Sujet Précédent Sujet Suivant

Virus

Fermé
ligthbleu Messages postés 19 Date d'inscription dimanche 6 octobre 2013 Statut Membre Dernière intervention 29 juin 2015 - 6 oct. 2013 à 06:37
kingk06 Messages postés 10277 Date d'inscription mercredi 12 juin 2013 Statut Membre Dernière intervention 17 mars 2015 - 14 oct. 2013 à 20:40
Bonjour, cela fait quelque jours après un téléchargement je pense que j'ai pris un virus que COMODO me rappelle tous les jours. Je ne sais pas pourquoi je pense que ça a un lien avec JAVA que je voudrais désinstaller et remettre mais je n'ai pas acces pour le faire. dans COMODO ça m'affiche ça : c:/ user/claudine/appdata/local/tuto4pc_fr_4dowload/majt4pcfr.exe
Je fais que passer Adwcleaner que j'ai installer mais rien à faire.Merci de m'aider ceux qui savent.
A voir également:

22 réponses

  • 1
  • 2
Réponse 1 / 22
kingk06 Messages postés 10277 Date d'inscription mercredi 12 juin 2013 Statut Membre Dernière intervention 17 mars 2015 536
Modifié par kingk06 le 6/10/2013 à 06:49
bonjour

poste moi le rapport de Adwcleaner stp

On va utiliser un outil en complément à Adwcleaner

-> 2) Télécharge Junkware Removal Tool à cette adresse (ne clique pas sur télécharger, le téléchargement va débuter automatiquement) : https://www.bleepingcomputer.com/download/junkware-removal-tool/dl/131/

-> Enregistre-le sur ton bureau.

-> Ferme toutes les applications en cours.

-> Ouvre JRT.exe et appuie sur Entrée : si tu es sous Windows Vista, 7 ou 8, ouvre-le en faisant : clic droit => Exécuter en tant qu'administrateur.

-> Patiente le temps que l'outil travaille : le bureau va disparaître quelques instants, c'est tout à fait normal.

-> À la fin de l'analyse, un rapport nommé JRT.txt va s'ouvrir. Héberge-le comme ceci http://www.forum-entraide-informatique.com/support/cjoint-com-tutoriel-t2939.html et poste le lien obtenu dans ta prochaine réponse.

Tutoriel : ==> JRT ICI


------------------------------------------------------------------------------->>>>


Ensuite Fais ceci ==>

3)Télécharge >>Malwarebytes'Antimalwares =>> https://fr.malwarebytes.com/
La mise à jour du programme va se faire directement ; si ce n'est pas le cas, clique sur Recherche de mises à jour

Fais une analyse complète en cliquant sur Exécuter un examen complet
Sélectionne les lecteurs à analyser et clique sur Lancer l'examen
L'analyse peut durer un certain temps

Lorsque l'analyse est terminée,

clique sur OK puis sur Afficher les résultats

"Assure-toi que tout est coché et clique sur Supprimer" la sélection puis sur "OK"

Le bloc-note va s'ouvrir qui contiendra un rapport
Copie (Ctrl+C)/Colle (Ctrl+V) le rapport dans ta prochaine réponse


/!\ Il est possible que certains fichiers devront être supprimés au redémarrage du PC. Il faut le faire en cliquant sur Oui à la question posée

/!\ pour retrouver le rapport ouvre MBAM +> onglet rapports/logs l Le dernier en date mbam........log
=> image=> onglet rapports

Si tu as besoin d'aide regarde ce tutoriel :
https://www.commentcamarche.net/telecharger/securite/14361-malwarebytes-anti-malware/

(Garde Malwarebytes sur ton PC pour des scans réguliers.)

N'oubliez pas de mettre votre sujet en résolu merci.
0
Réponse 2 / 22
ligthbleu Messages postés 19 Date d'inscription dimanche 6 octobre 2013 Statut Membre Dernière intervention 29 juin 2015
6 oct. 2013 à 07:58
re, je te poste mon premier bloc note...Merci.~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.3 (09.27.2013:1)
OS: Windows 7 Ultimate x64
Ran by claudine on 06/10/2013 at 7:38:10,13
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services

Successfully stopped: [Service] ibupdaterservice
Successfully deleted: [Service] ibupdaterservice



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\browser infrastructure helper
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\\Default_Search_URL
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchURL\\Default
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\searchURL\\Default
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\\SearchAssistant
0
Réponse 3 / 22
ligthbleu Messages postés 19 Date d'inscription dimanche 6 octobre 2013 Statut Membre Dernière intervention 29 juin 2015
6 oct. 2013 à 08:17
Kingko6, excuses moi je viens de télécharger Malwarebytes'Antimalwares, et il me demande mon ID et ma CLE/KEY ???? Peux tu m'aider à avancer? Merci.
0
Réponse 4 / 22
kingk06 Messages postés 10277 Date d'inscription mercredi 12 juin 2013 Statut Membre Dernière intervention 17 mars 2015 536
6 oct. 2013 à 09:46
re,

et le rapport de Adwcleaner stp tu peu le poste aussi merci !

demande mon ID et ma CLE/KEY ???? Peux tu m'aider à avancer? Merci.
ta a clic sur acheter maintenant ce pour ça que te do-mande la CLE/KEY

clic ici lien direct => https://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html le téléchargement va débuter automatiquement)
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 22
ligthbleu Messages postés 19 Date d'inscription dimanche 6 octobre 2013 Statut Membre Dernière intervention 29 juin 2015
6 oct. 2013 à 09:56
C'est bon j'ai pu avancer ... Voici mon rapport qui est sorti :Malwarebytes Anti-Malware (Essai) 1.75.0.1300
www.malwarebytes.org

Version de la base de données: v2013.10.06.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16686
claudine :: CLAUDINE-PC [administrateur]

Protection: Activé

06/10/2013 08:17:43
mbam-log-2013-10-06 (08-17-43).txt

Type d'examen: Examen complet (C:\|D:\|)
Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM
Options d'examen désactivées: P2P
Elément(s) analysé(s): 333425
Temps écoulé: 1 heure(s), 35 minute(s), 16 seconde(s)

Processus mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Module(s) mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Clé(s) du Registre détectée(s): 5
HKCR\AppID\{186E19A3-B909-4F48-B687-BB81EB8BC7CE} (Trojan.BHO) -> Mis en quarantaine et supprimé avec succès.
HKCR\AppID\{A2773ED4-83BD-488A-A186-73590706C916} (PUP.Optional.MixiDJToolbar.A) -> Mis en quarantaine et supprimé avec succès.
HKLM\SOFTWARE\Google\Chrome\Extensions\dgjkhjdcljddbedokogakmmdjgnbeanf (PUP.Optional.SpeedAnalysis2.A) -> Mis en quarantaine et supprimé avec succès.
HKLM\SOFTWARE\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde (PUP.Optional.Delta.A) -> Mis en quarantaine et supprimé avec succès.
HKLM\SOFTWARE\Google\Chrome\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo (PUP.Optional.Elex.A) -> Mis en quarantaine et supprimé avec succès.

Valeur(s) du Registre détectée(s): 1
HKCU\SOFTWARE\Microsoft\Internet Explorer\AboutURLs|Tabs (Trojan.StartPage) -> Données: http://ww38.u-search.net/?a=1&e=1 -> Mis en quarantaine et supprimé avec succès.

Elément(s) de données du Registre détecté(s): 0
(Aucun élément nuisible détecté)

Dossier(s) détecté(s): 1
C:\Users\claudine\AppData\Roaming\SpeedAnalysis2 (PUP.Optional.SpeedAnalysis.A) -> Mis en quarantaine et supprimé avec succès.

Fichier(s) détecté(s): 32
C:\Program Files (x86)\~BabylonToolbar\~BabylonToolbar\~1.5.29.1\~BabylonToolbarApp.dll (PUP.Optional.BabylonToolBar.A) -> Mis en quarantaine et supprimé avec succès.
C:\Program Files (x86)\~BabylonToolbar\~BabylonToolbar\~1.5.29.1\~BabylonToolbarEng.dll (PUP.Optional.BabylonToolBar.A) -> Mis en quarantaine et supprimé avec succès.
C:\Program Files (x86)\~BabylonToolbar\~BabylonToolbar\~1.5.29.1\~BabylonToolbarsrv.exe (PUP.Optional.BabylonToolBar.A) -> Mis en quarantaine et supprimé avec succès.
C:\Program Files (x86)\~BabylonToolbar\~BabylonToolbar\~1.5.29.1\~BabylonToolbarTlbr.dll (PUP.Optional.BabylonToolBar.A) -> Mis en quarantaine et supprimé avec succès.
C:\Program Files (x86)\~BabylonToolbar\~BabylonToolbar\~1.5.3.17\~BabylonToolbarApp.dll (PUP.Optional.BabylonToolBar.A) -> Mis en quarantaine et supprimé avec succès.
C:\Program Files (x86)\~BabylonToolbar\~BabylonToolbar\~1.5.3.17\~BabylonToolbarEng.dll (PUP.Optional.BabylonToolBar.A) -> Mis en quarantaine et supprimé avec succès.
C:\Program Files (x86)\~BabylonToolbar\~BabylonToolbar\~1.5.3.17\~BabylonToolbarsrv.exe (PUP.Optional.BabylonToolBar.A) -> Mis en quarantaine et supprimé avec succès.
C:\Program Files (x86)\~BabylonToolbar\~BabylonToolbar\~1.5.3.17\~BabylonToolbarTlbr.dll (PUP.Optional.BabylonToolBar.A) -> Mis en quarantaine et supprimé avec succès.
C:\Program Files (x86)\~BabylonToolbar\~BabylonToolbar\~1.5.3.17\~uninstall.exe (PUP.Optional.BabylonToolBar.A) -> Mis en quarantaine et supprimé avec succès.
C:\Program Files (x86)\~BabylonToolbar\~BabylonToolbar\~1.6.4.6\~BabylonToolbarApp.dll (PUP.Optional.BabylonToolBar.A) -> Mis en quarantaine et supprimé avec succès.
C:\Program Files (x86)\~BabylonToolbar\~BabylonToolbar\~1.6.4.6\~BabylonToolbarEng.dll (PUP.Optional.BabylonToolBar.A) -> Mis en quarantaine et supprimé avec succès.
C:\Program Files (x86)\~BabylonToolbar\~BabylonToolbar\~1.6.4.6\~BabylonToolbarsrv.exe (PUP.Optional.BabylonToolBar.A) -> Mis en quarantaine et supprimé avec succès.
C:\Program Files (x86)\~BabylonToolbar\~BabylonToolbar\~1.6.4.6\~BabylonToolbarTlbr.dll (PUP.Optional.BabylonToolBar.A) -> Mis en quarantaine et supprimé avec succès.
C:\Program Files (x86)\~BabylonToolbar\~BabylonToolbar\~1.6.4.6\~uninstall.exe (PUP.Optional.BabylonToolBar.A) -> Mis en quarantaine et supprimé avec succès.
C:\Program Files (x86)\~BabylonToolbar\~BabylonToolbar\~1.8.3.8\~BabylonToolbarApp.dll (PUP.Optional.BabylonToolBar.A) -> Mis en quarantaine et supprimé avec succès.
C:\Program Files (x86)\~BabylonToolbar\~BabylonToolbar\~1.8.3.8\~BabylonToolbarEng.dll (PUP.Optional.BabylonToolBar.A) -> Mis en quarantaine et supprimé avec succès.
C:\Program Files (x86)\~BabylonToolbar\~BabylonToolbar\~1.8.3.8\~BabylonToolbarsrv.exe (PUP.Optional.BabylonToolBar.A) -> Mis en quarantaine et supprimé avec succès.
C:\Program Files (x86)\~BabylonToolbar\~BabylonToolbar\~1.8.3.8\~BabylonToolbarTlbr.dll (PUP.Optional.BabylonToolBar.A) -> Mis en quarantaine et supprimé avec succès.
C:\Users\claudine\Documents\windows 7\New Windows 7 Activator [2010] [blaze69]\New Windows 7 Activator [2010]\7Loader Release 5.exe (Trojan.Agent) -> Mis en quarantaine et supprimé avec succès.
C:\Users\claudine\Downloads\AdwCleaner.exe (PUP.Optional.FirSeriaInstaller) -> Mis en quarantaine et supprimé avec succès.
C:\Users\claudine\Downloads\aTube-Catcher.exe (PUP.Optional.InstallCore) -> Mis en quarantaine et supprimé avec succès.
C:\Users\claudine\Downloads\aTubeCatcher.exe (PUP.Optional.BundledToolBar.A) -> Mis en quarantaine et supprimé avec succès.
C:\Users\claudine\Downloads\PhotoScape_V3.6.3.exe (PUP.Optional.OpenCandy) -> Mis en quarantaine et supprimé avec succès.
C:\Users\claudine\Downloads\PowerPoint.exe (PUP.AdBundler) -> Mis en quarantaine et supprimé avec succès.
C:\Users\claudine\Downloads\SoftonicDownloader_pour_photoscape.exe (PUP.Optional.Softonic.A) -> Mis en quarantaine et supprimé avec succès.
C:\Users\claudine\Downloads\New Windows 7 Activator [2010]\New Windows 7 Activator [2010]\7Loader Release 5.exe (Trojan.Agent) -> Mis en quarantaine et supprimé avec succès.
C:\Windows\Installer\28c99ba.msi (Adware.Boxore) -> Mis en quarantaine et supprimé avec succès.
C:\Windows\Installer\5e5ff1.msi (PUP.Optional.SweetIM) -> Mis en quarantaine et supprimé avec succès.
C:\Windows\Installer\5e5ff7.msi (PUP.Optional.SweetIM) -> Mis en quarantaine et supprimé avec succès.
C:\Users\Public\Desktop\MP3 Downloader.lnk (Rogue.Link) -> Mis en quarantaine et supprimé avec succès.
C:\Users\claudine\AppData\Roaming\SpeedAnalysis2\speedanalysis.crx (PUP.Optional.SpeedAnalysis.A) -> Mis en quarantaine et supprimé avec succès.
C:\Users\claudine\AppData\Roaming\speedanalysis.ico (PUP.Optional.SpeedAnalysis2.A) -> Mis en quarantaine et supprimé avec succès.

(fin)
0
Réponse 6 / 22
ligthbleu Messages postés 19 Date d'inscription dimanche 6 octobre 2013 Statut Membre Dernière intervention 29 juin 2015
6 oct. 2013 à 10:14
Suite du dernier rapport...
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.3 (09.27.2013:1)
OS: Windows 7 Ultimate x64
Ran by claudine on 06/10/2013 at 7:38:10,13
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services

Successfully stopped: [Service] ibupdaterservice
Successfully deleted: [Service] ibupdaterservice



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\browser infrastructure helper
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\\Default_Search_URL
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchURL\\Default
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\searchURL\\Default
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\\SearchAssistant



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{FD8F79A0-D2E2-4FA2-AEAF-393EAC8064F7}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\1clickdownload
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\babsolution
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\bprotector
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\delta ltd
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\distromatic
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\filescout
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\im
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\iminstaller
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\optimizer pro
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\smartbarlog
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\crossrider
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\smartbar
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1827918173-1166182024-814522967-1001\Software\SweetIM
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\iminstaller
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\qvo6software
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\systweak
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\bbylntlbr.bbylntlbrhlpr
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\bbylntlbr.bbylntlbrhlpr.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\iesmartbar.bandobjectattribute
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\iesmartbar.bho
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\iesmartbar.dockingpanel
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\iesmartbar.iesmartbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\iesmartbar.iesmartbarbandobject
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\iesmartbar.smartbarmenuform
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\mediaplayer.graphicsutils.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\mgmediaplayer.gifanimator.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\prod.cap
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\apnstub_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\apnstub_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\babylon_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\babylon_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\boxore_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\conduitinstaller_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\conduitinstaller_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\iminent_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\iminent_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\mybabylontb_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\mybabylontb_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\sweetim_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\sweetim_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\sweetpacksupdatemanager_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\sweetpacksupdatemanager_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\systweakasp_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\systweakasp_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\updater service
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{7683b745-6060-41fd-aa75-0bbb383fead4}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{774c0434-9948-4dee-a14e-69cdd316e36c}
Successfully deleted: [Registry Key] HKEY_USERS\.DEFAULT\Software\bProtector
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\AskInstallChecker-1_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\AskPIP_FF__RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\AskPIP_FF__RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\TaskScheduler_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\TaskScheduler_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\LyricsSay-1-chromeinstaller_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\LyricsSay-1-chromeinstaller_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\pricepeep_1_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_pour_nuance-pdf-reader_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_pour_nuance-pdf-reader_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_pour_photoscape_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_pour_photoscape_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\APNSetup_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\APN_ATU3__RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\APN_ATU3__RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\AskInstallChecker-1_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\AskPIP_FF__RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\AskPIP_FF__RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\TaskScheduler_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\TaskScheduler_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\LyricsSay-1-chromeinstaller_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\LyricsSay-1-chromeinstaller_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\pricepeep_1_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_pour_nuance-pdf-reader_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_pour_nuance-pdf-reader_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_pour_photoscape_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_pour_photoscape_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{9334BAD3-7D4C-41DE-9AEF-7E0783E656C3}
Successfully deleted: [Registry Key] "hkey_current_user\software\apn pip"
Successfully deleted: [Registry Key] "hkey_current_user\software\askpartnernetwork"
Successfully deleted: [Registry Key] "hkey_current_user\software\pip"



~~~ Files

Successfully deleted: [File] C:\Windows\Tasks\SuperLyrics-1-firefoxinstaller.job
Successfully deleted: [File] "C:\Program Files (x86)\adobe\reader 10.0\reader\plug_ins\babylon\babylonrpi.api"
Successfully disinfected: [Shortcut] C:\Users\claudine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Successfully disinfected: [Shortcut] C:\Users\claudine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk
Successfully disinfected: [Shortcut] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
Successfully disinfected: [Shortcut] C:\Users\claudine\AppData\Roaming\microsoft\windows\start menu\Programs\Internet Explorer.lnk
Successfully disinfected: [Shortcut] C:\Users\claudine\AppData\Roaming\microsoft\windows\start menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\ibupdaterservice"
Successfully deleted: [Folder] "C:\ProgramData\installbrainservice"
Successfully deleted: [Folder] "C:\Users\claudine\AppData\Roaming\file scout"
Successfully deleted: [Folder] "C:\Users\claudine\AppData\Roaming\pluswinks"
Successfully deleted: [Folder] "C:\Users\claudine\AppData\Roaming\systweak"
Successfully deleted: [Folder] "C:\Users\claudine\appdata\local\cre"
Successfully deleted: [Folder] "C:\Users\claudine\appdata\local\duuqu"
Successfully deleted: [Folder] "C:\Users\claudine\appdata\local\software"
Successfully deleted: [Folder] "C:\Program Files (x86)\amazon browser bar"
Successfully deleted: [Folder] "C:\Program Files (x86)\duuqu"
Successfully deleted: [Folder] "C:\Program Files (x86)\oapps"
Successfully deleted: [Folder] "C:\Program Files (x86)\optimizer pro"
Successfully deleted: [Folder] "C:\Program Files (x86)\yontoo"
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{00C7F81D-B318-43B8-87F9-E268D989030D}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{05DF613C-CDE2-40D6-A493-2D59ACA93E98}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{0D1F9CFA-63E6-487E-A757-705A0DD2E72F}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{17E5BC71-A6E4-4F6F-B3D8-C6B47BFBED2E}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{18F830FB-6A2A-4FDA-8D91-9C0046645CA1}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{19F02E0A-EACB-462C-99AF-C0A82CB9D6B7}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{31E0B854-1634-4777-BDB0-660E9A9B2462}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{327CDBB2-53FD-4C4E-965F-24D13E8B1419}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{3FD3F20F-9608-4E2E-A208-F32EF4845081}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{404F7663-DEA0-466B-92B8-7A4B7CE6E5CC}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{4846026F-8D32-44A2-B413-351A9698D28E}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{484F1278-0F4F-48E0-919A-06331143B3E3}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{4901C303-C219-487D-AA6C-8DE181A92E49}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{508D627A-25AB-402A-A4CE-7E22E7D20D4C}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{52AF5DA4-968C-47F5-B338-B94C70AA98BD}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{55332F49-A630-455A-805D-0C335ECBBEB9}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{56F3EC8E-1B0D-4F5D-8B85-BD921B25743D}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{5A0E3D45-0F01-42DA-9863-C6AD252EA8D3}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{5D8CDF6B-1A0E-4270-8EBF-074B37104D23}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{601889E0-FBBE-4D19-B982-388129124EF6}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{624BAB34-2840-4CD4-8851-B4027F433AA9}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{6B5D3D8E-B5A8-45EB-88AA-B36579AE616D}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{6C4AEDA5-643C-4F3B-8BE4-73A9B3DE0B6B}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{76B9F627-CF66-4A21-8460-592C2FA7EF41}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{7A7CE96F-5380-4006-9C25-1556DF0C265E}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{8A8CBF28-3479-4867-9D7A-3C3D0F83D073}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{8B7BFD2E-95F3-4D7E-829B-DE4AFE7CAB40}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{9072782A-C692-48C5-8E78-0FF45CCCDF7C}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{9E4A2172-4FBF-4F56-A138-330064BD4B96}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{9EC4F9BB-8D5C-4FC0-9FBF-96EDF2BEC80B}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{A896C6A0-1D56-427D-A1FB-C10CB6D4EA66}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{B80F00BE-71E5-4720-9AB1-1358C2EFFEA8}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{BC2A5E45-FE34-46FD-8754-30162C1B946A}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{BEF18220-BA6B-41AD-886B-780317A911A4}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{C5051980-2392-47A8-917C-42A93AA71C2D}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{D8A05A60-78C7-43B9-A566-1B4FF215C505}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{DED3ABD5-4316-4432-AC2F-658110568B01}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{E40327DB-8C03-473D-9074-55BDC2EB6D5C}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{E9A117E9-409B-4897-8F76-AC5470ECB943}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{EF675946-8376-48CE-8270-0AD7A0847358}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{F2F39E7A-4949-4AAD-942C-364E51EF7C33}



~~~ FireFox

Successfully deleted: [File] C:\user.js
Failed to delete: [File] "C:\Program Files (x86)\Mozilla Firefox\searchplugins\qvo6.xml"
Successfully deleted: [File] "C:\Program Files (x86)\Mozilla Firefox\searchplugins\qvo6.xml"
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions\\webbooster@iminent.com
Successfully deleted the following from C:\Users\claudine\AppData\Roaming\mozilla\firefox\profiles\e1cacel6.default-1373611327770\prefs.js

user_pref("browser.newtab.url", "hxxp://www.qvo6.com/?utm_source=b&utm_medium=tugs&utm_campaign=eXQ&utm_content=hp&from=tugs&uid=395049983_397233_DCAC31D6&ts=1378846018");
user_pref("browser.search.order.1", "qvo6");
user_pref("extensions.crossrider.bic", "1410c423609d123016d9523db0e21a95");
Emptied folder: C:\Users\claudine\AppData\Roaming\mozilla\firefox\profiles\e1cacel6.default-1373611327770\minidumps [31 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 06/10/2013 at 7:55:42,28
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Pourras-tu me dire quelque chose suite à tous ces rapport dont je ne comprends strictement rien...?
0
Réponse 7 / 22
kingk06 Messages postés 10277 Date d'inscription mercredi 12 juin 2013 Statut Membre Dernière intervention 17 mars 2015 536
Modifié par kingk06 le 6/10/2013 à 11:18
Pourras-tu me dire quelque chose suite à tous ces rapport dont je ne comprends strictement rien...?
les rapport me dit ou il sont le infections ce comme quand tu va chez le docteur il t'es fais faire de analyse pour savoure ou et le problème ;)
donc sont des vecteurs d'infections que on va supprimé

-------------------------------------------------------------------------------------------------------
tu à dit => Je fais que passer Adwcleaner que j'ai installer mais rien à faire.
puis tu n'as toujours pas répondu à ma question =>
poste moi le rapport de Adwcleaner stp

ou tu refais le scan... => merci

Télécharge https://toolslib.net AdwCleaner (de Xplode) sur ton bureau

Double-clique sur l'icône présente sur ton bureau pour le lancer (Vista/7/8 --> Clic droit et "Exécuter en tant qu'administrateur")
Clique sur le bouton "Scanner"

Lorsque l'analyse est terminée, il est indiqué "En attente. Veuillez décocher les éléments...." au dessus de la barre de progression
Clique sur le bouton Nettoyer

Accepte le message de fermeture des applications

Valide, après lecture, la fenêtre d'information sur les PUP/LPI
Accepte le message de redémarrage

Patiente durant la suppression
Le PC va redémarrer et un rapport s'ouvrira automatiquement dans le bloc-notes après redémarrage Copie/colle son contenu dans ta prochaine réponse



N'oubliez pas de mettre votre sujet en résolu merci.
0
Réponse 8 / 22
ligthbleu Messages postés 19 Date d'inscription dimanche 6 octobre 2013 Statut Membre Dernière intervention 29 juin 2015
6 oct. 2013 à 20:49
Voilà le dernier rapport :Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.3 (09.27.2013:1)
OS: Windows 7 Ultimate x64
Ran by claudine on 06/10/2013 at 7:38:10,13
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services

Successfully stopped: [Service] ibupdaterservice
Successfully deleted: [Service] ibupdaterservice



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\browser infrastructure helper
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\\Default_Search_URL
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchURL\\Default
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\searchURL\\Default
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\\SearchAssistant



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{FD8F79A0-D2E2-4FA2-AEAF-393EAC8064F7}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\1clickdownload
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\babsolution
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\bprotector
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\delta ltd
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\distromatic
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\filescout
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\im
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\iminstaller
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\optimizer pro
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\smartbarlog
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\crossrider
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\smartbar
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1827918173-1166182024-814522967-1001\Software\SweetIM
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\iminstaller
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\qvo6software
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\systweak
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\bbylntlbr.bbylntlbrhlpr
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\bbylntlbr.bbylntlbrhlpr.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\iesmartbar.bandobjectattribute
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\iesmartbar.bho
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\iesmartbar.dockingpanel
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\iesmartbar.iesmartbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\iesmartbar.iesmartbarbandobject
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\iesmartbar.smartbarmenuform
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\mediaplayer.graphicsutils.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\mgmediaplayer.gifanimator.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\prod.cap
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\apnstub_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\apnstub_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\babylon_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\babylon_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\boxore_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\conduitinstaller_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\conduitinstaller_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\iminent_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\iminent_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\mybabylontb_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\mybabylontb_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\sweetim_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\sweetim_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\sweetpacksupdatemanager_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\sweetpacksupdatemanager_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\systweakasp_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\systweakasp_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\updater service
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{7683b745-6060-41fd-aa75-0bbb383fead4}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{774c0434-9948-4dee-a14e-69cdd316e36c}
Successfully deleted: [Registry Key] HKEY_USERS\.DEFAULT\Software\bProtector
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\AskInstallChecker-1_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\AskPIP_FF__RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\AskPIP_FF__RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\TaskScheduler_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\TaskScheduler_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\LyricsSay-1-chromeinstaller_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\LyricsSay-1-chromeinstaller_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\pricepeep_1_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_pour_nuance-pdf-reader_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_pour_nuance-pdf-reader_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_pour_photoscape_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_pour_photoscape_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\APNSetup_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\APN_ATU3__RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\APN_ATU3__RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\AskInstallChecker-1_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\AskPIP_FF__RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\AskPIP_FF__RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\TaskScheduler_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\TaskScheduler_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\LyricsSay-1-chromeinstaller_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\LyricsSay-1-chromeinstaller_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\pricepeep_1_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_pour_nuance-pdf-reader_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_pour_nuance-pdf-reader_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_pour_photoscape_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_pour_photoscape_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{9334BAD3-7D4C-41DE-9AEF-7E0783E656C3}
Successfully deleted: [Registry Key] "hkey_current_user\software\apn pip"
Successfully deleted: [Registry Key] "hkey_current_user\software\askpartnernetwork"
Successfully deleted: [Registry Key] "hkey_current_user\software\pip"



~~~ Files

Successfully deleted: [File] C:\Windows\Tasks\SuperLyrics-1-firefoxinstaller.job
Successfully deleted: [File] "C:\Program Files (x86)\adobe\reader 10.0\reader\plug_ins\babylon\babylonrpi.api"
Successfully disinfected: [Shortcut] C:\Users\claudine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Successfully disinfected: [Shortcut] C:\Users\claudine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk
Successfully disinfected: [Shortcut] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
Successfully disinfected: [Shortcut] C:\Users\claudine\AppData\Roaming\microsoft\windows\start menu\Programs\Internet Explorer.lnk
Successfully disinfected: [Shortcut] C:\Users\claudine\AppData\Roaming\microsoft\windows\start menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\ibupdaterservice"
Successfully deleted: [Folder] "C:\ProgramData\installbrainservice"
Successfully deleted: [Folder] "C:\Users\claudine\AppData\Roaming\file scout"
Successfully deleted: [Folder] "C:\Users\claudine\AppData\Roaming\pluswinks"
Successfully deleted: [Folder] "C:\Users\claudine\AppData\Roaming\systweak"
Successfully deleted: [Folder] "C:\Users\claudine\appdata\local\cre"
Successfully deleted: [Folder] "C:\Users\claudine\appdata\local\duuqu"
Successfully deleted: [Folder] "C:\Users\claudine\appdata\local\software"
Successfully deleted: [Folder] "C:\Program Files (x86)\amazon browser bar"
Successfully deleted: [Folder] "C:\Program Files (x86)\duuqu"
Successfully deleted: [Folder] "C:\Program Files (x86)\oapps"
Successfully deleted: [Folder] "C:\Program Files (x86)\optimizer pro"
Successfully deleted: [Folder] "C:\Program Files (x86)\yontoo"
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{00C7F81D-B318-43B8-87F9-E268D989030D}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{05DF613C-CDE2-40D6-A493-2D59ACA93E98}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{0D1F9CFA-63E6-487E-A757-705A0DD2E72F}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{17E5BC71-A6E4-4F6F-B3D8-C6B47BFBED2E}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{18F830FB-6A2A-4FDA-8D91-9C0046645CA1}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{19F02E0A-EACB-462C-99AF-C0A82CB9D6B7}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{31E0B854-1634-4777-BDB0-660E9A9B2462}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{327CDBB2-53FD-4C4E-965F-24D13E8B1419}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{3FD3F20F-9608-4E2E-A208-F32EF4845081}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{404F7663-DEA0-466B-92B8-7A4B7CE6E5CC}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{4846026F-8D32-44A2-B413-351A9698D28E}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{484F1278-0F4F-48E0-919A-06331143B3E3}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{4901C303-C219-487D-AA6C-8DE181A92E49}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{508D627A-25AB-402A-A4CE-7E22E7D20D4C}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{52AF5DA4-968C-47F5-B338-B94C70AA98BD}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{55332F49-A630-455A-805D-0C335ECBBEB9}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{56F3EC8E-1B0D-4F5D-8B85-BD921B25743D}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{5A0E3D45-0F01-42DA-9863-C6AD252EA8D3}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{5D8CDF6B-1A0E-4270-8EBF-074B37104D23}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{601889E0-FBBE-4D19-B982-388129124EF6}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{624BAB34-2840-4CD4-8851-B4027F433AA9}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{6B5D3D8E-B5A8-45EB-88AA-B36579AE616D}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{6C4AEDA5-643C-4F3B-8BE4-73A9B3DE0B6B}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{76B9F627-CF66-4A21-8460-592C2FA7EF41}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{7A7CE96F-5380-4006-9C25-1556DF0C265E}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{8A8CBF28-3479-4867-9D7A-3C3D0F83D073}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{8B7BFD2E-95F3-4D7E-829B-DE4AFE7CAB40}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{9072782A-C692-48C5-8E78-0FF45CCCDF7C}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{9E4A2172-4FBF-4F56-A138-330064BD4B96}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{9EC4F9BB-8D5C-4FC0-9FBF-96EDF2BEC80B}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{A896C6A0-1D56-427D-A1FB-C10CB6D4EA66}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{B80F00BE-71E5-4720-9AB1-1358C2EFFEA8}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{BC2A5E45-FE34-46FD-8754-30162C1B946A}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{BEF18220-BA6B-41AD-886B-780317A911A4}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{C5051980-2392-47A8-917C-42A93AA71C2D}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{D8A05A60-78C7-43B9-A566-1B4FF215C505}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{DED3ABD5-4316-4432-AC2F-658110568B01}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{E40327DB-8C03-473D-9074-55BDC2EB6D5C}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{E9A117E9-409B-4897-8F76-AC5470ECB943}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{EF675946-8376-48CE-8270-0AD7A0847358}
Successfully deleted: [Empty Folder] C:\Users\claudine\appdata\local\{F2F39E7A-4949-4AAD-942C-364E51EF7C33}



~~~ FireFox

Successfully deleted: [File] C:\user.js
Failed to delete: [File] "C:\Program Files (x86)\Mozilla Firefox\searchplugins\qvo6.xml"
Successfully deleted: [File] "C:\Program Files (x86)\Mozilla Firefox\searchplugins\qvo6.xml"
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions\\webbooster@iminent.com
Successfully deleted the following from C:\Users\claudine\AppData\Roaming\mozilla\firefox\profiles\e1cacel6.default-1373611327770\prefs.js

user_pref("browser.newtab.url", "hxxp://www.qvo6.com/?utm_source=b&utm_medium=tugs&utm_campaign=eXQ&utm_content=hp&from=tugs&uid=395049983_397233_DCAC31D6&ts=1378846018");
user_pref("browser.search.order.1", "qvo6");
user_pref("extensions.crossrider.bic", "1410c423609d123016d9523db0e21a95");
Emptied folder: C:\Users\claudine\AppData\Roaming\mozilla\firefox\profiles\e1cacel6.default-1373611327770\minidumps [31 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 06/10/2013 at 7:55:42,28
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Peux tu me dire ce que tu en penses? Merci.
0
Réponse 9 / 22
kingk06 Messages postés 10277 Date d'inscription mercredi 12 juin 2013 Statut Membre Dernière intervention 17 mars 2015 536
6 oct. 2013 à 21:18
je penses que faut continue on n'a pas fini !

tu me fais ça stp => https://forums.commentcamarche.net/forum/affich-28841549-virus#7
0
Réponse 10 / 22
ligthbleu Messages postés 19 Date d'inscription dimanche 6 octobre 2013 Statut Membre Dernière intervention 29 juin 2015
6 oct. 2013 à 21:20
que dois je faire maintenant stp?
0
Réponse 11 / 22
kingk06 Messages postés 10277 Date d'inscription mercredi 12 juin 2013 Statut Membre Dernière intervention 17 mars 2015 536
Modifié par kingk06 le 6/10/2013 à 21:25
1)Télécharge http://general-changelog-team.fr/fr/downloads/viewdownload/20-outils-de-xplode/2-adwcleaner AdwCleaner (de Xplode) sur ton bureau

Double-clique sur l'icône présente sur ton bureau pour le lancer (Vista/7/8 --> Clic droit et "Exécuter en tant qu'administrateur")
Clique sur le bouton "Scanner"

Lorsque l'analyse est terminée, il est indiqué "En attente. Veuillez décocher les éléments...." au dessus de la barre de progression
Clique sur le bouton Nettoyer

Accepte le message de fermeture des applications

Valide, après lecture, la fenêtre d'information sur les PUP/LPI
Accepte le message de redémarrage

Patiente durant la suppression
Le PC va redémarrer et un rapport s'ouvrira automatiquement dans le bloc-notes <gras>après redémarrage Copie/colle son contenu dans ta prochaine
0
Réponse 12 / 22
ligthbleu Messages postés 19 Date d'inscription dimanche 6 octobre 2013 Statut Membre Dernière intervention 29 juin 2015
6 oct. 2013 à 21:40
rapport :

# AdwCleaner v3.006 - Rapport créé le 06/10/2013 à 21:35:25
# Mis à jour le 01/10/2013 par Xplode
# Système d'exploitation : Windows 7 Ultimate Service Pack 1 (64 bits)
# Nom d'utilisateur : claudine - CLAUDINE-PC
# Exécuté depuis : C:\Users\claudine\Downloads\adwcleaner.exe
# Option : Nettoyer

***** [ Services ] *****

[#] Service Supprimé : Software_update
[#] Service Supprimé : Software_update_m

***** [ Fichiers / Dossiers ] *****

Dossier Supprimé : C:\Program Files (x86)\~BabylonToolbar
Dossier Supprimé : C:\Users\claudine\AppData\Local\tuto4pc_fr_4
Dossier Supprimé : C:\Users\claudine\AppData\Roaming\Mozilla\Firefox\Profiles\llbtnwya.default\ConduitCommon
Dossier Supprimé : C:\Users\claudine\AppData\Local\Google\Chrome\User Data\Default\Extensions\boipimhfjpakfgckhbljjengakjhkcbp
Dossier Supprimé : C:\Users\claudine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgjkhjdcljddbedokogakmmdjgnbeanf
Dossier Supprimé : C:\Users\claudine\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Dossier Supprimé : C:\Users\claudine\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl
Dossier Supprimé : C:\Users\claudine\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpepfkjapeclaafmhoelccknpfedainn
Dossier Supprimé : C:\Users\claudine\AppData\Local\Google\Chrome\User Data\Default\Extensions\mocblcnaofikinigmceddfghppkkjbog
Fichier Supprimé : C:\Windows\System32\roboot64.exe
Fichier Supprimé : C:\Windows\Tasks\SoftwareUpdateTaskMachineCore.job
Fichier Supprimé : C:\Windows\System32\Tasks\SoftwareUpdateTaskMachineCore
Fichier Supprimé : C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job
Fichier Supprimé : C:\Windows\System32\Tasks\SoftwareUpdateTaskMachineUA

***** [ Raccourcis ] *****

Raccourci Désinfecté : C:\Users\claudine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk

***** [ Registre ] *****

Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Extensions\mocblcnaofikinigmceddfghppkkjbog
Clé Supprimée : HKCU\Software\Google\Chrome\Extensions\paoponfhfdfnjgddpnpjkambkcgdaaib
Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Extensions\paoponfhfdfnjgddpnpjkambkcgdaaib
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe]
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll]
Clé Supprimée : HKLM\SOFTWARE\MozillaPlugins\@tools.Software.com/Software Update;version=3
Clé Supprimée : HKLM\SOFTWARE\MozillaPlugins\@tools.Software.com/Software Update;version=9
Clé Supprimée : HKCU\Software\f558f8ab73db847
Clé Supprimée : HKLM\SOFTWARE\f558f8ab73db847
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{A717364F-69F3-3A24-ADD5-3901A57F880E}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{CCB08265-B35D-30B2-A6AF-6986CA957358}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{CD92622E-49B9-33B7-98D1-EC51049457D7}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{E041E037-FA4B-364A-B440-7A1051EA0301}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{0BF91075-F457-4A8B-99EF-140B52D2F22A}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{37425600-CB21-49A0-8659-476FBAB0F8E8}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{431FB0E5-2CBB-4602-9FE6-F1D64488ADD7}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{5C9A230D-70A5-11D5-AFB0-0050DAC67890}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{8911483C-C00A-4183-9FBC-6C9C00946C15}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C3F058A9-407D-4CD1-8F66-B75605B54B69}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{EFDCAF05-D29C-4D4D-9836-8CDCD606A6B2}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{5C9A2304-70A5-11D5-AFB0-0050DAC67890}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\CLSID\{A717364F-69F3-3A24-ADD5-3901A57F880E}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\CLSID\{CCB08265-B35D-30B2-A6AF-6986CA957358}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\CLSID\{CD92622E-49B9-33B7-98D1-EC51049457D7}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\CLSID\{E041E037-FA4B-364A-B440-7A1051EA0301}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{0BF91075-F457-4A8B-99EF-140B52D2F22A}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{37425600-CB21-49A0-8659-476FBAB0F8E8}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{431FB0E5-2CBB-4602-9FE6-F1D64488ADD7}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{5C9A230D-70A5-11D5-AFB0-0050DAC67890}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{8911483C-C00A-4183-9FBC-6C9C00946C15}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{C3F058A9-407D-4CD1-8F66-B75605B54B69}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{EFDCAF05-D29C-4D4D-9836-8CDCD606A6B2}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{FD8F79A0-D2E2-4FA2-AEAF-393EAC8064F7}
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Donnée Restaurée : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Clé Supprimée : HKCU\Software\Alexa Internet
Clé Supprimée : HKCU\Software\Duuqu
Clé Supprimée : HKCU\Software\Tutorials
Clé Supprimée : HKCU\Software\TutoTag
Clé Supprimée : HKCU\Software\vShare.tv
Clé Supprimée : HKLM\Software\Duuqu
Clé Supprimée : HKLM\Software\PIP
Clé Supprimée : [x64] HKLM\SOFTWARE\DomaIQ

***** [ Navigateurs ] *****

-\\ Internet Explorer v10.0.9200.16686

Paramètre Restauré : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Paramètre Restauré : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]

-\\ Mozilla Firefox v24.0 (fr)

[ Fichier : C:\Users\claudine\AppData\Roaming\Mozilla\Firefox\Profiles\e1cacel6.default-1373611327770\prefs.js ]

Ligne Supprimée : user_pref("plugin.blocklisted.npviewpoint", true);

-\\ Google Chrome v

[ Fichier : C:\Users\claudine\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Supprimée : search_url

*************************

AdwCleaner[R0].txt - [7505 octets] - [06/10/2013 21:34:10]
AdwCleaner[S0].txt - [6484 octets] - [06/10/2013 21:35:25]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [6544 octets] ##########


Voilà...
0
Réponse 13 / 22
kingk06 Messages postés 10277 Date d'inscription mercredi 12 juin 2013 Statut Membre Dernière intervention 17 mars 2015 536
6 oct. 2013 à 21:49
ok ce mieux là ;)

Scan ZHPDiag :

Nous allons utiliser cet outil de diagnostic maintenant pour voir tous les problèmes et s'assurer qu'il ne reste rien:.

Télécharge https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html ZHPDiag (de Nicolas Coolman) sur ton bureau
=> Sous Vista/Win7 et Win8, lancer l'installation par clic droit et "Exécuter en tant qu'administrateur"

==> Surtout, n'oublie pas d'installer son icône sur le bureau l'icône est en forme de parchemin
L'outil a créé 2 icônes ZHPDiag , ZHPFix

=> Laisse toi guider lors de l'installation, il se lancera automatiquement à la fin.

=> Si le programme ne se lance pas automatiquement, clique sur cette icône présente sur ton bureau pour Vista/7 : clic droit et "exécuter en tant qu'administrateur"


=> La fenêtre du programme va s'ouvrir

=> Clique sur le gros bouton "Configurer"

=> Clique ensuite en bas à gauche sur la loupe qui ne contient ni signe "+" ni signe "-"

Une boîte de dialogue va s'ouvrir "voulez-vous un rapport full options ?" : cliquer sur "oui"


Une fois l'analyse terminée, un rapport s'ouvrira dans le bloc-notes. Ferme le
Il faut héberger ce rapport qui se trouve sur le bureau, celui-ci étant trop long
pour être posté sur le forum Pour héberger le rapport :poste-le ici stp >> https://www.cjoint.com/

Pour t'aider http://www.pc-infopratique.com/forum-informatique/tutoriel-heberger-rapport-vt-67934.html

tuto zhpdiag : => http://nicolascoolman.webs.com/tutorials.htm
0
Réponse 14 / 22
ligthbleu Messages postés 19 Date d'inscription dimanche 6 octobre 2013 Statut Membre Dernière intervention 29 juin 2015
6 oct. 2013 à 22:32
comment je dois faire pour poster le rapport?
0
Réponse 15 / 22
kingk06 Messages postés 10277 Date d'inscription mercredi 12 juin 2013 Statut Membre Dernière intervention 17 mars 2015 536
6 oct. 2013 à 22:35
faut lire ce marque =>

Une fois l'analyse terminée, un rapport s'ouvrira dans le bloc-notes. Ferme le
Il faut héberger ce rapport qui se trouve sur le bureau, celui-ci étant trop long
pour être posté sur le forum Pour héberger le rapport :poste-le ici stp >> https://www.cjoint.com/

Pour t'aider http://www.pc-infopratique.com/forum-informatique/tutoriel-heberger-rapport-vt-67934.html
0
Réponse 16 / 22
ligthbleu Messages postés 19 Date d'inscription dimanche 6 octobre 2013 Statut Membre Dernière intervention 29 juin 2015
6 oct. 2013 à 22:40
as-tu reçu le lien? j'ai suivi tout ce que tu m'as envoyé à la lettre...LOL
0
Réponse 17 / 22
kingk06 Messages postés 10277 Date d'inscription mercredi 12 juin 2013 Statut Membre Dernière intervention 17 mars 2015 536
6 oct. 2013 à 22:48
non je rien ! il faut colle ici le lien que tes donne le site cjoint.

regarde ici Pour t'aider http://www.pc-infopratique.com/forum-informatique/tutoriel-heberger-rapport-vt-67934.html
0
Réponse 18 / 22
ligthbleu Messages postés 19 Date d'inscription dimanche 6 octobre 2013 Statut Membre Dernière intervention 29 juin 2015
6 oct. 2013 à 22:52
http://cjoint.com/?CJgwZakG9Dx...désolée, je rame grave !!!!!!!!! Quand on s'y connait pas, ça prend du temps...lol
0
Réponse 19 / 22
kingk06 Messages postés 10277 Date d'inscription mercredi 12 juin 2013 Statut Membre Dernière intervention 17 mars 2015 536
6 oct. 2013 à 23:04
ok ce bon je regarde
0
Réponse 20 / 22
kingk06 Messages postés 10277 Date d'inscription mercredi 12 juin 2013 Statut Membre Dernière intervention 17 mars 2015 536
Modifié par kingk06 le 6/10/2013 à 23:30
Windows installé version pas légale !

tu pu me dire ce qua ça =>

Windows Server License Manager Script : Absent (Not found)
Windows ID Activation : Inconnue (Unknown)
Windows Licence : Inconnue (Unknown)



N'oubliez pas de mettre votre sujet en résolu merci.
0
ligthbleu
12 oct. 2013 à 14:18
Merci de ton aide tout est résolu.
0
kingk06 Messages postés 10277 Date d'inscription mercredi 12 juin 2013 Statut Membre Dernière intervention 17 mars 2015 536
Modifié par kingk06 le 14/10/2013 à 03:03
tan mieux pour toi ! tu a résolu. quai ça ? =>
https://forums.commentcamarche.net/forum/affich-28841549-virus#20

poste moi un rapport zhpdiag pour voire !

sinon me sujet en résolu merci.
@+
0

Discussions similaires

Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
4 virus en raison d’un porno ????
valou -
Bello040420 -

9 réponses
problême Opéra est ce un virus??
sand2504 -
sand2504 -

85 réponses
Désinstaller Softonic
Diguimette -
lilidurhone -

5 réponses