Se connecter / S'enregistrer
Votre question
Fermé

[RESOLU] Infection virus bloque l'accès internet

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
7 Mai 2011 19:03:09

Bonsoir,

Hé oui malgré toutes les précautions que je prend mon pc est infecté et je n'ai plus aucun accès à internet. Je vous contacte à partir de mon netbook, et je ne sais pas si ça va être possible d'effectuer les manipulations, enfin j'espère.
Quoi qu'il en soit, j'ai quand même édité un rapport HijackThis.
J'ai fait un scan complet avec MBAM en mode sans echec, il n'a rien trouvé, et un scan avec avira qui m'a mis en quarantaine des troyens TR/KAZY.21845.6 - 21845.4 - 21845.4;
Voici le rapport HijackThis

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:40:18, on 07/05/2011
Platform: Unknown Windows (WinNT 6.01.3505 SP1)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\SuperCopier2\SuperCopier2.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files (x86)\Micro Application\LauncherMA.exe
C:\PROGRA~2\Magentic\bin\MgApp.exe
C:\Program Files (x86)\Freecorder\FLVSrvc.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\real\realplayer\Update\realsched.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
C:\Program Files (x86)\IncrediMail\bin\IncMail.exe
C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe
C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.imgag.com/?appid=kwapp&c=&sbs=7&sc=2&f=we...
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://mystart.magentic.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:57616
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - (no file)
R3 - URLSearchHook: (no name) - {3d4d238c-9c48-47cd-a95c-53259acf9e56} - (no file)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Hiyo] C:\Program Files (x86)\HiYo\bin\HiYo.exe /RunFromStartup
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [Freecorder FLV Service] "C:\Program Files (x86)\Freecorder\FLVSrvc.exe" /run
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files (x86)\real\realplayer\update\realsched.exe" -osboot
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [SuperCopier2.exe] C:\Program Files (x86)\SuperCopier2\SuperCopier2.exe
O4 - HKCU\..\Run: [Magentic] C:\PROGRA~2\Magentic\bin\Magentic.exe /c
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU')
O4 - Startup: Lanceur.lnk = C:\Program Files (x86)\Micro Application\LauncherMA.exe
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\Program Files (x86)\IncrediMail\bin\resources\WebMenuImg.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Envoyer l'&image au périphérique Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: Envoyer à Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm (file missing)
O9 - Extra 'Tools' menuitem: Envoyer au périphérique &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm (file missing)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O13 - Gopher Prefix:
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: HP Health Check Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Sony Ericsson OMSI download service (OMSI download service) - Unknown owner - C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11615 bytes


Configuration Mozilla firefox V 3.5.16
antivirus Avira
Windows 7 - 64 bites


Merci de me venir en aide

Bonne soirée

Autres pages sur : resolu infection virus bloque acces internet

7 Mai 2011 19:36:53

Bonjour

Télécharge sur le bureau RogueKiller (par tigzy)
Quitte tous tes programmes en cours
Sous Vista/Seven , clique droit -> lancer en tant qu'administrateur[/b]
Lance RogueKiller.exe.
Lorsque demandé, tape 4 et valide
Un rapport (RKreport.txt) a du se créer à côté de l'exécutable, colle son contenu dans la réponse
Si le programme a été bloqué, ne pas hésiter a essayer plusieurs fois. Si vraiment cela ne passe pas (ça peut arriver), le renommer en winlogon.exe



Télécharge OTL sur ton Bureau.

Double-clique sur OTL pour le lancer.
(Sous Vista/Win7, il faut cliquer droit sur OTL et choisir Exécuter en tant qu'administrateur)

Une fenêtre apparaît. Dans la section Rapport en haut de cette fenêtre, coche Rapport standard
Coche également les cases à côté de Recherche Lop et Recherche Purity
Enfin, clique sur le bouton Analyse. Le scan ne prendra pas beaucoup de temps.
Une fois l'analyse terminée, deux fenêtres vont s'ouvrir dans le Bloc-notes : OTL.txt et Extras.txt. Ils se trouvent au même endroit que OTL (donc par défaut sur le Bureau).

Utilise le site http://pjjoint.malekal.com/ pour envoyer tes rapports, et poste les liens dans ta prochaine réponse.
7 Mai 2011 19:46:48

J'ai oublié de préciser que mon netbook est sur xp, puisque je ne peux pas acceder avec mon pc qui lui est sur windows 7, je pense pouvoir m'en sortir quand même mais je suis obligé de passer par un disque dur externe, sinon je ne vois pas comment faire
Contenus similaires
7 Mai 2011 20:49:18

Tu as réussi a redémarrer ?

Citation :
je ne sais plus trop en j'en suis avec tous ces fichiers il y aura peut-être des doublons j'en suis désolée

Non pas de doublons mais il manque le principal OTL.txt
7 Mai 2011 21:00:19

Voilà pour OTL text

http://pjjoint.malekal.com/files.php?id=f02d9268f7595

En fait mon pc fonctionne, je l'ouvre normalement, mais je ne peux pas du tout naviguer sur le net, tout est bloqué firefox me laisse ce message:
la connexion a été refusée par le serveur proxy
Firefox est configuré pour utiliser un serveur proxy mais celui ci n'accepte pas les connexions.
C'est pour cette raison que je pense qu'il s'agit d'un virus qui bloque l'accès à internet
7 Mai 2011 21:31:18

Relance OTL.exe.

Fais un double clic sur l'icône pour le lancer.Sous Windows Vista/7, faire un clic droit sur OTL.exe puis choisir "Exécuter en tant qu'Administrateur" pour lancer l'outil.

Sélectionne très précisément tout ce qui est dans le cadre ci dessous , avec la souris et copie le contenu dans la zone "Personnalisation" de la fenêtre OTL

RAS
:OTL
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://mystart.magentic.com/
IE - HKCU\..\URLSearchHook: {3d4d238c-9c48-47cd-a95c-53259acf9e56} - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {ba14329e-9550-4989-b3f2-9732e92d17cc} - Reg Error: Key error. File not found
FF - prefs.js..browser.search.defaultengine: %µ£Ask.com%µ£
FF - prefs.js..browser.search.defaulturl: %µ£http://search.conduit.com/ResultsExt.aspx?ctid=CT2567681&SearchSource=3&q={searchTerms}%µ£
FF - prefs.js..browser.search.order.1: %µ£Ask.com%µ£
FF - prefs.js..network.proxy.http: %µ£127.0.0.1%µ£
FF - prefs.js..network.proxy.http_port: 57616
FF - prefs.js..sweetim.toolbar.previous.keyword.URL: %µ£http://mystart.magentic.com/?loc=FF_Magentic_AddressBar&search=%µ£
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {3D4D238C-9C48-47CD-A95C-53259ACF9E56} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} - No CLSID value found.
O9:[b]64bit:[/b] - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - File not found
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - File not found
O9 - Extra Button: Envoyer à Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - File not found
O9 - Extra 'Tools' menuitem : Envoyer au périphérique &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - File not found
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O33 - MountPoints2\{15cff417-412e-11e0-8bf2-00269e3d411a}\Shell - %µ£%µ£ = AutoRun
O33 - MountPoints2\{15cff417-412e-11e0-8bf2-00269e3d411a}\Shell\AutoRun\command - %µ£%µ£ = G:\setup.exe
[2010/03/02 18:35:00 | 000,148,736 | ---- | C] (Avanquest Software) -- C:\ProgramData\hpe8DA7.dll

:Files
ipconfig /flushdns /c
@Alternate Data Stream - 99 bytes -> C:\ProgramData\Temp:FC8FFA4E
@Alternate Data Stream - 99 bytes -> C:\ProgramData\Temp:880F0FEF
@Alternate Data Stream - 98 bytes -> C:\ProgramData\Temp:D2C57161
@Alternate Data Stream - 98 bytes -> C:\ProgramData\Temp:4A392155
@Alternate Data Stream - 96 bytes -> C:\ProgramData\Temp:F1175E1D
@Alternate Data Stream - 96 bytes -> C:\ProgramData\Temp:ADF0A5DD
@Alternate Data Stream - 238 bytes -> C:\ProgramData\Temp:D6A4A911
@Alternate Data Stream - 235 bytes -> C:\ProgramData\Temp:661DC753
@Alternate Data Stream - 231 bytes -> C:\ProgramData\Temp:3B4DA230
@Alternate Data Stream - 228 bytes -> C:\ProgramData\Temp:3DF63AD7
@Alternate Data Stream - 227 bytes -> C:\ProgramData\Temp:0E22C5DB
@Alternate Data Stream - 226 bytes -> C:\ProgramData\Temp:C10635F6
@Alternate Data Stream - 220 bytes -> C:\ProgramData\Temp:ECFD9449
@Alternate Data Stream - 217 bytes -> C:\ProgramData\Temp:B9F8237A
@Alternate Data Stream - 217 bytes -> C:\ProgramData\Temp:5E9B629B
@Alternate Data Stream - 214 bytes -> C:\ProgramData\Temp:FC2E567F
@Alternate Data Stream - 214 bytes -> C:\ProgramData\Temp:A4CDE823
@Alternate Data Stream - 213 bytes -> C:\ProgramData\Temp:AC0528D9
@Alternate Data Stream - 211 bytes -> C:\ProgramData\Temp:3C846A5B
@Alternate Data Stream - 209 bytes -> C:\ProgramData\Temp:F2AF86D9
@Alternate Data Stream - 209 bytes -> C:\ProgramData\Temp:8F067037
@Alternate Data Stream - 208 bytes -> C:\ProgramData\Temp:4CF76F21
@Alternate Data Stream - 207 bytes -> C:\ProgramData\Temp:FEF0DEE7
@Alternate Data Stream - 207 bytes -> C:\ProgramData\Temp:2F141B68
@Alternate Data Stream - 206 bytes -> C:\ProgramData\Temp:6444B424
@Alternate Data Stream - 205 bytes -> C:\ProgramData\Temp:7547DA5B
@Alternate Data Stream - 204 bytes -> C:\ProgramData\Temp:51F17BB8
@Alternate Data Stream - 196 bytes -> C:\ProgramData\Temp:C22674B6
@Alternate Data Stream - 196 bytes -> C:\ProgramData\Temp:5D351BC6
@Alternate Data Stream - 193 bytes -> C:\ProgramData\Temp:C8AC644A
@Alternate Data Stream - 192 bytes -> C:\ProgramData\Temp:70E897B5
@Alternate Data Stream - 190 bytes -> C:\ProgramData\Temp:82FF14B1
@Alternate Data Stream - 189 bytes -> C:\ProgramData\Temp:7B2BB690
@Alternate Data Stream - 144 bytes -> C:\ProgramData\Temp:32FFF2D1
@Alternate Data Stream - 141 bytes -> C:\ProgramData\Temp:FC420CE6
@Alternate Data Stream - 140 bytes -> C:\ProgramData\Temp:8944C195
@Alternate Data Stream - 137 bytes -> C:\ProgramData\Temp:A58B27C9
@Alternate Data Stream - 136 bytes -> C:\ProgramData\Temp:190B5C6B
@Alternate Data Stream - 134 bytes -> C:\ProgramData\Temp:AA8AD2BF
@Alternate Data Stream - 134 bytes -> C:\ProgramData\Temp:569CEE83
@Alternate Data Stream - 134 bytes -> C:\ProgramData\Temp:4F8B72C9
@Alternate Data Stream - 134 bytes -> C:\ProgramData\Temp:4A966CC2
@Alternate Data Stream - 134 bytes -> C:\ProgramData\Temp:1F7A10DD
@Alternate Data Stream - 133 bytes -> C:\ProgramData\Temp:7A032A04
@Alternate Data Stream - 133 bytes -> C:\ProgramData\Temp:0ADB5110
@Alternate Data Stream - 133 bytes -> C:\ProgramData\Temp:0656FCD2
@Alternate Data Stream - 132 bytes -> C:\ProgramData\Temp:F5E90ED3
@Alternate Data Stream - 132 bytes -> C:\ProgramData\Temp:EB333CFC
@Alternate Data Stream - 130 bytes -> C:\ProgramData\Temp:86D110BB
@Alternate Data Stream - 129 bytes -> C:\ProgramData\Temp:D0DCD8D7
@Alternate Data Stream - 126 bytes -> C:\ProgramData\Temp:85A0F6D2
@Alternate Data Stream - 125 bytes -> C:\ProgramData\Temp:EC36F550
@Alternate Data Stream - 125 bytes -> C:\ProgramData\Temp:B845F669
@Alternate Data Stream - 125 bytes -> C:\ProgramData\Temp:AC95B5ED
@Alternate Data Stream - 124 bytes -> C:\ProgramData\Temp:FD000392
@Alternate Data Stream - 124 bytes -> C:\ProgramData\Temp:B9E9A5F9
@Alternate Data Stream - 124 bytes -> C:\ProgramData\Temp:A7DA2BCD
@Alternate Data Stream - 124 bytes -> C:\ProgramData\Temp:7C4DF735
@Alternate Data Stream - 124 bytes -> C:\ProgramData\Temp:5AC256BC
@Alternate Data Stream - 123 bytes -> C:\ProgramData\Temp:FED25C29
@Alternate Data Stream - 123 bytes -> C:\ProgramData\Temp:FC8E37E0
@Alternate Data Stream - 123 bytes -> C:\ProgramData\Temp:2495D97A
@Alternate Data Stream - 123 bytes -> C:\ProgramData\Temp:17D88661
@Alternate Data Stream - 123 bytes -> C:\ProgramData\Temp:0C9CD455
@Alternate Data Stream - 122 bytes -> C:\ProgramData\Temp:66FC2E6F
@Alternate Data Stream - 122 bytes -> C:\ProgramData\Temp:6017A808
@Alternate Data Stream - 122 bytes -> C:\ProgramData\Temp:1A8BB29B
@Alternate Data Stream - 121 bytes -> C:\ProgramData\Temp:F44D3C53
@Alternate Data Stream - 121 bytes -> C:\ProgramData\Temp:DFC5A2B2
@Alternate Data Stream - 121 bytes -> C:\ProgramData\Temp:BE5EC04C
@Alternate Data Stream - 121 bytes -> C:\ProgramData\Temp:AEABFEC4
@Alternate Data Stream - 121 bytes -> C:\ProgramData\Temp:99A29126
@Alternate Data Stream - 121 bytes -> C:\ProgramData\Temp:596E2371
@Alternate Data Stream - 120 bytes -> C:\ProgramData\Temp:FBE5FDB9
@Alternate Data Stream - 120 bytes -> C:\ProgramData\Temp:89CF6F9C
@Alternate Data Stream - 120 bytes -> C:\ProgramData\Temp:4F7D133D
@Alternate Data Stream - 120 bytes -> C:\ProgramData\Temp:43D34EF3
@Alternate Data Stream - 120 bytes -> C:\ProgramData\Temp:2E49FF93
@Alternate Data Stream - 119 bytes -> C:\ProgramData\Temp:F19A4790
@Alternate Data Stream - 119 bytes -> C:\ProgramData\Temp:C81D3839
@Alternate Data Stream - 119 bytes -> C:\ProgramData\Temp:7A0FEE87
@Alternate Data Stream - 118 bytes -> C:\ProgramData\Temp:A745DB5D
@Alternate Data Stream - 117 bytes -> C:\ProgramData\Temp:FAFEC4B9
@Alternate Data Stream - 117 bytes -> C:\ProgramData\Temp:AF54CFFD
@Alternate Data Stream - 117 bytes -> C:\ProgramData\Temp:7AF9CAEB
@Alternate Data Stream - 117 bytes -> C:\ProgramData\Temp:6F1F66C0
@Alternate Data Stream - 117 bytes -> C:\ProgramData\Temp:5A0DD071
@Alternate Data Stream - 117 bytes -> C:\ProgramData\Temp:1A5207FA
@Alternate Data Stream - 116 bytes -> C:\ProgramData\Temp:9C8D5426
@Alternate Data Stream - 115 bytes -> C:\ProgramData\Temp:89A5891E
@Alternate Data Stream - 114 bytes -> C:\ProgramData\Temp:D93AABC7
@Alternate Data Stream - 114 bytes -> C:\ProgramData\Temp:0E636D62
@Alternate Data Stream - 113 bytes -> C:\ProgramData\Temp:FD2BFC89
@Alternate Data Stream - 113 bytes -> C:\ProgramData\Temp:E56502D3
@Alternate Data Stream - 113 bytes -> C:\ProgramData\Temp:A4076A3B
@Alternate Data Stream - 112 bytes -> C:\ProgramData\Temp:F0AB86C0
@Alternate Data Stream - 112 bytes -> C:\ProgramData\Temp:D1979811
@Alternate Data Stream - 112 bytes -> C:\ProgramData\Temp:8CE646EE
@Alternate Data Stream - 112 bytes -> C:\ProgramData\Temp:6AF67671
@Alternate Data Stream - 112 bytes -> C:\ProgramData\Temp:48081133
@Alternate Data Stream - 111 bytes -> C:\ProgramData\Temp:4A77A28B
@Alternate Data Stream - 110 bytes -> C:\ProgramData\Temp:E1CC2D5E
@Alternate Data Stream - 110 bytes -> C:\ProgramData\Temp:D46ECFD5
@Alternate Data Stream - 110 bytes -> C:\ProgramData\Temp:0C5BC70E
@Alternate Data Stream - 109 bytes -> C:\ProgramData\Temp:E51234A9
@Alternate Data Stream - 109 bytes -> C:\ProgramData\Temp:A8ADE5D8
@Alternate Data Stream - 109 bytes -> C:\ProgramData\Temp:737160C1
@Alternate Data Stream - 109 bytes -> C:\ProgramData\Temp:640EA6E8
@Alternate Data Stream - 109 bytes -> C:\ProgramData\Temp:28476D43
@Alternate Data Stream - 108 bytes -> C:\ProgramData\Temp:B321E944
@Alternate Data Stream - 108 bytes -> C:\ProgramData\Temp:A8F2382B
@Alternate Data Stream - 108 bytes -> C:\ProgramData\Temp:3BF63E4A
@Alternate Data Stream - 108 bytes -> C:\ProgramData\Temp:335117B1
@Alternate Data Stream - 106 bytes -> C:\ProgramData\Temp:3D36932D
@Alternate Data Stream - 104 bytes -> C:\ProgramData\Temp:9547F1DB
@Alternate Data Stream - 103 bytes -> C:\ProgramData\Temp:FDC41D2C
@Alternate Data Stream - 103 bytes -> C:\ProgramData\Temp:97C4F81F
@Alternate Data Stream - 102 bytes -> C:\ProgramData\Temp:E07EA07E
@Alternate Data Stream - 102 bytes -> C:\ProgramData\Temp:93F3E4C9
@Alternate Data Stream - 100 bytes -> C:\ProgramData\Temp:EF4FB3C5
@Alternate Data Stream - 100 bytes -> C:\ProgramData\Temp:90865A6D
@Alternate Data Stream - 100 bytes -> C:\ProgramData\Temp:5A437AC3
@Alternate Data Stream - 100 bytes -> C:\ProgramData\Temp:45F3AD49
@Alternate Data Stream - 100 bytes -> C:\ProgramData\Temp:3A78F62C

:Commands
[resethosts]
[emptytemp]
[EMPTYFLASH]


  • Puis clique sur le bouton Correction en haut de la fenêtre.
  • Laisse le programme travailler sans te servir du PC!!!!!
  • Copie et colle le rapport dans ta réponse stp
    7 Mai 2011 22:38:07

    Voila le rapport:

    Error: Unable to interpret <IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://mystart.magentic.com&gt; in the current context!
    Error: Unable to interpret <IE - HKCU\..\URLSearchHook: {3d4d238c-9c48-47cd-a95c-53259acf9e56} - Reg Error: Key error. File not found> in the current context!
    Error: Unable to interpret <IE - HKCU\..\URLSearchHook: {ba14329e-9550-4989-b3f2-9732e92d17cc} - Reg Error: Key error. File not found> in the current context!
    Error: Unable to interpret <FF - prefs.js..browser.search.defaultengine: "Ask.com"> in the current context!
    Error: Unable to interpret <FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT256768...{searchTerms}"> in the current context!
    Error: Unable to interpret <FF - prefs.js..browser.search.order.1: "Ask.com"> in the current context!
    Error: Unable to interpret <FF - prefs.js..network.proxy.http: "127.0.0.1"> in the current context!
    Error: Unable to interpret <FF - prefs.js..network.proxy.http_port: 57616> in the current context!
    Error: Unable to interpret <FF - prefs.js..sweetim.toolbar.previous.keyword.URL: "http://mystart.magentic.com/?loc=FF_Magentic_AddressBar..."> in the current context!
    Error: Unable to interpret <O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.> in the current context!
    Error: Unable to interpret <O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {3D4D238C-9C48-47CD-A95C-53259ACF9E56} - No CLSID value found.> in the current context!
    Error: Unable to interpret <O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.> in the current context!
    Error: Unable to interpret <O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} - No CLSID value found.> in the current context!
    Error: Unable to interpret <O9:64bit: - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - File not found> in the current context!
    Error: Unable to interpret <O9:64bit: - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - File not found> in the current context!
    Error: Unable to interpret <O9 - Extra Button: Envoyer à Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - File not found> in the current context!
    Error: Unable to interpret <O9 - Extra 'Tools' menuitem : Envoyer au périphérique &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - File not found> in the current context!
    Error: Unable to interpret <O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-wind... (Reg Error: Key error.)> in the current context!
    Error: Unable to interpret <O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-wind... (Java Plug-in 1.6.0_17)> in the current context!
    Error: Unable to interpret <O33 - MountPoints2\{15cff417-412e-11e0-8bf2-00269e3d411a}\Shell\AutoRun\command - "" = G:\setup.exe> in the current context!
    Error: Unable to interpret <[2010/03/02 18:35:00 | 000,148,736 | ---- | C] (Avanquest Software) -- C:\ProgramData\hpe8DA7.dll> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 99 bytes -> C:\ProgramData\Temp:FC8FFA4E> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 99 bytes -> C:\ProgramData\Temp:880F0FEF> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 98 bytes -> C:\ProgramData\Temp:D 2C57161> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 98 bytes -> C:\ProgramData\Temp:4A392155> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 96 bytes -> C:\ProgramData\Temp:F1175E1D> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 96 bytes -> C:\ProgramData\Temp:ADF0A5DD> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 238 bytes -> C:\ProgramData\Temp:D 6A4A911> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 235 bytes -> C:\ProgramData\Temp:661DC753> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 231 bytes -> C:\ProgramData\Temp:3B4DA230> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 228 bytes -> C:\ProgramData\Temp:3DF63AD7> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 227 bytes -> C:\ProgramData\Temp:0E22C5DB> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 226 bytes -> C:\ProgramData\Temp:C10635F6> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 220 bytes -> C:\ProgramData\Temp:ECFD9449> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 217 bytes -> C:\ProgramData\Temp:B9F8237A> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 217 bytes -> C:\ProgramData\Temp:5E9B629B> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 214 bytes -> C:\ProgramData\Temp:FC2E567F> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 214 bytes -> C:\ProgramData\Temp:A4CDE823> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 213 bytes -> C:\ProgramData\Temp:AC0528D9> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 211 bytes -> C:\ProgramData\Temp:3C846A5B> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 209 bytes -> C:\ProgramData\Temp:F2AF86D9> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 209 bytes -> C:\ProgramData\Temp:8F067037> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 208 bytes -> C:\ProgramData\Temp:4CF76F21> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 207 bytes -> C:\ProgramData\Temp:FEF0DEE7> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 207 bytes -> C:\ProgramData\Temp:2F141B68> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 206 bytes -> C:\ProgramData\Temp:6444B424> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 205 bytes -> C:\ProgramData\Temp:7547DA5B> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 204 bytes -> C:\ProgramData\Temp:51F17BB8> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 196 bytes -> C:\ProgramData\Temp:C22674B6> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 196 bytes -> C:\ProgramData\Temp:5D351BC6> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 193 bytes -> C:\ProgramData\Temp:C8AC644A> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 192 bytes -> C:\ProgramData\Temp:70E897B5> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 190 bytes -> C:\ProgramData\Temp:82FF14B1> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 189 bytes -> C:\ProgramData\Temp:7B2BB690> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 144 bytes -> C:\ProgramData\Temp:32FFF2D1> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 141 bytes -> C:\ProgramData\Temp:FC420CE6> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 140 bytes -> C:\ProgramData\Temp:8944C195> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 137 bytes -> C:\ProgramData\Temp:A58B27C9> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 136 bytes -> C:\ProgramData\Temp:190B5C6B> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 134 bytes -> C:\ProgramData\Temp:AA8AD2BF> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 134 bytes -> C:\ProgramData\Temp:569CEE83> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 134 bytes -> C:\ProgramData\Temp:4F8B72C9> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 134 bytes -> C:\ProgramData\Temp:4A966CC2> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 134 bytes -> C:\ProgramData\Temp:1F7A10DD> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 133 bytes -> C:\ProgramData\Temp:7A032A04> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 133 bytes -> C:\ProgramData\Temp:0ADB5110> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 133 bytes -> C:\ProgramData\Temp:0656FCD2> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 132 bytes -> C:\ProgramData\Temp:F5E90ED3> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 132 bytes -> C:\ProgramData\Temp:EB333CFC> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 130 bytes -> C:\ProgramData\Temp:86D110BB> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 129 bytes -> C:\ProgramData\Temp:D 0DCD8D7> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 126 bytes -> C:\ProgramData\Temp:85A0F6D2> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 125 bytes -> C:\ProgramData\Temp:EC36F550> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 125 bytes -> C:\ProgramData\Temp:B845F669> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 125 bytes -> C:\ProgramData\Temp:AC95B5ED> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 124 bytes -> C:\ProgramData\Temp:FD000392> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 124 bytes -> C:\ProgramData\Temp:B9E9A5F9> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 124 bytes -> C:\ProgramData\Temp:A7DA2BCD> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 124 bytes -> C:\ProgramData\Temp:7C4DF735> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 124 bytes -> C:\ProgramData\Temp:5AC256BC> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 123 bytes -> C:\ProgramData\Temp:FED25C29> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 123 bytes -> C:\ProgramData\Temp:FC8E37E0> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 123 bytes -> C:\ProgramData\Temp:2495D97A> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 123 bytes -> C:\ProgramData\Temp:17D88661> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 123 bytes -> C:\ProgramData\Temp:0C9CD455> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 122 bytes -> C:\ProgramData\Temp:66FC2E6F> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 122 bytes -> C:\ProgramData\Temp:6017A808> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 122 bytes -> C:\ProgramData\Temp:1A8BB29B> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 121 bytes -> C:\ProgramData\Temp:F44D3C53> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 121 bytes -> C:\ProgramData\Temp:D FC5A2B2> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 121 bytes -> C:\ProgramData\Temp:BE5EC04C> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 121 bytes -> C:\ProgramData\Temp:AEABFEC4> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 121 bytes -> C:\ProgramData\Temp:99A29126> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 121 bytes -> C:\ProgramData\Temp:596E2371> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 120 bytes -> C:\ProgramData\Temp:FBE5FDB9> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 120 bytes -> C:\ProgramData\Temp:89CF6F9C> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 120 bytes -> C:\ProgramData\Temp:4F7D133D> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 120 bytes -> C:\ProgramData\Temp:43D34EF3> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 120 bytes -> C:\ProgramData\Temp:2E49FF93> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 119 bytes -> C:\ProgramData\Temp:F19A4790> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 119 bytes -> C:\ProgramData\Temp:C81D3839> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 119 bytes -> C:\ProgramData\Temp:7A0FEE87> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 118 bytes -> C:\ProgramData\Temp:A745DB5D> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 117 bytes -> C:\ProgramData\Temp:FAFEC4B9> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 117 bytes -> C:\ProgramData\Temp:AF54CFFD> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 117 bytes -> C:\ProgramData\Temp:7AF9CAEB> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 117 bytes -> C:\ProgramData\Temp:6F1F66C0> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 117 bytes -> C:\ProgramData\Temp:5A0DD071> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 117 bytes -> C:\ProgramData\Temp:1A5207FA> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 116 bytes -> C:\ProgramData\Temp:9C8D5426> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 115 bytes -> C:\ProgramData\Temp:89A5891E> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 114 bytes -> C:\ProgramData\Temp:D 93AABC7> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 114 bytes -> C:\ProgramData\Temp:0E636D62> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 113 bytes -> C:\ProgramData\Temp:FD2BFC89> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 113 bytes -> C:\ProgramData\Temp:E56502D3> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 113 bytes -> C:\ProgramData\Temp:A4076A3B> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 112 bytes -> C:\ProgramData\Temp:F0AB86C0> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 112 bytes -> C:\ProgramData\Temp:D 1979811> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 112 bytes -> C:\ProgramData\Temp:8CE646EE> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 112 bytes -> C:\ProgramData\Temp:6AF67671> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 112 bytes -> C:\ProgramData\Temp:48081133> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 111 bytes -> C:\ProgramData\Temp:4A77A28B> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 110 bytes -> C:\ProgramData\Temp:E1CC2D5E> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 110 bytes -> C:\ProgramData\Temp:D 46ECFD5> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 110 bytes -> C:\ProgramData\Temp:0C5BC70E> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 109 bytes -> C:\ProgramData\Temp:E51234A9> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 109 bytes -> C:\ProgramData\Temp:A8ADE5D8> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 109 bytes -> C:\ProgramData\Temp:737160C1> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 109 bytes -> C:\ProgramData\Temp:640EA6E8> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 109 bytes -> C:\ProgramData\Temp:28476D43> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 108 bytes -> C:\ProgramData\Temp:B321E944> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 108 bytes -> C:\ProgramData\Temp:A8F2382B> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 108 bytes -> C:\ProgramData\Temp:3BF63E4A> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 108 bytes -> C:\ProgramData\Temp:335117B1> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 106 bytes -> C:\ProgramData\Temp:3D36932D> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 104 bytes -> C:\ProgramData\Temp:9547F1DB> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 103 bytes -> C:\ProgramData\Temp:FDC41D2C> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 103 bytes -> C:\ProgramData\Temp:97C4F81F> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 102 bytes -> C:\ProgramData\Temp:E07EA07E> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 102 bytes -> C:\ProgramData\Temp:93F3E4C9> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 100 bytes -> C:\ProgramData\Temp:EF4FB3C5> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 100 bytes -> C:\ProgramData\Temp:90865A6D> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 100 bytes -> C:\ProgramData\Temp:5A437AC3> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 100 bytes -> C:\ProgramData\Temp:45F3AD49> in the current context!
    Error: Unable to interpret <@Alternate Data Stream - 100 bytes -> C:\ProgramData\Temp:3A78F62C> in the current context!

    OTL by OldTimer - Version 3.2.22.3 log created on 05072011_223058
    8 Mai 2011 06:27:10

    Bonjour

    Tu peux recommencer tu n'as pas tout copier ce qui était dans le cadre !C'est bien écrit :
    Sélectionne très précisément tout ce qui est dans le cadre ci dessous

    Tu copies depuis RAS jusqu'a [EMPTYFLASH] et tu fais coller sous personnalisation
    8 Mai 2011 09:19:09

    Bonjour,

    Je suis désolée, mais je n'ai rien qui commence par RAS, et qui fini par [EMPTYFLASH] il me semblait avoir tout copier, il s'agit bien du rapport OTL?
    8 Mai 2011 09:25:23

    Citation :
    Je suis désolée, mais je n'ai rien qui commence par RAS, et qui fini par [EMPTYFLASH] il me semblait avoir tout copier, il s'agit bien du rapport OTL?

    Si regarde!

    hackinginterdit a dit :
    Relance OTL.exe.
    Sélectionne très précisément tout ce qui est dans le cadre ci dessous , avec la souris et copie le contenu dans la zone "Personnalisation" de la fenêtre OTL

    RAS
    :OTL
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://mystart.magentic.com/
    IE - HKCU\..\URLSearchHook: {3d4d238c-9c48-47cd-a95c-53259acf9e56} - Reg Error: Key error. File not found
    IE - HKCU\..\URLSearchHook: {ba14329e-9550-4989-b3f2-9732e92d17cc} - Reg Error: Key error. File not found
    FF - prefs.js..browser.search.defaultengine: %µ£Ask.com%µ£
    FF - prefs.js..browser.search.defaulturl: %µ£http://search.conduit.com/ResultsExt.aspx?ctid=CT2567681&SearchSource=3&q={searchTerms}%µ£
    FF - prefs.js..browser.search.order.1: %µ£Ask.com%µ£
    FF - prefs.js..network.proxy.http: %µ£127.0.0.1%µ£
    FF - prefs.js..network.proxy.http_port: 57616
    FF - prefs.js..sweetim.toolbar.previous.keyword.URL: %µ£http://mystart.magentic.com/?loc=FF_Magentic_AddressBar&search=%µ£
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {3D4D238C-9C48-47CD-A95C-53259ACF9E56} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} - No CLSID value found.
    O9:[b]64bit:[/b] - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - File not found
    O9:[b]64bit:[/b] - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - File not found
    O9 - Extra Button: Envoyer à Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - File not found
    O9 - Extra 'Tools' menuitem : Envoyer au périphérique &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - File not found
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
    O33 - MountPoints2\{15cff417-412e-11e0-8bf2-00269e3d411a}\Shell - %µ£%µ£ = AutoRun
    O33 - MountPoints2\{15cff417-412e-11e0-8bf2-00269e3d411a}\Shell\AutoRun\command - %µ£%µ£ = G:\setup.exe
    [2010/03/02 18:35:00 | 000,148,736 | ---- | C] (Avanquest Software) -- C:\ProgramData\hpe8DA7.dll

    :Files
    ipconfig /flushdns /c
    @Alternate Data Stream - 99 bytes -> C:\ProgramData\Temp:FC8FFA4E
    @Alternate Data Stream - 99 bytes -> C:\ProgramData\Temp:880F0FEF
    @Alternate Data Stream - 98 bytes -> C:\ProgramData\Temp:D2C57161
    @Alternate Data Stream - 98 bytes -> C:\ProgramData\Temp:4A392155
    @Alternate Data Stream - 96 bytes -> C:\ProgramData\Temp:F1175E1D
    @Alternate Data Stream - 96 bytes -> C:\ProgramData\Temp:ADF0A5DD
    @Alternate Data Stream - 238 bytes -> C:\ProgramData\Temp:D6A4A911
    @Alternate Data Stream - 235 bytes -> C:\ProgramData\Temp:661DC753
    @Alternate Data Stream - 231 bytes -> C:\ProgramData\Temp:3B4DA230
    @Alternate Data Stream - 228 bytes -> C:\ProgramData\Temp:3DF63AD7
    @Alternate Data Stream - 227 bytes -> C:\ProgramData\Temp:0E22C5DB
    @Alternate Data Stream - 226 bytes -> C:\ProgramData\Temp:C10635F6
    @Alternate Data Stream - 220 bytes -> C:\ProgramData\Temp:ECFD9449
    @Alternate Data Stream - 217 bytes -> C:\ProgramData\Temp:B9F8237A
    @Alternate Data Stream - 217 bytes -> C:\ProgramData\Temp:5E9B629B
    @Alternate Data Stream - 214 bytes -> C:\ProgramData\Temp:FC2E567F
    @Alternate Data Stream - 214 bytes -> C:\ProgramData\Temp:A4CDE823
    @Alternate Data Stream - 213 bytes -> C:\ProgramData\Temp:AC0528D9
    @Alternate Data Stream - 211 bytes -> C:\ProgramData\Temp:3C846A5B
    @Alternate Data Stream - 209 bytes -> C:\ProgramData\Temp:F2AF86D9
    @Alternate Data Stream - 209 bytes -> C:\ProgramData\Temp:8F067037
    @Alternate Data Stream - 208 bytes -> C:\ProgramData\Temp:4CF76F21
    @Alternate Data Stream - 207 bytes -> C:\ProgramData\Temp:FEF0DEE7
    @Alternate Data Stream - 207 bytes -> C:\ProgramData\Temp:2F141B68
    @Alternate Data Stream - 206 bytes -> C:\ProgramData\Temp:6444B424
    @Alternate Data Stream - 205 bytes -> C:\ProgramData\Temp:7547DA5B
    @Alternate Data Stream - 204 bytes -> C:\ProgramData\Temp:51F17BB8
    @Alternate Data Stream - 196 bytes -> C:\ProgramData\Temp:C22674B6
    @Alternate Data Stream - 196 bytes -> C:\ProgramData\Temp:5D351BC6
    @Alternate Data Stream - 193 bytes -> C:\ProgramData\Temp:C8AC644A
    @Alternate Data Stream - 192 bytes -> C:\ProgramData\Temp:70E897B5
    @Alternate Data Stream - 190 bytes -> C:\ProgramData\Temp:82FF14B1
    @Alternate Data Stream - 189 bytes -> C:\ProgramData\Temp:7B2BB690
    @Alternate Data Stream - 144 bytes -> C:\ProgramData\Temp:32FFF2D1
    @Alternate Data Stream - 141 bytes -> C:\ProgramData\Temp:FC420CE6
    @Alternate Data Stream - 140 bytes -> C:\ProgramData\Temp:8944C195
    @Alternate Data Stream - 137 bytes -> C:\ProgramData\Temp:A58B27C9
    @Alternate Data Stream - 136 bytes -> C:\ProgramData\Temp:190B5C6B
    @Alternate Data Stream - 134 bytes -> C:\ProgramData\Temp:AA8AD2BF
    @Alternate Data Stream - 134 bytes -> C:\ProgramData\Temp:569CEE83
    @Alternate Data Stream - 134 bytes -> C:\ProgramData\Temp:4F8B72C9
    @Alternate Data Stream - 134 bytes -> C:\ProgramData\Temp:4A966CC2
    @Alternate Data Stream - 134 bytes -> C:\ProgramData\Temp:1F7A10DD
    @Alternate Data Stream - 133 bytes -> C:\ProgramData\Temp:7A032A04
    @Alternate Data Stream - 133 bytes -> C:\ProgramData\Temp:0ADB5110
    @Alternate Data Stream - 133 bytes -> C:\ProgramData\Temp:0656FCD2
    @Alternate Data Stream - 132 bytes -> C:\ProgramData\Temp:F5E90ED3
    @Alternate Data Stream - 132 bytes -> C:\ProgramData\Temp:EB333CFC
    @Alternate Data Stream - 130 bytes -> C:\ProgramData\Temp:86D110BB
    @Alternate Data Stream - 129 bytes -> C:\ProgramData\Temp:D0DCD8D7
    @Alternate Data Stream - 126 bytes -> C:\ProgramData\Temp:85A0F6D2
    @Alternate Data Stream - 125 bytes -> C:\ProgramData\Temp:EC36F550
    @Alternate Data Stream - 125 bytes -> C:\ProgramData\Temp:B845F669
    @Alternate Data Stream - 125 bytes -> C:\ProgramData\Temp:AC95B5ED
    @Alternate Data Stream - 124 bytes -> C:\ProgramData\Temp:FD000392
    @Alternate Data Stream - 124 bytes -> C:\ProgramData\Temp:B9E9A5F9
    @Alternate Data Stream - 124 bytes -> C:\ProgramData\Temp:A7DA2BCD
    @Alternate Data Stream - 124 bytes -> C:\ProgramData\Temp:7C4DF735
    @Alternate Data Stream - 124 bytes -> C:\ProgramData\Temp:5AC256BC
    @Alternate Data Stream - 123 bytes -> C:\ProgramData\Temp:FED25C29
    @Alternate Data Stream - 123 bytes -> C:\ProgramData\Temp:FC8E37E0
    @Alternate Data Stream - 123 bytes -> C:\ProgramData\Temp:2495D97A
    @Alternate Data Stream - 123 bytes -> C:\ProgramData\Temp:17D88661
    @Alternate Data Stream - 123 bytes -> C:\ProgramData\Temp:0C9CD455
    @Alternate Data Stream - 122 bytes -> C:\ProgramData\Temp:66FC2E6F
    @Alternate Data Stream - 122 bytes -> C:\ProgramData\Temp:6017A808
    @Alternate Data Stream - 122 bytes -> C:\ProgramData\Temp:1A8BB29B
    @Alternate Data Stream - 121 bytes -> C:\ProgramData\Temp:F44D3C53
    @Alternate Data Stream - 121 bytes -> C:\ProgramData\Temp:DFC5A2B2
    @Alternate Data Stream - 121 bytes -> C:\ProgramData\Temp:BE5EC04C
    @Alternate Data Stream - 121 bytes -> C:\ProgramData\Temp:AEABFEC4
    @Alternate Data Stream - 121 bytes -> C:\ProgramData\Temp:99A29126
    @Alternate Data Stream - 121 bytes -> C:\ProgramData\Temp:596E2371
    @Alternate Data Stream - 120 bytes -> C:\ProgramData\Temp:FBE5FDB9
    @Alternate Data Stream - 120 bytes -> C:\ProgramData\Temp:89CF6F9C
    @Alternate Data Stream - 120 bytes -> C:\ProgramData\Temp:4F7D133D
    @Alternate Data Stream - 120 bytes -> C:\ProgramData\Temp:43D34EF3
    @Alternate Data Stream - 120 bytes -> C:\ProgramData\Temp:2E49FF93
    @Alternate Data Stream - 119 bytes -> C:\ProgramData\Temp:F19A4790
    @Alternate Data Stream - 119 bytes -> C:\ProgramData\Temp:C81D3839
    @Alternate Data Stream - 119 bytes -> C:\ProgramData\Temp:7A0FEE87
    @Alternate Data Stream - 118 bytes -> C:\ProgramData\Temp:A745DB5D
    @Alternate Data Stream - 117 bytes -> C:\ProgramData\Temp:FAFEC4B9
    @Alternate Data Stream - 117 bytes -> C:\ProgramData\Temp:AF54CFFD
    @Alternate Data Stream - 117 bytes -> C:\ProgramData\Temp:7AF9CAEB
    @Alternate Data Stream - 117 bytes -> C:\ProgramData\Temp:6F1F66C0
    @Alternate Data Stream - 117 bytes -> C:\ProgramData\Temp:5A0DD071
    @Alternate Data Stream - 117 bytes -> C:\ProgramData\Temp:1A5207FA
    @Alternate Data Stream - 116 bytes -> C:\ProgramData\Temp:9C8D5426
    @Alternate Data Stream - 115 bytes -> C:\ProgramData\Temp:89A5891E
    @Alternate Data Stream - 114 bytes -> C:\ProgramData\Temp:D93AABC7
    @Alternate Data Stream - 114 bytes -> C:\ProgramData\Temp:0E636D62
    @Alternate Data Stream - 113 bytes -> C:\ProgramData\Temp:FD2BFC89
    @Alternate Data Stream - 113 bytes -> C:\ProgramData\Temp:E56502D3
    @Alternate Data Stream - 113 bytes -> C:\ProgramData\Temp:A4076A3B
    @Alternate Data Stream - 112 bytes -> C:\ProgramData\Temp:F0AB86C0
    @Alternate Data Stream - 112 bytes -> C:\ProgramData\Temp:D1979811
    @Alternate Data Stream - 112 bytes -> C:\ProgramData\Temp:8CE646EE
    @Alternate Data Stream - 112 bytes -> C:\ProgramData\Temp:6AF67671
    @Alternate Data Stream - 112 bytes -> C:\ProgramData\Temp:48081133
    @Alternate Data Stream - 111 bytes -> C:\ProgramData\Temp:4A77A28B
    @Alternate Data Stream - 110 bytes -> C:\ProgramData\Temp:E1CC2D5E
    @Alternate Data Stream - 110 bytes -> C:\ProgramData\Temp:D46ECFD5
    @Alternate Data Stream - 110 bytes -> C:\ProgramData\Temp:0C5BC70E
    @Alternate Data Stream - 109 bytes -> C:\ProgramData\Temp:E51234A9
    @Alternate Data Stream - 109 bytes -> C:\ProgramData\Temp:A8ADE5D8
    @Alternate Data Stream - 109 bytes -> C:\ProgramData\Temp:737160C1
    @Alternate Data Stream - 109 bytes -> C:\ProgramData\Temp:640EA6E8
    @Alternate Data Stream - 109 bytes -> C:\ProgramData\Temp:28476D43
    @Alternate Data Stream - 108 bytes -> C:\ProgramData\Temp:B321E944
    @Alternate Data Stream - 108 bytes -> C:\ProgramData\Temp:A8F2382B
    @Alternate Data Stream - 108 bytes -> C:\ProgramData\Temp:3BF63E4A
    @Alternate Data Stream - 108 bytes -> C:\ProgramData\Temp:335117B1
    @Alternate Data Stream - 106 bytes -> C:\ProgramData\Temp:3D36932D
    @Alternate Data Stream - 104 bytes -> C:\ProgramData\Temp:9547F1DB
    @Alternate Data Stream - 103 bytes -> C:\ProgramData\Temp:FDC41D2C
    @Alternate Data Stream - 103 bytes -> C:\ProgramData\Temp:97C4F81F
    @Alternate Data Stream - 102 bytes -> C:\ProgramData\Temp:E07EA07E
    @Alternate Data Stream - 102 bytes -> C:\ProgramData\Temp:93F3E4C9
    @Alternate Data Stream - 100 bytes -> C:\ProgramData\Temp:EF4FB3C5
    @Alternate Data Stream - 100 bytes -> C:\ProgramData\Temp:90865A6D
    @Alternate Data Stream - 100 bytes -> C:\ProgramData\Temp:5A437AC3
    @Alternate Data Stream - 100 bytes -> C:\ProgramData\Temp:45F3AD49
    @Alternate Data Stream - 100 bytes -> C:\ProgramData\Temp:3A78F62C

    :Commands
    [resethosts]
    [emptytemp]
    [EMPTYFLASH]


  • Puis clique sur le bouton Correction en haut de la fenêtre.
  • Laisse le programme travailler sans te servir du PC!!!!!
  • Copie et colle le rapport dans ta réponse stp


    8 Mai 2011 09:53:19

    Re,

    Voilà j'espère que je l'ai fait correctement cette fois-ci

    All processes killed
    ========== OTL ==========
    HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
    Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{3d4d238c-9c48-47cd-a95c-53259acf9e56} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3d4d238c-9c48-47cd-a95c-53259acf9e56}\ not found.
    Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{ba14329e-9550-4989-b3f2-9732e92d17cc} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ba14329e-9550-4989-b3f2-9732e92d17cc}\ not found.
    Prefs.js: %µ£Ask.com%µ£ removed from browser.search.defaultengine
    Prefs.js: %µ£http://search.conduit.com/ResultsExt.aspx?ctid=CT256768...{searchTerms}%µ£ removed from browser.search.defaulturl
    Prefs.js: %µ£Ask.com%µ£ removed from browser.search.order.1
    Prefs.js: %µ£127.0.0.1%µ£ removed from network.proxy.http
    Prefs.js: 57616 removed from network.proxy.http_port
    Prefs.js: %µ£http://mystart.magentic.com/?loc=FF_Magentic_AddressBar...µ£ removed from sweetim.toolbar.previous.keyword.URL
    Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
    Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{3D4D238C-9C48-47CD-A95C-53259ACF9E56} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3D4D238C-9C48-47CD-A95C-53259ACF9E56}\ not found.
    Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
    Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EEE6C35B-6118-11DC-9C72-001320C79847} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}\ not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{CCA281CA-C863-46ef-9331-5C8D4460577F}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CCA281CA-C863-46ef-9331-5C8D4460577F}\ not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{CCA281CA-C863-46ef-9331-5C8D4460577F}\ not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CCA281CA-C863-46ef-9331-5C8D4460577F}\ not found.
    Starting removal of ActiveX control {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
    Starting removal of ActiveX control {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}\ deleted successfully.
    Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}\ not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}\ not found.
    Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{15cff417-412e-11e0-8bf2-00269e3d411a}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{15cff417-412e-11e0-8bf2-00269e3d411a}\ not found.
    Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{15cff417-412e-11e0-8bf2-00269e3d411a}\ not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{15cff417-412e-11e0-8bf2-00269e3d411a}\ not found.
    File G:\setup.exe not found.
    C:\ProgramData\hpe8DA7.dll moved successfully.
    ========== FILES ==========
    < ipconfig /flushdns /c >
    Configuration IP de Windows
    Cache de r‚solution DNS vid‚.
    H:\cmd.bat deleted successfully.
    H:\cmd.txt deleted successfully.
    ADS C:\ProgramData\Temp:FC8FFA4E deleted successfully.
    ADS C:\ProgramData\Temp:880F0FEF deleted successfully.
    ADS C:\ProgramData\Temp:D 2C57161 deleted successfully.
    ADS C:\ProgramData\Temp:4A392155 deleted successfully.
    ADS C:\ProgramData\Temp:F1175E1D deleted successfully.
    ADS C:\ProgramData\Temp:ADF0A5DD deleted successfully.
    ADS C:\ProgramData\Temp:D 6A4A911 deleted successfully.
    ADS C:\ProgramData\Temp:661DC753 deleted successfully.
    ADS C:\ProgramData\Temp:3B4DA230 deleted successfully.
    ADS C:\ProgramData\Temp:3DF63AD7 deleted successfully.
    ADS C:\ProgramData\Temp:0E22C5DB deleted successfully.
    ADS C:\ProgramData\Temp:C10635F6 deleted successfully.
    ADS C:\ProgramData\Temp:ECFD9449 deleted successfully.
    ADS C:\ProgramData\Temp:B9F8237A deleted successfully.
    ADS C:\ProgramData\Temp:5E9B629B deleted successfully.
    ADS C:\ProgramData\Temp:FC2E567F deleted successfully.
    ADS C:\ProgramData\Temp:A4CDE823 deleted successfully.
    ADS C:\ProgramData\Temp:AC0528D9 deleted successfully.
    ADS C:\ProgramData\Temp:3C846A5B deleted successfully.
    ADS C:\ProgramData\Temp:F2AF86D9 deleted successfully.
    ADS C:\ProgramData\Temp:8F067037 deleted successfully.
    ADS C:\ProgramData\Temp:4CF76F21 deleted successfully.
    ADS C:\ProgramData\Temp:FEF0DEE7 deleted successfully.
    ADS C:\ProgramData\Temp:2F141B68 deleted successfully.
    ADS C:\ProgramData\Temp:6444B424 deleted successfully.
    ADS C:\ProgramData\Temp:7547DA5B deleted successfully.
    ADS C:\ProgramData\Temp:51F17BB8 deleted successfully.
    ADS C:\ProgramData\Temp:C22674B6 deleted successfully.
    ADS C:\ProgramData\Temp:5D351BC6 deleted successfully.
    ADS C:\ProgramData\Temp:C8AC644A deleted successfully.
    ADS C:\ProgramData\Temp:70E897B5 deleted successfully.
    ADS C:\ProgramData\Temp:82FF14B1 deleted successfully.
    ADS C:\ProgramData\Temp:7B2BB690 deleted successfully.
    ADS C:\ProgramData\Temp:32FFF2D1 deleted successfully.
    ADS C:\ProgramData\Temp:FC420CE6 deleted successfully.
    ADS C:\ProgramData\Temp:8944C195 deleted successfully.
    ADS C:\ProgramData\Temp:A58B27C9 deleted successfully.
    ADS C:\ProgramData\Temp:190B5C6B deleted successfully.
    ADS C:\ProgramData\Temp:AA8AD2BF deleted successfully.
    ADS C:\ProgramData\Temp:569CEE83 deleted successfully.
    ADS C:\ProgramData\Temp:4F8B72C9 deleted successfully.
    ADS C:\ProgramData\Temp:4A966CC2 deleted successfully.
    ADS C:\ProgramData\Temp:1F7A10DD deleted successfully.
    ADS C:\ProgramData\Temp:7A032A04 deleted successfully.
    ADS C:\ProgramData\Temp:0ADB5110 deleted successfully.
    ADS C:\ProgramData\Temp:0656FCD2 deleted successfully.
    ADS C:\ProgramData\Temp:F5E90ED3 deleted successfully.
    ADS C:\ProgramData\Temp:EB333CFC deleted successfully.
    ADS C:\ProgramData\Temp:86D110BB deleted successfully.
    ADS C:\ProgramData\Temp:D 0DCD8D7 deleted successfully.
    ADS C:\ProgramData\Temp:85A0F6D2 deleted successfully.
    ADS C:\ProgramData\Temp:EC36F550 deleted successfully.
    ADS C:\ProgramData\Temp:B845F669 deleted successfully.
    ADS C:\ProgramData\Temp:AC95B5ED deleted successfully.
    ADS C:\ProgramData\Temp:FD000392 deleted successfully.
    ADS C:\ProgramData\Temp:B9E9A5F9 deleted successfully.
    ADS C:\ProgramData\Temp:A7DA2BCD deleted successfully.
    ADS C:\ProgramData\Temp:7C4DF735 deleted successfully.
    ADS C:\ProgramData\Temp:5AC256BC deleted successfully.
    ADS C:\ProgramData\Temp:FED25C29 deleted successfully.
    ADS C:\ProgramData\Temp:FC8E37E0 deleted successfully.
    ADS C:\ProgramData\Temp:2495D97A deleted successfully.
    ADS C:\ProgramData\Temp:17D88661 deleted successfully.
    ADS C:\ProgramData\Temp:0C9CD455 deleted successfully.
    ADS C:\ProgramData\Temp:66FC2E6F deleted successfully.
    ADS C:\ProgramData\Temp:6017A808 deleted successfully.
    ADS C:\ProgramData\Temp:1A8BB29B deleted successfully.
    ADS C:\ProgramData\Temp:F44D3C53 deleted successfully.
    ADS C:\ProgramData\Temp:D FC5A2B2 deleted successfully.
    ADS C:\ProgramData\Temp:BE5EC04C deleted successfully.
    ADS C:\ProgramData\Temp:AEABFEC4 deleted successfully.
    ADS C:\ProgramData\Temp:99A29126 deleted successfully.
    ADS C:\ProgramData\Temp:596E2371 deleted successfully.
    ADS C:\ProgramData\Temp:FBE5FDB9 deleted successfully.
    ADS C:\ProgramData\Temp:89CF6F9C deleted successfully.
    ADS C:\ProgramData\Temp:4F7D133D deleted successfully.
    ADS C:\ProgramData\Temp:43D34EF3 deleted successfully.
    ADS C:\ProgramData\Temp:2E49FF93 deleted successfully.
    ADS C:\ProgramData\Temp:F19A4790 deleted successfully.
    ADS C:\ProgramData\Temp:C81D3839 deleted successfully.
    ADS C:\ProgramData\Temp:7A0FEE87 deleted successfully.
    ADS C:\ProgramData\Temp:A745DB5D deleted successfully.
    ADS C:\ProgramData\Temp:FAFEC4B9 deleted successfully.
    ADS C:\ProgramData\Temp:AF54CFFD deleted successfully.
    ADS C:\ProgramData\Temp:7AF9CAEB deleted successfully.
    ADS C:\ProgramData\Temp:6F1F66C0 deleted successfully.
    ADS C:\ProgramData\Temp:5A0DD071 deleted successfully.
    ADS C:\ProgramData\Temp:1A5207FA deleted successfully.
    ADS C:\ProgramData\Temp:9C8D5426 deleted successfully.
    ADS C:\ProgramData\Temp:89A5891E deleted successfully.
    ADS C:\ProgramData\Temp:D 93AABC7 deleted successfully.
    ADS C:\ProgramData\Temp:0E636D62 deleted successfully.
    ADS C:\ProgramData\Temp:FD2BFC89 deleted successfully.
    ADS C:\ProgramData\Temp:E56502D3 deleted successfully.
    ADS C:\ProgramData\Temp:A4076A3B deleted successfully.
    ADS C:\ProgramData\Temp:F0AB86C0 deleted successfully.
    ADS C:\ProgramData\Temp:D 1979811 deleted successfully.
    ADS C:\ProgramData\Temp:8CE646EE deleted successfully.
    ADS C:\ProgramData\Temp:6AF67671 deleted successfully.
    ADS C:\ProgramData\Temp:48081133 deleted successfully.
    ADS C:\ProgramData\Temp:4A77A28B deleted successfully.
    ADS C:\ProgramData\Temp:E1CC2D5E deleted successfully.
    ADS C:\ProgramData\Temp:D 46ECFD5 deleted successfully.
    ADS C:\ProgramData\Temp:0C5BC70E deleted successfully.
    ADS C:\ProgramData\Temp:E51234A9 deleted successfully.
    ADS C:\ProgramData\Temp:A8ADE5D8 deleted successfully.
    ADS C:\ProgramData\Temp:737160C1 deleted successfully.
    ADS C:\ProgramData\Temp:640EA6E8 deleted successfully.
    ADS C:\ProgramData\Temp:28476D43 deleted successfully.
    ADS C:\ProgramData\Temp:B321E944 deleted successfully.
    ADS C:\ProgramData\Temp:A8F2382B deleted successfully.
    ADS C:\ProgramData\Temp:3BF63E4A deleted successfully.
    ADS C:\ProgramData\Temp:335117B1 deleted successfully.
    ADS C:\ProgramData\Temp:3D36932D deleted successfully.
    ADS C:\ProgramData\Temp:9547F1DB deleted successfully.
    ADS C:\ProgramData\Temp:FDC41D2C deleted successfully.
    ADS C:\ProgramData\Temp:97C4F81F deleted successfully.
    ADS C:\ProgramData\Temp:E07EA07E deleted successfully.
    ADS C:\ProgramData\Temp:93F3E4C9 deleted successfully.
    ADS C:\ProgramData\Temp:EF4FB3C5 deleted successfully.
    ADS C:\ProgramData\Temp:90865A6D deleted successfully.
    ADS C:\ProgramData\Temp:5A437AC3 deleted successfully.
    ADS C:\ProgramData\Temp:45F3AD49 deleted successfully.
    ADS C:\ProgramData\Temp:3A78F62C deleted successfully.
    ========== COMMANDS ==========
    HOSTS file reset successfully

    [EMPTYTEMP]

    User: Administrator

    User: All Users

    User: AppData

    User: Default
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 33170 bytes

    User: Default User
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 0 bytes

    User: Public

    User: Rose
    ->Temp folder emptied: 9449299 bytes
    ->Temporary Internet Files folder emptied: 1635866 bytes
    ->Java cache emptied: 55933291 bytes
    ->FireFox cache emptied: 52534467 bytes
    ->Flash cache emptied: 3374 bytes

    %systemdrive% .tmp files removed: 0 bytes
    %systemroot% .tmp files removed: 0 bytes
    %systemroot%\System32 .tmp files removed: 0 bytes
    %systemroot%\System32 (64bit) .tmp files removed: 0 bytes
    %systemroot%\System32\drivers .tmp files removed: 0 bytes
    Windows Temp folder emptied: 2432 bytes
    %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 85347 bytes
    RecycleBin emptied: 6043216186 bytes

    Total Files Cleaned = 5 877,00 mb


    [EMPTYFLASH]

    User: Administrator

    User: All Users

    User: AppData

    User: Default

    User: Default User

    User: Public

    User: Rose
    ->Flash cache emptied: 0 bytes

    Total Flash Files Cleaned = 0,00 mb


    OTL by OldTimer - Version 3.2.22.3 log created on 05082011_094749

    Files\Folders moved on Reboot...
    C:\Users\Rose\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

    Registry entries deleted on Reboot...
    8 Mai 2011 10:01:34

    [:_sebastien_:5]


    Télécharge TFC par OldTimer impérativement sur ton Bureau:

  • Faites un double clic sur TFC.exe pour le lancer.
  • L'outil va fermer tous les programmes lors de son exécution, donc vérifiez que vous avez sauvegardé tout votre travail en cours avant de commencer.
  • Cliquez sur le bouton Start pour lancer le processus. Selon la fréquence à laquelle vous supprimez vos fichiers temporaires, cela peut durer de quelques secondes à une minute ou deux. Laissez le programme s'exécuter sans l'interrompre.
  • Lorsqu'il a terminé, l'outil devrait faire redémarrer votre système.




    Si tu le possède déjà, passe l'étape de l'installation et va directement à la mise à jour

    Télécharge MalwareByte's Anti-Malware sur ton Bureau.



  • Installe-le en double-cliquant sur le fichier Download_mbam-setup.exe.
    Une fois l'installation et la mise à jour effectuées :



  • Exécute maintenant MalwareByte's Anti-Malware. Si cela n'est pas déjà fait, sélectionne "Exécuter un examen rapide".
  • Afin de lancer la recherche, clic sur " Rechercher ".
  • Une fois le scan terminé, une fenêtre s'ouvre, clic sur OK. Deux possibilités s'offrent à toi :
  • Si le programme n'a rien trouvé, appuie sur OK. Un rapport va apparaître, ferme-le.
  • Si des infections sont présentes, clic sur "Afficher les résultats"
    puis sur "Supprimer la sélection".

    Enregistre le rapport sur ton Bureau.
  • Fais redémarrer ton ordinateur normalement et poste le rapport dans ta prochaine réponse.

    REMARQUE : Si MalwareByte's Anti-Malware a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok.
    8 Mai 2011 10:17:58

    Ci-dessous le rapport MBAM

    Malwarebytes' Anti-Malware 1.46
    www.malwarebytes.org

    Version de la base de données: 4052

    Windows 6.1.7601 Service Pack 1
    Internet Explorer 9.0.8112.16421

    08/05/2011 10:12:23
    mbam-log-2011-05-08 (10-12-23).txt

    Type d'examen: Examen rapide
    Elément(s) analysé(s): 123037
    Temps écoulé: 4 minute(s), 17 seconde(s)

    Processus mémoire infecté(s): 0
    Module(s) mémoire infecté(s): 0
    Clé(s) du Registre infectée(s): 0
    Valeur(s) du Registre infectée(s): 0
    Elément(s) de données du Registre infecté(s): 0
    Dossier(s) infecté(s): 0
    Fichier(s) infecté(s): 1

    Processus mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Module(s) mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Clé(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Valeur(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Elément(s) de données du Registre infecté(s):
    (Aucun élément nuisible détecté)

    Dossier(s) infecté(s):
    (Aucun élément nuisible détecté)

    Fichier(s) infecté(s):
    C:\Program Files (x86)\Mozilla Firefox\components\ISuperSearchXPCOM.xpt (Adware.SuperSearch) -> Quarantined and deleted successfully.
    8 Mai 2011 10:31:53

    Ben écoute il va très bien!! un grand grand merci pour ton aide super efficace, j'aurais une dernière question, est-il possible de savoir comment j'ai attrapé cette "chose" malveillante? et qu'est ce que c'est? (virus? troyen? ver?...
    8 Mai 2011 10:48:30

    :D 
    En gros Tu avais pris un malware qui s'installe par les toolbars Conduits en installant un programme....

    Tu n'es plus infectée après avoir fais ce qui suit:

  • Double clique sur OTL.exe et clique sur le bouton purge outils
    Sous Windows Vista/7, faire un clic droit sur OTL.exe puis choisir "Exécuter en tant qu'Administrateur" pour lancer l'outil.
  • OTL va supprimer tous les logiciels qu'on a utilisés et faire redémarrer ton ordinateur.

    Quelques conseils en vracs
    Il faut toujours mettre à jour Internet Explorer. : IE 8 Même si tu utilises Firefox

    Il faut modifier tous les mots de passe importants.
    De nos jours, la plupart des nuisibles sont créés dans le seul but de voler des informations personnelles et/ou des mots de passe.
    Je te conseille de modifier tous les mots de passe importants comme ceux concernant la banque, les sites marchands, les réseaux sociaux, etc...
    Il est très important de créer des mots de passe solides et d'utiliser un mot de passe différent pour chaque site.

    Il faut sécuriser Firefox: Certaines extensions me semblent presque indispensables:

    Adblock Plus https://addons.mozilla.org/fr/firefox/addon/1865
    NoScript https://addons.mozilla.org/fr/firefox/addon/noscript/
    WOT https://addons.mozilla.org/fr/firefox/addon/wot-safe-br...


    Proscrire l'utilisation de cracks, keygens et autres warez!
    Proscrire l'utilisation de P2P illicite!
    Azureus, BitTorrent, uTorrent:

    queenjulie Peux tu Ajouter [Résolu] au titre. Pour cela :
    Clique, sur ton premier message, sur le bouton "Editer"
    Rajoute la mention [RESOLU] à ton titre
    Clique ensuite sur "Valider votre message"

    Il ne me reste plus qu'à te souhaiter un bon Dimanche et un bon surf!!!!

    8 Mai 2011 11:09:41

    En ce qui concerne l'adresse pour NoScript et WOT, j'ai comme réponse erreur 404 page introuvable, je n'ai installé que Adblock Plus
    8 Mai 2011 11:14:40

    :D 

    J'ai changé les liens c'est bon maintenant
    8 Mai 2011 11:31:51

    Dernière petite chose, en installant no script il me dit que java est partiellement autorisé, ce qui fait que je ne peux pas installer WOT. J'ai autoriser pour info du net, mais pour le reste comment je fais?
    8 Mai 2011 11:40:07

    OK bon dimanche encore merci pour tout
    11 Novembre 2012 11:05:46

    hackinginterdit a dit :
    Bonjour

    Tu peux recommencer tu n'as pas tout copier ce qui était dans le cadre !C'est bien écrit :
    Sélectionne très précisément tout ce qui est dans le cadre ci dessous

    Tu copies depuis RAS jusqu'a [EMPTYFLASH] et tu fais coller sous personnalisation


    salut, je fais toutes tes étapes même si je pense que celle ou jecopie le script est inutile mais a chaque fois j'arrive a retourner sur mozilla, internet... mais 10 minutes plus tard le problème réapparait! que faire?
    a c 547 8 Sécurité
    11 Novembre 2012 18:18:45

    Bonsoir,

    Vous souhaitez une prise en charge ?
    Merci de créer votre propre sujet !
    Chaque pc est différent ;) 

    Je ferme ici.
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS