ID: 0
Description: *fastclick* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408869 Family ID: 0
Description: *.comclick* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409086 Family ID: 0
Description: *estat* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408873 Family ID: 0
Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
Description: *kelkoo* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408851 Family ID: 0
Description: *kelkoo* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408851 Family ID: 0
Description: *weborama* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408955 Family ID: 0
Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
Description: *webtrends* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 599640 Family ID: 0
Description: *webstat* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409228 Family ID: 0
Description: *adrevolver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408932 Family ID: 0
Description: *media.adrevolver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409144 Family ID: 0
Description: *mediaplex* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408991 Family ID: 0
Description: *bravenet* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409013 Family ID: 0
Description: *bravenet* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409013 Family ID: 0
Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
Description: *overture* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408834 Family ID: 0
Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
Description: *perf.overture* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408828 Family ID: 0
Description: *overture* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408834 Family ID: 0
Description: *hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408858 Family ID: 0
Description: *.hitbox* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409072 Family ID: 0
Description: *questionmarket* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408819 Family ID: 0
Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
Description: *realmedia* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409139 Family ID: 0
Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0
Description: *rotator.adjuggler* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409135 Family ID: 0
Description: *serving-sys* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409130 Family ID: 0
Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
Description: *adserver* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408737 Family ID: 0
Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
Description: *adserve* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409020 Family ID: 0
Description: *specificclick* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408807 Family ID: 0
Description: *statcounter* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409185 Family ID: 0
Description: *statse.webtrends* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408803 Family ID: 0
Description: *webtrendslive* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408954 Family ID: 0
Description: *.webtrendslive* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409033 Family ID: 0
Description: *statse.webtrendslive* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409269 Family ID: 0
Description: *webtrends* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 599640 Family ID: 0
Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
Description: *tacoda* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409123 Family ID: 0
Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
Description: *tradedoubler* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408964 Family ID: 0
Description: *advertis* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408918 Family ID: 0
Description: *advertising* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409017 Family ID: 0
Description: *tribalfusion* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408785 Family ID: 0
Description: *tripod* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408784 Family ID: 0
Description: *adbureau* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409027 Family ID: 0
Description: *adbureau* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409027 Family ID: 0
Description: *weborama* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408955 Family ID: 0
Description: *webstat* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409228 Family ID: 0
Description: *webtrends* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 599640 Family ID: 0
Description: *webtrends* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 599640 Family ID: 0
Description: *2o7* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408943 Family ID: 0
Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
Description: *adserv* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408921 Family ID: 0
Description: *real* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408817 Family ID: 0

Scan and cleaning complete: Finished correctly after 11957 seconds

*********************************** Settings ***********************************

Scan profile:
ID: full, enabled:1, value: Analyse complète
ID: folderstoscan, enabled:1, value: C:\
ID: useantivirus, enabled:0, value: true
ID: sections, enabled:1
ID: scancriticalareas, enabled:1, value: true
ID: scanrunningapps, enabled:1, value: true
ID: scanregistry, enabled:1, value: true
ID: scanlsp, enabled:1, value: true
ID: scanads, enabled:1, value: true
ID: scanhostsfile, enabled:1, value: true
ID: scanmru, enabled:1, value: true
ID: scanbrowserhijacks, enabled:1, value: true
ID: scantrackingcookies, enabled:1, value: true
ID: closebrowsers, enabled:1, value: false
ID: filescanningoptions, enabled:1
ID: archives, enabled:1, value: true
ID: onlyexecutables, enabled:1, value: false
ID: skiplargerthan, enabled:1, value: 20480
ID: scanrootkits, enabled:1, value: true
ID: rootkitlevel, enabled:1, value: mild, domain: medium,mild,strict
ID: usespywareheuristics, enabled:1, value: true
ID: heuristicslevel, enabled:1, value: mild, domain: medium,mild,strict

Scan global:
ID: global, enabled:1
ID: addtocontextmenu, enabled:1, value: true
ID: playsoundoninfection, enabled:1, value: false
ID: soundfile, enabled:0, value: *to be filled in automatically*\alert.wav

Scheduled scan settings:
<Empty>

Update settings:
ID: updates, enabled:1
ID: launchthreatworksafterscan, enabled:1, value: off, domain: normal,off,silently
ID: deffiles, enabled:1, value: downloadandinstall, domain: dontcheck,downloadandinstall
ID: softwareupdates, enabled:1, value: downloadandinstall, domain: dontcheck,downloadandinstall
ID: licenseandinfo, enabled:1, value: downloadandinstall, domain: dontcheck,downloadandinstall
ID: schedules, enabled:1, value: true
ID: updatedaily1, enabled:0, value: Daily 1
ID: time, enabled:0, value: Sat Nov 28 17:08:00 2009
ID: frequency, enabled:0, value: daily, domain: daily,monthly,once,systemstart,weekly
ID: weekdays, enabled:0
ID: monday, enabled:0, value: false
ID: tuesday, enabled:0, value: false
ID: wednesday, enabled:0, value: false
ID: thursday, enabled:0, value: false
ID: friday, enabled:0, value: false
ID: saturday, enabled:0, value: false
ID: sunday, enabled:0, value: false
ID: monthly, enabled:0, value: 1, minvalue: 1, maxvalue: 31
ID: scanprofile, enabled:0, value:
ID: auto_deal_with_infections, enabled:0, value: false
ID: updatedaily2, enabled:0, value: Daily 2
ID: time, enabled:0, value: Sat Nov 28 23:08:00 2009
ID: frequency, enabled:0, value: daily, domain: daily,monthly,once,systemstart,weekly
ID: weekdays, enabled:0
ID: monday, enabled:0, value: false
ID: tuesday, enabled:0, value: false
ID: wednesday, enabled:0, value: false
ID: thursday, enabled:0, value: false
ID: friday, enabled:0, value: false
ID: saturday, enabled:0, value: false
ID: sunday, enabled:0, value: false
ID: monthly, enabled:0, value: 1, minvalue: 1, maxvalue: 31
ID: scanprofile, enabled:0, value:
ID: auto_deal_with_infections, enabled:0, value: false
ID: updatedaily3, enabled:0, value: Daily 3
ID: time, enabled:0, value: Sat Nov 28 05:08:00 2009
ID: frequency, enabled:0, value: daily, domain: daily,monthly,once,systemstart,weekly
ID: weekdays, enabled:0
ID: monday, enabled:0, value: false
ID: tuesday, enabled:0, value: false
ID: wednesday, enabled:0, value: false
ID: thursday, enabled:0, value: false
ID: friday, enabled:0, value: false
ID: saturday, enabled:0, value: false
ID: sunday, enabled:0, value: false
ID: monthly, enabled:0, value: 1, minvalue: 1, maxvalue: 31
ID: scanprofile, enabled:0, value:
ID: auto_deal_with_infections, enabled:0, value: false
ID: updatedaily4, enabled:0, value: Daily 4
ID: time, enabled:0, value: Sat Nov 28 11:08:00 2009
ID: frequency, enabled:0, value: daily, domain: daily,monthly,once,systemstart,weekly
ID: weekdays, enabled:0
ID: monday, enabled:0, value: false
ID: tuesday, enabled:0, value: false
ID: wednesday, enabled:0, value: false
ID: thursday, enabled:0, value: false
ID: friday, enabled:0, value: false
ID: saturday, enabled:0, value: false
ID: sunday, enabled:0, value: false
ID: monthly, enabled:0, value: 1, minvalue: 1, maxvalue: 31
ID: scanprofile, enabled:0, value:
ID: auto_deal_with_infections, enabled:0, value: false
ID: updateweekly1, enabled:1, value: Weekly
ID: time, enabled:1, value: Sat Nov 28 17:08:00 2009
ID: frequency, enabled:1, value: weekly, domain: daily,monthly,once,systemstart,weekly
ID: weekdays, enabled:1
ID: monday, enabled:1, value: false
ID: tuesday, enabled:1, value: true
ID: wednesday, enabled:1, value: false
ID: thursday, enabled:1, value: false
ID: friday, enabled:1, value: false
ID: saturday, enabled:1, value: true
ID: sunday, enabled:1, value: false
ID: monthly, enabled:1, value: 1, minvalue: 1, maxvalue: 31
ID: scanprofile, enabled:1, value:
ID: auto_deal_with_infections, enabled:1, value: false

Appearance settings:
ID: appearance, enabled:1
ID: skin, enabled:1, value: default.egl, reglocation: HKEY_LOCAL_MACHINE\SOFTWARE\Lavasoft\Ad-Aware\Resource
ID: showtrayicon, enabled:1, value: true
ID: autoentertainmentmode, enabled:0, value: true
ID: guimode, enabled:1, value: mode_simple, domain: mode_advanced,mode_simple
ID: language, enabled:1, value: fr, reglocation: HKEY_LOCAL_MACHINE\SOFTWARE\Lavasoft\Ad-Aware\Language

Realtime protection settings:
ID: realtime, enabled:1
ID: modules, enabled:1
ID: processprotection, enabled:1, value: true
ID: registryprotection, enabled:0, value: true
ID: networkprotection, enabled:0, value: true
ID: layers, enabled:1
ID: useantivirus, enabled:0, value: true
ID: usespywareheuristics, enabled:0, value: true
ID: heuristicslevel, enabled:0, value: mild, domain: medium,mild,strict
ID: infomessages, enabled:1, value: onlyimportant, domain: display,dontnotify,onlyimportant


****************************** System information ******************************
Computer name: WADE3
Processor name: Intel(R) Pentium(R) 4 CPU 3.00GHz
Processor identifier: x86 Family 15 Model 4 Stepping 1
Processor speed: ~2992MHZ
Raw info: processorarchitecture 0, processortype 586, processorlevel 15, processor revision 1025, number of processors 2, processor features: [MMX,SSE,SSE2]
Physical memory available: 280571904 bytes
Physical memory total: 1071722496 bytes
Virtual memory available: 1978249216 bytes
Virtual memory total: 2147352576 bytes
Memory load: 73%
Microsoft Windows XP Professional Service Pack 3 (build 2600)
Windows startup mode:

Running processes:
PID: 700 name: \SystemRoot\System32\smss.exe owner: SYSTEM domain: AUTORITE NT
PID: 748 name: \??\C:\WINDOWS\system32\csrss.exe owner: SYSTEM domain: AUTORITE NT
PID: 784 name: \??\C:\WINDOWS\SYSTEM32\winlogon.exe owner: SYSTEM domain: AUTORITE NT
PID: 828 name: C:\WINDOWS\system32\services.exe owner: SYSTEM domain: AUTORITE NT
PID: 840 name: C:\WINDOWS\system32\lsass.exe owner: SYSTEM domain: AUTORITE NT
PID: 1040 name: C:\WINDOWS\system32\Ati2evxx.exe owner: SYSTEM domain: AUTORITE NT
PID: 1060 name: C:\WINDOWS\system32\svchost.exe owner: SYSTEM domain: AUTORITE NT
PID: 1116 name: C:\WINDOWS\system32\svchost.exe owner: SERVICE RÉSEAU domain: AUTORITE NT
PID: 1236 name: C:\WINDOWS\System32\svchost.exe owner: SYSTEM domain: AUTORITE NT
PID: 1276 name: C:\WINDOWS\system32\svchost.exe owner: SYSTEM domain: AUTORITE NT
PID: 1444 name: C:\WINDOWS\system32\svchost.exe owner: SERVICE RÉSEAU domain: AUTORITE NT
PID: 1592 name: C:\WINDOWS\system32\svchost.exe owner: SERVICE LOCAL domain: AUTORITE NT
PID: 1640 name: C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe owner: SYSTEM domain: AUTORITE NT
PID: 1688 name: C:\Program Files\Alwil Software\Avast4\ashServ.exe owner: SYSTEM domain: AUTORITE NT
PID: 2040 name: C:\WINDOWS\system32\spoolsv.exe owner: SYSTEM domain: AUTORITE NT
PID: 736 name: C:\WINDOWS\system32\svchost.exe owner: SERVICE LOCAL domain: AUTORITE NT
PID: 912 name: C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe owner: SYSTEM domain: AUTORITE NT
PID: 1172 name: C:\Program Files\Bonjour\mDNSResponder.exe owner: SYSTEM domain: AUTORITE NT
PID: 1308 name: C:\Program Files\Java\jre6\bin\jqs.exe owner: SYSTEM domain: AUTORITE NT
PID: 1560 name: C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE owner: SYSTEM domain: AUTORITE NT
PID: 1740 name: C:\WINDOWS\system32\PnkBstrA.exe owner: SYSTEM domain: AUTORITE NT
PID: 1808 name: C:\WINDOWS\system32\svchost.exe owner: SYSTEM domain: AUTORITE NT
PID: 448 name: C:\WINDOWS\wanmpsvc.exe owner: SYSTEM domain: AUTORITE NT
PID: 2120 name: C:\Program Files\Canon\CAL\CALMAIN.exe owner: SYSTEM domain: AUTORITE NT
PID: 2408 name: C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe owner: SYSTEM domain: AUTORITE NT
PID: 2432 name: C:\Program Files\Alwil Software\Avast4\ashWebSv.exe owner: SYSTEM domain: AUTORITE NT
PID: 2632 name: C:\WINDOWS\System32\alg.exe owner: SERVICE LOCAL domain: AUTORITE NT
PID: 3072 name: C:\Program Files\iPod\bin\iPodService.exe owner: SYSTEM domain: AUTORITE NT
PID: 4564 name: C:\WINDOWS\SYSTEM32\rundll32.exe owner: SYSTEM domain: AUTORITE NT
PID: 7484 name: \??\C:\WINDOWS\system32\csrss.exe owner: SYSTEM domain: AUTORITE NT
PID: 9784 name: \??\C:\WINDOWS\SYSTEM32\winlogon.exe owner: SYSTEM domain: AUTORITE NT
PID: 3384 name: C:\WINDOWS\SYSTEM32\Ati2evxx.exe owner: SYSTEM domain: AUTORITE NT
PID: 4196 name: C:\WINDOWS\system32\wscntfy.exe owner: NORMAND domain: WADE3
PID: 7332 name: C:\WINDOWS\Explorer.EXE owner: NORMAND domain: WADE3
PID: 6252 name: C:\WINDOWS\stsystra.exe owner: NORMAND domain: WADE3
PID: 9252 name: C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe owner: NORMAND domain: WADE3
PID: 9396 name: C:\Program Files\Dell\Media Experience\DMXLauncher.exe owner: NORMAND domain: WADE3
PID: 6704 name: C:\Program Files\Dell Photo AIO Printer 922\dlbtbmgr.exe owner: NORMAND domain: WADE3
PID: 2824 name: C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe owner: NORMAND domain: WADE3
PID: 10140 name: C:\WINDOWS\system32\dla\tfswctrl.exe owner: NORMAND domain: WADE3
PID: 4900 name: C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe owner: NORMAND domain: WADE3
PID: 7000 name: C:\Program Files\PowerISO\PWRISOVM.EXE owner: NORMAND domain: WADE3
PID: 8444 name: C:\Program Files\Microsoft IntelliPoint\ipoint.exe owner: NORMAND domain: WADE3
PID: 7400 name: C:\Program Files\iTunes\iTunesHelper.exe owner: NORMAND domain: WADE3
PID: 8512 name: C:\WINDOWS\system32\ctfmon.exe owner: NORMAND domain: WADE3
PID: 808 name: C:\Program Files\Dell Photo AIO Printer 922\dlbtbmon.exe owner: NORMAND domain: WADE3
PID: 5600 name: C:\Program Files\Windows Live\Messenger\msnmsgr.exe owner: NORMAND domain: WADE3
PID: 7280 name: C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe owner: NORMAND domain: WADE3
PID: 6592 name: C:\Program Files\Fichiers communs\InstallShield\UpdateService\isuspm.exe owner: NORMAND domain: WADE3
PID: 8292 name: C:\Program Files\WiFiConnector\NintendoWFCReg.exe owner: NORMAND domain: WADE3
PID: 6980 name: C:\Program Files\Internet Explorer\iexplore.exe owner: NORMAND domain: WADE3
PID: 8312 name: C:\Program Files\Internet Explorer\iexplore.exe owner: NORMAND domain: WADE3
PID: 1180 name: C:\Program Files\Alwil Software\Avast4\ashSimpl.exe owner: NORMAND domain: WADE3
PID: 3016 name: C:\WINDOWS\system32\msiexec.exe owner: SYSTEM domain: AUTORITE NT
PID: 3980 name: C:\WINDOWS\system32\wbem\wmiprvse.exe owner: SYSTEM domain: AUTORITE NT
PID: 4896 name: C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe owner: SYSTEM domain: AUTORITE NT
PID: 9012 name: C:\WINDOWS\system32\wbem\unsecapp.exe owner: SYSTEM domain: AUTORITE NT
PID: 8932 name: C:\Program Files\Lavasoft\Ad-Aware\Ad-Aware.exe owner: NORMAND domain: WADE3
PID: 9780 name: C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe owner: NORMAND domain: WADE3

Startup items:
Name: {438755C2-A8BA-11D1-B96B-00A0C90312E1}
imagepath: Pré-chargeur Browseui
Name: {8C7461EF-2B13-11d2-BE35-3078302C2030}
imagepath: Démon de cache des catégories de composant
Name: CTFMON.EXE
imagepath: C:\WINDOWS\system32\CTFMON.EXE
Name: swg
imagepath: C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
Name: PostBootReminder
imagepath: {7849596a-48ea-486e-8937-a2a3009f31a9}
Name: CDBurn
imagepath: {fbeb8a05-beee-4442-804e-409d6c4515e9}
Name: WebCheck
imagepath: {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
Name: SysTray
imagepath: {35CEC8A3-2BE6-11D2-8773-92E220524153}
Name: WPDShServiceObj
imagepath: {AAA288BA-9A4C-45B0-95D7-94D524869DB5}
Name: SigmatelSysTrayApp
imagepath: stsystra.exe
Name: ATIPTA
imagepath: C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
Name: IntelMeM
imagepath: C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe
Name: DVDLauncher
imagepath: "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
Name: ISUSScheduler
imagepath: "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
Name: DMXLauncher
imagepath: C:\Program Files\Dell\Media Experience\DMXLauncher.exe
Name: Dell Photo AIO Printer 922
imagepath: "C:\Program Files\Dell Photo AIO Printer 922\dlbtbmgr.exe"
Name:
location: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Compagnon d'AOL.lnk
imagepath: C:\Program Files\AOL Companion\companion.exe
Name:
imagepath: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\desktop.ini
Name:
location: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Lancer l'utilitaire d'enregistrement.lnk
imagepath: C:\Program Files\WiFiConnector\NintendoWFCReg.exe
Name:
location: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Mini-icône d'AOL 8.0.lnk
imagepath: C:\Program Files\AOL 8.0\aoltray.exe
Name:
imagepath: C:\Documents and Settings\Default User\Menu Démarrer\Programmes\Démarrage\desktop.ini

Bootexecute items:
Name:
imagepath: autocheck autochk *
Name:
imagepath: PFDNNT C:\WINDOWS\SYSTEM32\F3PSSAVR.SCR
Name:
imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\1.BIN\F3SCRCTR.DLL
Name:
imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\1.BIN\F3CJPEG.DLL
Name:
imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\1.BIN\F3HISTSW.DLL
Name:
imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\1.BIN\F3HTTPCT.DLL
Name:
imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\1.BIN\F3PSSAVR.SCR
Name:
imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\1.BIN\F3REPROX.DLL
Name:
imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\1.BIN\F3RESTUB.DLL
Name:
imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\1.BIN\F3WPHOOK.DLL
Name:
imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\1.BIN\M3HTML.DLL
Name:
imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\1.BIN\M3IDLE.DLL
Name:
imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\1.BIN\M3SKPLAY.EXE
Name:
imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\1.BIN\MWSOEPLG.DLL
Name:
imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\1.BIN\MWSOESTB.DLL
Name:
imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\1.BIN\NPMYWEBS.DLL
Name:
imagepath: PFDNNT C:\Program Files\MyWebSearch\bar\1.bin
Name:
imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\CACHE\015641AD.BIN
Name:
imagepath: PFDNNT C:\Program Files\MyWebSearch\bar\Cache
Name:
imagepath: PFDNNT C:\Program Files\MyWebSearch\bar\Game
Name:
imagepath: PFDNNT C:\PROGRAM FILES\MYWEBSEARCH\BAR\SETTINGS\PREVCFG2.HTM
Name:
imagepath: PFDNNT C:\Program Files\MyWebSearch\bar\Settings
Name:
imagepath: PFDNNT C:\Program Files\MyWebSearch

Running services:
Name: ALG
displayname: Service de la passerelle de la couche Application
Name: Apple Mobile Device
displayname: Apple Mobile Device
Name: aswUpdSv
displayname: avast! iAVS4 Control Service
Name: Ati HotKey Poller
displayname: Ati HotKey Poller
Name: AudioSrv
displayname: Audio Windows
Name: avast! Antivirus
displayname: avast! Antivirus
Name: avast! Mail Scanner
displayname: avast! Mail Scanner
Name: avast! Web Scanner
displayname: avast! Web Scanner
Name: Bonjour Service
displayname: Service Bonjour
Name: CCALib8
displayname: Canon Camera Access Library 8
Name: CryptSvc
displayname: Services de cryptographie
Name: DcomLaunch
displayname: Lanceur de processus serveur DCOM
Name: Dhcp
displayname: Client DHCP
Name: Dnscache
displayname: Client DNS
Name: ERSvc
displayname: Service de rapport d'erreurs
Name: Eventlog
displayname: Journal des événements
Name: EventSystem
displayname: Système d'événements de COM+
Name: FastUserSwitchingCompatibility
displayname: Compatibilité avec le Changement rapide d'utilisateur
Name: helpsvc
displayname: Aide et support
Name: HidServ
displayname: HID Input Service
Name: iPod Service
displayname: Service de l’iPod
Name: JavaQuickStarterService
displayname: Java Quick Starter
Name: lanmanserver
displayname: Serveur
Name: lanmanworkstation
displayname: Station de travail
Name: LmHosts
displayname: Assistance TCP/IP NetBIOS
Name: MDM
displayname: Machine Debug Manager
Name: MSIServer
displayname: Windows Installer
Name: Netman
displayname: Connexions réseau
Name: Nla
displayname: NLA (Network Location Awareness)
Name: PlugPlay
displayname: Plug-and-Play
Name: PnkBstrA
displayname: PnkBstrA
Name: PolicyAgent
displayname: Services IPSEC
Name: ProtectedStorage
displayname: Emplacement protégé
Name: RasMan
displayname: Gestionnaire de connexions d'accès distant
Name: RpcSs
displayname: Appel de procédure distante (RPC)
Name: SamSs
displayname: Gestionnaire de comptes de sécurité
Name: Schedule
displayname: Planificateur de tâches
Name: seclogon
displayname: Connexion secondaire
Name: SENS
displayname: Notification d'événement système
Name: SharedAccess
displayname: Pare-feu Windows / Partage de connexion Internet
Name: ShellHWDetection
displayname: Détection matériel noyau
Name: Spooler
displayname: Spouleur d'impression
Name: srservice
displayname: Service de restauration système
Name: SSDPSRV
displayname: Service de découvertes SSDP
Name: stisvc
displayname: Acquisition d'image Windows (WIA)
Name: TapiSrv
displayname: Téléphonie
Name: TermService
displayname: Services Terminal Server
Name: Themes
displayname: Thèmes
Name: TrkWks
displayname: Client de suivi de lien distribué
Name: upnphost
displayname: Hôte de périphérique universel Plug-and-Play
Name: w32time
displayname: Windows Time
Name: WANMiniportService
displayname: WAN Miniport (ATW) Service
Name: WebClient
displayname: WebClient
Name: winmgmt
displayname: Infrastructure de gestion Windows
Name: wscsvc
displayname: Centre de sécurité
Name: wuauserv
displayname: Mises à jour automatiques
Name: WudfSvc
displayname: Windows Driver Foundation - User-mode Driver Framework
Name: WZCSVC
displayname: Configuration automatique sans fil
Name: Lavasoft Ad-Aware Service
displayname: Lavasoft Ad-Aware Service
0
Réponse 4 / 12
streetlight Messages postés 29 Date d'inscription samedi 28 novembre 2009 Statut Membre Dernière intervention 9 mai 2011
29 nov. 2009 à 07:06
ok j'ai fait ce que tu m'as demandé voici le lien:
http://www.cijoint.fr/cjlink.php?file=cj200911/cijIn5eSou.txt
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 12
caillouditcouocu Messages postés 543 Date d'inscription jeudi 26 novembre 2009 Statut Membre Dernière intervention 28 juillet 2010 59
29 nov. 2009 à 07:09
Il ne faut jamais avoir deux antivirus d'installer en meme temps car ils créent des conflits, car j'ai cru voir que tu avais avast et AVG.
0
Réponse 6 / 12
streetlight Messages postés 29 Date d'inscription samedi 28 novembre 2009 Statut Membre Dernière intervention 9 mai 2011
29 nov. 2009 à 07:29
Ah désolé j'ai écris AVG dans mon premier message mais je voulais dire avast! c'est mon seul antivirus.
0
Utilisateur anonyme
29 nov. 2009 à 10:45
Bonjour

Télécharge combofix : http://download.bleepingcomputer.com/sUBs/ComboFix.exe
->Renomme le pour l’enregistrer sur ton bureau en asdehi (tout simplement pour que l’infection ne le contre pas)
-> Double clique combofix.exe.
-> Tape sur la touche 1 (Yes) pour démarrer le scan.
-> Lorsque le scan sera complété, un rapport apparaîtra. Copie/colle ce rapport dans ta prochaine réponse.

NOTE : Le rapport se trouve également ici : C:\Combofix.txt

Avant d'utiliser ComboFix :

-> Déconnecte toi d'Internet et referme les fenêtres de tous les programmes en cours.

-> Désactive provisoirement et seulement le temps de l'utilisation de ComboFix, la protection en temps réel de ton Antivirus et de tes Antispywares, qui peuvent gêner fortement la procédure de recherche et de nettoyage de l'outil.

Une fois fait, sur ton bureau double-clic sur Combofix.exe.

- Répond oui au message d'avertissement, pour que le programme commence à procéder à l'analyse du pc.

- Attention Pendant la durée de cette étape, ne te sert pas du pc et n'ouvre aucun programme. Risque de figer l'ordinateur

- En fin de scan il est possible que ComboFix ait besoin de redémarrer le pc pour finaliser la désinfection\recherche, laisses-le faire.

- Un rapport s'ouvrira ensuite dans le bloc notes, ce fichier rapport Combofix.txt, est automatiquement sauvegardé et rangé à C:\Combofix.txt)

-> Réactive la protection en temps réel de ton Antivirus et de tes Antispywares, avant de te reconnecter à internet.

-> Reviens sur le forum, et copie et colle la totalité du contenu de C:\Combofix.txt dans ton prochain message.

/!\ Ne touche à rien tant que le scan n'est pas terminé. /!\ : risque de figer l'ordinateur (plantage complet)


::Si combofix détecte quelque chose et de demande a redémarrer tu acceptes

@+
0
streetlight Messages postés 29 Date d'inscription samedi 28 novembre 2009 Statut Membre Dernière intervention 9 mai 2011 > Utilisateur anonyme
29 nov. 2009 à 18:28
Voici le scan de combofix




ComboFix 09-11-28.04 - NORMAND 2009-11-29 11:56.1.2 - x86
Microsoft Windows XP Édition familiale 5.1.2600.3.1252.33.1036.18.1022.468 [GMT -5:00]
Lancé depuis: c:\documents and settings\NORMAND\Bureau\asdehi.exe
AV: avast! antivirus 4.8.1368 [VPS 091129-0] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}

AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !!
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\MARC-ANDRÉ\Local Settings\Application Data\tphphl
c:\documents and settings\MARC-ANDRÉ\Local Settings\Application Data\tphphl\jeebsysguard.exe
c:\documents and settings\MARC-ANDR\Mes documents\ZbThumbnail.info
C:\install.exe
c:\program files\autorun.inf
c:\program files\Mozilla Firefox\plugins\npclntax.dll
c:\windows\system32\win.ini
c:\windows\Tasks\utqbgqlk.job

.
((((((((((((((((((((((((((((( Fichiers créés du 2009-10-28 au 2009-11-29 ))))))))))))))))))))))))))))))))))))
.

2009-11-29 16:53 . 2009-11-29 16:53 -------- d-sh--w- c:\windows\system32\config\systemprofile\IETldCache
2009-11-29 05:41 . 2009-11-29 06:12 -------- d-----w- c:\program files\ZHPDiag
2009-11-29 01:34 . 2009-11-28 22:08 15880 ----a-w- c:\windows\system32\lsdelete.exe
2009-11-28 22:07 . 2009-11-28 22:07 5908024 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\Resources.dll
2009-11-28 22:07 . 2009-11-28 22:07 87496 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\PrivacyClean.dll
2009-11-28 22:07 . 2009-11-28 22:07 327000 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\RPAPI.dll
2009-11-28 22:07 . 2009-11-28 22:07 933120 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\CEAPI.dll
2009-11-28 22:07 . 2009-11-28 22:07 641632 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\AutoLaunch.exe
2009-11-28 22:07 . 2009-11-28 22:07 816272 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\Ad-AwareCommand.exe
2009-11-28 22:07 . 2009-11-28 22:07 822904 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\Ad-AwareAdmin.exe
2009-11-28 22:07 . 2009-11-28 22:07 1638640 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\Ad-Aware.exe
2009-11-28 22:07 . 2009-11-28 22:07 788880 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\AAWTray.exe
2009-11-28 22:07 . 2009-11-28 22:07 1184912 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\AAWService.exe
2009-11-28 22:06 . 2009-11-28 22:06 -------- dc-h--w- c:\documents and settings\All Users\Application Data\{CFBD8779-FAAB-4357-84F2-1EC8619FADA6}
2009-11-28 22:06 . 2009-10-03 08:15 2924848 -c--a-w- c:\documents and settings\All Users\Application Data\{CFBD8779-FAAB-4357-84F2-1EC8619FADA6}\Ad-AwareInstallation.exe
2009-11-28 22:05 . 2009-11-28 22:08 -------- d-----w- c:\documents and settings\All Users\Application Data\Lavasoft
2009-11-28 22:05 . 2009-11-28 22:05 -------- d-----w- c:\program files\Lavasoft
2009-11-28 05:34 . 2009-11-28 05:34 -------- d-sh--w- c:\documents and settings\LocalService\IETldCache
2009-11-27 21:33 . 2009-11-27 21:33 31432 ---ha-w- c:\windows\system32\mlfcache.dat
2009-11-22 15:58 . 2009-11-29 00:54 -------- d-----w- c:\documents and settings\NORMAND\Tracing
2009-11-22 01:38 . 2009-09-04 22:29 453456 ----a-w- c:\windows\system32\d3dx10_42.dll
2009-11-22 01:38 . 2009-09-04 22:29 1892184 ----a-w- c:\windows\system32\D3DX9_42.dll
2009-11-22 01:37 . 2009-11-22 01:38 -------- d-----w- c:\program files\Microsoft Games for Windows - LIVE
2009-11-22 00:54 . 2009-11-22 00:54 -------- d-----w- c:\windows\Logs
2009-11-22 00:53 . 2009-11-22 00:53 -------- d-----w- c:\windows\system32\xlive
2009-11-12 21:54 . 2009-11-12 21:56 -------- d-----w- c:\documents and settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
2009-11-12 21:50 . 2009-11-12 21:50 -------- d-----w- c:\program files\Bonjour
2009-11-12 21:43 . 2009-08-29 00:42 2065696 ----a-w- c:\windows\system32\usbaaplrc.dll
2009-11-12 21:40 . 2009-11-12 21:40 79144 ----a-w- c:\documents and settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 9.0.2.25\SetupAdmin.exe
2009-11-10 11:17 . 2009-11-10 11:17 79488 ----a-w- c:\documents and settings\RITA\Application Data\Sun\Java\jre1.6.0_17\gtapi.dll
2009-11-08 14:46 . 2009-11-24 19:13 -------- d-----w- c:\documents and settings\RITA\Tracing
2009-11-06 15:59 . 2009-11-06 15:59 15406728 ----a-w- c:\windows\system32\xlive.dll
2009-11-06 15:59 . 2009-11-06 15:59 13642888 ----a-w- c:\windows\system32\xlivefnt.dll
2009-11-06 02:14 . 2009-11-06 02:14 41872 ----a-w- c:\windows\system32\xfcodec.dll
2009-11-06 00:24 . 2009-11-06 00:27 -------- d-----w- c:\program files\Microsoft
2009-11-06 00:24 . 2009-11-06 00:24 -------- d-----w- c:\program files\Windows Live SkyDrive
2009-11-06 00:20 . 2009-11-06 00:20 -------- d-----w- c:\program files\Fichiers communs\Windows Live
2009-11-02 23:05 . 2009-11-02 23:05 167064 ----a-w- c:\windows\system32\xliveinstall.dll
2009-11-02 23:05 . 2009-11-02 23:05 71832 ----a-w- c:\windows\system32\xliveinstallhost.exe

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-11-28 22:11 . 2006-04-19 22:11 44768 ----a-w- c:\documents and settings\NORMAND\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-11-28 01:46 . 2006-07-16 22:31 -------- d-----w- c:\program files\Warcraft III
2009-11-27 21:33 . 2005-08-31 14:59 -------- d-----w- c:\program files\Mp3
2009-11-26 03:13 . 2009-09-30 23:17 -------- d-----w- c:\program files\Incomplete
2009-11-25 19:46 . 2008-10-23 22:21 -------- d-----w- c:\program files\DNA
2009-11-25 02:39 . 2005-09-08 23:52 -------- d-----w- c:\program files\Dl_cats
2009-11-24 23:54 . 2007-03-06 15:28 1280480 ----a-w- c:\windows\system32\aswBoot.exe
2009-11-24 23:51 . 2007-03-06 15:28 93424 ----a-w- c:\windows\system32\drivers\aswmon.sys
2009-11-24 23:50 . 2007-03-06 15:28 94160 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2009-11-24 23:50 . 2008-06-09 19:16 114768 ----a-w- c:\windows\system32\drivers\aswSP.sys
2009-11-24 23:50 . 2008-06-09 19:16 20560 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2009-11-24 23:49 . 2007-03-06 15:28 48560 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2009-11-24 23:48 . 2007-03-06 15:28 23120 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2009-11-24 23:47 . 2007-03-06 15:28 27408 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2009-11-24 23:47 . 2007-03-06 15:28 97480 ----a-w- c:\windows\system32\AVASTSS.scr
2009-11-22 00:55 . 2009-11-22 00:55 -------- d-----w- c:\program files\Bethesda Softworks
2009-11-12 21:56 . 2008-12-26 05:42 -------- d-----w- c:\program files\iTunes
2009-11-12 21:55 . 2008-12-26 05:42 -------- d-----w- c:\program files\iPod
2009-11-12 21:49 . 2006-03-28 00:53 -------- d-----w- c:\program files\QuickTime
2009-11-12 21:45 . 2008-12-26 05:38 -------- d-----w- c:\program files\Fichiers communs\Apple
2009-11-06 00:24 . 2008-03-08 15:56 -------- d-----w- c:\program files\Windows Live
2009-11-01 23:38 . 2004-08-20 15:24 86274 ----a-w- c:\windows\system32\perfc00C.dat
2009-11-01 23:38 . 2004-08-20 15:24 514630 ----a-w- c:\windows\system32\perfh00C.dat
2009-10-31 20:12 . 2007-06-12 00:39 -------- d-----w- c:\program files\SystemRequirementsLab
2009-09-23 12:55 . 2009-11-28 22:08 64288 ----a-w- c:\windows\system32\drivers\Lbd.sys
2009-09-11 14:18 . 2004-08-20 15:23 136192 ----a-w- c:\windows\system32\msv1_0.dll
2009-09-04 21:04 . 2004-08-20 15:23 58880 ----a-w- c:\windows\system32\msasn1.dll
2009-05-10 20:30 . 2009-05-10 20:14 789505503 ----a-w- c:\program files\CombatArmsSetupV22.exe
2006-10-25 19:17 . 2006-11-01 20:20 380928 ----a-w- c:\program files\server.dll
2006-10-25 19:17 . 2006-11-01 20:20 1462 ----a-w- c:\program files\server.cfg
2006-10-25 19:17 . 2006-11-01 20:18 528384 ----a-w- c:\program files\AutoRunGUI.dll
2006-10-25 19:17 . 2006-11-01 20:18 258 ----a-w- c:\program files\dat.bin
2006-10-25 19:17 . 2006-11-01 20:18 193 ----a-w- c:\program files\common_filelist.txt
2006-10-25 19:17 . 2006-11-01 20:18 720896 ----a-w- c:\program files\EAInstall.dll
2006-10-25 19:17 . 2006-11-01 20:18 499712 ----a-w- c:\program files\msvcp71.dll
2006-10-25 19:17 . 2006-11-01 20:18 348160 ----a-w- c:\program files\msvcr71.dll
2006-10-25 19:17 . 2006-11-01 20:18 625035295 ----a-w- c:\program files\0compressed.zip
2006-04-30 23:07 . 2006-04-30 23:06 15557928 ----a-w- c:\program files\DivXPlay.exe
2006-06-08 20:41 . 2005-10-31 00:30 56 --sh--r- c:\windows\system32\5E63218C3C.sys
2006-06-08 20:41 . 2006-06-08 20:41 848 --sha-w- c:\windows\system32\KGyGaAvL.sys
.

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATIPTA"="c:\program files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2005-04-15 344064]
"IntelMeM"="c:\program files\Intel\Modem Event Monitor\IntelMEM.exe" [2003-09-04 221184]
"DVDLauncher"="c:\program files\CyberLink\PowerDVD\DVDLauncher.exe" [2005-02-23 53248]
"ISUSScheduler"="c:\program files\Fichiers communs\InstallShield\UpdateService\issch.exe" [2007-08-28 73728]
"DMXLauncher"="c:\program files\Dell\Media Experience\DMXLauncher.exe" [2005-01-27 86016]
"Dell Photo AIO Printer 922"="c:\program files\Dell Photo AIO Printer 922\dlbtbmgr.exe" [2004-11-10 290816]
"DLBTCATS"="c:\windows\System32\spool\DRIVERS\W32X86\3\DLBTtime.dll" [2004-11-09 69632]
"Xfire Music"="c:\program files\Jeux\Xfire\xfiremusic.exe" [2006-11-21 253650]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-11-24 81000]
"dla"="c:\windows\system32\dla\tfswctrl.exe" [2005-05-31 122941]
"TkBellExe"="c:\program files\Fichiers communs\Real\Update_OB\realsched.exe" [2008-04-16 185896]
"PWRISOVM.EXE"="c:\program files\PowerISO\PWRISOVM.EXE" [2008-11-02 167936]
"IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2007-08-31 1037736]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2009-09-05 417792]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-10-29 141600]
"SigmatelSysTrayApp"="stsystra.exe" - c:\windows\STSYSTRA.EXE [2005-03-23 339968]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\MARC-ANDR\Menu D‚marrer\Programmes\D‚marrage\
Adobe Gamma.lnk - c:\program files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe [2005-3-16 113664]
GameSpot Download Manager.lnk - c:\program files\GameSpot\GameSpotDownloadManager_Win32.exe [2007-11-15 876544]
Xfire.lnk - c:\program files\Jeux\Xfire\Xfire.exe [2009-11-5 3152272]

c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
Compagnon d'AOL.lnk - c:\program files\AOL Companion\companion.exe [2005-8-22 221258]
Lancer l'utilitaire d'enregistrement.lnk - c:\program files\WiFiConnector\NintendoWFCReg.exe [2007-12-25 1073152]
Mini-ic“ne d'AOL 8.0.lnk - c:\program files\AOL 8.0\aoltray.exe [2005-8-22 36937]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0PFDNNT c:\windows\SYSTEM32\F3PSSAVR.SCR\0PFDNNT c:\program files\MYWEBSEARCH\BAR\1.BIN\F3SCRCTR.DLL\0PFDNNT c:\program files\MYWEBSEARCH\BAR\1.BIN\F3CJPEG.DLL\0PFDNNT c:\program files\MYWEBSEARCH\BAR\1.BIN\F3HISTSW.DLL\0PFDNNT c:\program files\MYWEBSEARCH\BAR\1.BIN\F3HTTPCT.DLL\0PFDNNT c:\program files\MYWEBSEARCH\BAR\1.BIN\F3PSSAVR.SCR\0PFDNNT c:\program files\MYWEBSEARCH\BAR\1.BIN\F3REPROX.DLL\0PFDNNT c:\program files\MYWEBSEARCH\BAR\1.BIN\F3RESTUB.DLL\0PFDNNT c:\program files\MYWEBSEARCH\BAR\1.BIN\F3WPHOOK.DLL\0PFDNNT c:\program files\MYWEBSEARCH\BAR\1.BIN\M3HTML.DLL\0PFDNNT c:\program files\MYWEBSEARCH\BAR\1.BIN\M3IDLE.DLL\0PFDNNT c:\program files\MYWEBSEARCH\BAR\1.BIN\M3SKPLAY.EXE\0PFDNNT c:\program files\MYWEBSEARCH\BAR\1.BIN\MWSOEPLG.DLL\0PFDNNT c:\program files\MYWEBSEARCH\BAR\1.BIN\MWSOESTB.DLL\0PFDNNT c:\program files\MYWEBSEARCH\BAR\1.BIN\NPMYWEBS.DLL\0PFDNNT c:\program files\MyWebSearch\bar\1.bin\0PFDNNT c:\program files\MYWEBSEARCH\BAR\CACHE\015641AD.BIN\0PFDNNT c:\program files\MyWebSearch\bar\Cache\0PFDNNT c:\program files\MyWebSearch\bar\Game\0PFDNNT c:\program files\MYWEBSEARCH\BAR\SETTINGS\PREVCFG2.HTM\0PFDNNT c:\program files\MyWebSearch\bar\Settings\0PFDNNT c:\program files\MyWebSearch\0lsdelete

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
@="Service"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\BitTorrent\\bittorrent.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\LimeWire\\LimeWire.exe"=
"c:\\Program Files\\Jeux\\Xfire\\Xfire.exe"=
"c:\\Program Files\\NetMeeting\\conf.exe"=
"c:\\WINDOWS\\system32\\rtcshare.exe"=
"c:\\Program Files\\THQ\\Dawn Of War\\W40kWA.exe"=
"c:\\Program Files\\THQ\\Dawn Of War\\W40k.exe"=
"c:\\Program Files\\Veoh Networks\\Veoh\\VeohClient.exe"=
"c:\\Program Files\\WiFiConnector\\NintendoWFCReg.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\Program Files\\Joost\\xulrunner\\tvprunner.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Program Files\\Real\\RealPlayer\\realplay.exe"=
"c:\\Program Files\\Warcraft III\\Warcraft III.exe"=
"c:\\Program Files\\DNA\\btdna.exe"=
"c:\\WINDOWS\\Soulstorm.exe"=
"c:\\WINDOWS\\system32\\dxdiag.exe"=
"c:\\Documents and Settings\\All Users\\Application Data\\NexonUS\\NGM\\NGM.exe"=
"c:\\WINDOWS\\system32\\dpnsvr.exe"=
"c:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=
"c:\\Program Files\\Turbine\\DDO Unlimited\\dndclient.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3724:TCP"= 3724:TCP:Blizzard Downloader: 3724
"58123:TCP"= 58123:TCP:Pando Media Booster
"58123:UDP"= 58123:UDP:Pando Media Booster
"57218:TCP"= 57218:TCP:Pando Media Booster
"57218:UDP"= 57218:UDP:Pando Media Booster

R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2009-11-28 64288]
R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2008-06-09 114768]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2008-06-09 20560]
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\Lavasoft\Ad-Aware\AAWService.exe [2009-09-24 1184912]
S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [2006-06-03 717296]
S3 ComFiltr;Panda Anti-Dialer;\??\c:\windows\system32\DRIVERS\COMFiltr.sys --> c:\windows\system32\DRIVERS\COMFiltr.sys [?]
S3 npkycryp;npkycryp;\??\c:\program files\Gravity\RO\npkycryp.sys --> c:\program files\Gravity\RO\npkycryp.sys [?]
S3 PavSRK.sys;PavSRK.sys;\??\c:\windows\system32\PavSRK.sys --> c:\windows\system32\PavSRK.sys [?]
S3 SCREAMINGBDRIVER;Screaming Bee Audio;c:\windows\system32\drivers\ScreamingBAudio.sys --> c:\windows\system32\drivers\ScreamingBAudio.sys [?]
.
Contenu du dossier 'Tâches planifiées'

2009-11-29 c:\windows\Tasks\Ad-Aware Update (Weekly).job
- c:\program files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2009-10-01 22:07]

2009-11-26 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 17:34]

2008-12-25 c:\windows\Tasks\Microsoft_Hardware_Launch_IPoint_exe.job
- c:\program files\Microsoft IntelliPoint\ipoint.exe [2007-08-31 19:01]
.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://www.cyberpresse.ca/
mSearch Bar = hxxp://us.rd.yahoo.com/customize/ie/defaults/sb/msgr8/*http://www.yahoo.com/ext/search/search.html
uInternet Connection Wizard,ShellNext = hxxp://www.dell.ca/index.htm
IE: &Search -
IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
DPF: {BFD90062-6B5E-4F8F-87B1-5F022C14E32F} - hxxp://www.meetstream.com/activex/28055/activereceiver.cab
DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} - hxxps://secure.gopetslive.com/dev/GoPetsWeb.cab
DPF: {FA30EC32-668B-4B60-B13C-4C84EB90C3C9} - hxxp://www.meetstream.com/activex/28055/activeid.cab
FF - ProfilePath - c:\documents and settings\NORMAND\Application Data\Mozilla\Firefox\Profiles\s161m67o.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - component: c:\program files\Real\RealPlayer\browserrecord\components\nprpbrowserrecordplugin.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- PARAMETRES FIREFOX ----
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);
.
- - - - ORPHELINS SUPPRIMES - - - -

HKU-Default-Run-swg - c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
Notify-jkkiiHwW - jkkiiHwW.dll
AddRemove-Ad-Aware - c:\documents and settings\All Users\Application Data\{CFBD8779-FAAB-4357-84F2-1EC8619FADA6}\Ad-AwareInstallation.exe REMOVE=TRUE MODIFY=FALSE
AddRemove-War - c:\program files\KumaWar\uninst.exe
AddRemove-RealJukebox 1.0 - c:\program files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
AddRemove-RealPlayer 6.0 - c:\program files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-11-29 12:14
Windows 5.1.2600 Service Pack 3 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

HKLM\Software\Microsoft\Windows\CurrentVersion\Run
DLBTCATS = rundll32 c:\windows\System32\spool\DRIVERS\W32X86\3\DLBTtime.dll,_RunDLLEntry@16???????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés: 0

**************************************************************************

Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net

device: opened successfully
user: MBR read successfully
called modules: ntkrnlpa.exe catchme.sys CLASSPNP.SYS disk.sys >>UNKNOWN [0x86F4F618]<<
kernel: MBR read successfully
detected MBR rootkit hooks:
\Driver\Disk -> CLASSPNP.SYS @ 0xf7516f28
\Driver\ACPI -> ACPI.sys @ 0xf73a8cb8
\Driver\atapi -> atapi.sys @ 0xf7360852
IoDeviceObjectType -> DeleteProcedure -> ntkrnlpa.exe @ 0x805836a8
\Device\Harddisk0\DR0 -> DeleteProcedure -> ntkrnlpa.exe @ 0x805836a8
NDIS: -> SendCompleteHandler -> 0x0
PacketIndicateHandler -> 0x0
SendHandler -> 0x0
user & kernel MBR OK

**************************************************************************
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\Ø•€|ÿÿÿÿ•€|ù•9~*]
"C040311900063D11C8EF10054038389C"="C?\\WINDOWS\\system32\\FM20ENU.DLL"
.
--------------------- DLLs chargées dans les processus actifs ---------------------

- - - - - - - > 'winlogon.exe'(780)
c:\windows\SYSTEM32\Ati2evxx.dll
.
Heure de fin: 2009-11-29 12:21
ComboFix-quarantined-files.txt 2009-11-29 17:20

Avant-CF: 21 760 622 592 octets libres
Après-CF: 26 193 420 288 octets libres

- - End Of File - - 58F851BDDF00D04D002D3973BD36C592
0
Utilisateur anonyme > streetlight Messages postés 29 Date d'inscription samedi 28 novembre 2009 Statut Membre Dernière intervention 9 mai 2011
29 nov. 2009 à 19:35
Re

Combo a bien travaillé.

fait ceci:Télécharge Malwarebytes anti malware ici
http://www.malwarebytes.org/mbam.php

* Installe le (choisis bien "français" ; ne modifie pas les paramètres d'installe ) et mets le à jour .

(NB : S'il te manque "COMCTL32.OCX" lors de l'installe, alors télécharge le ici : https://www.malekal.com/tutorial-aboutbuster/

* Potasse le tuto pour te familiariser avec le prg :

https://forum.pcastuces.com/sujet.asp?f=31&s=3

(cela dis, il est très simple d’utilisation).

relance malwarebytes en suivant scrupuleusement ces consignes :

! Déconnecte toi et ferme toutes applications en cours !

* Lance Malwarebyte's .

Fais un examen dit "Complet" .

--> Laisse le programme travailler ( et ne rien faire d'autre avec le PC durant le scan ).
--> à la fin tu cliques sur "résultat" .
--> Vérifie que tous les objets infectés soient validés, puis clique sur " suppression " .

Note : si il faut redémarrer ton PC pour finir le nettoyage, fais le !


Poste le rapport sauvegardé après la suppression des objets infectés (dans l'onglet "rapport/log"de Malwarebytes, le dernier en date)

@+
0
Réponse 7 / 12
streetlight Messages postés 29 Date d'inscription samedi 28 novembre 2009 Statut Membre Dernière intervention 9 mai 2011
29 nov. 2009 à 22:22
Voici le rapport

Malwarebytes' Anti-Malware 1.41
Version de la base de données: 3258
Windows 5.1.2600 Service Pack 3

2009-11-29 16:21:57
mbam-log-2009-11-29 (16-21-57).txt

Type de recherche: Examen complet (C:\|)
Eléments examinés: 245298
Temps écoulé: 1 hour(s), 45 minute(s), 44 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 1
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 4

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256a51-b582-467e-b8d4-7786eda79ae0} (Trojan.Vundo) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
C:\Qoobox\Quarantine\C\Documents and Settings\MARC-ANDRÉ\Local Settings\Application Data\tphphl\jeebsysguard.exe.vir (Trojan.FakeAlert) -> Delete on reboot.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP1445\A0294472.exe (Trojan.FakeAlert) -> Delete on reboot.
C:\Program Files\EAInstall.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\Program Files\server.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
0
Réponse 8 / 12
streetlight Messages postés 29 Date d'inscription samedi 28 novembre 2009 Statut Membre Dernière intervention 9 mai 2011
29 nov. 2009 à 22:49
J'ai fait le redémarrage et j'ai maintenant un message d'erreur sur internet explorerr quand je tente de l'utiliser mais firefox fonctionne correctement.
0
Utilisateur anonyme
30 nov. 2009 à 09:04
Bonjour

Quel est ce message d'erreur?

1)Supprime Ad aware et conserve Malwaresbytes.

2)Mise à jour Java.
Pour java utilises javaRa https://www.commentcamarche.net/faq/15645-supprimer-les-anciennes-versions-de-java-avec-javara

et un autre tutoriel javaRa http://www.libellules.ch/dotclear/index.php?post/2008/07/13/2689-javara

Décompresse le fichier sur le Bureau (Clic droit > Extraire tout).
* Double-cliques sur le répertoire JavaRa.
* Puis double-cliques sur le fichier JavaRa.exe (le exe peut ne pas s'afficher).
* Choisis Français puis cliques sur Select.
* Cliques sur Recherche de mises à jour.
* Sélectionne Mettre à jour via jucheck.exe puis clique sur Rechercher.
* Autorises le processus à se connecter s'il le demande, cliques sur Installer et suis les instructions d'installation qui prennent quelques minutes.
* L'installation est terminée, reviens à l'écran de JavaRa et cliques sur Effacer les anciennes versions.
* Cliques sur Oui pour confirmer. Laisses travailler et cliques ensuite sur OK, puis une deuxième fois sur OK.
* Un rapport va s'ouvrir. Postes-le dans ta prochaine réponse.
* Ferme l'application.

Note : le rapport se trouve aussi dans C:\ sous le nom JavaRa.log.

3)C - Ccleaner :

https://www.commentcamarche.net/telecharger/utilitaires/5647-ccleaner/

.enregistres le sur le bureau
.double-cliques sur le fichier pour lancer l'installation
.sur la fenêtre de l'installation langage bien choisir français et OK
.cliques sur <gras>suivant
.lis la licence et j'accepte
.cliques sur suivant
.la tu ne gardes de coché que mettre un raccourci sur le bureau et puis contrôler automatiquement les mises à jour de Ccleaner
.cliques sur installer
.cliques sur fermer
.double-cliques sur <gras>l'icône de Ccleaner pour l'ouvrir
.une fois ouvert tu cliques sur <gras>option et puis avancé
.tu décoches effacer uniquement les fichiers, du dossier temp de windows plus vieux que 48 heures
.cliques sur nettoyeur
.cliques sur windows et dans la colonne avancé
. coches la première case vieilles données du perfetch ce qui te donnes la case vielles données du perfetch et la case avancé qui c'est coché automatiquement mais que celle-la
.cliques sur analyse une fois l'analyse terminé
.cliques sur lancer le nettoyage et sur la demande de confirmation OK il vas falloir que tu le refasses une autre fois une fois fini vérifies en appuyant de nouveau sur analyse pour être sur qu'il n'y est plus rien
.clique maintenant sur registre et puis sur rechercher les erreurs
.laisse tout coché et clique sur réparer les erreurs sélectionnées
.il te demande de sauvegarder OUI
.tu lui donnes un nom pour pouvoir la retrouver et enregistre
.clique sur corriger toutes les erreurs sélectionnées et sur la demande de confirmation OK
.il supprime et <gras>fermer tu vérifies en relançant <gras>rechercher les erreurs
.tu retournes dans option et tu recoches la case effacer uniquement les fichiers, du dossier temp de windows plus vieux que 48 heures et sur nettoyeur, windows sous avancé tu décoches la première case vieilles données du perfetch
.tu peux fermer Ccleaner.

Tuto : https://jesses.pagesperso-orange.fr/Docs/Logiciels/CCleaner.htm

@+
0
Réponse 9 / 12
streetlight Messages postés 29 Date d'inscription samedi 28 novembre 2009 Statut Membre Dernière intervention 9 mai 2011
1 déc. 2009 à 00:16
Le rapport JavaRa:

JavaRa 1.15 Removal Log.

Report follows after line.

------------------------------------

The JavaRa removal process was started on Mon Nov 30 18:14:34 2009

Found and removed: C:\Program Files\Java\j2re1.4.2_03

Found and removed: C:\Program Files\Java\jre1.6.0

Found and removed: C:\Program Files\Java\jre1.6.0_01

Found and removed: C:\Program Files\Java\jre1.6.0_02

Found and removed: C:\Program Files\Java\jre1.6.0_03

Found and removed: C:\Program Files\Java\jre1.6.0_05

Found and removed: C:\Program Files\Java\jre1.6.0_07

Found and removed: C:\Documents and Settings\NORMAND\Application Data\Sun\Java\jre1.6.0_15

Found and removed: C:\Windows\Installer\{7148F0A8-6813-11D6-A77B-00B0D0142030}

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.4

Found and removed: SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D610000

Found and removed: SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D610001

Found and removed: SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D610002

Found and removed: SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D610003

Found and removed: SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D610005

Found and removed: SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D610000

Found and removed: SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D610001

Found and removed: SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D610002

Found and removed: SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D610003

Found and removed: SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D610005

Found and removed: SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610000

Found and removed: SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610001

Found and removed: SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610002

Found and removed: SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610003

Found and removed: SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610005

Found and removed: SOFTWARE\Classes\JavaPlugin.160

Found and removed: SOFTWARE\Classes\JavaPlugin.160_01

Found and removed: SOFTWARE\Classes\JavaPlugin.160_02

Found and removed: SOFTWARE\Classes\JavaPlugin.160_03

Found and removed: SOFTWARE\Classes\JavaPlugin.160_05

Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.6.0

Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.6.0_01

Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.6.0_02

Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.6.0_03

Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.6.0_05

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0_01

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0_02

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0_03

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0_05

Found and removed: SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610000

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610001

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610002

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610003

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610005

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D610000

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D610001

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D610002

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D610003

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D610005

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D610000

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D610001

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D610002

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D610003

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D610005

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0160000}

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0160010}

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0160020}

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0160030}

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0160050}

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7148F0A8-6813-11D6-A77B-00B0D0142030}

Found and removed: SOFTWARE\Classes\Installer\Products\8A0F841731866D117AB7000B0D410203

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F841731866D117AB7000B0D410203

Found and removed: SOFTWARE\Classes\JavaPlugin.142_03

Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.4.2_03

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.4.2_03

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.4.2_03

Found and removed: SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA}

Found and removed: Software\Classes\JavaPlugin.142_03

Found and removed: Software\Classes\JavaPlugin.160

Found and removed: Software\Classes\JavaPlugin.160_01

Found and removed: Software\Classes\JavaPlugin.160_02

Found and removed: Software\Classes\JavaPlugin.160_03

Found and removed: Software\Classes\JavaPlugin.160_05

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0000-0003-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0000-0004-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0000-0005-ABCDEFFEDCBA}

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_02

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_03

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_04

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.2

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.2.0_01

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.6.0

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.6.0_01

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.6.0_02

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.6.0_03

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.6.0_05

Found and removed: Software\JavaSoft\Java2D\1.6.0_03

Found and removed: Software\JavaSoft\Java2D\1.6.0_05

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0000-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0026-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0026-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0027-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0027-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0028-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0028-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0029-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0029-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0030-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0030-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACB9B14518A96D117A58000B0D410203

Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.6.0_07

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0_07

Found and removed: SOFTWARE\Microsoft\Active Setup\Installed Components\{08B0E5C0-4FCB-11CF-AAA5-00401C608500}

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D610007

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D610007

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0160070}

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0\

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_01\

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_02\

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_03\

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_05\

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0\bin\

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_01\bin\

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_02\bin\

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_03\bin\

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_05\bin\

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_07\bin\

JavaRa 1.15 Removal Log.

Report follows after line.

------------------------------------

The JavaRa removal process was started on Mon Nov 30 18:15:37 2009

------------------------------------

Finished reporting.
0
Utilisateur anonyme
1 déc. 2009 à 12:33
Bonjour

As tu fais Ccleaner?

Quel est le message d'erreur sur internet explorer?

Fait ceci stp merci.
• Télécharge Ad-remover ( de C_XX ) sur ton bureau :

http://pagesperso-orange.fr/NosTools/C_XX/AD-R.exe

! Déconnecte toi et ferme toutes applications en cours !

• Double clique ou clic droit (exécuter en tant que admin…sur Vista) sur "Ad-R.exe" pour lancer l'installation et laisse les paramètres d'installation par défaut.

• Double-clique ou clic droit (exécuter en tant que admin…sur Vista) sur le raccourci Ad-remover qui est sur ton bureau pour lancer l'outil .

• Au menu principal choisis l'option "S" et sur [entrée] .

• Laisse travailler l'outil et ne touche à rien ...

--> Poste le rapport qui apparaît à la fin , sur le forum ...

( Le rapport est sauvegardé aussi sous C:\Ad-report.log )
( CTRL+A Pour tout sélectionner , CTRL+C pour copier et CTRL+V pour coller )

Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.

Aides en images (Installation) : http://pagesperso-orange.fr/NosTools/tuto_ad_r1.html
Aides en images (Recherche) : http://pagesperso-orange.fr/NosTools/tuto_ad_r2.html

@+
0
Réponse 10 / 12
streetlight Messages postés 29 Date d'inscription samedi 28 novembre 2009 Statut Membre Dernière intervention 9 mai 2011
5 déc. 2009 à 03:43
Il est simplement écrit "Internet Explorer ne peut afficher cette page web"(peu importe la page). Oui j'ai utiliser Ccleaner. Voici le rapport Ad-remover

.
======= RAPPORT D'AD-REMOVER 1.1.4.6_D | UNIQUEMENT XP/VISTA/7 =======
.
Mit à jour par C_XX le 04.12.2009 à 19:30
Contact: AdRemover.contact@gmail.com
Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
.
Lancé à: 20:54:23, 2009-12-04 | Mode Normal | Option: SCAN
Exécuté de: C:\Program Files\Ad-Remover\
Système d'exploitation: Microsoft® Windows XP™ Service Pack 3 v5.1.2600
Nom du PC: WADE3 | Utilisateur actuel: MARC-ANDR
.
============== ÉLÉMENT(S) TROUVÉ(S) ==============
.

C:\Program Files\Viewpoint
C:\DOCUME~1\MARC-A~1\Cookies\marc-andr‚@ask[1].txt
C:\DOCUME~1\MARC-A~1\Cookies\marc-andr‚@dealio[1].txt
.
HKCU\software\FunWebProducts
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F}
HKLM\Software\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}
HKLM\Software\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
HKLM\Software\Classes\TypeLib\{4F7D1B07-6203-41F0-947B-A29CC9ECD9B0}
HKLM\Software\Classes\TypeLib\{9DBB28C1-1925-11D3-A498-00104B6EB52E}
HKLM\software\MetaStream
HKLM\Software\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
HKLM\Software\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
HKLM\software\microsoft\windows\currentversion\uninstall\ViewpointMediaPlayer
HKLM\software\Viewpoint
HKU\s-1-5-21-4214786534-1026011330-2526274324-1009\software\FunWebProducts
.
============== Scan additionnel ==============
.
.
* Mozilla FireFox Version 3.5.5 [en-US] *
.
Nom du profil: 60hn2ee5.default (MARC-ANDR)
.
(MARC-A~1, prefs.js) Browser.download.dir, C:\Documents and Settings\MARC-ANDRÉ\Mes documents
(MARC-A~1, prefs.js) Browser.download.lastDir, C:\Documents and Settings\MARC-ANDRÉ\Mes documents\Mes images
(MARC-A~1, prefs.js) Browser.startup.homepage, www.gamespot.com
.
.
* Internet Explorer Version 8.0.6001.18702 *
.
[HKEY_CURRENT_USER\..\Internet Explorer\Main]
.
Start Page: hxxp://www.kissonline.com/
Search Page: hxxp://www.google.com
Default_Page_URL: hxxp://www.dell.ca/index.htm
Search Bar: hxxp://www.google.com/ie
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]
.
Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=69157
Default_Search_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Search Page: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Start Page: hxxp://go.microsoft.com/fwlink/?LinkId=69157
Search Bar: hxxp://us.rd.yahoo.com/customize/ie/defaults/sb/msgr8/*hxxp://www.yahoo.com/ext/search/search.html
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]
.
Tabs: res://ieframe.dll/tabswelcome.htm
.
============== Suspect (Cracks, Serials, ...) ==============
.
C:\Documents and Settings\MARC-ANDR\Application Data\BitTorrent\Warhammer.40000.Dawn.of.War.Soulstorm.CRACKFIX-ViTALiTY.torrent
C:\Documents and Settings\MARC-ANDR\Application Data\BitTorrent\Warhammer.40000.Dawn.of.War.Soulstorm.PROPER.CRACKONLY-ViTALiTY by seeker.torrent
C:\Documents and Settings\MARC-ANDR\Application Data\BitTorrent\Warhammer.40000.Dawn.of.War.Soulstorm.PROPER.CRACKONLY-ViTALiTY.torrent
C:\Documents and Settings\MARC-ANDR\Mes documents\pdark0.0.1.1686to0.0.1.1730patch.exe
C:\Documents and Settings\MARC-ANDR\Mes documents\CoD4MWDemoSetup\Downloads\Baldur's Gate II - SoA + ToB expansion\Baldur's Gate II - ToB - NoCd Crack 26498.zip
C:\Documents and Settings\MARC-ANDR\Mes documents\CoD4MWDemoSetup\Downloads\Baldur's Gate II - SoA + ToB expansion\BGII-ThroneofBhaal_Patch_26498_ENGLISH.exe
C:\Documents and Settings\MARC-ANDR\Mes documents\Downloads\Dungeon Siege 2\DS2_Patch_2.2.exe
C:\Documents and Settings\MARC-ANDR\Mes documents\Downloads\Dungeon Siege 2\Dungeon Siege 2 Broken World\serial.nfo
C:\Documents and Settings\MARC-ANDR\Mes documents\Macromedia.Studio.v8.0.Incl.Keymaker-ZWT\keygen.exe
.
===================================
.
3927 Octet(s) - C:\Ad-Report-SCAN[1].log
.
60 Fichier(s) - C:\DOCUME~1\MARC-A~1\LOCALS~1\Temp
8 Fichier(s) - C:\WINDOWS\Temp
.
1 Fichier(s) - C:\Program Files\Ad-Remover\BACKUP
0 Fichier(s) - C:\Program Files\Ad-Remover\QUARANTINE
.
Fin à: 21:37:18 | 2009-12-04 - SCAN[1]
.
============== E.O.F ==============
.
0
Utilisateur anonyme
5 déc. 2009 à 14:14
Bonjour

• Relance Ad-remover,
• Au menu principal choisis l'option "L" et tape sur [entrée] .

• Laisse travailler l'outil et ne touche à rien ...

--> Poste le rapport qui apparait à la fin , sur le forum ...

( Le rapport est sauvegardé sous C:\Ad-report-clean.log )

( CTRL+A Pour tout sélectionner , CTRL+C pour copier et CTRL+V pour coller )


Internet explorer fonctionne t' il?

@+
0
Réponse 11 / 12
streetlight Messages postés 29 Date d'inscription samedi 28 novembre 2009 Statut Membre Dernière intervention 9 mai 2011
5 déc. 2009 à 21:27
J'ai fait ce que tu m'as dit et j'ai encore le meme probleme avec internet explorer. Voici le rapport Ad-Remover:

.
======= RAPPORT D'AD-REMOVER 1.1.4.6_D | UNIQUEMENT XP/VISTA/7 =======
.
Mit à jour par C_XX le 04.12.2009 à 19:30
Contact: AdRemover.contact@gmail.com
Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
.
Lancé à: 14:33:15, 2009-12-05 | Mode Normal | Option: CLEAN
Exécuté de: C:\Program Files\Ad-Remover\
Système d'exploitation: Microsoft® Windows XP™ Service Pack 3 v5.1.2600
Nom du PC: WADE3 | Utilisateur actuel: MARC-ANDR
.
============== ÉLÉMENT(S) NEUTRALISÉ(S) ==============
.

C:\Program Files\Viewpoint
C:\DOCUME~1\MARC-A~1\Cookies\marc-andr‚@ask[1].txt
C:\DOCUME~1\MARC-A~1\Cookies\marc-andr‚@dealio[1].txt

(!) -- Fichiers temporaires supprimés.

.
HKCU\software\FunWebProducts
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F}
HKLM\Software\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}
HKLM\Software\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
HKLM\Software\Classes\TypeLib\{4F7D1B07-6203-41F0-947B-A29CC9ECD9B0}
HKLM\Software\Classes\TypeLib\{9DBB28C1-1925-11D3-A498-00104B6EB52E}
HKLM\software\MetaStream
HKLM\Software\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
HKLM\Software\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
HKLM\software\microsoft\windows\currentversion\uninstall\ViewpointMediaPlayer
HKLM\software\Viewpoint
.
============== Scan additionnel ==============
.
.
* Mozilla FireFox Version 3.5.5 [en-US] *
.
Nom du profil: 60hn2ee5.default (MARC-ANDR)
.
(MARC-A~1, prefs.js) Browser.download.dir, C:\Documents and Settings\MARC-ANDRÉ\Mes documents
(MARC-A~1, prefs.js) Browser.download.lastDir, C:\Documents and Settings\MARC-ANDRÉ\Mes documents\Mes images
(MARC-A~1, prefs.js) Browser.startup.homepage, www.gamespot.com
.
.
* Internet Explorer Version 8.0.6001.18702 *
.
[HKEY_CURRENT_USER\..\Internet Explorer\Main]
.
Start Page: hxxp://fr.msn.com/
Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Search Bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
Default_search_url: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]
.
Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Start Page: hxxp://fr.msn.com/
Search Bar: hxxp://search.msn.com/spbasic.htm
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]
.
Tabs: res://ieframe.dll/tabswelcome.htm
.
============== Suspect (Cracks, Serials, ...) ==============
.
C:\Documents and Settings\MARC-ANDR\Application Data\BitTorrent\Warhammer.40000.Dawn.of.War.Soulstorm.CRACKFIX-ViTALiTY.torrent
C:\Documents and Settings\MARC-ANDR\Application Data\BitTorrent\Warhammer.40000.Dawn.of.War.Soulstorm.PROPER.CRACKONLY-ViTALiTY by seeker.torrent
C:\Documents and Settings\MARC-ANDR\Application Data\BitTorrent\Warhammer.40000.Dawn.of.War.Soulstorm.PROPER.CRACKONLY-ViTALiTY.torrent
C:\Documents and Settings\MARC-ANDR\Mes documents\pdark0.0.1.1686to0.0.1.1730patch.exe
C:\Documents and Settings\MARC-ANDR\Mes documents\CoD4MWDemoSetup\Downloads\Baldur's Gate II - SoA + ToB expansion\Baldur's Gate II - ToB - NoCd Crack 26498.zip
C:\Documents and Settings\MARC-ANDR\Mes documents\CoD4MWDemoSetup\Downloads\Baldur's Gate II - SoA + ToB expansion\BGII-ThroneofBhaal_Patch_26498_ENGLISH.exe
C:\Documents and Settings\MARC-ANDR\Mes documents\Downloads\Dungeon Siege 2\DS2_Patch_2.2.exe
C:\Documents and Settings\MARC-ANDR\Mes documents\Downloads\Dungeon Siege 2\Dungeon Siege 2 Broken World\serial.nfo
C:\Documents and Settings\MARC-ANDR\Mes documents\Macromedia.Studio.v8.0.Incl.Keymaker-ZWT\keygen.exe
.
===================================
.
3952 Octet(s) - C:\Ad-Report-CLEAN[1].log
4255 Octet(s) - C:\Ad-Report-SCAN[1].log
.
0 Fichier(s) - C:\DOCUME~1\MARC-A~1\LOCALS~1\Temp
3 Fichier(s) - C:\WINDOWS\Temp
.
18 Fichier(s) - C:\Program Files\Ad-Remover\BACKUP
131 Fichier(s) - C:\Program Files\Ad-Remover\QUARANTINE
.
Fin à: 15:18:54 | 2009-12-05 - CLEAN[1]
.
============== E.O.F ==============
.
0
Utilisateur anonyme
5 déc. 2009 à 21:34
Re

Essaye de réparer Internet explorer.Si cela ne fonctionne pas réinstalle pour contrôle IE7.
Tiens moi au courant

@+
0
Réponse 12 / 12
streetlight Messages postés 29 Date d'inscription samedi 28 novembre 2009 Statut Membre Dernière intervention 9 mai 2011
5 déc. 2009 à 23:00
Comment est-ce que je fait pour le réparer?
J'ai trouver cela dans le journal de diagnostique d'IE:

info HTTPS: Connexion réussie à www.microsoft.com.
info FTP (passif): Connexion réussie à ftp.microsoft.com.
warn HTTP: Erreur 12029 lors de la connexion à www.microsoft.com : A connection with the server could not be established
warn HTTP: Erreur 12029 lors de la connexion à www.hotmail.com : A connection with the server could not be established
error Impossible d'établir une connexion HTTP.
info Redirection de l'utilisateur vers l'appel d'aide
0
Utilisateur anonyme
6 déc. 2009 à 09:36
Bonjour

Essaie ceci:
Tu fais bouton "Démarrer"; "Exécuter"dans la fenêtre tu tapes :
netsh winsock reset et tu valides"OK".

Astuce trouvé sur Google.Tiens moi au courant
0
streetlight Messages postés 29 Date d'inscription samedi 28 novembre 2009 Statut Membre Dernière intervention 9 mai 2011 > Utilisateur anonyme
6 déc. 2009 à 16:52
Le netsh winsock reset n'a pas réglé le problème
0
Utilisateur anonyme > streetlight Messages postés 29 Date d'inscription samedi 28 novembre 2009 Statut Membre Dernière intervention 9 mai 2011
6 déc. 2009 à 16:57
Re

On va essayer ceci:
Télécharge Zeb Restore
http://telechargement.zebulon.fr/zeb-restore.html
Zeb-Restore est un petit utilitaire de restauration de clés de la base de registre. Le but du programme n'est pas de restaurer l'ensemble du système mais uniquement les points les plus souvent touchés afin de solutionner différents problèmes qui peuvent revenir de façon récurrente.

Voici les éléments qui peuvent être restaurés : coche les lignes en gras
- RegEdit : réactive l'accès à RegEdit
- Clés RUN : réactive le lancement de programmes par clés RunXXX
- Bouton Arrêter : rétablit le bouton Arrêter
- Windows Update : rétablit la fonction Windows Update
- Gestionnaire des tâches : réactive le gestionnaire des tâches
- Panneau de configuration : réactive le Panneau de configuration
- Ajout/Suppression de programmes : restaure la fonction Ajout-Suppression de programmes
- Policies : remet en place des éléments désactivés par "Policies"
- Bureau : réactive le Bureau
- Réparation IE : répare Internet Exploreur (pages de recherche)
- Extension des fichiers : répare les extensions des fichiers .exe .bat .reg. Pif.cmd.scr .com
- Sites de confiance et sensibles : efface le contenu de ces zones (à utiliser si vous êtes infecté par des malwares)
- Préfixes et Protocoles Internet : restore les clés des protocoles Internet (ZoneMap etc.)
- Réinitialiser Fichier Hosts : réinitialise le fichier Hosts

Tiens moi au courant.Merci

@+
0
streetlight Messages postés 29 Date d'inscription samedi 28 novembre 2009 Statut Membre Dernière intervention 9 mai 2011 > Utilisateur anonyme
7 déc. 2009 à 00:08
Le problème n'est pas encore réglé. Merci de continuer a tenter de m'aider.
0
Utilisateur anonyme > streetlight Messages postés 29 Date d'inscription samedi 28 novembre 2009 Statut Membre Dernière intervention 9 mai 2011
7 déc. 2009 à 18:42
Bonsoir

Essaye de réparer IE.

Regarde ici:https://www.commentcamarche.net/faq/5192-reinstaller-internet-explorer
@+
0

Discussions similaires

Où est la touche SHIFT sur mon clavier d'ordi ?
joe! -
fernando-_ytb -

18 réponses
j'ai renversé de l'eau sur mon pc portable
sardine -
moudubulbe -

14 réponses