Impossible d’acceder à internet avec mes navigateurs 2014-04-15T13:11:47+00:00

SOSVirus : Dépannage PC Gratuit Support Aide à la désinfection – Forum Virus Sécurité Impossible d’acceder à internet avec mes navigateurs

  • Auteur
    Messages
  • Photo du profil de TenpixTenpix
    Participant
    Post count: 0

    Bonjour SoS Virus,
    je tiens avant tout à dire “respect“,pour ce que vous faites, c’est vraiment sympa.

    Il y avait un ralentissement sur mon système et une redirection à cause de iminent search, se qui me bloquais toute connexion .

    En cherchant des solutions sur internet, je suis tombé sur vôtre site web par hasard. J’ai donc effectué la manip de la page d’accueil (celle en instruction) : viewtopic.php?f=241&t=18.

    Graĉe à ça j’ai réussi à supprimer Iminent, sauf que je n’arrive toujours pas à accéder à internet, peut importe le navigateur je j’utilise(chrome, mozzilla firefox et internet explorer).

    La page reste blanche et l’icône de chargement tourne dans le vide.

    J’ai tout essayé et rien ne marche.
    Je vous envoie donc mon rapport ZHPDiag en espérant avoir unpeu d’aide.

    Merci d’avance.

    [spoiler:3uvpumzz]~ Rapport de ZHPDiag v2014.4.14.26 – Nicolas Coolman (14/04/2014)
    ~ Lancé par pauline (15/04/2014 14:47:34)
    ~ Adresse du Site Web http://nicolascoolman.webs.com” onclick=”window.open(this.href);return false;
    ~ Forums gratuits d'Assistance à la désinfection : http://nicolascoolman.webs.com/apps/links/” onclick=”window.open(this.href);return false;
    ~ Traduit par Nicolas Coolman
    ~ Etat de la version :
    ~ Liste blanche : Activée par le programme
    ~ Elévation des Privilèges : OK
    ~ User Account Control (UAC): Activate by user

    —\ Navigateurs Internet
    MSIE: Internet Explorer v7.0.6000.16982
    MFIE: Mozilla Firefox 28.0 (Defaut)

    —\ Informations sur les produits Windows
    ~ Langage: Français
    Windows Vista (TM) Home Premium, 32-bit (Build 6000)
    Windows Server License Manager Script : OK
    ~ Windows Operating System – Vista, OEM_SLP channel
    System Locked Preinstallation (OEM_SLP) : OK
    Windows ID Activation : OK
    ~ Windows Partial Key : RJ34F
    Windows License : OK
    Windows Automatic Updates : OK

    —\ Logiciels de protection du système
    Malwarebytes Anti-Malware version 1.75.0.1300

    —\ Logiciels d'optimisation du système
    CCleaner v4.12 =>.Piriform Ltd

    —\ Logiciels de partage PeerToPeer

    —\ Surveillance de Logiciels
    Adobe Reader 7.0.9 – Français

    —\ Informations sur le système
    ~ Processor: x86 Family 6 Model 15 Stepping 13, GenuineIntel
    ~ Operating System: 32 Bits
    Boot mode: Normal (Normal boot)
    Total RAM: 2045 MB (47% free)
    System Restore: Activé (Enable)
    System drive C: has 80 GB (68%) free of 116 GB

    —\ Mode de connexion au système
    ~ Computer Name: PC-DE-PAULINE
    ~ User Name: pauline
    ~ All Users Names: pauline, Administrateur,
    ~ Unselected Option: None
    Logged in as Administrator

    —\ Variables d'environnement
    ~ System Unit : C:
    ~ %AppZHP% : C:UserspaulineAppDataRoamingZHP
    ~ %AppData% : C:UserspaulineAppDataRoaming
    ~ %Desktop% : C:UserspaulineDesktop
    ~ %Favorites% : C:UserspaulineFavorites
    ~ %LocalAppData% : C:UserspaulineAppDataLocal
    ~ %StartMenu% : C:UserspaulineAppDataRoamingMicrosoftWindowsStart Menu
    ~ %Windir% : C:Windows
    ~ %System% : C:WindowsSystem32

    —\ Enumération des unités disques
    C: Hard drive, Flash drive, Thumb drive (Free 80 Go of 116 Go)
    D: Floppy drive, Flash card reader, USB Key (Free 3 Go of 4 Go)
    E: Hard drive, Flash drive, Thumb drive (Free 115 Go of 115 Go)
    F: CD-ROM drive (Not Inserted)

    —\ Etat du Centre de Sécurité Windows
    [HKLMSOFTWAREMicrosoftSecurity Center] UacDisableNotify: Modified
    ~ Security Center: 38 Legitimates Filtered in 00mn 00s

    —\ Recherche particulière de fichiers génériques
    [MD5.37440D09DEAE0B672A04DCCF7ABF06BE] – (.Microsoft Corporation – Explorateur Windows.) (.29/10/2013 – 10:02:48.) — C:WindowsExplorer.exe [2923520]
    [MD5.D4385B03E8CCCEE6F0EE249F827C1F3E] – (.Microsoft Corporation – Application de démarrage de Windows.) (.02/11/2006 – 10:45:57.) — C:WindowsSystem32Wininit.exe [95744]
    [MD5.C7A318E74FEF945EBFF855C1513CD96C] – (.Microsoft Corporation – Extensions Internet pour Win32.) (.29/10/2013 – 10:10:55.) — C:WindowsSystem32wininet.dll [832512]
    [MD5.9F75392B9128A91ABAFB044EA350BAAD] – (.Microsoft Corporation – Application d'ouverture de session Windows.) (.02/11/2006 – 10:45:57.) — C:WindowsSystem32Winlogon.exe [308224]
    [MD5.5D24CAF8EFD924A875698FF28384DB8B] – (.Microsoft Corporation – Ancillary Function Driver for WinSock.) (.02/11/2006 – 09:58:43.) — C:Windowssystem32DriversAFD.sys [270336]
    [MD5.B35CFCEF838382AB6490B321C87EDF17] – (.Microsoft Corporation – ATAPI IDE Miniport Driver.) (.29/10/2013 – 10:02:59.) — C:Windowssystem32Driversatapi.sys [21560]
    [MD5.6C3A437FC873C6F6A4FC620B6888CB86] – (.Microsoft Corporation – CD-ROM File System Driver.) (.02/11/2006 – 09:30:50.) — C:Windowssystem32DriversCdfs.sys [70144]
    [MD5.8D1866E61AF096AE8B582454F5E4D303] – (.Microsoft Corporation – SCSI CD-ROM Driver.) (.02/11/2006 – 09:51:44.) — C:Windowssystem32DriversCdrom.sys [67072]
    [MD5.A7179DE59AE269AB70345527894CCD7C] – (.Microsoft Corporation – DFS Client MUP Surrogate Driver.) (.02/11/2006 – 09:31:04.) — C:Windowssystem32DriversDfsC.sys [74752]
    [MD5.0DB613A7E427B5663563677796FD5258] – (.Microsoft Corporation – High Definition Audio Bus Driver.) (.10/07/2007 – 14:53:04.) — C:Windowssystem32DriversHDAudBus.sys [53760]
    [MD5.1060F1377F395A242E27719440ECE602] – (.Microsoft Corporation – Pilote de port i8042.) (.02/11/2006 – 09:51:13.) — C:Windowssystem32Driversi8042prt.sys [54784]
    [MD5.10077C35845101548037DF04FD1A420B] – (.Microsoft Corporation – IP Network Address Translator.) (.02/11/2006 – 09:58:09.) — C:Windowssystem32DriversIpNat.sys [99840]
    [MD5.8AF705CE1BB907932157FAB821170F27] – (.Microsoft Corporation – Windows NT SMB Minirdr.) (.28/10/2013 – 09:38:47.) — C:Windowssystem32DriversMRxSmb.sys [102400]
    [MD5.E3A168912E7EEFC3BD3B814720D68B41] – (.Microsoft Corporation – MBT Transport driver.) (.02/11/2006 – 09:57:20.) — C:Windowssystem32DriversnetBT.sys [184320]
    [MD5.37430AA7A66D7A63407ADC2C0D05E9F6] – (.Microsoft Corporation – Pilote du système de fichiers NT.) (.28/10/2013 – 09:34:42.) — C:Windowssystem32Driversntfs.sys [1060920]
    [MD5.0FA9B5055484649D63C303FE404E5F4D] – (.Microsoft Corporation – Pilote de port parallèle.) (.02/11/2006 – 09:51:30.) — C:Windowssystem32DriversParport.sys [79360]
    [MD5.68B0019FEE429EC49D29017AF937E482] – (.Microsoft Corporation – RAS L2TP mini-port/call-manager driver.) (.18/04/2007 – 06:32:12.) — C:Windowssystem32DriversRasl2tp.sys [74752]
    [MD5.E8BD98D46F2ED77132BA927FCCB47D8B] – (.Microsoft Corporation – Microsoft RDP Device redirector.) (.02/11/2006 – 10:03:00.) — C:Windowssystem32Driversrdpdr.sys [242688]
    [MD5.AC0D90738ADB51A6FD12FF00874A2162] – (.Microsoft Corporation – SMB Transport driver.) (.02/11/2006 – 09:57:10.) — C:Windowssystem32Driverssmb.sys [66048]
    [MD5.AB4FDE8AF4A0270A46A001C08CBCE1C2] – (.Microsoft Corporation – TDI Translation Driver.) (.02/11/2006 – 09:57:35.) — C:Windowssystem32Driverstdx.sys [68096]
    [MD5.80DC0C9BCB579ED9815001A4D37CBFD5] – (.Microsoft Corporation – Pilote de cliché instantané du volume.) (.29/10/2013 – 10:02:57.) — C:Windowssystem32Driversvolsnap.sys [211000]
    ~ Generic Processes: Scanned in 00mn 00s

    —\ Etat des fichiers cachés (Caché/Total)
    ~ Mes images (My Pictures) : 1/2
    ~ Mes musiques (My Musics) : 1/2
    ~ Mes Videos (My Videos) : 1/2
    ~ Mes Favoris (My Favorites) : 1/22
    ~ Mes Documents (My Documents) : 1/3
    ~ Mon Bureau (My Desktop) : 1/127
    ~ Menu demarrer (Programs) : 1/23
    ~ Hidden Files: Scanned in 00mn 00s

    —\ Processus lancés
    [MD5.D1D5DAB39DCB4BE0359943738D87409B] – (.Malwarebytes Corporation – Malwarebytes Anti-Malware.) — C:Program FilesMalwarebytes' Anti-Malwarembamgui.exe [532040] [PID.2420]
    [MD5.EB11CD296594C6FDE57C9407F239BFBC] – (.IObit – Advanced SystemCare 7 Monitor.) — C:Program FilesIObitAdvanced SystemCare 7Monitor.exe [781088] [PID.3156]
    [MD5.AFD400AEBCAB252C99E60991FF00D9D2] – (.Pas de propriétaire – KeNotify MFC Application.) — C:Program FilesTOSHIBAUtilitiesKeNotify.exe [34352] [PID.3956]
    [MD5.1FD7BBB8C48017277F552DE09AE9BF1F] – (.TOSHIBA Corporation – SmoothView.) — C:Program FilesTOSHIBASmoothViewSmoothView.exe [509496] [PID.3256]
    [MD5.DEFFED4DDF802E2A64AB06D4EDCCB84B] – (.Chicony – traybar.) — C:Program FilesCamera Assistant Software for Toshibatraybar.exe [413696] [PID.888]
    [MD5.2D1389E05A807D956829F44BD4B60389] – (.Symantec Corporation – LiveUpdate Notice Service.) — C:Program FilesCommon FilesSymantec SharedPIF{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}PIFSvc.exe [583048] [PID.2140]
    [MD5.085CC7AFD83E8C39068CFDCDE2DA9640] – (.F-Secure Corporation – F-Secure Settings and Statistics.) — C:Program FilesF-SecurecommonFSM32.exe [302832] [PID.3944]
    [MD5.EDBBDEBE0FDF577A647216C452773A90] – (.IObit – Advanced SystemCare 7.) — C:Program FilesIObitAdvanced SystemCare 7ASCTray.exe [2288928] [PID.1972]
    [MD5.5F366CB7F83A5DBE8F50EF989C15DFE2] – (…) — C:Program FilesCamera Assistant Software for ToshibaCEC_MAIN.exe [4813312] [PID.840]
    [MD5.6C37AD8C2212D3DDC456BB48A3AA398E] – (.Adobe Systems Incorporated – Adobe Reader 7.0.) — C:Program FilesAdobeAcrobat 7.0ReaderAcroRd32.exe [71288] [PID.5992]
    [MD5.002835A0AFFF66D5A7B7FB266A6AA368] – (.TOSHIBA – CD/DVD Drive Acoustic Silencer.) — C:PROGRAM FILESTOSHIBATOSCDSPDTOSCDSPD.exe [413696] [PID.5156]
    [MD5.C7C70AE1DE8F0FCC8F2431C5D15632DF] – (.Intel Corporation – Event Monitor User Notification Tool.) — C:PROGRAM FILESINTELINTEL MATRIX STORAGE MANAGERIAANOTIF.exe [174872] [PID.3664]
    [MD5.F466CA13D7025A3D53AB2A905D345819] – (.Toshiba – Vista Registration.) — C:PROGRAM FILESTOSHIBAREGISTRATIONTOSHIBAREGISTRATION.exe [571024] [PID.4760]
    [MD5.E681281D9BFC9D45D3B72532717E5880] – (.Advanced Micro Devices Inc. – Catalyst Control Center: Monitoring program.) — C:Program FilesATI TechnologiesATI.ACECore-StaticMOM.exe [49152] [PID.5804]
    [MD5.E1FAAF7915BC07352CCF1DFF37058414] – (.TOSHIBA – TOSHIBA Online Product Information.) — C:PROGRAM FILESTOSHIBATOSHIBA ONLINE PRODUCT INFORMATIONTOPI.exe [581632] [PID.5832]
    [MD5.EEAB9DF84B132F78C909CD8061A4076C] – (.TOSHIBA CORPORATION – ConfigFree(TM) tray.) — C:Program FilesTOSHIBAConfigFreeNDSTray.exe [1372160] [PID.3648]
    [MD5.6D7EA1B6C6DF62E016605B381F411AC4] – (.TOSHIBA Corporation – TOSHIBA Flash Cards.) — C:Program FilesTOSHIBAFLASHCARDSTCRDMAIN.exe [538744] [PID.5768]
    [MD5.F5EF0675D6EC37F81F8794AEC9630BE0] – (.TOSHIBA Corporation – TOSHIBA Power Saver.) — C:Program FilesTOSHIBAPOWER SAVERTPWRMAIN.exe [411192] [PID.4656]
    [MD5.866CD9A4BF30B79B3BEC2D4E2ED2F059] – (.Realtek Semiconductor – HD Audio Control Panel.) — C:WindowsRtHDVCpl.exe [4702208] [PID.1780]
    [MD5.4D59B0B63AB11345E36D07D3A4CDFC22] – (.Synaptics, Inc. – Synaptics TouchPad Enhancements.) — C:Program FilesSynapticsSynTPSynTPEnh.exe [898344] [PID.4876]
    [MD5.2C0030E71313C16424E9EA49C6DFB006] – (.TOSHIBA CORPORATION – ConfigFree Switch Manager.) — C:Program FilesTOSHIBAConfigFreeCFSwMgr.exe [405504] [PID.5540]
    [MD5.25CA1677AAA3CDC99CD4FCF940886F3C] – (.ATI Technologies Inc. – Catalyst Control Centre: Host application.) — C:Program FilesATI TechnologiesATI.ACECore-StaticCCC.exe [49152] [PID.5372]
    [MD5.05CB3DA78A4BBD9B799A5957F9D101CC] – (.Microsoft Corporation – Console IME.) — C:Windowssystem32conime.exe [68608] [PID.4540]
    [MD5.775DDB699B40C42E1BD799CC0EBF3528] – (.Nicolas Coolman – ZHPDiag.) — C:Program FilesZHPDiagZHPDiag.exe [8215552] [PID.5400]
    [MD5.6C856C581ACE1785CE3FC2414E9859A3] – (.IObit – Advanced SystemCare Service.) — C:Program FilesIObitAdvanced SystemCare 7ASCService.exe [881952] [PID.1032]
    [MD5.7EF57375636991F794BF40B522A8E7EF] – (.Microsoft Corporation – Windows Presentation Foundation Font Cache.) — C:WindowsMicrosoft.NetFrameworkv3.0WPFPresentationFontCache.exe [36864] [PID.1088]
    [MD5.CED8A3D0DA7803CC755A21D78D326139] – (.ATI Technologies Inc. – ATI External Event Utility EXE Module.) — C:Windowssystem32Ati2evxx.exe [610304] [PID.1264]
    [MD5.A1DCD30534835CB67733AD00175125A6] – (.Microsoft Corporation – Service de gestion des licences Microsoft.) — C:Windowssystem32SLsvc.exe [2605568] [PID.1476]
    [MD5.39E435C90C9C4F780FA0ED05CA3C3A1B] – (.Agere Systems – Agere Soft Modem Call Progress Service.) — C:Windowssystem32agrsmsvc.exe [9216] [PID.1384]
    [MD5.C82162949BBA6CC5D006C7BD008F3CF1] – (.TOSHIBA CORPORATION – Service of ConfigFree..) — C:Program FilesTOSHIBAConfigFreeCFSvcs.exe [40960] [PID.1888]
    [MD5.F9D0DAC6B2DBA260945671287F6AD7FC] – (.F-Secure Corporation – F-Secure Anti-Virus Scanning Service.) — C:Program FilesF-SecureAnti-Virusfsgk32st.exe [220912] [PID.1832]
    [MD5.BAE63A772E2149793DCEF970B381F7BB] – (.F-Secure Corporation – F-Secure Management Agent.) — C:Program FilesF-SecureCommonFSMA32.exe [188144] [PID.1244]
    [MD5.B062ACD6EE9ACB6714ADE76B4AE33965] – (.F-Secure Corporation – F-Secure Gatekeeper Handler 32-bit.) — C:Program FilesF-SecureAnti-VirusFSGK32.exe [585256] [PID.1852]
    [MD5.582F2D900A3AC34C98FBDC2C0ABEF6B9] – (.Intel Corporation – RAID Monitor.) — C:Program FilesIntelIntel Matrix Storage ManagerIAANTMon.exe [355096] [PID.2060]
    [MD5.CF1C7DAF9F18A79B7B33B0DF0AF222AD] – (.F-Secure Corporation – F-Secure DLL Hosting Plugin.) — C:Program FilesF-SecureCommonFSHDLL32.exe [89840] [PID.2080]
    [MD5.65085456FD9A74D7F1A999520C299ECB] – (.Malwarebytes Corporation – Malwarebytes Anti-Malware.) — C:Program FilesMalwarebytes' Anti-Malwarembamscheduler.exe [418376] [PID.2172]
    [MD5.E0D7732F2D2E24B2DB3F67B6750295B8] – (.Malwarebytes Corporation – Malwarebytes Anti-Malware.) — C:Program FilesMalwarebytes' Anti-Malwarembamservice.exe [701512] [PID.2244]
    [MD5.B5D974C1FD078A68C7536C561B031D39] – (.Symantec Corporation – Automatic LiveUpdate Scheduler Service.) — C:Program FilesSymantecLiveUpdateALUSchedulerSvc.exe [554352] [PID.2280]
    [MD5.1F9A37B633C11EBE5D68137645FA1337] – (.TOSHIBA Corporation – TOSHIBA Navi Support Service.) — C:Program FilesTOSHIBATOSHIBA HD DVD PLAYERTNaviSrv.exe [77824] [PID.2488]
    [MD5.D540858E65BFA6FDED41AD2495ECE344] – (.TOSHIBA Corporation – TDCSrv Application.) — C:Windowssystem32TODDSrv.exe [114688] [PID.2592]
    [MD5.6A54C28B53C6B50D333C8EE974C6B208] – (.TOSHIBA Corporation – TOSHIBA Power Saver.) — C:Program FilesTOSHIBAPower SaverTosCoSrv.exe [427576] [PID.2608]
    [MD5.87843B2DA99051BC66E2D6C211E3D6A4] – (.TOSHIBA CORPORATION – TOSHIBA Bluetooth Service.) — c:Program FilesToshibaBluetooth Toshiba StackTosBtSrv.exe [125048] [PID.2628]
    [MD5.332D341D92B933600D41953B08360DFB] – (.Ulead Systems, Inc. – ULCDRSvr.) — C:Program FilesCommon FilesUlead SystemsDVDULCDRSvr.exe [49152] [PID.2688]
    [MD5.5284128A9B183D1BBD8FB8DC6B52AF22] – (.F-Secure Corporation – F-Secure Network Request Broker.) — C:Program FilesF-SecureCommonFNRB32.exe [184048] [PID.3116]
    [MD5.9EE8B661C4672E44B64666704F2EAD70] – (.F-Secure Corporation – F-Secure Scanner Manager 32-bit.) — C:Program FilesF-SecureAnti-Virusfssm32.exe [1078312] [PID.3208]
    [MD5.E8998328796728DB1619EE314F4EA896] – (.F-Secure Corporation – F-Secure Installation Launcher.) — C:Program FilesF-SecureCommonFIH32.exe [130800] [PID.3360]
    [MD5.45303CDBC1FD8F8D371E726BF126F771] – (.F-Secure Corporation – F-Secure ORSP Service.) — C:Program FilesF-SecureORSP Clientfsorsp.exe [60352] [PID.3372]
    [MD5.6DC1C37884AACAA6741C246FB7B9A882] – (.F-Secure Corporation – F-Secure Internet Shield daemon.) — C:Program FilesF-SecureFWESProgramfsdfwd.exe [552688] [PID.3464]
    [MD5.FF73E3E94395D66D455EB0D602A0A639] – (.F-Secure Corporation – F-Secure Anti-Virus Handler.) — C:Program FilesF-SecureAnti-Virusfsav32.exe [539072] [PID.2928]
    ~ Processes Running: Scanned in 00mn 02s

    —\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
    C:UserspaulineAppDataRoamingMozillaFirefoxProfilesx20pkw0h.defaultprefs.js
    C:UserspaulineAppDataRoamingMozillaFirefoxProfilesx20pkw0h.defaultuser.js
    M2 – MFEP: prefs.js [pauline – x20pkw0h.defaultascsurfingprotection@iobit.com] [] Advanced SystemCare Surfing Protection v1.0 (..)
    ~ Firefox Browser: 1 Legitimates Filtered in 00mn 00s

    —\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
    R4 – HKCUSOFTWAREMicrosoftInternet ExplorerPhishingFilter,Enabled = 0
    ~ IE Browser: 15 Legitimates Filtered in 00mn 00s

    —\ Internet Explorer, Proxy Management (R5)
    R5 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyServer = no key
    R5 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyEnable = 0
    R5 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,MigrateProxy = 1
    R5 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,EnableHttp1_1 = 1
    R5 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,AutoConfigProxy = wininet.dll
    ~ Proxy management: Scanned in 00mn 00s

    —\ Analyse des lignes F0, F1, F2, F3 – IniFiles, Autoloading programs
    F2 – REG:system.ini: USERINIT=C:Windowssystem32userinit.exe,
    F2 – REG:system.ini: Shell=C:Windowsexplorer.exe
    F2 – REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL “sysdm.cpl”
    ~ Keys: Scanned in 00mn 00s

    —\ Hosts file redirection (O1)
    ~ Le fichier hosts est sain (The hosts file is clean).
    ~ Hosts File: Scanned in 00mn 00s
    ~ Nombre de lignes (Lines number): 20

    —\ Internet Explorer Toolbars (O3)
    O3 – Toolbar: Browsing Protection Toolbar – [HKLM]{265EEE8E-3228-44D3-AEA5-F7FDF5860049} . (.F-Secure Corporation – Litmus.) — C:Program FilesF-SecureNRSiescriptbaselitmus.dll
    ~ Toolbar: Scanned in 00mn 00s

    —\ Autres liens utilisateurs (O4)
    O4 – GSDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation – Firefox.) — C:Program FilesMozilla Firefoxfirefox.exe
    O4 – GSProgram [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation – Firefox.) — C:Program FilesMozilla Firefoxfirefox.exe
    O4 – GSQuickLaunch [pauline]: Mozilla Firefox.lnk . (.Mozilla Corporation – Firefox.) — C:Program FilesMozilla Firefoxfirefox.exe
    O4 – GSProgram [pauline]: Internet Explorer.lnk . (.Microsoft Corporation – Internet Explorer.) — C:Program FilesInternet Exploreriexplore.exe
    O4 – GSSystemTools [pauline]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation – Internet Explorer.) — C:Program FilesInternet Exploreriexplore.exe
    ~ Global Startup: 45 Legitimates Filtered in 00mn 00s

    —\ Applications lancées au démarrage du système (O4)
    O4 – HKLM..Run: [Windows Defender] . (.Microsoft Corporation – Windows Defender User Interface.) — C:Program FilesWindows DefenderMSASCui.exe
    O4 – HKLM..Run: [KeNotify] . (.Pas de propriétaire – KeNotify MFC Application.) — C:Program FilesTOSHIBAUtilitiesKeNotify.exe
    O4 – HKLM..Run: [SVPWUTIL] . (.TOSHIBA – SVPWUTIL Application.) — C:Program FilesTOSHIBAUtilitiesSVPWUTIL.exe
    O4 – HKLM..Run: [HSON] . (.TOSHIBA Corporation – HotStartOn.) — C:Program FilesTOSHIBATBSHSON.exe
    O4 – HKLM..Run: [SmoothView] . (.TOSHIBA Corporation – SmoothView.) — C:Program FilesToshibaSmoothViewSmoothView.exe
    O4 – HKLM..Run: [Skytel] . (.Realtek Semiconductor Corp. – Realtek Voice Manager.) — C:WindowsSkytel.exe =>.Realtek Semiconductor Corp
    O4 – HKLM..Run: [Camera Assistant Software] . (.Chicony – traybar.) — C:Program FilesCamera Assistant Software for Toshibatraybar.exe
    O4 – HKLM..Run: [Symantec PIF AlertEng] . (.Symantec Corporation – LiveUpdate Notice Service.) — C:Program FilesCommon FilesSymantec SharedPIF{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}PIFSvc.exe
    O4 – HKLM..Run: [F-Secure Manager] . (.F-Secure Corporation – F-Secure Settings and Statistics.) — C:Program FilesF-SecureCommonFSM32.exe
    O4 – HKLM..Run: [F-Secure TNB] . (.F-Secure Corporation – TNBUtil.) — C:Program FilesF-SecureFSGUITNBUtil.exe
    O4 – HKCU..Run: [Sidebar] . (.Microsoft Corporation – Volet Windows.) — C:Program FilesWindows Sidebarsidebar.exe =>.Microsoft Corporation
    O4 – HKCU..Run: [Advanced SystemCare 7] . (.IObit – Advanced SystemCare 7.) — C:Program FilesIObitAdvanced SystemCare 7ASCTray.exe
    O4 – HKUSS-1-5-19..Run: [Sidebar] . (.Microsoft Corporation – Volet Windows.) — C:Program FilesWindows SidebarSidebar.exe =>.Microsoft Corporation
    O4 – HKUSS-1-5-19..Run: [WindowsWelcomeCenter] Clé orpheline
    O4 – HKUSS-1-5-20..Run: [Sidebar] . (.Microsoft Corporation – Volet Windows.) — C:Program FilesWindows SidebarSidebar.exe =>.Microsoft Corporation
    O4 – HKUSS-1-5-20..Run: [WindowsWelcomeCenter] Clé orpheline
    O4 – HKUSS-1-5-21-81199344-3148627307-3741899823-1000..Run: [Sidebar] . (.Microsoft Corporation – Volet Windows.) — C:Program FilesWindows Sidebarsidebar.exe =>.Microsoft Corporation
    O4 – HKUSS-1-5-21-81199344-3148627307-3741899823-1000..Run: [Advanced SystemCare 7] . (.IObit – Advanced SystemCare 7.) — C:Program FilesIObitAdvanced SystemCare 7ASCTray.exe
    ~ Application: Scanned in 00mn 00s

    —\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
    O9 – Extra button: Console Java (Sun) – {08B0E5C0-4FCB-11CF-AAA5-00401C608501} — Clé orpheline
    O9 – Extra button: eBay – Achetez, Vendez – {76577871-04EC-495E-A12B-91F7C3600AFA} . (…) — C:ToshibaWebshopseBayebay.ico =>Toolbar.eBay
    O9 – Extra button: Amazon.fr – {8A918C1D-E123-4E36-B562-5C1519E434CE} . (…) — C:ToshibaWebshopsAmazonamazon.ico
    O9 – Extra button: eBay – {C08CAF1D-C0A3-40D5-9970-06D067EAC017} — Clé orpheline =>Toolbar.eBay
    ~ IE Extra Buttons: Scanned in 00mn 00s

    —\ Modification Domaine/Adresses DNS (O17)
    O17 – HKLMSystemCCSServicesTcpip..{82214AFF-D50A-450E-AE08-ADF5C278185E}: DhcpNameServer = 192.168.1.254
    O17 – HKLMSystemCCSServicesTcpip..{9735FFA9-80DC-47AD-A426-3E8F2E49CF20}: DhcpNameServer = 192.168.1.254
    O17 – HKLMSystemCCSServicesTcpip..{82214AFF-D50A-450E-AE08-ADF5C278185E}: DhcpDomain = bouyguesbox.fr
    O17 – HKLMSystemCCSServicesTcpip..{9735FFA9-80DC-47AD-A426-3E8F2E49CF20}: DhcpDomain = bouyguesbox.fr
    O17 – HKLMSystemCS1ServicesTcpip..{82214AFF-D50A-450E-AE08-ADF5C278185E}: DhcpNameServer = 192.168.1.254
    O17 – HKLMSystemCS1ServicesTcpip..{9735FFA9-80DC-47AD-A426-3E8F2E49CF20}: DhcpNameServer = 192.168.1.254
    O17 – HKLMSystemCS1ServicesTcpip..{82214AFF-D50A-450E-AE08-ADF5C278185E}: DhcpDomain = bouyguesbox.fr
    O17 – HKLMSystemCS1ServicesTcpip..{9735FFA9-80DC-47AD-A426-3E8F2E49CF20}: DhcpDomain = bouyguesbox.fr
    O17 – HKLMSystemCS3ServicesTcpip..{82214AFF-D50A-450E-AE08-ADF5C278185E}: DhcpNameServer = 192.168.1.254
    O17 – HKLMSystemCS3ServicesTcpip..{9735FFA9-80DC-47AD-A426-3E8F2E49CF20}: DhcpNameServer = 192.168.1.254
    O17 – HKLMSystemCS3ServicesTcpip..{82214AFF-D50A-450E-AE08-ADF5C278185E}: DhcpDomain = bouyguesbox.fr
    O17 – HKLMSystemCS3ServicesTcpip..{9735FFA9-80DC-47AD-A426-3E8F2E49CF20}: DhcpDomain = bouyguesbox.fr
    O17 – HKLMSystemCCSServicesTcpipParameters: DhcpNameServer = 192.168.1.254
    ~ Domain: Scanned in 00mn 00s

    —\ Protocole additionnel (O18)
    O18 – Handler: vbscript – {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation – Visionneuse HTML Microsoft (R).) — C:Windowssystem32mshtml.dll =>.Microsoft Corporation
    O18 – Filter: gzip – {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation – Extensions OLE32 pour Win32.) — C:Windowssystem32urlmon.dll
    ~ Protocole Additionnel: Scanned in 00mn 00s

    —\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
    O22 – SharedTaskScheduler: Component Categories cache daemon – {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation – Bibliothèque de l'interface utilisateur du.) — C:WindowsSystem32browseui.dll
    ~ STS/SSO: Scanned in 00mn 00s

    —\ Enumération Active Desktop & MHTML Editor (O24)
    O24 – Desktop General: BackupWallPaper – .(…) – C:TOSHIBAwallpaperswallpaper1.jpg
    O24 – Desktop General: WallPaper – .(…) – C:TOSHIBAwallpaperswallpaper1.jpg
    ~ Desktop Component: 4 Legitimates Filtered in 00mn 00s

    —\ Logiciels installés (O42)
    O42 – Logiciel: Webplayer – (.Kreapixel.) [HKLM] — {F750DB0E-D452-3108-63C9-FE16BC686741} =>Adware.SocialSkinz
    ~ Logic: 1 Legitimates Filtered in 00mn 00s

    —\ HKCU & HKLM Software Keys
    [HKCUSoftwareConduit] =>Toolbar.Conduit
    [HKLMSoftwarefree_soft_today] =>Adware.FreeSoftToday
    ~ Key Software: 155 Legitimates Filtered in 00mn 00s

    —\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
    O43 – CFD: 13/04/2014 – 20:32:36 – [0] —-D C:ProgramDataProductData
    O43 – CFD: 13/04/2014 – 16:59:29 – [0] —-D C:ProgramData{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
    ~ Program Folder: 120 Legitimates Filtered in 00mn 16s

    —\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
    O44 – LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] – 06/04/2014 – 12:24:46 –HA- . (…) — C:Windowswusa.lock [0]
    O44 – LFC:[MD5.3A77C18665A4C8428768CE186A5BC1EF] – 15/04/2014 – 09:56:51 —A- . (…) — C:WindowsSystem32rasctrnm.h [1820]
    O44 – LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] – 15/04/2014 – 10:15:42 —A- . (…) — C:asc_rdflag [0]
    O44 – LFC:[MD5.18DA737DD5122A475DA4948ED4643675] – 15/04/2014 – 10:23:46 —A- . (…) — C:WindowsSystem32Driversfsbts.sys [44240]
    O44 – LFC:[MD5.A84FB38DEE3F48B3C0DB9BCDC82D9D69] – 15/04/2014 – 12:57:35 —A- . (…) — C:Windowsntbtlog.txt [4186]
    ~ Files: 131 Legitimates Filtered in 00mn 16s

    —\ Derniers fichiers créés dans Windows Prefetcher (O45)
    O45 – LFCP:[MD5.83920BDD292AD279DC679A5B29EE13D6] – 06/04/2014 – 16:32:46 —A- – C:WindowsPrefetchCFMAIN.EXE-169D382A.pf
    O45 – LFCP:[MD5.936A5C0B6ACB06EF5EB28410A67C4599] – 14/04/2014 – 23:02:38 —A- – C:WindowsPrefetchALUSCHEDULERSVC.EXE-46534E5E.pf
    O45 – LFCP:[MD5.4B0D8790A68C50E0BDC75BEA003855F1] – 15/04/2014 – 10:21:02 —A- – C:WindowsPrefetchPIFSVC.EXE-123DED99.pf
    O45 – LFCP:[MD5.FBE61874BDD2B1D54341D936B46DC975] – 15/04/2014 – 11:03:42 —A- – C:WindowsPrefetchCEC_MAIN.EXE-B4BEC43C.pf
    O45 – LFCP:[MD5.535E35A630178234CB2D9F20C8485326] – 15/04/2014 – 13:07:00 —A- – C:WindowsPrefetchTRAYBAR.EXE-F735E112.pf
    O45 – LFCP:[MD5.EDEB788C568A201D7B3EFE89ABCF02B2] – 30/03/2014 – 15:43:20 —A- – C:WindowsPrefetchWINDOWSPHOTOGALLERY.EXE-99C26518.pf
    ~ Prefetcher: 6 Legitimates Filtered in 00mn 00s

    —\ Image File Execution Options (IFEO) (O50)
    O50 – IFEO:Image File Execution Options – DatamngrCoordinator.exe – tasklist.exe =>PUP.Datamngr
    ~ IFEO: Scanned in 00mn 00s

    —\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
    O55 – MWPS:[HKLM…PoliciesSystem] – “FilterAdministratorToken”=0
    ~ MWPS: 15 Legitimates Filtered in 00mn 00s

    —\ Liste des pilotes du système (SDL) (O58)
    O58 – SDL:[MD5.E8F3F21A71720C84BCF423B80028359F] – 02/11/2006 – 10:51:34 —A- . (.Emulex – Storport Miniport Driver for LightPulse HBAs.) — C:WindowsSystem32Driverselxstor.sys [316520]
    O58 – SDL:[MD5.18DA737DD5122A475DA4948ED4643675] – 15/04/2014 – 10:23:46 —A- . (…) — C:WindowsSystem32Driversfsbts.sys [44240]
    O58 – SDL:[MD5.BCED60D16156E428F8DF8CF27B0DF150] – 02/11/2006 – 10:50:07 —A- . (.Integrated Technology Express, Inc. – ITE IT8211 ATA/ATAPI SCSI miniport.) — C:WindowsSystem32Driversiteatapi.sys [35944]
    O58 – SDL:[MD5.06FA654504A498C30ADCA8BEC4E87E7E] – 02/11/2006 – 10:50:09 —A- . (.Integrated Technology Express, Inc. – ITE IT8212 ATA RAID SCSI miniport.) — C:WindowsSystem32Driversiteraid.sys [35944]
    O58 – SDL:[MD5.3CD4EA35A6221B85DCC25DAA46313F8D] – 02/11/2006 – 10:51:25 —A- . (.ULi Electronics Inc. – ULi SATA Controller Driver.) — C:WindowsSystem32Driversuliahci.sys [235112]
    O58 – SDL:[MD5.8514D0E5CD0534467C5FC61BE94A569F] – 02/11/2006 – 10:50:35 —A- . (.Promise Technology, Inc. – Promise Ultra/Sata Series Driver for Win2003.) — C:WindowsSystem32Driversulsata.sys [98408]
    O58 – SDL:[MD5.38C3C6E62B157A6BC46594FADA45C62B] – 02/11/2006 – 10:50:45 —A- . (.Promise Technology, Inc. – Promise SATAII150 Series Windows Drivers.) — C:WindowsSystem32Driversulsata2.sys [115816]
    O58 – SDL:[MD5.8AAD333C876590293F72B315E162BCC7] – 02/11/2006 – 08:09:42 —A- . (…) — C:WindowsSystem32ANSI.SYS [9029]
    O58 – SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] – 02/11/2006 – 08:09:45 —A- . (…) — C:WindowsSystem32country.sys [27097]
    O58 – SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] – 02/11/2006 – 08:09:41 —A- . (…) — C:WindowsSystem32HIMEM.SYS [4768]
    O58 – SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] – 02/11/2006 – 08:09:44 —A- . (…) — C:WindowsSystem32KEY01.SYS [42809]
    O58 – SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] – 02/11/2006 – 08:09:44 —A- . (…) — C:WindowsSystem32KEYBOARD.SYS [42537]
    O58 – SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] – 02/11/2006 – 08:09:29 —A- . (…) — C:WindowsSystem32NTDOS.SYS [27866]
    O58 – SDL:[MD5.CF9ED169FF86D935E47999E82359E898] – 02/11/2006 – 08:09:35 —A- . (…) — C:WindowsSystem32NTDOS404.SYS [29146]
    O58 – SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] – 02/11/2006 – 08:09:38 —A- . (…) — C:WindowsSystem32NTDOS411.SYS [29370]
    O58 – SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] – 02/11/2006 – 08:09:40 —A- . (…) — C:WindowsSystem32NTDOS412.SYS [29274]
    O58 – SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] – 02/11/2006 – 08:09:31 —A- . (…) — C:WindowsSystem32NTDOS804.SYS [29146]
    O58 – SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] – 02/11/2006 – 08:09:20 —A- . (…) — C:WindowsSystem32NTIO.SYS [33952]
    O58 – SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] – 02/11/2006 – 08:09:23 —A- . (…) — C:WindowsSystem32NTIO404.SYS [34672]
    O58 – SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] – 02/11/2006 – 08:09:24 —A- . (…) — C:WindowsSystem32NTIO411.SYS [35776]
    O58 – SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] – 02/11/2006 – 08:09:26 —A- . (…) — C:WindowsSystem32NTIO412.SYS [35536]
    O58 – SDL:[MD5.D86B6435729231C171432B4E77801BDB] – 02/11/2006 – 08:09:22 —A- . (…) — C:WindowsSystem32NTIO804.SYS [34672]
    ~ Drivers: 15 Legitimates Filtered in 00mn 01s

    —\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
    O61 – LFC: 13/04/2014 – 14:48:53 —A- . (…) — C:UserspaulineAppDataLocalhousecall.guid.cache [36]
    O61 – LFC: 13/04/2014 – 14:48:54 —A- . (…) — C:UserspaulineAppDataRoamingMicrosoftdigital lockerUrls.bin [4138]
    O61 – LFC: 14/04/2014 – 14:48:53 —A- . (…) — C:UserspaulineAppDataLocalars.cache [180393]
    O61 – LFC: 14/04/2014 – 14:48:53 —A- . (…) — C:UserspaulineAppDataLocalcensus.cache [187531]
    O61 – LFC: 14/04/2014 – 14:48:53 —A- . (…) — C:UserspaulineAppDataLocald3d9caps.dat [680]
    O61 – LFC: 15/04/2014 – 14:48:53 —A- . (…) — C:UserspaulineAppDataLocalGDIPFONTCACHEV1.DAT [61712]
    O61 – LFC: 15/04/2014 – 14:49:09 —A- . (…) — C:Userspaulinentuser.dat.iodefrag.bak [2605056]
    ~ Files: 50 Legitimates Filtered in 00mn 16s

    —\ Liste des outils de désinfection (LATC) (O63)
    O63 – Logiciel: ZHPDiag 2014 – (.Nicolas Coolman.) [HKLM] — ZHPDiag_is1 =>.Nicolas Coolman
    ~ ADS: Scanned in 00mn 00s

    —\ Menu de démarrage Internet (SMI) (O68)
    O68 – StartMenuInternet: [HKLM..ShellopenCommand] (.Mozilla Corporation – Firefox.) — C:Program FilesMozilla Firefoxfirefox.exe
    O68 – StartMenuInternet: [HKLM..ShellopenCommand] (.Microsoft Corporation – Internet Explorer.) — C:Program FilesInternet Exploreriexplore.exe
    ~ Keys: Scanned in 00mn 00s

    —\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
    O69 – SBI: SearchScopes [HKCU] {6028980E-AC1F-4F0F-9A13-3B9545815578} – (Yahoo!) – http://fr.search.yahoo.com” onclick=”window.open(this.href);return false;
    ~ Keys: Scanned in 00mn 00s

    —\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS)
    [MD5.FBB58F15F84F455E065148CE60570D09] [WIS][14/11/2013] (.Kreapixel – Webplayer.) — C:WindowsInstaller14e2c6e.msi [20992] =>Adware.SocialSkinz
    ~ WIS: 74 Legitimates Filtered in 00mn 05s

    —\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
    SS – | Demand 22/10/2004 73728 | (IDriverT) . (.Macrovision Corporation.) – C:Program FilesCommon FilesInstallShieldDriver1050Intel 32IDriverT.exe
    SS – | Demand 26/09/2007 2999664 | C:Program FilesSymantecLIVEUP~1LUCOMS~1.exe (LiveUpdate) . (.Symantec Corporation.) – C:Program FilesSymantecLiveUpdateLuComServer_3_2.exe
    SS – | Demand 15/03/2014 119408 | (MozillaMaintenance) . (.Mozilla Foundation.) – C:Program FilesMozilla Maintenance Servicemaintenanceservice.exe
    SS – | Auto 02/11/2006 22016 | C:Program FilesWindows Defendermpsvc.dll (WinDefend) . (.Microsoft Corporation.) – C:WindowsSystem32svchost.exe

    SR – | Auto 14/01/2014 881952 | (AdvancedSystemCareService7) . (.IObit.) – C:Program FilesIObitAdvanced SystemCare 7ASCService.exe
    SR – | Auto 05/10/2006 9216 | (AgereModemAudio) . (.Agere Systems.) – C:Windowssystem32agrsmsvc.exe
    SR – | Auto 20/09/2007 610304 | (Ati External Event Utility) . (.ATI Technologies Inc..) – C:WindowsSystem32Ati2evxx.exe
    SR – | Auto 14/11/2006 40960 | (CFSvcs) . (.TOSHIBA CORPORATION.) – C:Program FilesTOSHIBAConfigFreeCFSvcs.exe
    SR – | Auto 19/05/2011 220912 | (F-Secure Gatekeeper Handler Starter) . (.F-Secure Corporation.) – C:Program FilesF-SecureAnti-Virusfsgk32st.exe
    SR – | Demand 19/05/2011 184048 | (F-Secure Network Request Broker) . (.F-Secure Corporation.) – C:Program FilesF-SecureCommonFNRB32.exe
    SR – | Demand 19/05/2011 552688 | (FSDFWD) . (.F-Secure Corporation.) – C:Program FilesF-SecureFWESProgramfsdfwd.exe
    SR – | Auto 19/05/2011 188144 | (FSMA) . (.F-Secure Corporation.) – C:Program FilesF-SecureCommonFSMA32.exe
    SR – | Demand 15/04/2014 60352 | (FSORSPClient) . (.F-Secure Corporation.) – C:Program FilesF-SecureORSP Clientfsorsp.exe
    SR – | Auto 12/02/2007 355096 | (IAANTMON) . (.Intel Corporation.) – C:Program FilesIntelIntel Matrix Storage ManagerIAANTMon.exe
    SR – | Auto 29/01/2008 583048 | (LiveUpdate Notice Service) . (.Symantec Corporation.) – C:Program FilesCommon FilesSymantec SharedPIF{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}PIFSvc.exe
    SR – | Auto 04/04/2013 418376 | (MBAMScheduler) . (.Malwarebytes Corporation.) – C:Program FilesMalwarebytes' Anti-Malwarembamscheduler.exe
    SR – | Auto 04/04/2013 701512 | (MBAMService) . (.Malwarebytes Corporation.) – C:Program FilesMalwarebytes' Anti-Malwarembamservice.exe
    SR – | Auto 26/09/2007 554352 | (Planificateur LiveUpdate automatique) . (.Symantec Corporation.) – C:Program FilesSymantecLiveUpdateALUSchedulerSvc.exe
    SR – | Auto 21/09/2007 77824 | (TNaviSrv) . (.TOSHIBA Corporation.) – C:Program FilesTOSHIBATOSHIBA HD DVD PLAYERTNaviSrv.exe
    SR – | Auto 25/05/2006 114688 | (TODDSrv) . (.TOSHIBA Corporation.) – C:Windowssystem32TODDSrv.exe
    SR – | Auto 29/03/2007 427576 | (TosCoSrv) . (.TOSHIBA Corporation.) – C:Program FilesTOSHIBAPower SaverTosCoSrv.exe
    SR – | Auto 25/02/2007 125048 | (TOSHIBA Bluetooth Service) . (.TOSHIBA CORPORATION.) – c:Program FilesToshibaBluetooth Toshiba StackTosBtSrv.exe
    SR – | Auto 23/08/2006 49152 | (UleadBurningHelper) . (.Ulead Systems, Inc..) – C:Program FilesCommon FilesUlead SystemsDVDULCDRSvr.exe
    SR – | Auto 02/11/2006 22016 | C:WindowsSystem32wuaueng.dll (wuauserv) . (.Microsoft Corporation.) – C:WindowsSystem32svchost.exe

    ~ Services: Scanned in 00mn 09s

    —\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
    Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net” onclick=”window.open(this.href);return false;
    Run by pauline at 15/04/2014 14:49:41

    device: opened successfully
    user: MBR read successfully

    Disk trace:
    called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll iaStor.sys
    C:Windowssystem32DRIVERSiaStor.sys Intel Corporation Intel Matrix Storage Manager driver
    1 ntkrnlpa!IofCallDriver[0x81C27F3B] >> DeviceHarddisk0DR0[0x86C84A98]
    3 nt[0x81CB07E2] >> ntkrnlpa!IofCallDriver[0x81C27F3B] >> [0x86183720]
    kernel: MBR read successfully
    user & kernel MBR OK

    ~ MBR: 14 Legitimates Filtered in 00mn 02s

    —\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
    Written by ad13, http://ad13.geekstog” onclick=”window.open(this.href);return false;
    Run by pauline at 15/04/2014 14:49:43

    ********* Dump file Name *********
    C:PhysicalDisk0_MBR.bin

    ~ MBR: Scanned in 00mn 04s

    —\ Scan Additionnel (O88)
    Database Version : 13044 – (14/04/2014)
    Clés trouvées (Keys found) : 1
    Valeurs trouvées (Values found) : 0
    Dossiers trouvés (Folders found) : 0
    Fichiers trouvés (Files found) : 3

    [HKLMSoftwareMicrosoftWindowsCurrentVersionUninstall{F750DB0E-D452-3108-63C9-FE16BC686741}] =>Adware.SocialSkinz^
    [HKCUSoftwareConduit] =>Toolbar.Conduit^
    [HKLMSoftwarefree_soft_today] =>Adware.FreeSoftToday^
    C:WindowsInstaller14e2c6e.msi =>Adware.SocialSkinz^
    ~ Additionnel Scan: 144714 Items scanned in 00mn 34s

    —\ Récapitulatif des détections trouvées sur votre station
    http://nicolascoolman.webs.com/apps/blog/show/27480243-adware-socialskinz” onclick=”window.open(this.href);return false; =>Adware.SocialSkinz
    http://nicolascoolman.webs.com/apps/blog/show/29507721-toolbar-conduit” onclick=”window.open(this.href);return false; =>Toolbar.Conduit
    http://nicolascoolman.webs.com/apps/blog/show/33340107-adware-freesofttoday” onclick=”window.open(this.href);return false; =>Adware.FreeSoftToday
    http://nicolascoolman.webs.com/apps/blog/show/27583992-pup-datamngr” onclick=”window.open(this.href);return false; =>PUP.Datamngr
    ~ MSI: 4 link(s) detected in 00mn 00s

    ~ 1022 Legitimates filtered by white list
    End of the scan (497 lines in 02mn 44s)(0)[/spoiler:3uvpumzz]

  • Photo du profil de buckhulkbuckhulk
    Participant
    Post count: 2391

    Bonjour Tenpix

    Graĉe à ça j'ai réussi à supprimer Iminent,

    c’est déjà ça !!!

    bon tu vas déjà commencer par mettre à jour Internet Explorer ainsi que Adobe Reader et ton vista !

    Adobe , (décocher McAfee)

    Internet Explorer

    Pour Vista

    ton Logiciel : Webplayer est infecté !

    juste quelques infections qui restent , voici un script qui devrait régler tout ça :

    • Séléctionne et copie le script suivant :

      Script ZHPFix
      ShortcutFix
      O9 - Extra button: eBay - Achetez, Vendez - {76577871-04EC-495E-A12B-91F7C3600AFA} . (...) -- C:ToshibaWebshopseBayebay.ico =>Toolbar.eBay
      O9 - Extra button: eBay - {C08CAF1D-C0A3-40D5-9970-06D067EAC017} -- Clé orpheline =>Toolbar.eBay
      O42 - Logiciel: Webplayer - (.Kreapixel.) [HKLM] -- {F750DB0E-D452-3108-63C9-FE16BC686741} =>Adware.SocialSkinz
      [HKCUSoftwareConduit] =>Toolbar.Conduit
      [HKLMSoftwarefree_soft_today] =>Adware.FreeSoftToday
      O50 - IFEO:Image File Execution Options - DatamngrCoordinator.exe - tasklist.exe =>PUP.Datamngr
      [MD5.FBB58F15F84F455E065148CE60570D09] [WIS][14/11/2013] (.Kreapixel - Webplayer.) -- C:WindowsInstaller14e2c6e.msi [20992] =>Adware.SocialSkinz
      [HKLMSoftwareMicrosoftWindowsCurrentVersionUninstall{F750DB0E-D452-3108-63C9-FE16BC686741}] =>Adware.SocialSkinz^
      [HKCUSoftwareConduit] =>Toolbar.Conduit^
      [HKLMSoftwarefree_soft_today] =>Adware.FreeSoftToday^
      C:WindowsInstaller14e2c6e.msi =>Adware.SocialSkinz^
      ProxyFix
      EmptyPrefetch
      EmptyFlash
      SysRestore
      FirewallRAZ
      EmptyTemp
    • Lances ZHPFix, exécuter en tant qu’administrateur sous Windows : 7/8 et Vista

      1. Clique sur Importer
      2. Les lignes précedemment copiées doivent être collées dans le cadre
      3. Si c’est le cas, Clic sur “GO


      exemple :

    • Confirmes les nettoyages des données en cliquant sur “Oui
    • Une fois le scan terminé rends toi sur le bureau, le fichier ZHPFixReport à été crée.
    • Héberge le rapport ZHPFixReport sur SosUpload, puis copie/colle le lien fourni dans ta prochaine réponse.

    :merci2:

Le sujet ‘Impossible d’acceder à internet avec mes navigateurs’ est fermé à de nouvelles réponses.