Virus
Fermé
Cyl
-
3 oct. 2011 à 22:32
moment de grace Messages postés 29042 Date d'inscription samedi 6 décembre 2008 Statut Contributeur sécurité Dernière intervention 18 juillet 2013 - 7 oct. 2011 à 08:10
moment de grace Messages postés 29042 Date d'inscription samedi 6 décembre 2008 Statut Contributeur sécurité Dernière intervention 18 juillet 2013 - 7 oct. 2011 à 08:10
A voir également:
- Virus
- Svchost.exe virus - Guide
- Faux message virus iphone - Forum iPhone
- Operagxsetup virus ✓ - Forum Virus
- Produkey virus ✓ - Forum Windows 10
- Vérificateur de lien virus - Guide
9 réponses
moment de grace
Messages postés
29042
Date d'inscription
samedi 6 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 272
3 oct. 2011 à 22:39
3 oct. 2011 à 22:39
bonjour
fais ceci stp
1)
* Télécharge de AD-Remover sur ton Bureau. (Merci à C_XX)
http://www.teamxscript.org/adremoverTelechargement.html
/!\ Déconnecte-toi d'internet et ferme toutes applications en cours /!\
Désactive provisoirement et seulement le temps de l'utilisation de ADremover, la protection en temps réel de ton Antivirus et de tes Antispywares, qui peuvent gêner fortement la procédure de recherche et de nettoyage de l'outil.
- Double-clique sur l'icône Ad-remover située sur ton Bureau.
- Sur la page, clique sur le bouton « NETTOYER »
- Confirme lancement du scan
- Laisse travailler l'outil.
- Poste le rapport qui apparaît à la fin.
(Le rapport est sauvegardé aussi sous C:\Ad-report(Scan/clean).Txt)
(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)
....................
2)
Télécharge AdwCleaner ( d'Xplode ) sur ton bureau.
http://general-changelog-team.fr/telechargements/logiciels/viewdownload/75-outils-de-xplode/28-adwcleaner
Lance le, clique sur SUPPRESSION puis patiente le temps du scan.
Une fois le scan fini, un rapport s'ouvrira. Poste moi son contenu dans ta prochaine réponse.
Note : Le rapport est également sauvegardé sous C:\AdwCleane.txt
.....................
3)
Téléchargez MalwareByte's Anti-Malware (que tu pourras garder ensuite)
https://www.commentcamarche.net/telecharger/securite/14361-malwarebytes-anti-malware/
. Enregistres le sur le bureau
. Double cliques sur le fichier téléchargé pour lancer le processus d'installation.
. Dans l'onglet "mise à jour", cliques sur le bouton Recherche de mise à jour
. Si le pare-feu demande l'autorisation de se connecter pour malwarebytes, accepte
. Une fois la mise à jour terminé
. Rend-toi dans l'onglet, Recherche
. Sélectionnes Exécuter un examen complet (examen assez long)
. Cliques sur Rechercher
. Le scan démarre.
. A la fin de l'analyse, un message s'affiche : L'examen s'est terminé normalement. Cliquez sur 'Afficher les résultats' pour afficher tous les objets trouvés.
. Cliques sur Ok pour poursuivre.
. Si des malwares ont été détectés, clique sur Afficher les résultats
. Sélectionnes tout (ou laisses cochés) et cliques sur Supprimer la sélection Malwarebytes va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.
. Malwarebytes va ouvrir le bloc-notes et y copier le rapport d'analyse.
. Rends toi dans l'onglet rapport/log
. Tu cliques dessus pour l'afficher, une fois affiché
. Tu cliques sur edition en haut du boc notes, et puis sur sélectionner tous
. Tu recliques sur edition et puis sur copier et tu reviens sur le forum et dans ta réponse
. tu cliques droit dans le cadre de la reponse et coller
Si tu as besoin d'aide regarde ces tutoriels :
Aide: https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
http://www.infos-du-net.com/forum/278396-11-tuto-malwarebytes-anti-malware-mbam
...............................
4)
Fais un nouveau rapport ZHPdiag stp
Rend toi sur http://pjjoint.malekal.com/
Clique sur "Parcourir "
Sélectionne le rapport ZHPdiag.txt qui se trouve sur ton bureau
Clique ensuite sur "Envoyer le fichier " et copie/colle le lien dans ton prochain message
fais ceci stp
1)
* Télécharge de AD-Remover sur ton Bureau. (Merci à C_XX)
http://www.teamxscript.org/adremoverTelechargement.html
/!\ Déconnecte-toi d'internet et ferme toutes applications en cours /!\
Désactive provisoirement et seulement le temps de l'utilisation de ADremover, la protection en temps réel de ton Antivirus et de tes Antispywares, qui peuvent gêner fortement la procédure de recherche et de nettoyage de l'outil.
- Double-clique sur l'icône Ad-remover située sur ton Bureau.
- Sur la page, clique sur le bouton « NETTOYER »
- Confirme lancement du scan
- Laisse travailler l'outil.
- Poste le rapport qui apparaît à la fin.
(Le rapport est sauvegardé aussi sous C:\Ad-report(Scan/clean).Txt)
(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)
....................
2)
Télécharge AdwCleaner ( d'Xplode ) sur ton bureau.
http://general-changelog-team.fr/telechargements/logiciels/viewdownload/75-outils-de-xplode/28-adwcleaner
Lance le, clique sur SUPPRESSION puis patiente le temps du scan.
Une fois le scan fini, un rapport s'ouvrira. Poste moi son contenu dans ta prochaine réponse.
Note : Le rapport est également sauvegardé sous C:\AdwCleane.txt
.....................
3)
Téléchargez MalwareByte's Anti-Malware (que tu pourras garder ensuite)
https://www.commentcamarche.net/telecharger/securite/14361-malwarebytes-anti-malware/
. Enregistres le sur le bureau
. Double cliques sur le fichier téléchargé pour lancer le processus d'installation.
. Dans l'onglet "mise à jour", cliques sur le bouton Recherche de mise à jour
. Si le pare-feu demande l'autorisation de se connecter pour malwarebytes, accepte
. Une fois la mise à jour terminé
. Rend-toi dans l'onglet, Recherche
. Sélectionnes Exécuter un examen complet (examen assez long)
. Cliques sur Rechercher
. Le scan démarre.
. A la fin de l'analyse, un message s'affiche : L'examen s'est terminé normalement. Cliquez sur 'Afficher les résultats' pour afficher tous les objets trouvés.
. Cliques sur Ok pour poursuivre.
. Si des malwares ont été détectés, clique sur Afficher les résultats
. Sélectionnes tout (ou laisses cochés) et cliques sur Supprimer la sélection Malwarebytes va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.
. Malwarebytes va ouvrir le bloc-notes et y copier le rapport d'analyse.
. Rends toi dans l'onglet rapport/log
. Tu cliques dessus pour l'afficher, une fois affiché
. Tu cliques sur edition en haut du boc notes, et puis sur sélectionner tous
. Tu recliques sur edition et puis sur copier et tu reviens sur le forum et dans ta réponse
. tu cliques droit dans le cadre de la reponse et coller
Si tu as besoin d'aide regarde ces tutoriels :
Aide: https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
http://www.infos-du-net.com/forum/278396-11-tuto-malwarebytes-anti-malware-mbam
...............................
4)
Fais un nouveau rapport ZHPdiag stp
Rend toi sur http://pjjoint.malekal.com/
Clique sur "Parcourir "
Sélectionne le rapport ZHPdiag.txt qui se trouve sur ton bureau
Clique ensuite sur "Envoyer le fichier " et copie/colle le lien dans ton prochain message
J'ai effectué le scan AD-Remover, voici le resultat :
http://pjjoint.malekal.com/files.php?read=p5s9d15g8f12t14w5x13u10h14l12r10h9s6k10p7x15x12t13r9
Ensuite le resultat du scan AdwCleaner :
http://pjjoint.malekal.com/files.php?read=l6p11n12y10w7p14r5w11n15f10w12b13c10l14v12t12j13j13w13l5
Le dernier scan ZPH diag :
http://pjjoint.malekal.com/files.php?id=ZHPDiag_i13t15h10r15t8t5k8r6o14r14b11v14r12s13x13j7o14c11x10q15
Je n'arrive pas, par contre à demarrer MalwareByte's. J'ai un message d'erreur qui me dit que le fichier ou dossier "MSVBVM60.DLL" est introuvable. Est ce que ça te parle ? sinon quelles conclusions peux tu tirer des deux premiers scans ?
Merci.
http://pjjoint.malekal.com/files.php?read=p5s9d15g8f12t14w5x13u10h14l12r10h9s6k10p7x15x12t13r9
Ensuite le resultat du scan AdwCleaner :
http://pjjoint.malekal.com/files.php?read=l6p11n12y10w7p14r5w11n15f10w12b13c10l14v12t12j13j13w13l5
Le dernier scan ZPH diag :
http://pjjoint.malekal.com/files.php?id=ZHPDiag_i13t15h10r15t8t5k8r6o14r14b11v14r12s13x13j7o14c11x10q15
Je n'arrive pas, par contre à demarrer MalwareByte's. J'ai un message d'erreur qui me dit que le fichier ou dossier "MSVBVM60.DLL" est introuvable. Est ce que ça te parle ? sinon quelles conclusions peux tu tirer des deux premiers scans ?
Merci.
moment de grace
Messages postés
29042
Date d'inscription
samedi 6 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 272
4 oct. 2011 à 01:18
4 oct. 2011 à 01:18
télécharge la dll manquante ici
http://www.dll-files.com/dffsetup_msvbvm60.exe
dézipe la dll....puis une fois déziper > copie la dll > et colle là dans le répertoire system32 (C:\windows\System32)
redémarre ton pc
et ré-essaies l'installation de malwarebytes
http://www.dll-files.com/dffsetup_msvbvm60.exe
dézipe la dll....puis une fois déziper > copie la dll > et colle là dans le répertoire system32 (C:\windows\System32)
redémarre ton pc
et ré-essaies l'installation de malwarebytes
J'ai reussi a lancer malware et voici le rapport. Merci pour le coup de pouce. Et maintenant ??
Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org
Version de la base de données: 7862
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
04/10/2011 13:46:07
mbam-log-2011-10-04 (13-46-07).txt
Type d'examen: Examen complet (C:\|D:\|)
Elément(s) analysé(s): 303195
Temps écoulé: 42 minute(s), 27 seconde(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 88
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
c:\documents and settings\COT\Bureau\quarantine\C\WINDOWS\system32\f3pssavr.scr.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\f3cjpeg.dll.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\f3dtactl.dll.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\f3histsw.dll.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\f3hkstub.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\f3htmlmu.dll.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\f3httpct.dll.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\f3imstub.dll.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\f3popswt.dll.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\f3pssavr.scr.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\f3reghk.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\f3reprox.dll.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\f3restub.dll.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\f3schmon.exe.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\f3scrctr.dll.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\f3wphook.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\m3auxstb.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\m3dlghk.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\m3highin.exe.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\m3html.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\m3idle.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\m3impipe.exe.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\m3medint.exe.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\m3msg.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\m3outlcn.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\m3plugin.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\m3skplay.exe.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\m3slsrch.exe.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\m3srchmn.exe.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\mwsbar.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\mwsmlbtn.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\mwsoeplg.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\mwsoestb.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\mwssrcas.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\mwsuabtn.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\npmywebs.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\mwsoemon.exe.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\m3skin.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\mwssvc.exe.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\windows live\messenger\riched20.dll.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\windows live\messenger\msimg32.dll.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP519\A0105109.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP519\A0105112.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP519\A0105119.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP505\A0101203.dll (Adware.FreezeFrog) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106845.scr (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106860.DLL (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106861.DLL (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106862.DLL (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106863.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106864.DLL (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106865.DLL (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106866.DLL (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106867.DLL (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106868.SCR (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106869.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106870.DLL (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106871.DLL (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106872.EXE (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106873.DLL (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106874.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106875.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106876.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106877.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106878.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106879.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106880.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106881.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106882.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106883.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106884.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106885.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106886.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106887.exe (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106888.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106889.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106890.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106891.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106892.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106893.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106894.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106895.exe (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106896.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106897.exe (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106905.dll (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106906.DLL (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\documents and settings\COT\application data\Adobe\shed\thr1.chm (Malware.Trace) -> Quarantined and deleted successfully.
c:\documents and settings\COT\application data\Adobe\plugs\mmc6077843.txt (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org
Version de la base de données: 7862
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
04/10/2011 13:46:07
mbam-log-2011-10-04 (13-46-07).txt
Type d'examen: Examen complet (C:\|D:\|)
Elément(s) analysé(s): 303195
Temps écoulé: 42 minute(s), 27 seconde(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 88
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
c:\documents and settings\COT\Bureau\quarantine\C\WINDOWS\system32\f3pssavr.scr.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\f3cjpeg.dll.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\f3dtactl.dll.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\f3histsw.dll.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\f3hkstub.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\f3htmlmu.dll.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\f3httpct.dll.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\f3imstub.dll.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\f3popswt.dll.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\f3pssavr.scr.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\f3reghk.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\f3reprox.dll.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\f3restub.dll.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\f3schmon.exe.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\f3scrctr.dll.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\f3wphook.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\m3auxstb.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\m3dlghk.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\m3highin.exe.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\m3html.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\m3idle.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\m3impipe.exe.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\m3medint.exe.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\m3msg.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\m3outlcn.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\m3plugin.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\m3skplay.exe.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\m3slsrch.exe.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\m3srchmn.exe.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\mwsbar.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\mwsmlbtn.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\mwsoeplg.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\mwsoestb.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\mwssrcas.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\mwsuabtn.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\npmywebs.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\mwsoemon.exe.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\m3skin.dll.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\mywebsearch\bar\2.bin\mwssvc.exe.vir (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\windows live\messenger\riched20.dll.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\documents and settings\COT\Bureau\quarantine\C\program files\windows live\messenger\msimg32.dll.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP519\A0105109.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP519\A0105112.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP519\A0105119.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP505\A0101203.dll (Adware.FreezeFrog) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106845.scr (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106860.DLL (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106861.DLL (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106862.DLL (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106863.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106864.DLL (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106865.DLL (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106866.DLL (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106867.DLL (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106868.SCR (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106869.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106870.DLL (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106871.DLL (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106872.EXE (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106873.DLL (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106874.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106875.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106876.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106877.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106878.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106879.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106880.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106881.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106882.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106883.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106884.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106885.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106886.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106887.exe (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106888.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106889.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106890.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106891.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106892.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106893.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106894.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106895.exe (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106896.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106897.exe (Adware.MyWebSearch) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106905.dll (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\system volume information\_restore{acfee763-12f2-4054-9958-49086fd7f61c}\RP521\A0106906.DLL (PUP.FunWebProducts) -> Quarantined and deleted successfully.
c:\documents and settings\COT\application data\Adobe\shed\thr1.chm (Malware.Trace) -> Quarantined and deleted successfully.
c:\documents and settings\COT\application data\Adobe\plugs\mmc6077843.txt (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
moment de grace
Messages postés
29042
Date d'inscription
samedi 6 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 272
4 oct. 2011 à 14:13
4 oct. 2011 à 14:13
heberge ton rapport MBAM stp, il est trop long
puis vide la quarantaine
enfin
Fais un nouveau rapport ZHPdiag stp
Rend toi sur http://pjjoint.malekal.com/
Clique sur "Parcourir "
Sélectionne le rapport ZHPdiag.txt qui se trouve sur ton bureau
Clique ensuite sur "Envoyer le fichier " et copie/colle le lien dans ton prochain message
puis vide la quarantaine
enfin
Fais un nouveau rapport ZHPdiag stp
Rend toi sur http://pjjoint.malekal.com/
Clique sur "Parcourir "
Sélectionne le rapport ZHPdiag.txt qui se trouve sur ton bureau
Clique ensuite sur "Envoyer le fichier " et copie/colle le lien dans ton prochain message
Voici le rapport Malwarebyte's hébergé :
http://pjjoint.malekal.com/files.php?id=v8s10t11b12k5o6m15s13t9x13k9g10q5y11u15c14j5i9y7h13
et voici le rapport ZHP :
http://pjjoint.malekal.com/files.php?read=ZHPDiag_i8g13t15q1512y6j10e15p13i8z1211u10e11s7t14h9g8n15t13
Qu'est ce que je dois faire ensuite ??
http://pjjoint.malekal.com/files.php?id=v8s10t11b12k5o6m15s13t9x13k9g10q5y11u15c14j5i9y7h13
et voici le rapport ZHP :
http://pjjoint.malekal.com/files.php?read=ZHPDiag_i8g13t15q1512y6j10e15p13i8z1211u10e11s7t14h9g8n15t13
Qu'est ce que je dois faire ensuite ??
moment de grace
Messages postés
29042
Date d'inscription
samedi 6 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 272
Modifié par moment de grace le 4/10/2011 à 21:40
Modifié par moment de grace le 4/10/2011 à 21:40
des choses encore à supprimer mais avant connais tu celui ci
C:\WINDOWS\system32\drivers\IPSec.sys installé le 04/10/2011
CONTRIBUTEUR SECURITE
En désinfection, c'est la fin le plus important !
"Restez" jusqu'au bout...merci
C:\WINDOWS\system32\drivers\IPSec.sys installé le 04/10/2011
CONTRIBUTEUR SECURITE
En désinfection, c'est la fin le plus important !
"Restez" jusqu'au bout...merci
moment de grace
Messages postés
29042
Date d'inscription
samedi 6 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 272
7 oct. 2011 à 08:10
7 oct. 2011 à 08:10
ok
1)
Copie tout le texte présent en gras ci-dessous (tu le selectionnes avec ta souris / Clique droit dessus et choisis "copier" ou fait Ctrl+C )
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: Modified
[HKCU\Software\FREEzeFrog]
O43 - CFD: 10/05/2011 - 17:23:50 - [0] ----D- C:\Documents and Settings\COT\Application Data\BabylonToolbar
O47 - AAKE:Key Export SP - "C:\DOCUME~1\COT\LOCALS~1\Temp\winlogon.exe" [Enabled] .(...) -- C:\DOCUME~1\COT\LOCALS~1\Temp\winlogon.exe (.not file.)
O69 - SBI: SearchScopes [HKCU] {f3d17138-0225-4a82-8b31-4d0c3cc1608a} - (Searcheo) - http://www.searcheo.fr
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\autocompletepro3_is1]
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\mywebsearch bar uninstall]
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\OfferBox Browser]
C:\Documents and Settings\COT\Application Data\Adobe\plugs
C:\Documents and Settings\COT\Application Data\Adobe\shed
C:\Documents and Settings\COT\Application Data\BabylonToolbar
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} . (...) (No version) -- (.not file.)
[HKCU\Software\SweetIM]
O43 - CFD: 02/10/2011 - 18:53:36 - [3718114] ----D- C:\Program Files\SweetIM
[HKCU\Software\SweetIM]
C:\Program Files\SweetIM
[MD5.23C74D75E36E7158768DD63D92789A91] - (.Microsoft Corporation - IPSec Driver.) (.04/10/2011 - 20:19:42.) -- C:\WINDOWS\system32\drivers\IPSec.sys [75264] *5892536,1756
EMPTYTEMP
EMPTYFLASH
Puis Lance ZHPFix depuis le raccourci du bureau . (Clique droit -> Executer en tant qu'admin pour Vista ou Seven)
* Une fois l'outil ZHPFix ouvert ,
- Clique sur l'icone représentant la lettre H (« coller les lignes Helper »)
- Les lignes se collent automatiquement dans ZHPFix, sinon colle les lignes
- Clique sur le bouton « GO » pour lancer le nettoyage,
- Copie/colle la totalité du rapport dans ta prochaine réponse
le rapport se trouve dans le dossier de zhpdiag dans program files sous le nom de ZHPFixReport
...............................
2)
Redemarre le pc et dis moi si tu as encore des soucis
1)
Copie tout le texte présent en gras ci-dessous (tu le selectionnes avec ta souris / Clique droit dessus et choisis "copier" ou fait Ctrl+C )
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: Modified
[HKCU\Software\FREEzeFrog]
O43 - CFD: 10/05/2011 - 17:23:50 - [0] ----D- C:\Documents and Settings\COT\Application Data\BabylonToolbar
O47 - AAKE:Key Export SP - "C:\DOCUME~1\COT\LOCALS~1\Temp\winlogon.exe" [Enabled] .(...) -- C:\DOCUME~1\COT\LOCALS~1\Temp\winlogon.exe (.not file.)
O69 - SBI: SearchScopes [HKCU] {f3d17138-0225-4a82-8b31-4d0c3cc1608a} - (Searcheo) - http://www.searcheo.fr
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\autocompletepro3_is1]
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\mywebsearch bar uninstall]
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\OfferBox Browser]
C:\Documents and Settings\COT\Application Data\Adobe\plugs
C:\Documents and Settings\COT\Application Data\Adobe\shed
C:\Documents and Settings\COT\Application Data\BabylonToolbar
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} . (...) (No version) -- (.not file.)
[HKCU\Software\SweetIM]
O43 - CFD: 02/10/2011 - 18:53:36 - [3718114] ----D- C:\Program Files\SweetIM
[HKCU\Software\SweetIM]
C:\Program Files\SweetIM
[MD5.23C74D75E36E7158768DD63D92789A91] - (.Microsoft Corporation - IPSec Driver.) (.04/10/2011 - 20:19:42.) -- C:\WINDOWS\system32\drivers\IPSec.sys [75264] *5892536,1756
EMPTYTEMP
EMPTYFLASH
Puis Lance ZHPFix depuis le raccourci du bureau . (Clique droit -> Executer en tant qu'admin pour Vista ou Seven)
* Une fois l'outil ZHPFix ouvert ,
- Clique sur l'icone représentant la lettre H (« coller les lignes Helper »)
- Les lignes se collent automatiquement dans ZHPFix, sinon colle les lignes
- Clique sur le bouton « GO » pour lancer le nettoyage,
- Copie/colle la totalité du rapport dans ta prochaine réponse
le rapport se trouve dans le dossier de zhpdiag dans program files sous le nom de ZHPFixReport
...............................
2)
Redemarre le pc et dis moi si tu as encore des soucis
