Votre question

redirige vers un autre site. RESOLU

Tags :
  • Sis
  • Google toolbar
  • Autres
  • Sécurité
Dernière réponse : dans Sécurité et virus
30 Août 2012 16:52:26

Posez votre question
Bonjour, je suis nouvelle et je ne sais pas si je suis dans le bon forum pour mon souci.
Depuis quelques jours, lorque j'effectue une recheche sur google(ie) je suis redirigee vers un autre site.j'ai desinstalle google toolbar puis reinstalle toujours pareil. J'ai scanne mon pc, avast, ccleaner, tout est ok. Lorque j'efffectue ma recherche avec orange(ie) tout vas bien. Mais par contre c'est tres lent.
SVP AIDEZ MOI? JE SUI PERDUE;

Autres pages sur : redirige vers site resolu

a c 614 8 Sécurité
31 Août 2012 10:03:54

Bonjour,

Nous allons regarder ça :

Télécharge OTL (de Old Timer) sur ton bureau.
  • Ferme toutes tes fenêtres, puis double clique sur OTL.exe pour le lancer.
    (Utilisateur de Vista/Windows 7 faites un clic droit -> "Exécuter en tant qu'administrateur")
  • Coche en haut la case devant "Tous les utilisateurs"
  • Sous Personnalisation, copie-colle l'ensemble du texte ci-dessous, laisse les autres options par défaut.
    netsvcs
    msconfig
    drivers32
    activex
    /md5start
    explorer.exe
    wininit.exe
    winlogon.exe
    userinit.exe
    kernel32.dll
    services.exe
    /md5stop
    %SYSTEMDRIVE%\*.exe
    %ALLUSERSPROFILE%\Application Data\*.
    %ALLUSERSPROFILE%\Application Data\*.exe /s
    %APPDATA%\*.
    %APPDATA%\*.exe /s
    %systemroot%\*. /mp /s
    %systemroot%\system32\*.dll /lockedfiles
    %systemroot%\syswow64\*.dll /lockedfiles
    %systemroot%\Tasks\*.job /lockedfiles
    %systemroot%\system32\drivers\*.sys /lockedfiles
    %systemroot%\syswow64\drivers\*.sys /lockedfiles
    hklm\software\clients\startmenuinternet|command /rs
    hklm\software\clients\startmenuinternet|command /64 /rs
    CREATERESTOREPOINT


  • Clique sur le bouton Analyse en haut à gauche puis patiente quelques instants.
  • A la fin du scan, deux rapports s'ouvriront OTL.Txt et Extras.Txt.

  • Pour les rapports, merci d'utiliser ce service de rapport en ligne : dépose le fichier via "parcourir" et poste simplement le lien obtenu dans ta réponse.
    Une aide à l'utilisation ici


    Note : Les rapports sont aussi enregistrés sur le bureau
    31 Août 2012 18:59:43

    bonjour,
    je te remercie pour ta reponse qui à ete rapide, je vais faire ce que tu m'a dis et je poste.
    Merci encore
    Contenus similaires
    31 Août 2012 19:01:38

    Bonjour,
    je ne sais pas si j'ai envoyer ma repose alors je recommence! merci pour ta reponse, je vais faire ce que tu m'a explique et je poste.
    Merci encore
    a c 614 8 Sécurité
    31 Août 2012 22:02:10

    Re,

    C'est parce qu'OTL a déjà été lancé sur ce pc plusieurs fois ...
    Je vois aussi ZHPDiag.

    Es-tu aidé sur un autre forum en ce moment ?
    1 Septembre 2012 11:56:34

    Re, non je en suis pas sur un autre forum, j'ai essaye par moi memen puis n'y arrivant pas j(ai demande de l'aide sur ton forum, un ami me l'a conseille, mais je ne me suis pas servi de otl.Par contre il y a plusieur moi, ma fiile avait un souci avec mon pc ,et je crois biens qu'on lui avais dit de scanner avec otl.
    Merci
    a c 614 8 Sécurité
    1 Septembre 2012 14:16:08

    Re,

    Ok, alors sachez que ces outils à script sont potentiellement très dangereux si vous faites une fausse manoeuvre avec.

    On y va pour le ménage :

    1) Désinstalle les programmes suivants dans ta liste des programmes (si présents) :

    Note : Si tu rencontres une erreur passe au suivant et poursuis la procédure

    Tu as deux antivirus actif sur ce pc, Avast! et Microsoft Security Essentials : multiplier les protections n'améliore pas la sécurité (la preuve, tu es là ...), mais peut au contraire ralentir le pc et provoquer conflits et plantages
    Désinstalle l'un ou l'autre : Avast ! ou Micrososft Security Essentials (un seul antivirus par pc)

    - DealPly (adware : logiciel publicitaire)
    - Babylon / Babylon Toolbar (idem)

    - Emsisoft HiJackFree (inutile)
    - ZHP (idem)


    2) Télécharge AdwCleaner (de Xplode) sur ton Bureau.

    /!\ Désactive tes protections résidentes : antivirus, antispyware ... Déconnecte-toi et ferme toutes les applications en cours (notamment ton navigateur)/!\

  • Double-clique sur adwcleaner0.exe pour lancer le programme.
    (Utilisateur de Vista/Windows 7, clique-droit sur le fichier adwcleaner0.exe -> Exécuter en tant qu'administrateur)

  • Dans la fenêtre principal, choisis l'option Suppression.
  • Valide l'avertissement.
  • Si le pc demande à redémarrer, accepte.
  • Un rapport apparaitra (sinon, il est situé ici C:\AdwCleaner[Sx].txt). Poste-le dans ta prochaine réponse.


    3) Relance OTL.exe

  • Ferme toutes tes fenêtres, puis double clique sur OTL.exe pour le lancer.
    (Utilisateur de Vista/Windows 7 faites un clic droit -> "Exécuter en tant qu'administrateur")

    /!\ Attention, utilisateur d'Avast! ou d'autres antivirus, ne lancez pas OTL en mode sandbox /!\

  • Copie-colle l'ensemble du texte ci-dessous dans le cadre Personnalisation d'OTL en bas à gauche.



    :OTL
    SRV - [2009/07/25 14:46:23 | 000,069,120 | ---- | M] (BOONTY) [On_Demand | Stopped] -- C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe -- (Boonty Games)
    DRV - File not found [File_System | On_Demand | Stopped] -- -- (Avaaeassrwnw)
    DRV - File not found [Kernel | On_Demand | Stopped] -- System32\Drivers\lgandnetadb.sys -- (andnetadb)
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=c2000&s={searchTerms}&f=4
    IE - HKU\S-1-5-21-729125539-2281209469-1315271956-1000\..\URLSearchHook: {cfcb809c-3a22-4616-a916-6c007bd9d920} - No CLSID value found
    IE - HKU\S-1-5-21-729125539-2281209469-1315271956-1000\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/?q={searchTerms}&affID=115284&tt=3512_8&babsrc=SP_ss&mntrId=0a92d1250000000000000021006c4b01
    IE - HKU\S-1-5-21-729125539-2281209469-1315271956-1000\..\SearchScopes\{5FA66E0E-3970-497B-A8B9-CE0315F8E442}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3241952
    [2012/08/30 11:22:26 | 000,000,000 | ---D | M] (Babylon) -- C:\Users\Marie-Ange\AppData\Roaming\mozilla\Firefox\Profiles\1dpnbbir.default\extensions\ffxtlbr@babylon.com
    [2012/03/10 18:13:29 | 000,000,000 | ---D | M] (DealPly) -- C:\Users\Marie-Ange\AppData\Roaming\mozilla\Firefox\Profiles\wgbdvh4c.default\extensions\{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}
    [2011/07/30 18:55:31 | 000,000,000 | ---D | M] (Babylon) -- C:\Users\Marie-Ange\AppData\Roaming\mozilla\Firefox\Profiles\wgbdvh4c.default\extensions\ffxtlbr@babylon.com
    [2011/07/30 18:49:52 | 000,002,048 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fcmdSrch.xml
    CHR - Extension: DealPly = C:\Users\Marie-Ange\AppData\Local\Google\Chrome\User Data\Default\Extensions\gaiilaahiahdejapggenmdmafpmbipje\3.0.7.2_0\
    O2 - BHO: (Babylon toolbar helper) - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.6.9.12\bh\BabylonToolbar.dll (Babylon BHO)
    O2 - BHO: (DealPly) - {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} - C:\Program Files\DealPly\DealPlyIE.dll (DealPly Technologies Ltd)
    O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.6.9.12\BabylonToolbarTlbr.dll (Babylon Ltd.)
    O3 - HKU\S-1-5-21-729125539-2281209469-1315271956-1000\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
    O3 - HKU\S-1-5-21-729125539-2281209469-1315271956-1000\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
    O3 - HKU\S-1-5-21-729125539-2281209469-1315271956-1000\..\Toolbar\WebBrowser: (no name) - {CFCB809C-3A22-4616-A916-6C007BD9D920} - No CLSID value found.
    O3 - HKU\S-1-5-21-729125539-2281209469-1315271956-1000\..\Toolbar\WebBrowser: (no name) - {D3028143-6145-4318-99D3-3EDCE54A95A9} - No CLSID value found.
    O3 - HKU\S-1-5-21-729125539-2281209469-1315271956-1000\..\Toolbar\WebBrowser: (no name) - {E84CC2C1-B722-48FC-A39C-EDB8B525C777} - No CLSID value found.
    O3 - HKU\S-1-5-21-729125539-2281209469-1315271956-1000\..\Toolbar\WebBrowser: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} - No CLSID value found.
    [2012/08/31 19:32:37 | 000,000,000 | ---D | C] -- C:\Program Files\Conduit
    [2012/08/31 19:32:35 | 000,000,000 | ---D | C] -- C:\Users\Marie-Ange\AppData\Local\Conduit
    [2012/08/30 18:17:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Emsisoft HiJackFree
    [2012/08/30 18:17:41 | 000,000,000 | ---D | C] -- C:\Program Files\Emsisoft HiJackFree
    [2012/08/30 11:22:36 | 000,000,000 | ---D | C] -- C:\Users\Marie-Ange\AppData\Roaming\OfferBox
    [2012/08/28 14:09:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
    [2012/08/28 14:09:49 | 000,000,000 | ---D | C] -- C:\ZHP
    [2011/03/18 20:53:40 | 002,944,904 | ---- | C] (Ask) -- C:\Program Files\Common Files\AskToolbarInstaller.exe
    [2012/08/31 18:40:19 | 000,000,388 | ---- | M] () -- C:\Windows\tasks\Registry Reviver-Marie-Ange-Startup.job
    [2012/08/31 18:40:16 | 000,000,328 | ---- | M] () -- C:\Windows\tasks\zpscuptnw.job
    [2012/08/30 18:17:42 | 000,000,827 | ---- | M] () -- C:\Users\Public\Desktop\Emsisoft HiJackFree.lnk
    [2012/08/28 11:47:30 | 000,155,648 | RHS- | C] () -- C:\Windows\System32\normnfkdw.dll
    [2012/03/10 18:12:40 | 000,000,000 | ---D | M] -- C:\Users\Marie-Ange\AppData\Roaming\Babylon
    [2012/08/30 17:52:32 | 000,000,000 | ---D | M] -- C:\Users\Marie-Ange\AppData\Roaming\OfferBox
    @Alternate Data Stream - 98 bytes -> C:\ProgramData\TEMP:538A9F02
    @Alternate Data Stream - 97 bytes -> C:\ProgramData\TEMP:50DD4118
    @Alternate Data Stream - 96 bytes -> C:\ProgramData\TEMP:59846E5E
    @Alternate Data Stream - 95 bytes -> C:\ProgramData\TEMP:5D351BC6
    @Alternate Data Stream - 247 bytes -> C:\ProgramData\TEMP:2CE15176
    @Alternate Data Stream - 241 bytes -> C:\ProgramData\TEMP:9BB8C675
    @Alternate Data Stream - 219 bytes -> C:\ProgramData\TEMP:9D03192E
    @Alternate Data Stream - 218 bytes -> C:\ProgramData\TEMP:53DF59D1
    @Alternate Data Stream - 213 bytes -> C:\ProgramData\TEMP:E6708F08
    @Alternate Data Stream - 154 bytes -> C:\ProgramData\TEMP:04ADB7A6
    @Alternate Data Stream - 153 bytes -> C:\ProgramData\TEMP:D987CB43
    @Alternate Data Stream - 153 bytes -> C:\ProgramData\TEMP:A71DCB33
    @Alternate Data Stream - 152 bytes -> C:\ProgramData\TEMP:EC3A9923
    @Alternate Data Stream - 150 bytes -> C:\ProgramData\TEMP:28819F45
    @Alternate Data Stream - 149 bytes -> C:\ProgramData\TEMP:F98E6C67
    @Alternate Data Stream - 149 bytes -> C:\ProgramData\TEMP:DDF112BD
    @Alternate Data Stream - 148 bytes -> C:\ProgramData\TEMP:EA10407C
    @Alternate Data Stream - 148 bytes -> C:\ProgramData\TEMP:C0893153
    @Alternate Data Stream - 148 bytes -> C:\ProgramData\TEMP:A6B07419
    @Alternate Data Stream - 148 bytes -> C:\ProgramData\TEMP:8AE92FD3
    @Alternate Data Stream - 147 bytes -> C:\ProgramData\TEMP:363E775E
    @Alternate Data Stream - 147 bytes -> C:\ProgramData\TEMP:31524539
    @Alternate Data Stream - 147 bytes -> C:\ProgramData\TEMP:24C072FF
    @Alternate Data Stream - 147 bytes -> C:\ProgramData\TEMP:0915A718
    @Alternate Data Stream - 146 bytes -> C:\ProgramData\TEMP:7BFFC6A9
    @Alternate Data Stream - 146 bytes -> C:\ProgramData\TEMP:71612023
    @Alternate Data Stream - 146 bytes -> C:\ProgramData\TEMP:65137F0D
    @Alternate Data Stream - 146 bytes -> C:\ProgramData\TEMP:3AF262FC
    @Alternate Data Stream - 146 bytes -> C:\ProgramData\TEMP:20EB6823
    @Alternate Data Stream - 146 bytes -> C:\ProgramData\TEMP:07CBFAD5
    @Alternate Data Stream - 145 bytes -> C:\ProgramData\TEMP:B6D84F71
    @Alternate Data Stream - 145 bytes -> C:\ProgramData\TEMP:AFB24B00
    @Alternate Data Stream - 145 bytes -> C:\ProgramData\TEMP:AE9351E0
    @Alternate Data Stream - 145 bytes -> C:\ProgramData\TEMP:69FE2EE4
    @Alternate Data Stream - 145 bytes -> C:\ProgramData\TEMP:4EFA2FC7
    @Alternate Data Stream - 145 bytes -> C:\ProgramData\TEMP:1CDEDE11
    @Alternate Data Stream - 144 bytes -> C:\ProgramData\TEMP:F56BE392
    @Alternate Data Stream - 144 bytes -> C:\ProgramData\TEMP:E87AB4E3
    @Alternate Data Stream - 144 bytes -> C:\ProgramData\TEMP:B8791731
    @Alternate Data Stream - 144 bytes -> C:\ProgramData\TEMP:AE75CCC8
    @Alternate Data Stream - 144 bytes -> C:\ProgramData\TEMP:AA0017FD
    @Alternate Data Stream - 144 bytes -> C:\ProgramData\TEMP:8C81B36D
    @Alternate Data Stream - 144 bytes -> C:\ProgramData\TEMP:5080697C
    @Alternate Data Stream - 144 bytes -> C:\ProgramData\TEMP:3A7527E8
    @Alternate Data Stream - 143 bytes -> C:\ProgramData\TEMP:F5D01D7C
    @Alternate Data Stream - 143 bytes -> C:\ProgramData\TEMP:D5CCCBAA
    @Alternate Data Stream - 143 bytes -> C:\ProgramData\TEMP:AECF4772
    @Alternate Data Stream - 143 bytes -> C:\ProgramData\TEMP:A1A86E40
    @Alternate Data Stream - 143 bytes -> C:\ProgramData\TEMP:5C5F2761
    @Alternate Data Stream - 143 bytes -> C:\ProgramData\TEMP:2AE74FF9
    @Alternate Data Stream - 142 bytes -> C:\ProgramData\TEMP:EF0C5444
    @Alternate Data Stream - 142 bytes -> C:\ProgramData\TEMP:EA1919C7
    @Alternate Data Stream - 142 bytes -> C:\ProgramData\TEMP:A4AF8D0D
    @Alternate Data Stream - 142 bytes -> C:\ProgramData\TEMP:3B07E6F4
    @Alternate Data Stream - 142 bytes -> C:\ProgramData\TEMP:242E63C5
    @Alternate Data Stream - 141 bytes -> C:\ProgramData\TEMP:FDDD8917
    @Alternate Data Stream - 141 bytes -> C:\ProgramData\TEMP:774A0E14
    @Alternate Data Stream - 141 bytes -> C:\ProgramData\TEMP:609CAC7C
    @Alternate Data Stream - 141 bytes -> C:\ProgramData\TEMP:587F3582
    @Alternate Data Stream - 141 bytes -> C:\ProgramData\TEMP:48862C37
    @Alternate Data Stream - 141 bytes -> C:\ProgramData\TEMP:2F1D743F
    @Alternate Data Stream - 141 bytes -> C:\ProgramData\TEMP:206470A5
    @Alternate Data Stream - 140 bytes -> C:\ProgramData\TEMP:EA7D76BE
    @Alternate Data Stream - 140 bytes -> C:\ProgramData\TEMP:E411AA0D
    @Alternate Data Stream - 140 bytes -> C:\ProgramData\TEMP:8944C195
    @Alternate Data Stream - 140 bytes -> C:\ProgramData\TEMP:57B374AB
    @Alternate Data Stream - 139 bytes -> C:\ProgramData\TEMP:E9900C74
    @Alternate Data Stream - 139 bytes -> C:\ProgramData\TEMP:DCA79AB3
    @Alternate Data Stream - 139 bytes -> C:\ProgramData\TEMP:D026A5A4
    @Alternate Data Stream - 139 bytes -> C:\ProgramData\TEMP:7A032A04
    @Alternate Data Stream - 139 bytes -> C:\ProgramData\TEMP:2BFCDF84
    @Alternate Data Stream - 138 bytes -> C:\ProgramData\TEMP:EC0279DC
    @Alternate Data Stream - 138 bytes -> C:\ProgramData\TEMP:EBFB51F1
    @Alternate Data Stream - 138 bytes -> C:\ProgramData\TEMP:884C7316
    @Alternate Data Stream - 138 bytes -> C:\ProgramData\TEMP:6F0B6A5A
    @Alternate Data Stream - 138 bytes -> C:\ProgramData\TEMP:6051163F
    @Alternate Data Stream - 138 bytes -> C:\ProgramData\TEMP:32FFF2D1
    @Alternate Data Stream - 137 bytes -> C:\ProgramData\TEMP:FDD78BE5
    @Alternate Data Stream - 137 bytes -> C:\ProgramData\TEMP:DCF833BF
    @Alternate Data Stream - 137 bytes -> C:\ProgramData\TEMP:D3A82449
    @Alternate Data Stream - 137 bytes -> C:\ProgramData\TEMP:C10635F6
    @Alternate Data Stream - 137 bytes -> C:\ProgramData\TEMP:C0BCE04B
    @Alternate Data Stream - 137 bytes -> C:\ProgramData\TEMP:B0A727D1
    @Alternate Data Stream - 137 bytes -> C:\ProgramData\TEMP:A819A132
    @Alternate Data Stream - 137 bytes -> C:\ProgramData\TEMP:2CED8825
    @Alternate Data Stream - 137 bytes -> C:\ProgramData\TEMP:16A4620C
    @Alternate Data Stream - 136 bytes -> C:\ProgramData\TEMP:E40D7F76
    @Alternate Data Stream - 136 bytes -> C:\ProgramData\TEMP:CAC06C34
    @Alternate Data Stream - 136 bytes -> C:\ProgramData\TEMP:99C301D0
    @Alternate Data Stream - 136 bytes -> C:\ProgramData\TEMP:8BE7A048
    @Alternate Data Stream - 136 bytes -> C:\ProgramData\TEMP:46283136
    @Alternate Data Stream - 136 bytes -> C:\ProgramData\TEMP:35629AE6
    @Alternate Data Stream - 136 bytes -> C:\ProgramData\TEMP:2D78CEB3
    @Alternate Data Stream - 136 bytes -> C:\ProgramData\TEMP:164561C8
    @Alternate Data Stream - 136 bytes -> C:\ProgramData\TEMP:10B970A9
    @Alternate Data Stream - 135 bytes -> C:\ProgramData\TEMP:FAB64002
    @Alternate Data Stream - 135 bytes -> C:\ProgramData\TEMP:DD04902E
    @Alternate Data Stream - 135 bytes -> C:\ProgramData\TEMP:C9BC8592
    @Alternate Data Stream - 135 bytes -> C:\ProgramData\TEMP:5AE33054
    @Alternate Data Stream - 135 bytes -> C:\ProgramData\TEMP:436BE28C
    @Alternate Data Stream - 135 bytes -> C:\ProgramData\TEMP:2211E7A0
    @Alternate Data Stream - 134 bytes -> C:\ProgramData\TEMP:BF6A2C54
    @Alternate Data Stream - 134 bytes -> C:\ProgramData\TEMP:7ADB695A
    @Alternate Data Stream - 134 bytes -> C:\ProgramData\TEMP:3086B95F
    @Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:E6EC5C2A
    @Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:E6C6EB3B
    @Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:C37283B5
    @Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:A59DD4AD
    @Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:7E4E56EA
    @Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:6423D635
    @Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:62AC0CCE
    @Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:3C4BD225
    @Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:3C0887BF
    @Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:041C0562
    @Alternate Data Stream - 132 bytes -> C:\ProgramData\TEMP:CBAF0C30
    @Alternate Data Stream - 132 bytes -> C:\ProgramData\TEMP:BACD3198
    @Alternate Data Stream - 132 bytes -> C:\ProgramData\TEMP:A6D6E537
    @Alternate Data Stream - 132 bytes -> C:\ProgramData\TEMP:9DF07E8F
    @Alternate Data Stream - 132 bytes -> C:\ProgramData\TEMP:6247E766
    @Alternate Data Stream - 132 bytes -> C:\ProgramData\TEMP:56C66609
    @Alternate Data Stream - 132 bytes -> C:\ProgramData\TEMP:53B8C5D2
    @Alternate Data Stream - 132 bytes -> C:\ProgramData\TEMP:512E1728
    @Alternate Data Stream - 132 bytes -> C:\ProgramData\TEMP:4C8FA829
    @Alternate Data Stream - 132 bytes -> C:\ProgramData\TEMP:44E16D4A
    @Alternate Data Stream - 132 bytes -> C:\ProgramData\TEMP:0ACF1AF5
    @Alternate Data Stream - 131 bytes -> C:\ProgramData\TEMP:F3591DDB
    @Alternate Data Stream - 131 bytes -> C:\ProgramData\TEMP:EB4FEEF5
    @Alternate Data Stream - 131 bytes -> C:\ProgramData\TEMP:D36E068F
    @Alternate Data Stream - 131 bytes -> C:\ProgramData\TEMP:BE40C8A2
    @Alternate Data Stream - 131 bytes -> C:\ProgramData\TEMP:AC95B5ED
    @Alternate Data Stream - 131 bytes -> C:\ProgramData\TEMP:91DEEE71
    @Alternate Data Stream - 131 bytes -> C:\ProgramData\TEMP:55E1514E
    @Alternate Data Stream - 131 bytes -> C:\ProgramData\TEMP:53BA2DF6
    @Alternate Data Stream - 131 bytes -> C:\ProgramData\TEMP:0EC7A545
    @Alternate Data Stream - 131 bytes -> C:\ProgramData\TEMP:073139EC
    @Alternate Data Stream - 130 bytes -> C:\ProgramData\TEMP:BECA50FF
    @Alternate Data Stream - 130 bytes -> C:\ProgramData\TEMP:A60D0FA6
    @Alternate Data Stream - 130 bytes -> C:\ProgramData\TEMP:A42FABF7
    @Alternate Data Stream - 130 bytes -> C:\ProgramData\TEMP:A02025CE
    @Alternate Data Stream - 130 bytes -> C:\ProgramData\TEMP:927EC486
    @Alternate Data Stream - 130 bytes -> C:\ProgramData\TEMP:8CCDAB14
    @Alternate Data Stream - 130 bytes -> C:\ProgramData\TEMP:512336B9
    @Alternate Data Stream - 130 bytes -> C:\ProgramData\TEMP:38D2EA83
    @Alternate Data Stream - 130 bytes -> C:\ProgramData\TEMP:329BA65B
    @Alternate Data Stream - 130 bytes -> C:\ProgramData\TEMP:28CDD861
    @Alternate Data Stream - 130 bytes -> C:\ProgramData\TEMP:217A2A36
    @Alternate Data Stream - 130 bytes -> C:\ProgramData\TEMP:1B389835
    @Alternate Data Stream - 130 bytes -> C:\ProgramData\TEMP:008586AE
    @Alternate Data Stream - 129 bytes -> C:\ProgramData\TEMP:FC8E37E0
    @Alternate Data Stream - 129 bytes -> C:\ProgramData\TEMP:EB86F355
    @Alternate Data Stream - 129 bytes -> C:\ProgramData\TEMP:E07230CC
    @Alternate Data Stream - 129 bytes -> C:\ProgramData\TEMP:DBC3D477
    @Alternate Data Stream - 129 bytes -> C:\ProgramData\TEMP:C22674B6
    @Alternate Data Stream - 129 bytes -> C:\ProgramData\TEMP:A9223B61
    @Alternate Data Stream - 129 bytes -> C:\ProgramData\TEMP:823606DE
    @Alternate Data Stream - 129 bytes -> C:\ProgramData\TEMP:561B1D2B
    @Alternate Data Stream - 129 bytes -> C:\ProgramData\TEMP:3FD496E1
    @Alternate Data Stream - 129 bytes -> C:\ProgramData\TEMP:3DB6F365
    @Alternate Data Stream - 129 bytes -> C:\ProgramData\TEMP:370E4EFB
    @Alternate Data Stream - 129 bytes -> C:\ProgramData\TEMP:2C399CCA
    @Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:DE875C30
    @Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:D4BB0AD6
    @Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:C48A983C
    @Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:B54E4B5A
    @Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:A5584049
    @Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:66FC2E6F
    @Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:6017A808
    @Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:5E9B629B
    @Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:5345C8F6
    @Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:0968E571
    @Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:014BC3B4
    @Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:E91ADC66
    @Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:C82210DD
    @Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:C0A9B815
    @Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:8B4B9596
    @Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:7EC01D6D
    @Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:6DDFD746
    @Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:490BCC52
    @Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:29F0CA7D
    @Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:0DFE2AE1
    @Alternate Data Stream - 126 bytes -> C:\ProgramData\TEMP:D9987109
    @Alternate Data Stream - 126 bytes -> C:\ProgramData\TEMP:C76CFF82
    @Alternate Data Stream - 126 bytes -> C:\ProgramData\TEMP:BE6DC701
    @Alternate Data Stream - 126 bytes -> C:\ProgramData\TEMP:B3942462
    @Alternate Data Stream - 126 bytes -> C:\ProgramData\TEMP:A9ABA3FF
    @Alternate Data Stream - 126 bytes -> C:\ProgramData\TEMP:8AC20936
    @Alternate Data Stream - 126 bytes -> C:\ProgramData\TEMP:64170090
    @Alternate Data Stream - 126 bytes -> C:\ProgramData\TEMP:4A448DB2
    @Alternate Data Stream - 126 bytes -> C:\ProgramData\TEMP:37994DBE
    @Alternate Data Stream - 126 bytes -> C:\ProgramData\TEMP:2AF04C69
    @Alternate Data Stream - 126 bytes -> C:\ProgramData\TEMP:1B3549F2
    @Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:F84B8DB5
    @Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:F67AAFC5
    @Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:EB5BDBB0
    @Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:B1FBA7E1
    @Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:7EABF26C
    @Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:51E66512
    @Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:488F7244
    @Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:2B1EA607
    @Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:2216A431
    @Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:1C201DEB
    @Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:14A1BBE3
    @Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:0AE2C68F
    @Alternate Data Stream - 124 bytes -> C:\ProgramData\TEMP:FC60E0F8
    @Alternate Data Stream - 124 bytes -> C:\ProgramData\TEMP:D8D58038
    @Alternate Data Stream - 124 bytes -> C:\ProgramData\TEMP:D882BE37
    @Alternate Data Stream - 124 bytes -> C:\ProgramData\TEMP:98982C88
    @Alternate Data Stream - 123 bytes -> C:\ProgramData\TEMP:E6537A16
    @Alternate Data Stream - 123 bytes -> C:\ProgramData\TEMP:84ECD9DF
    @Alternate Data Stream - 123 bytes -> C:\ProgramData\TEMP:569CEE83
    @Alternate Data Stream - 123 bytes -> C:\ProgramData\TEMP:2495D97A
    @Alternate Data Stream - 123 bytes -> C:\ProgramData\TEMP:10D45FC3
    @Alternate Data Stream - 123 bytes -> C:\ProgramData\TEMP:07C99568
    @Alternate Data Stream - 122 bytes -> C:\ProgramData\TEMP:D6D084A5
    @Alternate Data Stream - 122 bytes -> C:\ProgramData\TEMP:D0AB0B4A
    @Alternate Data Stream - 122 bytes -> C:\ProgramData\TEMP:BF6C81B2
    @Alternate Data Stream - 122 bytes -> C:\ProgramData\TEMP:063969F8
    @Alternate Data Stream - 122 bytes -> C:\ProgramData\TEMP:0439A719
    @Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:D3A8AA31
    @Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:BABA07C2
    @Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:89A5891E
    @Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:870649A4
    @Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:7D7536E0
    @Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:206E2596
    @Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:EEB25EAE
    @Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:EE69D7DF
    @Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:9E05DEB0
    @Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:9CF728A6
    @Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:6E2D80C8
    @Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:5C4A588B
    @Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:39EDBD33
    @Alternate Data Stream - 119 bytes -> C:\ProgramData\TEMP:ED194880
    @Alternate Data Stream - 119 bytes -> C:\ProgramData\TEMP:A4CDE823
    @Alternate Data Stream - 119 bytes -> C:\ProgramData\TEMP:A3B8F70C
    @Alternate Data Stream - 119 bytes -> C:\ProgramData\TEMP:961B84C5
    @Alternate Data Stream - 119 bytes -> C:\ProgramData\TEMP:73B78E79
    @Alternate Data Stream - 119 bytes -> C:\ProgramData\TEMP:6EE8565A
    @Alternate Data Stream - 119 bytes -> C:\ProgramData\TEMP:5FFC2819
    @Alternate Data Stream - 119 bytes -> C:\ProgramData\TEMP:4B244549
    @Alternate Data Stream - 119 bytes -> C:\ProgramData\TEMP:479B1CF9
    @Alternate Data Stream - 119 bytes -> C:\ProgramData\TEMP:3E06C78F
    @Alternate Data Stream - 119 bytes -> C:\ProgramData\TEMP:000D6A25
    @Alternate Data Stream - 118 bytes -> C:\ProgramData\TEMP:EB68CA55
    @Alternate Data Stream - 118 bytes -> C:\ProgramData\TEMP:D1979811
    @Alternate Data Stream - 118 bytes -> C:\ProgramData\TEMP:72A1B66A
    @Alternate Data Stream - 118 bytes -> C:\ProgramData\TEMP:6C049F97
    @Alternate Data Stream - 118 bytes -> C:\ProgramData\TEMP:5E73E1C2
    @Alternate Data Stream - 118 bytes -> C:\ProgramData\TEMP:57EE48CA
    @Alternate Data Stream - 117 bytes -> C:\ProgramData\TEMP:96AFAB10
    @Alternate Data Stream - 117 bytes -> C:\ProgramData\TEMP:5363837B
    @Alternate Data Stream - 117 bytes -> C:\ProgramData\TEMP:1ECED34B
    @Alternate Data Stream - 116 bytes -> C:\ProgramData\TEMP:D01ACC06
    @Alternate Data Stream - 115 bytes -> C:\ProgramData\TEMP:B1381B34
    @Alternate Data Stream - 114 bytes -> C:\ProgramData\TEMP:F2AF86D9
    @Alternate Data Stream - 114 bytes -> C:\ProgramData\TEMP:BEE39E9B
    @Alternate Data Stream - 114 bytes -> C:\ProgramData\TEMP:9E76E7F3
    @Alternate Data Stream - 114 bytes -> C:\ProgramData\TEMP:8F067037
    @Alternate Data Stream - 114 bytes -> C:\ProgramData\TEMP:834DD57E
    @Alternate Data Stream - 114 bytes -> C:\ProgramData\TEMP:46CBC45C
    @Alternate Data Stream - 113 bytes -> C:\ProgramData\TEMP:3C6860C5
    @Alternate Data Stream - 110 bytes -> C:\ProgramData\TEMP:D4D38596
    @Alternate Data Stream - 109 bytes -> C:\ProgramData\TEMP:737160C1
    @Alternate Data Stream - 109 bytes -> C:\ProgramData\TEMP:640EA6E8
    @Alternate Data Stream - 109 bytes -> C:\ProgramData\TEMP:27974442
    @Alternate Data Stream - 108 bytes -> C:\ProgramData\TEMP:5197985B
    @Alternate Data Stream - 107 bytes -> C:\ProgramData\TEMP:A688EF17
    @Alternate Data Stream - 107 bytes -> C:\ProgramData\TEMP:12D2EB9C
    @Alternate Data Stream - 106 bytes -> C:\ProgramData\TEMP:F35AE645
    @Alternate Data Stream - 106 bytes -> C:\ProgramData\TEMP:3D36932D
    @Alternate Data Stream - 105 bytes -> C:\ProgramData\TEMP:AABCC5A7
    @Alternate Data Stream - 105 bytes -> C:\ProgramData\TEMP:52E1DB1D
    @Alternate Data Stream - 105 bytes -> C:\ProgramData\TEMP:2BC498A4
    @Alternate Data Stream - 105 bytes -> C:\ProgramData\TEMP:28DB0DC4
    @Alternate Data Stream - 102 bytes -> C:\ProgramData\TEMP:581B0446
    @Alternate Data Stream - 101 bytes -> C:\ProgramData\TEMP:E37F131C
    @Alternate Data Stream - 101 bytes -> C:\ProgramData\TEMP:A3E39C6A
    @Alternate Data Stream - 101 bytes -> C:\ProgramData\TEMP:961B4D58
    @Alternate Data Stream - 101 bytes -> C:\ProgramData\TEMP:453190EC
    @Alternate Data Stream - 100 bytes -> C:\ProgramData\TEMP:5A437AC3
    @Alternate Data Stream - 100 bytes -> C:\ProgramData\TEMP:109734F6

    :Files
    C:\Program Files\Common Files\BOONTY Shared
    C:\Program Files\BabylonToolbar
    C:\Program Files\DealPly

    :Commands
    [emptytemp]



  • Puis clique sur le bouton Correction en haut à gauche
  • Le pc va redémarrer. (si ce n'est pas le cas, fais-le manuellement)
  • Poste le rapport de suppression s'il apparait.

    Note : le rapport est enregistré sous format ".log", il convient de changer cette extension en ".txt" si tu veux le déposer sur des sites en ligne. S'il n'apparait pas, il se trouve ici : C:\_OTL, sous la forme xxxxxxxx_xxxx.log où x sont la date et l'heure

    /!\ Ce script est exclusivement réservé à l'utilisateur actuel du sujet, vous ne devez en aucun cas l'utiliser de votre propre chef sur un autre pc, sous risque d'endommager le système /!\
    2 Septembre 2012 13:39:38

    Bonjour, merci pour ta rapidite de reponse.
    Voiçi le rapport adwclean:
    # AdwCleaner v2.000 - Rapport créé le 02/09/2012 à 13:29:58
    # Mis à jour le 30/08/2012 par Xplode
    # Système d'exploitation : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
    # Nom d'utilisateur : Marie-Ange - LOLO
    # Mode de démarrage : Normal
    # Exécuté depuis : C:\Users\Marie-Ange\Desktop\adwcleaner.exe
    # Option [Suppression]


    ***** [Services] *****


    ***** [Fichiers / Dossiers] *****

    Dossier Supprimé : C:\Program Files\Babylon
    Dossier Supprimé : C:\Program Files\Conduit
    Dossier Supprimé : C:\Program Files\DealPly
    Dossier Supprimé : C:\ProgramData\Babylon
    Dossier Supprimé : C:\ProgramData\boost_interprocess
    Dossier Supprimé : C:\ProgramData\Trymedia
    Dossier Supprimé : C:\Users\Marie-Ange\AppData\Local\Conduit
    Dossier Supprimé : C:\Users\Marie-Ange\AppData\Local\Google\Chrome\User Data\Default\Extensions\gaiilaahiahdejapggenmdmafpmbipje
    Dossier Supprimé : C:\Users\Marie-Ange\AppData\Local\OpenCandy
    Dossier Supprimé : C:\Users\Marie-Ange\AppData\LocalLow\BabylonToolbar
    Dossier Supprimé : C:\Users\Marie-Ange\AppData\LocalLow\Conduit
    Dossier Supprimé : C:\Users\Marie-Ange\AppData\LocalLow\PriceGong
    Dossier Supprimé : C:\Users\Marie-Ange\AppData\Roaming\Babylon
    Dossier Supprimé : C:\Users\Marie-Ange\AppData\Roaming\Mozilla\Firefox\Profiles\1dpnbbir.default\extensions\ffxtlbr@babylon.com
    Dossier Supprimé : C:\Users\Marie-Ange\AppData\Roaming\OfferBox
    Dossier Supprimé : C:\Users\Marie-Ange\AppData\Roaming\OpenCandy
    Fichier Supprimé : C:\Program Files\Mozilla Firefox\searchplugins\fcmdSrch.xml
    Fichier Supprimé : C:\user.js

    ***** [Registre] *****

    Clé Supprimée : HKCU\Software\AppDataLow\Software\Conduit
    Clé Supprimée : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
    Clé Supprimée : HKCU\Software\AppDataLow\Software\PriceGong
    Clé Supprimée : HKCU\Software\AppDataLow\Software\SmartBar
    Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Babylon
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Offerbox
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
    Clé Supprimée : HKCU\Software\Nosibay
    Clé Supprimée : HKCU\Software\Offerbox
    Clé Supprimée : HKCU\Software\Softonic
    Clé Supprimée : HKCU\Software\SweetIm
    Clé Supprimée : HKLM\Software\Babylon
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{761F6A83-F007-49E4-8EAC-CDB6808EF06F}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{76C45B18-A29E-43EA-AAF8-AF55C2E1AE17}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{96EF404C-24C7-43D0-9096-4CCC8BB7CCAC}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{97720195-206A-42AE-8E65-260B9BA5589F}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{97D69524-BB57-4185-9C7F-5F05593B771A}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{986F7A5A-9676-47E1-8642-F41F8C3FCF82}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{B18788A4-92BD-440E-A4D1-380C36531119}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
    Clé Supprimée : HKLM\SOFTWARE\Classes\escort.escrtBtn.1
    Clé Supprimée : HKLM\SOFTWARE\Classes\Installer\Features\95FA1DD41215F1249BD2EEFBF30243A5
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{A9379648-F6EB-4F65-A624-1C10411A15D0}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{F16AB1DB-15C0-4456-A29E-4DF24FB9E3D2}
    Clé Supprimée : HKLM\SOFTWARE\Classes\SearchBar.Client
    Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.CT3241952
    Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
    Clé Supprimée : HKLM\Software\Conduit
    Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
    Clé Supprimée : HKLM\Software\Offerbox
    Clé Supprimée : HKLM\Software\SweetIm
    Valeur Supprimée : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]

    ***** [Navigateurs] *****

    -\\ Internet Explorer v9.0.8112.16421

    Restauré : [HKCU\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
    Restauré : [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
    Restauré : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
    Restauré : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
    Restauré : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
    Remplacé : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Search - SearchAssistant] = hxxp://start.facemoods.com/?a=c2000&s={searchTerms}&f=4 --> hxxp://www.google.com

    -\\ Mozilla Firefox v [Impossible d'obtenir la version]

    Nom du profil : default
    Fichier : C:\Users\Marie-Ange\AppData\Roaming\Mozilla\Firefox\Profiles\1dpnbbir.default\prefs.js

    C:\Users\Marie-Ange\AppData\Roaming\Mozilla\Firefox\Profiles\1dpnbbir.default\user.js ... Supprimé !

    [OK] Le fichier ne contient aucune entrée illégitime.

    -\\ Google Chrome v [Impossible d'obtenir la version]

    Fichier : C:\Users\Marie-Ange\AppData\Local\Google\Chrome\User Data\Default\Preferences

    [OK] Le fichier ne contient aucune entrée illégitime.

    *************************

    AdwCleaner[S1].txt - [5866 octets] - [02/09/2012 13:29:58]

    ########## EOF - C:\AdwCleaner[S1].txt - [5926 octets] ##########
    Le reste vas suivre.
    Merci
    2 Septembre 2012 17:21:58

    Re, j'ai scan avec otl, voiçi le rapport desole, mais je n'ai pas su change le fichier , alors je te l'adresse ici copie collé.
    All processes killed
    ========== OTL ==========
    Error: No service named Boonty Games was found to stop!
    Service\Driver key Boonty Games not found.
    File C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe not found.
    Error: No service named Avaaeassrwnw was found to stop!
    Service\Driver key Avaaeassrwnw not found.
    Error: No service named andnetadb was found to stop!
    Service\Driver key andnetadb not found.
    File System32\Drivers\lgandnetadb.sys not found.
    HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!
    Registry value HKEY_USERS\S-1-5-21-729125539-2281209469-1315271956-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\{cfcb809c-3a22-4616-a916-6c007bd9d920} not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{cfcb809c-3a22-4616-a916-6c007bd9d920}\ not found.
    Registry key HKEY_USERS\S-1-5-21-729125539-2281209469-1315271956-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}\ not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}\ not found.
    Registry key HKEY_USERS\S-1-5-21-729125539-2281209469-1315271956-1000\Software\Microsoft\Internet Explorer\SearchScopes\{5FA66E0E-3970-497B-A8B9-CE0315F8E442}\ not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5FA66E0E-3970-497B-A8B9-CE0315F8E442}\ not found.
    Folder C:\Users\Marie-Ange\AppData\Roaming\mozilla\Firefox\Profiles\1dpnbbir.default\extensions\ffxtlbr@babylon.com\ not found.
    Folder C:\Users\Marie-Ange\AppData\Roaming\mozilla\Firefox\Profiles\wgbdvh4c.default\extensions\{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}\ not found.
    Folder C:\Users\Marie-Ange\AppData\Roaming\mozilla\Firefox\Profiles\wgbdvh4c.default\extensions\ffxtlbr@babylon.com\ not found.
    File C:\Program Files\mozilla firefox\searchplugins\fcmdSrch.xml not found.
    File C:\Users\Marie-Ange\AppData\Local\Google\Chrome\User Data\Default\Extensions\gaiilaahiahdejapggenmdmafpmbipje\3.0.7.2_0 not found.
    Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}\ not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2EECD738-5844-4a99-B4B6-146BF802613B}\ not found.
    File C:\Program Files\BabylonToolbar\BabylonToolbar\1.6.9.12\bh\BabylonToolbar.dll not found.
    Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}\ not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}\ not found.
    File C:\Program Files\DealPly\DealPlyIE.dll not found.
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{98889811-442D-49dd-99D7-DC866BE87DBC} not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{98889811-442D-49dd-99D7-DC866BE87DBC}\ not found.
    File C:\Program Files\BabylonToolbar\BabylonToolbar\1.6.9.12\BabylonToolbarTlbr.dll not found.
    Registry value HKEY_USERS\S-1-5-21-729125539-2281209469-1315271956-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{21FA44EF-376D-4D53-9B0F-8A89D3229068} not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{21FA44EF-376D-4D53-9B0F-8A89D3229068}\ not found.
    Registry value HKEY_USERS\S-1-5-21-729125539-2281209469-1315271956-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found.
    Registry value HKEY_USERS\S-1-5-21-729125539-2281209469-1315271956-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{CFCB809C-3A22-4616-A916-6C007BD9D920} not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CFCB809C-3A22-4616-A916-6C007BD9D920}\ not found.
    Registry value HKEY_USERS\S-1-5-21-729125539-2281209469-1315271956-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D3028143-6145-4318-99D3-3EDCE54A95A9} not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D3028143-6145-4318-99D3-3EDCE54A95A9}\ not found.
    Registry value HKEY_USERS\S-1-5-21-729125539-2281209469-1315271956-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{E84CC2C1-B722-48FC-A39C-EDB8B525C777} not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E84CC2C1-B722-48FC-A39C-EDB8B525C777}\ not found.
    Registry value HKEY_USERS\S-1-5-21-729125539-2281209469-1315271956-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EEE6C35B-6118-11DC-9C72-001320C79847} not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}\ not found.
    Folder C:\Program Files\Conduit\ not found.
    Folder C:\Users\Marie-Ange\AppData\Local\Conduit\ not found.
    Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Emsisoft HiJackFree\ not found.
    Folder C:\Program Files\Emsisoft HiJackFree\ not found.
    Folder C:\Users\Marie-Ange\AppData\Roaming\OfferBox\ not found.
    Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP\ not found.
    Folder C:\ZHP\ not found.
    File C:\Program Files\Common Files\AskToolbarInstaller.exe not found.
    File C:\Windows\tasks\Registry Reviver-Marie-Ange-Startup.job not found.
    File C:\Windows\tasks\zpscuptnw.job not found.
    File C:\Users\Public\Desktop\Emsisoft HiJackFree.lnk not found.
    File C:\Windows\System32\normnfkdw.dll not found.
    Folder C:\Users\Marie-Ange\AppData\Roaming\Babylon\ not found.
    Folder C:\Users\Marie-Ange\AppData\Roaming\OfferBox\ not found.
    Unable to delete ADS C:\ProgramData\TEMP:538A9F02 .
    Unable to delete ADS C:\ProgramData\TEMP:50DD4118 .
    Unable to delete ADS C:\ProgramData\TEMP:59846E5E .
    Unable to delete ADS C:\ProgramData\TEMP:5D351BC6 .
    Unable to delete ADS C:\ProgramData\TEMP:2CE15176 .
    Unable to delete ADS C:\ProgramData\TEMP:9BB8C675 .
    Unable to delete ADS C:\ProgramData\TEMP:9D03192E .
    Unable to delete ADS C:\ProgramData\TEMP:53DF59D1 .
    Unable to delete ADS C:\ProgramData\TEMP:E6708F08 .
    Unable to delete ADS C:\ProgramData\TEMP:04ADB7A6 .
    Unable to delete ADS C:\ProgramData\TEMP:D 987CB43 .
    Unable to delete ADS C:\ProgramData\TEMP:A71DCB33 .
    Unable to delete ADS C:\ProgramData\TEMP:EC3A9923 .
    Unable to delete ADS C:\ProgramData\TEMP:28819F45 .
    Unable to delete ADS C:\ProgramData\TEMP:F98E6C67 .
    Unable to delete ADS C:\ProgramData\TEMP:D DF112BD .
    Unable to delete ADS C:\ProgramData\TEMP:EA10407C .
    Unable to delete ADS C:\ProgramData\TEMP:C0893153 .
    Unable to delete ADS C:\ProgramData\TEMP:A6B07419 .
    Unable to delete ADS C:\ProgramData\TEMP:8AE92FD3 .
    Unable to delete ADS C:\ProgramData\TEMP:363E775E .
    Unable to delete ADS C:\ProgramData\TEMP:31524539 .
    Unable to delete ADS C:\ProgramData\TEMP:24C072FF .
    Unable to delete ADS C:\ProgramData\TEMP:0915A718 .
    Unable to delete ADS C:\ProgramData\TEMP:7BFFC6A9 .
    Unable to delete ADS C:\ProgramData\TEMP:71612023 .
    Unable to delete ADS C:\ProgramData\TEMP:65137F0D .
    Unable to delete ADS C:\ProgramData\TEMP:3AF262FC .
    Unable to delete ADS C:\ProgramData\TEMP:20EB6823 .
    Unable to delete ADS C:\ProgramData\TEMP:07CBFAD5 .
    Unable to delete ADS C:\ProgramData\TEMP:B6D84F71 .
    Unable to delete ADS C:\ProgramData\TEMP:AFB24B00 .
    Unable to delete ADS C:\ProgramData\TEMP:AE9351E0 .
    Unable to delete ADS C:\ProgramData\TEMP:69FE2EE4 .
    Unable to delete ADS C:\ProgramData\TEMP:4EFA2FC7 .
    Unable to delete ADS C:\ProgramData\TEMP:1CDEDE11 .
    Unable to delete ADS C:\ProgramData\TEMP:F56BE392 .
    Unable to delete ADS C:\ProgramData\TEMP:E87AB4E3 .
    Unable to delete ADS C:\ProgramData\TEMP:B8791731 .
    Unable to delete ADS C:\ProgramData\TEMP:AE75CCC8 .
    Unable to delete ADS C:\ProgramData\TEMP:AA0017FD .
    Unable to delete ADS C:\ProgramData\TEMP:8C81B36D .
    Unable to delete ADS C:\ProgramData\TEMP:5080697C .
    Unable to delete ADS C:\ProgramData\TEMP:3A7527E8 .
    Unable to delete ADS C:\ProgramData\TEMP:F5D01D7C .
    Unable to delete ADS C:\ProgramData\TEMP:D 5CCCBAA .
    Unable to delete ADS C:\ProgramData\TEMP:AECF4772 .
    Unable to delete ADS C:\ProgramData\TEMP:A1A86E40 .
    Unable to delete ADS C:\ProgramData\TEMP:5C5F2761 .
    Unable to delete ADS C:\ProgramData\TEMP:2AE74FF9 .
    Unable to delete ADS C:\ProgramData\TEMP:EF0C5444 .
    Unable to delete ADS C:\ProgramData\TEMP:EA1919C7 .
    Unable to delete ADS C:\ProgramData\TEMP:A4AF8D0D .
    Unable to delete ADS C:\ProgramData\TEMP:3B07E6F4 .
    Unable to delete ADS C:\ProgramData\TEMP:242E63C5 .
    Unable to delete ADS C:\ProgramData\TEMP:FDDD8917 .
    Unable to delete ADS C:\ProgramData\TEMP:774A0E14 .
    Unable to delete ADS C:\ProgramData\TEMP:609CAC7C .
    Unable to delete ADS C:\ProgramData\TEMP:587F3582 .
    Unable to delete ADS C:\ProgramData\TEMP:48862C37 .
    Unable to delete ADS C:\ProgramData\TEMP:2F1D743F .
    Unable to delete ADS C:\ProgramData\TEMP:206470A5 .
    Unable to delete ADS C:\ProgramData\TEMP:EA7D76BE .
    Unable to delete ADS C:\ProgramData\TEMP:E411AA0D .
    Unable to delete ADS C:\ProgramData\TEMP:8944C195 .
    Unable to delete ADS C:\ProgramData\TEMP:57B374AB .
    Unable to delete ADS C:\ProgramData\TEMP:E9900C74 .
    Unable to delete ADS C:\ProgramData\TEMP:D CA79AB3 .
    Unable to delete ADS C:\ProgramData\TEMP:D 026A5A4 .
    Unable to delete ADS C:\ProgramData\TEMP:7A032A04 .
    Unable to delete ADS C:\ProgramData\TEMP:2BFCDF84 .
    Unable to delete ADS C:\ProgramData\TEMP:EC0279DC .
    Unable to delete ADS C:\ProgramData\TEMP:EBFB51F1 .
    Unable to delete ADS C:\ProgramData\TEMP:884C7316 .
    Unable to delete ADS C:\ProgramData\TEMP:6F0B6A5A .
    Unable to delete ADS C:\ProgramData\TEMP:6051163F .
    Unable to delete ADS C:\ProgramData\TEMP:32FFF2D1 .
    Unable to delete ADS C:\ProgramData\TEMP:FDD78BE5 .
    Unable to delete ADS C:\ProgramData\TEMP:D CF833BF .
    Unable to delete ADS C:\ProgramData\TEMP:D 3A82449 .
    Unable to delete ADS C:\ProgramData\TEMP:C10635F6 .
    Unable to delete ADS C:\ProgramData\TEMP:C0BCE04B .
    Unable to delete ADS C:\ProgramData\TEMP:B0A727D1 .
    Unable to delete ADS C:\ProgramData\TEMP:A819A132 .
    Unable to delete ADS C:\ProgramData\TEMP:2CED8825 .
    Unable to delete ADS C:\ProgramData\TEMP:16A4620C .
    Unable to delete ADS C:\ProgramData\TEMP:E40D7F76 .
    Unable to delete ADS C:\ProgramData\TEMP:CAC06C34 .
    Unable to delete ADS C:\ProgramData\TEMP:99C301D0 .
    Unable to delete ADS C:\ProgramData\TEMP:8BE7A048 .
    Unable to delete ADS C:\ProgramData\TEMP:46283136 .
    Unable to delete ADS C:\ProgramData\TEMP:35629AE6 .
    Unable to delete ADS C:\ProgramData\TEMP:2D78CEB3 .
    Unable to delete ADS C:\ProgramData\TEMP:164561C8 .
    Unable to delete ADS C:\ProgramData\TEMP:10B970A9 .
    Unable to delete ADS C:\ProgramData\TEMP:FAB64002 .
    Unable to delete ADS C:\ProgramData\TEMP:D D04902E .
    Unable to delete ADS C:\ProgramData\TEMP:C9BC8592 .
    Unable to delete ADS C:\ProgramData\TEMP:5AE33054 .
    Unable to delete ADS C:\ProgramData\TEMP:436BE28C .
    Unable to delete ADS C:\ProgramData\TEMP:2211E7A0 .
    Unable to delete ADS C:\ProgramData\TEMP:BF6A2C54 .
    Unable to delete ADS C:\ProgramData\TEMP:7ADB695A .
    Unable to delete ADS C:\ProgramData\TEMP:3086B95F .
    Unable to delete ADS C:\ProgramData\TEMP:E6EC5C2A .
    Unable to delete ADS C:\ProgramData\TEMP:E6C6EB3B .
    Unable to delete ADS C:\ProgramData\TEMP:C37283B5 .
    Unable to delete ADS C:\ProgramData\TEMP:A59DD4AD .
    Unable to delete ADS C:\ProgramData\TEMP:7E4E56EA .
    Unable to delete ADS C:\ProgramData\TEMP:6423D635 .
    Unable to delete ADS C:\ProgramData\TEMP:62AC0CCE .
    Unable to delete ADS C:\ProgramData\TEMP:3C4BD225 .
    Unable to delete ADS C:\ProgramData\TEMP:3C0887BF .
    Unable to delete ADS C:\ProgramData\TEMP:041C0562 .
    Unable to delete ADS C:\ProgramData\TEMP:CBAF0C30 .
    Unable to delete ADS C:\ProgramData\TEMP:BACD3198 .
    Unable to delete ADS C:\ProgramData\TEMP:A6D6E537 .
    Unable to delete ADS C:\ProgramData\TEMP:9DF07E8F .
    Unable to delete ADS C:\ProgramData\TEMP:6247E766 .
    Unable to delete ADS C:\ProgramData\TEMP:56C66609 .
    Unable to delete ADS C:\ProgramData\TEMP:53B8C5D2 .
    Unable to delete ADS C:\ProgramData\TEMP:512E1728 .
    Unable to delete ADS C:\ProgramData\TEMP:4C8FA829 .
    Unable to delete ADS C:\ProgramData\TEMP:44E16D4A .
    Unable to delete ADS C:\ProgramData\TEMP:0ACF1AF5 .
    Unable to delete ADS C:\ProgramData\TEMP:F3591DDB .
    Unable to delete ADS C:\ProgramData\TEMP:EB4FEEF5 .
    Unable to delete ADS C:\ProgramData\TEMP:D 36E068F .
    Unable to delete ADS C:\ProgramData\TEMP:BE40C8A2 .
    Unable to delete ADS C:\ProgramData\TEMP:AC95B5ED .
    Unable to delete ADS C:\ProgramData\TEMP:91DEEE71 .
    Unable to delete ADS C:\ProgramData\TEMP:55E1514E .
    Unable to delete ADS C:\ProgramData\TEMP:53BA2DF6 .
    Unable to delete ADS C:\ProgramData\TEMP:0EC7A545 .
    Unable to delete ADS C:\ProgramData\TEMP:073139EC .
    Unable to delete ADS C:\ProgramData\TEMP:BECA50FF .
    Unable to delete ADS C:\ProgramData\TEMP:A60D0FA6 .
    Unable to delete ADS C:\ProgramData\TEMP:A42FABF7 .
    Unable to delete ADS C:\ProgramData\TEMP:A02025CE .
    Unable to delete ADS C:\ProgramData\TEMP:927EC486 .
    Unable to delete ADS C:\ProgramData\TEMP:8CCDAB14 .
    Unable to delete ADS C:\ProgramData\TEMP:512336B9 .
    Unable to delete ADS C:\ProgramData\TEMP:38D2EA83 .
    Unable to delete ADS C:\ProgramData\TEMP:329BA65B .
    Unable to delete ADS C:\ProgramData\TEMP:28CDD861 .
    Unable to delete ADS C:\ProgramData\TEMP:217A2A36 .
    Unable to delete ADS C:\ProgramData\TEMP:1B389835 .
    Unable to delete ADS C:\ProgramData\TEMP:008586AE .
    Unable to delete ADS C:\ProgramData\TEMP:FC8E37E0 .
    Unable to delete ADS C:\ProgramData\TEMP:EB86F355 .
    Unable to delete ADS C:\ProgramData\TEMP:E07230CC .
    Unable to delete ADS C:\ProgramData\TEMP:D BC3D477 .
    Unable to delete ADS C:\ProgramData\TEMP:C22674B6 .
    Unable to delete ADS C:\ProgramData\TEMP:A9223B61 .
    Unable to delete ADS C:\ProgramData\TEMP:823606DE .
    Unable to delete ADS C:\ProgramData\TEMP:561B1D2B .
    Unable to delete ADS C:\ProgramData\TEMP:3FD496E1 .
    Unable to delete ADS C:\ProgramData\TEMP:3DB6F365 .
    Unable to delete ADS C:\ProgramData\TEMP:370E4EFB .
    Unable to delete ADS C:\ProgramData\TEMP:2C399CCA .
    Unable to delete ADS C:\ProgramData\TEMP:D E875C30 .
    Unable to delete ADS C:\ProgramData\TEMP:D 4BB0AD6 .
    Unable to delete ADS C:\ProgramData\TEMP:C48A983C .
    Unable to delete ADS C:\ProgramData\TEMP:B54E4B5A .
    Unable to delete ADS C:\ProgramData\TEMP:A5584049 .
    Unable to delete ADS C:\ProgramData\TEMP:66FC2E6F .
    Unable to delete ADS C:\ProgramData\TEMP:6017A808 .
    Unable to delete ADS C:\ProgramData\TEMP:5E9B629B .
    Unable to delete ADS C:\ProgramData\TEMP:5345C8F6 .
    Unable to delete ADS C:\ProgramData\TEMP:0968E571 .
    Unable to delete ADS C:\ProgramData\TEMP:014BC3B4 .
    Unable to delete ADS C:\ProgramData\TEMP:E91ADC66 .
    Unable to delete ADS C:\ProgramData\TEMP:C82210DD .
    Unable to delete ADS C:\ProgramData\TEMP:C0A9B815 .
    Unable to delete ADS C:\ProgramData\TEMP:8B4B9596 .
    Unable to delete ADS C:\ProgramData\TEMP:7EC01D6D .
    Unable to delete ADS C:\ProgramData\TEMP:6DDFD746 .
    Unable to delete ADS C:\ProgramData\TEMP:490BCC52 .
    Unable to delete ADS C:\ProgramData\TEMP:29F0CA7D .
    Unable to delete ADS C:\ProgramData\TEMP:0DFE2AE1 .
    Unable to delete ADS C:\ProgramData\TEMP:D 9987109 .
    Unable to delete ADS C:\ProgramData\TEMP:C76CFF82 .
    Unable to delete ADS C:\ProgramData\TEMP:BE6DC701 .
    Unable to delete ADS C:\ProgramData\TEMP:B3942462 .
    Unable to delete ADS C:\ProgramData\TEMP:A9ABA3FF .
    Unable to delete ADS C:\ProgramData\TEMP:8AC20936 .
    Unable to delete ADS C:\ProgramData\TEMP:64170090 .
    Unable to delete ADS C:\ProgramData\TEMP:4A448DB2 .
    Unable to delete ADS C:\ProgramData\TEMP:37994DBE .
    Unable to delete ADS C:\ProgramData\TEMP:2AF04C69 .
    Unable to delete ADS C:\ProgramData\TEMP:1B3549F2 .
    Unable to delete ADS C:\ProgramData\TEMP:F84B8DB5 .
    Unable to delete ADS C:\ProgramData\TEMP:F67AAFC5 .
    Unable to delete ADS C:\ProgramData\TEMP:EB5BDBB0 .
    Unable to delete ADS C:\ProgramData\TEMP:B1FBA7E1 .
    Unable to delete ADS C:\ProgramData\TEMP:7EABF26C .
    Unable to delete ADS C:\ProgramData\TEMP:51E66512 .
    Unable to delete ADS C:\ProgramData\TEMP:488F7244 .
    Unable to delete ADS C:\ProgramData\TEMP:2B1EA607 .
    Unable to delete ADS C:\ProgramData\TEMP:2216A431 .
    Unable to delete ADS C:\ProgramData\TEMP:1C201DEB .
    Unable to delete ADS C:\ProgramData\TEMP:14A1BBE3 .
    Unable to delete ADS C:\ProgramData\TEMP:0AE2C68F .
    Unable to delete ADS C:\ProgramData\TEMP:FC60E0F8 .
    Unable to delete ADS C:\ProgramData\TEMP:D 8D58038 .
    Unable to delete ADS C:\ProgramData\TEMP:D 882BE37 .
    Unable to delete ADS C:\ProgramData\TEMP:98982C88 .
    Unable to delete ADS C:\ProgramData\TEMP:E6537A16 .
    Unable to delete ADS C:\ProgramData\TEMP:84ECD9DF .
    Unable to delete ADS C:\ProgramData\TEMP:569CEE83 .
    Unable to delete ADS C:\ProgramData\TEMP:2495D97A .
    Unable to delete ADS C:\ProgramData\TEMP:10D45FC3 .
    Unable to delete ADS C:\ProgramData\TEMP:07C99568 .
    Unable to delete ADS C:\ProgramData\TEMP:D 6D084A5 .
    Unable to delete ADS C:\ProgramData\TEMP:D 0AB0B4A .
    Unable to delete ADS C:\ProgramData\TEMP:BF6C81B2 .
    Unable to delete ADS C:\ProgramData\TEMP:063969F8 .
    Unable to delete ADS C:\ProgramData\TEMP:0439A719 .
    Unable to delete ADS C:\ProgramData\TEMP:D 3A8AA31 .
    Unable to delete ADS C:\ProgramData\TEMP:BABA07C2 .
    Unable to delete ADS C:\ProgramData\TEMP:89A5891E .
    Unable to delete ADS C:\ProgramData\TEMP:870649A4 .
    Unable to delete ADS C:\ProgramData\TEMP:7D7536E0 .
    Unable to delete ADS C:\ProgramData\TEMP:206E2596 .
    Unable to delete ADS C:\ProgramData\TEMP:EEB25EAE .
    Unable to delete ADS C:\ProgramData\TEMP:EE69D7DF .
    Unable to delete ADS C:\ProgramData\TEMP:9E05DEB0 .
    Unable to delete ADS C:\ProgramData\TEMP:9CF728A6 .
    Unable to delete ADS C:\ProgramData\TEMP:6E2D80C8 .
    Unable to delete ADS C:\ProgramData\TEMP:5C4A588B .
    Unable to delete ADS C:\ProgramData\TEMP:39EDBD33 .
    Unable to delete ADS C:\ProgramData\TEMP:ED194880 .
    Unable to delete ADS C:\ProgramData\TEMP:A4CDE823 .
    Unable to delete ADS C:\ProgramData\TEMP:A3B8F70C .
    Unable to delete ADS C:\ProgramData\TEMP:961B84C5 .
    Unable to delete ADS C:\ProgramData\TEMP:73B78E79 .
    Unable to delete ADS C:\ProgramData\TEMP:6EE8565A .
    Unable to delete ADS C:\ProgramData\TEMP:5FFC2819 .
    Unable to delete ADS C:\ProgramData\TEMP:4B244549 .
    Unable to delete ADS C:\ProgramData\TEMP:479B1CF9 .
    Unable to delete ADS C:\ProgramData\TEMP:3E06C78F .
    Unable to delete ADS C:\ProgramData\TEMP:000D6A25 .
    Unable to delete ADS C:\ProgramData\TEMP:EB68CA55 .
    Unable to delete ADS C:\ProgramData\TEMP:D 1979811 .
    Unable to delete ADS C:\ProgramData\TEMP:72A1B66A .
    Unable to delete ADS C:\ProgramData\TEMP:6C049F97 .
    Unable to delete ADS C:\ProgramData\TEMP:5E73E1C2 .
    Unable to delete ADS C:\ProgramData\TEMP:57EE48CA .
    Unable to delete ADS C:\ProgramData\TEMP:96AFAB10 .
    Unable to delete ADS C:\ProgramData\TEMP:5363837B .
    Unable to delete ADS C:\ProgramData\TEMP:1ECED34B .
    Unable to delete ADS C:\ProgramData\TEMP:D 01ACC06 .
    Unable to delete ADS C:\ProgramData\TEMP:B1381B34 .
    Unable to delete ADS C:\ProgramData\TEMP:F2AF86D9 .
    Unable to delete ADS C:\ProgramData\TEMP:BEE39E9B .
    Unable to delete ADS C:\ProgramData\TEMP:9E76E7F3 .
    Unable to delete ADS C:\ProgramData\TEMP:8F067037 .
    Unable to delete ADS C:\ProgramData\TEMP:834DD57E .
    Unable to delete ADS C:\ProgramData\TEMP:46CBC45C .
    Unable to delete ADS C:\ProgramData\TEMP:3C6860C5 .
    Unable to delete ADS C:\ProgramData\TEMP:D 4D38596 .
    Unable to delete ADS C:\ProgramData\TEMP:737160C1 .
    Unable to delete ADS C:\ProgramData\TEMP:640EA6E8 .
    Unable to delete ADS C:\ProgramData\TEMP:27974442 .
    Unable to delete ADS C:\ProgramData\TEMP:5197985B .
    Unable to delete ADS C:\ProgramData\TEMP:A688EF17 .
    Unable to delete ADS C:\ProgramData\TEMP:12D2EB9C .
    Unable to delete ADS C:\ProgramData\TEMP:F35AE645 .
    Unable to delete ADS C:\ProgramData\TEMP:3D36932D .
    Unable to delete ADS C:\ProgramData\TEMP:AABCC5A7 .
    Unable to delete ADS C:\ProgramData\TEMP:52E1DB1D .
    Unable to delete ADS C:\ProgramData\TEMP:2BC498A4 .
    Unable to delete ADS C:\ProgramData\TEMP:28DB0DC4 .
    Unable to delete ADS C:\ProgramData\TEMP:581B0446 .
    Unable to delete ADS C:\ProgramData\TEMP:E37F131C .
    Unable to delete ADS C:\ProgramData\TEMP:A3E39C6A .
    Unable to delete ADS C:\ProgramData\TEMP:961B4D58 .
    Unable to delete ADS C:\ProgramData\TEMP:453190EC .
    Unable to delete ADS C:\ProgramData\TEMP:5A437AC3 .
    Unable to delete ADS C:\ProgramData\TEMP:109734F6 .
    ========== FILES ==========
    File\Folder C:\Program Files\Common Files\BOONTY Shared not found.
    File\Folder C:\Program Files\BabylonToolbar not found.
    File\Folder C:\Program Files\DealPly not found.
    ========== COMMANDS ==========

    [EMPTYTEMP]

    User: All Users

    User: Default
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 0 bytes

    User: Default User
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 0 bytes

    User: Marie-Ange
    ->Temp folder emptied: 84148 bytes
    ->Temporary Internet Files folder emptied: 4756825 bytes
    ->Java cache emptied: 0 bytes
    ->FireFox cache emptied: 0 bytes
    ->Google Chrome cache emptied: 0 bytes
    ->Apple Safari cache emptied: 0 bytes
    ->Flash cache emptied: 772 bytes

    User: Public

    %systemdrive% .tmp files removed: 0 bytes
    %systemroot% .tmp files removed: 0 bytes
    %systemroot%\System32 .tmp files removed: 0 bytes
    %systemroot%\System32\drivers .tmp files removed: 0 bytes
    Windows Temp folder emptied: 0 bytes
    %systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
    %systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
    RecycleBin emptied: 222958 bytes

    Total Files Cleaned = 5,00 mb


    OTL by OldTimer - Version 3.2.59.1 log created on 09022012_171057

    Files\Folders moved on Reboot...
    C:\Users\Marie-Ange\AppData\Local\Temp\ehmsas.txt moved successfully.
    File move failed. C:\Windows\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.

    PendingFileRenameOperations files...

    Registry entries deleted on Reboot...

    En te remerçiant
    a c 614 8 Sécurité
    2 Septembre 2012 20:11:49

    Re,

    As-tu encore des redirections ?
    3 Septembre 2012 09:42:23

    Bonjour, je vais essayer et je te tiens au courant.
    Merci
    3 Septembre 2012 09:56:36

    Re, non je n'ai plus de redirection.
    Je te remerçie pour ton aide ainsi que ce forum.

    Pourrais tu me repondre à quelques petite questions?
    quel navigateru internet me conseilles tu et comment le securiser.
    QUE peux tu me conseiller comme logitiel de securite.

    Ces redirections c'est quoi? un virus?

    En te remerçiant.
    a c 614 8 Sécurité
    3 Septembre 2012 10:46:00

    Re,

    Citation :
    Ces redirections c'est quoi? un virus?


    Oui, c'était une infection, je n'ai pas l'origine par contre. Je te donnerais des conseils en fin de message.

    1) Désinstalle AdwCleaner :

  • Relance-le le programme adwcleaner0.exe situé sur ton Bureau.
    (Utilisateur de Vista/Windows 7, clique-droit sur le fichier -> Exécuter en tant qu'administrateur)
  • Dans la fenêtre principal, choisis l'option Désinstallation, et valide avec "Oui"

  • Supprime ensuite le fichier adwcleaner0.exe sur ton bureau.


    2) Relance OTL.exe
    (Utilisateur de Vista/Windows 7 faites un clic droit -> "Exécuter en tant qu'administrateur")

  • Clique sur "Purge d'outils"
  • Valide l'avertissement par "ok" et laisse le pc redémarrer.


    3) Télécharge SX Check&Update (de Igor51 ) sur ton bureau.

  • Lance SXCU.exe en double-cliquant dessus.
    (Utilisateur de Vista/Windows 7 faites un clic droit -> "Exécuter en tant qu'administrateur")

  • Clique sur Update Java à droite. Le chargement et l'exécution de la mise à jour vont se faire, suis les instructions. Si rien ne se passe, fais manuellement la mise à jour ici : http://www.java.com/fr/download/

  • Clique sur Update Adobe Reader à droite. Le chargement et l'exécution de la mise à jour vont se faire, suis les instructions. Si rien ne se passe, fais manuellement la mise à jour ici : http://get.adobe.com/reader/

  • Clique sur Update Flash à droite. Selon le cas, soit Internet Explorer, soit ton ou tes autres navigateurs vont s'ouvrir, suis pour chacun d'eux les instructions à l'écran pour la mise à jour.


    Ferme le programme via "Quit"
    Tu peux supprimer SXCU.exe.


    Pour aller plus loin dans ta protection et éviter de te faire réinfecter voici quelques conseils supplémentaires :

  • Attention lors de l'installation de logiciel :
    Veiller à toujours lire les conditions d'utilisation (CLUF), afin de déceler la gestion des données personnelles, l'installation de sponsors publicitaires ou tout autre atteintes à la vie privée. Refuser les toolbars et autres addons proposés.
    A lire !

  • Firefox et/ou Chrome offrent une meilleure sécurité par rapport à Internet Explorer, surtout si on les complète de quelques plugins très intéressant : Noscript et WOT par exemple. (pour Chrome : NoScript ; WOT )

  • Maintenir ses logiciels et son système à jour :
    De nombreuses infections sont dû à des failles de windows, mais aussi de logiciel tiers, comme Sun Java, Adobe Acrobat Reader, etc
    Tu peux faire un scan de vulnérabilité pour connaitre tes logiciels présentant des failles non corrigées ou à mettre à jour.

    Enfin, le plus important reste ton comportement sur ton PC, tu restes la plus importante protection : Évites les comportement à risque : P2P, cracks, téléchargements et installations douteux via des pubs, les messageries instantanées, ou des sites inconnu, sites pornographiques.
    A lire !
    Ici aussi !


    Citation :
    quel navigateru internet me conseilles tu et comment le securiser.
    QUE peux tu me conseiller comme logitiel de securite.


    N'importe quel navigateur à jour convient, si les logiciels et plugins sont aussi à jour, et que tu rajoutes WOT par exemple comme je l'écris plus haut.

    Idem pour les protections, ton antivirus suffit si ton pc et tes logiciels sont à jour et que tu adoptes un comportement intelligent sur le net.



    Tu peux indiquer ton sujet "réglé" en cliquant sur le bouton "modifier" (en bas, en forme de crayon) dans ton tout premier message.
    -> Ajoute ensuite "résolu" à coté de ton titre et valide.

    Tu peux aussi,si tu le souhaites et si l'option est disponible (dépend de quel type de sujet ouvert), valider une "meilleure réponse", ton sujet sera alors automatiquement marqué comme "résolu"

    A bientôt sur les forums Tom's Guide
    :jap: 
    4 Septembre 2012 13:57:18

    RE, J'ai bien execute tous les conseil que tu m'as dit, mon pc et ok.je vais suivre les conseils pour la securite.
    Je te rerçi encore et le forum aussi.
    A bienôt peut etre.
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS