SOSVirus : Dépannage PC Gratuit Forums Aide à la désinfection – Forum Virus Sécurité [jacques.gache]Bonjour virus meme malwarebytes m’aide pas

3 sujets de 1 à 3 (sur un total de 3)
  • Auteur
    Messages
  • rolca
    Participant
    Nombre d'articles : 1

    HKCUSOFTWAREEvent Monitor (PUP.Optional.SecurePCCleaner) -> Mis en quarantaine et supprimé avec succès.
    HKCUSOFTWARESecure PC Cleaner (PUP.Optional.SecurePCCleaner) -> Mis en quarantaine et supprimé avec succès.
    HKLMSOFTWAREJawego (PUP.Optional.PCCleanPlus) -> Mis en quarantaine et supprimé avec succès.
    HKLMSOFTWARESecure PC Cleaner (PUP.Optional.SecurePCCleaner) -> Mis en quarantaine et supprimé avec succès.
    HKLMSOFTWAREEVENT MONITOR (PUP.Optional.SecurePCCleaner) -> Mis en quarantaine et supprimé avec succès.
    Valeur(s) du Registre détectée(s): 1
    HKLMSOFTWAREEvent Monitor|TELNO (PUP.Optional.SecurePCCleaner) -> Données: (844) 763-5838 -> Mis en quarantaine et supprimé avec succès.
    Elément(s) de données du Registre détecté(s): 0
    (Aucun élément nuisible détecté)
    Dossier(s) détecté(s): 2
    C:UsersRolcaAppDataRoamingSecure PC Cleaner (PUP.Optional.SecurePCCleaner) -> Mis en quarantaine et supprimé avec succès.
    C:ProgramDataMicrosoftWindowsStart MenuProgramsSecure PC Cleaner (PUP.Optional.SecurePCCleaner) -> Mis en quarantaine et supprimé avec succès.
    Fichier(s) détecté(s): 5
    C:UsersRolcaAppDataRoamingSecure PC Cleaneripini.ini (PUP.Optional.SecurePCCleaner) -> Mis en quarantaine et supprimé avec succès.
    C:UsersRolcaAppDataRoamingSecure PC Cleanersfuni.ini (PUP.Optional.SecurePCCleaner) -> Mis en quarantaine et supprimé avec succès.
    C:ProgramDataMicrosoftWindowsStart MenuProgramsSecure PC CleanerDésinstaller Secure PC Cleaner.lnk (PUP.Optional.SecurePCCleaner) -> Mis en quarantaine et supprimé avec succès.
    C:ProgramDataMicrosoftWindowsStart MenuProgramsSecure PC CleanerRegister Secure PC Cleaner.lnk (PUP.Optional.SecurePCCleaner) -> Mis en quarantaine et supprimé avec succès.
    C:ProgramDataMicrosoftWindowsStart MenuProgramsSecure PC CleanerSecure PC Cleaner.lnk (PUP.Optional.SecurePCCleaner) -> Mis en quarantaine et supprimé avec succès.

    Surveillance de Logiciels (2) – 5s
    Adobe Flash Player 21 NPAPI
    Adobe Reader 9.5.5 MUI
    Processus lancés (29) – 3s
    Modification Domaine/Adresses DNS (2) – 0s
    O17 – HKLMSystemCCSServicesTcpipParameters: DhcpNameServer = 212.27.40.240 212.27.40.241
    O17 – HKLMSystemCCSServicesTcpip..{D7C91FF9-AA9E-49A1-8591-06217EE8703C}: DhcpNameServer = 212.27.40.240 212.27.40.241

    —\ Protocole additionnel (28) – 0s
    O18 – Handler: about [64Bits] – {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation – Visionneuse HTML Microsoft (R).) — C:WindowsSysWOW64mshtml.dll =>.Microsoft Corporation
    O18 – Handler: cdl [64Bits] – {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation – Extensions OLE32 pour Win32.) — C:WindowsSysWOW64urlmon.dll =>.Microsoft Corporation
    O18 – Handler: dvd [64Bits] – {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation – Contrôle ActiveX pour le flux vidéo.) — C:WindowsSysWOW64MSVidCtl.dll =>.Microsoft Corporation
    O18 – Handler: file [64Bits] – {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation – Extensions OLE32 pour Win32.) — C:WindowsSysWOW64urlmon.dll =>.Microsoft Corporation
    O18 – Handler: ftp [64Bits] – {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation – Extensions OLE32 pour Win32.) — C:WindowsSysWOW64urlmon.dll =>.Microsoft Corporation
    O18 – Handler: grooveLocalGWS [64Bits] – {88FED34C-F0CA-4636-A375-3CB6248B04CD} . (.Microsoft Corporation – GrooveSystemServices Module.) — C:Program Files (x86)Microsoft OfficeOffice12GrooveSystemServices.dll =>.Microsoft Corporation®
    O18 – Handler: http [64Bits] – {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation – Extensions OLE32 pour Win32.) — C:WindowsSysWOW64urlmon.dll =>.Microsoft Corporation
    O18 – Handler: https [64Bits] – {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation – Extensions OLE32 pour Win32.) — C:WindowsSysWOW64urlmon.dll =>.Microsoft Corporation
    O18 – Handler: its [64Bits] – {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation – Microsoft® InfoTech Storage System Library.) — C:WindowsSystem32itss.dll =>.Microsoft Corporation
    O18 – Handler: javascript [64Bits] – {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation – Visionneuse HTML Microsoft (R).) — C:WindowsSysWOW64mshtml.dll =>.Microsoft Corporation
    O18 – Handler: livecall [64Bits] – {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation – Windows Live Messenger Protocol Handler Mod.) — C:Program Files (x86)Windows LiveMessengermsgrapp.dll =>.Microsoft Corporation®
    O18 – Handler: local [64Bits] – {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation – Extensions OLE32 pour Win32.) — C:WindowsSysWOW64urlmon.dll =>.Microsoft Corporation
    O18 – Handler: mailto [64Bits] – {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation – Visionneuse HTML Microsoft (R).) — C:WindowsSysWOW64mshtml.dll =>.Microsoft Corporation
    O18 – Handler: mhtml [64Bits] – {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation – Microsoft Internet Messaging API Resources.) — C:WindowsSystem32inetcomm.dll =>.Microsoft Corporation
    O18 – Handler: mk [64Bits] – {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation – Extensions OLE32 pour Win32.) — C:WindowsSysWOW64urlmon.dll =>.Microsoft Corporation
    O18 – Handler: ms-help [64Bits] – {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation – Microsoft® Help Data Services Module.) — C:Program Files (x86)Common FilesMicrosoft SharedHelphxds.dll =>.Microsoft Corporation®
    O18 – Handler: ms-its [64Bits] – {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation – Microsoft® InfoTech Storage System Library.) — C:WindowsSystem32itss.dll =>.Microsoft Corporation
    O18 – Handler: ms-itss [64Bits] – {0A9007C0-4076-11D3-8789-0000F8105754} . (.Microsoft Corporation – Microsoft® InfoTech Storage System Library.) — c:Program Files (x86)Common FilesMicrosoft SharedInformation Retrievalmsitss.dll =>.Microsoft Corporation®
    O18 – Handler: msnim [64Bits] – {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation – Windows Live Messenger Protocol Handler Mod.) — C:Program Files (x86)Windows LiveMessengermsgrapp.dll =>.Microsoft Corporation®
    O18 – Handler: res [64Bits] – {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation – Visionneuse HTML Microsoft (R).) — C:WindowsSysWOW64mshtml.dll =>.Microsoft Corporation
    O18 – Handler: tv [64Bits] – {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation – Contrôle ActiveX pour le flux vidéo.) — C:WindowsSysWOW64MSVidCtl.dll =>.Microsoft Corporation
    O18 – Handler: vbscript [64Bits] – {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation – Visionneuse HTML Microsoft (R).) — C:WindowsSysWOW64mshtml.dll =>.Microsoft Corporation
    O18 – Handler: wlmailhtml [64Bits] – {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation – Windows Live Mail.) — C:Program Files (x86)Windows LiveMailmailcomm.dll =>.Microsoft Corporation®
    O18 – Handler: wlpg [64Bits] – {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation – Windows Live Album Download Protocol Handle.) — C:Program Files (x86)Windows LivePhoto GalleryAlbumDownloadProtocolHandler.dll =>.Microsoft Corporation®
    O18 – Filter: application/octet-stream [64Bits] – {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation – Microsoft .NET Runtime Execution Engine.) — C:WindowsSystem32mscoree.dll =>.Microsoft Corporation®
    O18 – Filter: application/x-complus [64Bits] – {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation – Microsoft .NET Runtime Execution Engine.) — C:WindowsSystem32mscoree.dll =>.Microsoft Corporation®
    O18 – Filter: application/x-msdownload [64Bits] – {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation – Microsoft .NET Runtime Execution Engine.) — C:WindowsSystem32mscoree.dll =>.Microsoft Corporation®
    O18 – Filter: text/xml [64Bits] – {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation – Microsoft Office XML MIME Filter.) — C:Program Files (x86)Common Filesmicrosoft sharedOFFICE12MSOXMLMF.DLL =>.Microsoft Corporation®
    HKCU & HKLM Software Keys (109) – 13s
    HKLMSOFTWAREWow6432NodeAdobe
    HKLMSOFTWAREWow6432NodeAdwCleaner
    HKLMSOFTWAREWow6432NodeApple Computer, Inc.
    HKLMSOFTWAREWow6432NodeApple Inc.
    HKLMSOFTWAREWow6432NodeAVAST Software
    HKLMSOFTWAREWow6432NodeAVG
    HKLMSOFTWAREWow6432NodeCDDB
    HKLMSOFTWAREWow6432NodeCombined-Community-Codec-Pack
    HKLMSOFTWAREWow6432NodeCounterPath Corporation
    HKLMSOFTWAREWow6432NodeDivX
    HKLMSOFTWAREWow6432NodeFNET
    HKLMSOFTWAREWow6432NodeGlarySoft
    HKLMSOFTWAREWow6432NodeGNU
    HKLMSOFTWAREWow6432NodeGoogle
    HKLMSOFTWAREWow6432NodeHaaliMkx
    HKLMSOFTWAREWow6432NodeIntel
    HKLMSOFTWAREWow6432NodeInternet Download Manager
    HKLMSOFTWAREWow6432NodeJavaSoft
    HKLMSOFTWAREWow6432NodeJreMetrics
    HKLMSOFTWAREWow6432NodeKhronos
    HKLMSOFTWAREWow6432NodeLavasoft
    HKLMSOFTWAREWow6432NodeLeapFrog
    HKLMSOFTWAREWow6432NodeLicenses
    HKLMSOFTWAREWow6432NodeMacromedia
    HKLMSOFTWAREWow6432NodeMacrovision
    HKLMSOFTWAREWow6432NodeMalwarebytes’ Anti-Malware
    HKLMSOFTWAREWow6432NodeMcAfee.com
    HKLMSOFTWAREWow6432NodeMindscape
    HKLMSOFTWAREWow6432NodeMozilla
    HKLMSOFTWAREWow6432Nodemozilla.org
    HKLMSOFTWAREWow6432NodeMozillaPlugins
    HKLMSOFTWAREWow6432NodeNero
    HKLMSOFTWAREWow6432NodeNVIDIA Corporation
    HKLMSOFTWAREWow6432NodeODBC
    HKLMSOFTWAREWow6432NodeOEM
    HKLMSOFTWAREWow6432NodePC SOFT
    HKLMSOFTWAREWow6432NodeQTAlternative
    HKLMSOFTWAREWow6432NodeRealAlternative
    HKLMSOFTWAREWow6432NodeRealNetworks
    HKLMSOFTWAREWow6432NodeRealtek
    HKLMSOFTWAREWow6432NodeSkype
    HKLMSOFTWAREWow6432NodeSonic
    HKLMSOFTWAREWow6432NodeSymantec
    HKLMSOFTWAREWow6432NodeTeamViewer
    HKLMSOFTWAREWow6432NodeVideoLAN
    HKLMSOFTWAREWow6432NodeVolatile
    HKLMSOFTWAREWow6432NodeWinPcap
    HKLMSOFTWAREWow6432NodeXing Technology Corp.
    HKLMSOFTWAREWow6432NodeYuna Software
    HKLMSOFTWAREWow6432NodeRegisteredApplications
    HKCUSOFTWAREABZ GESTION
    HKCUSOFTWAREAcer
    HKCUSOFTWAREAdobe
    HKCUSOFTWAREAeria Games
    HKCUSOFTWAREAkamai
    HKCUSOFTWAREALWIL Software
    HKCUSOFTWAREAppDataLow
    HKCUSOFTWAREApple Computer, Inc.
    HKCUSOFTWAREApple Inc.
    HKCUSOFTWAREAVAST Software
    HKCUSOFTWAREAvg
    HKCUSOFTWARECDDB
    HKCUSOFTWARECounterPath Corporation
    HKCUSOFTWAREDivX
    HKCUSOFTWAREDivXNetworks
    HKCUSOFTWAREDownloadManager
    HKCUSOFTWAREF-Secure
    HKCUSOFTWAREFacebook
    HKCUSOFTWAREGabest
    HKCUSOFTWAREGlarySoft
    HKCUSOFTWAREGNU
    HKCUSOFTWAREGoogle
    HKCUSOFTWAREHaali
    HKCUSOFTWAREIM Providers
    HKCUSOFTWAREIncrediMail
    HKCUSOFTWAREJavaSoft
    HKCUSOFTWAREMacromedia
    HKCUSOFTWAREMalwarebytes’ Anti-Malware
    HKCUSOFTWAREMCAFEE
    HKCUSOFTWAREMozilla
    HKCUSOFTWAREMozillaPlugins
    HKCUSOFTWARENero
    HKCUSOFTWARENetscape
    HKCUSOFTWARENorthcode Inc
    HKCUSOFTWARENVIDIA Corporation
    HKCUSOFTWAREODBC
    HKCUSOFTWAREOEM
    HKCUSOFTWAREPiriform
    HKCUSOFTWARERealNetworks
    HKCUSOFTWARERealtek
    HKCUSOFTWAREReviverSoft
    HKCUSOFTWARESamsung
    HKCUSOFTWARESeifert
    HKCUSOFTWARESkype
    HKCUSOFTWARESkypeRS
    HKCUSOFTWARETeamViewer
    HKCUSOFTWARETrolltech
    HKCUSOFTWAREWinRAR
    HKCUSOFTWAREWow6432Node
    HKCUSOFTWAREWPI
    HKCUSOFTWAREYuna Software
    HKCUSOFTWAREZebHelpProcess Helper
    HKCUSOFTWAREAppDataLowRealNetworks
    HKCUSOFTWAREAppDataLowSoftware
    HKCUSOFTWAREAppDataLowSoftwareadawarebp =>PUP.Optional.ToolbarCleaner
    HKCUSOFTWAREAppDataLowSoftwareAdobe
    HKCUSOFTWAREAppDataLowSoftwareGoogle
    HKCUSOFTWAREAppDataLowSoftwareJavaSoft
    HKCUSOFTWAREAppDataLowSoftwareRealNetworks
    Enumération des clés StartupReg (14) – 1s
    O53 – SMSR:HKLM…startupregAdobe ARM [Key] . (.Adobe Systems Incorporated – Adobe Reader and Acrobat Manager.) — C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe =>.Adobe Systems Incorporated
    O53 – SMSR:HKLM…startupregAdobe Reader Speed Launcher [Key] . (.Adobe Systems Incorporated – Adobe Acrobat SpeedLauncher.) — C:Program Files (x86)AdobeReader 9.0ReaderReader_sl.exe =>.Adobe Systems Incorporated
    O53 – SMSR:HKLM…startupregAPSDaemon [Key] . (.Apple Inc. – Apple Push.) — C:Program Files (x86)Common FilesAppleApple Application SupportAPSDaemon.exe =>.Apple Inc.
    O53 – SMSR:HKLM…startupregFacebook Update [Key] . (.Facebook Inc. – Programme d’installation de Facebook.) — C:UsersRolcaAppDataLocalFacebookUpdateFacebookUpdate.exe =>.Facebook Inc.
    O53 – SMSR:HKLM…startupregGrooveMonitor [Key] . (.Microsoft Corporation – GrooveMonitor Utility.) — C:Program Files (x86)Microsoft OfficeOffice12GrooveMonitor.exe =>.Microsoft Corporation
    O53 – SMSR:HKLM…startupregIDMan [Key] . (.Tonec Inc. – Internet Download Manager (IDM).) — C:Program Files (x86)Internet Download ManagerIDMan.exe =>.Tonec Inc.
    O53 – SMSR:HKLM…startupregiTunesHelper [Key] . (.Apple Inc. – iTunesHelper.) — C:Program Files (x86)iTunesiTunesHelper.exe =>.Apple Inc.
    O53 – SMSR:HKLM…startupregLifeCam [Key] . (.Microsoft Corporation – LifeExp.exe.) — C:Program Files (x86)Microsoft LifeCamLifeExp.exe =>.Microsoft Corporation
    O53 – SMSR:HKLM…startupregmsnmsgr [Key] . (…) — C:Program Files (x86)Windows LiveMessengermsnmsgr.exe (.not file.)
    O53 – SMSR:HKLM…startupregPlusService [Key] . (…) — C:Messenger Plus!PlusService.exe (.not file.)
    O53 – SMSR:HKLM…startupregQuickTime Task [Key] . (…) — C:Program Files (x86)QuickTime AlternativeQTTask.exe (.not file.)
    O53 – SMSR:HKLM…startupregRtHDVCpl [Key] . (…) — C:Program FilesRealtekAudioHDARAVCpl64.exe (.not file.)
    O53 – SMSR:HKLM…startupregTkBellExe [Key] . (.RealNetworks, Inc. – RealNetworks Scheduler.) — c:program files (x86)RealrealplayerUpdaterealsched.exe =>.RealNetworks, Inc.
    O53 – SMSR:HKLM…startupregVX1000 [Key] . (.Microsoft Corporation – Microsoft LifeCam Device Application.) — C:WindowsvVX1000.exe =>.Microsoft Corporation

    Liste des pilotes du système (66) – 8s
    O58 – SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. – Adaptec Windows SAS/SATA Storport Driver.) — C:WindowsSystem32driversadp94xx.sys [491088] =>.Microsoft Windows®
    O58 – SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. – Adaptec Windows SATA Storport Driver.) — C:WindowsSystem32driversadpahci.sys [339536] =>.Microsoft Windows®
    O58 – SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. – Adaptec StorPort Ultra320 SCSI Driver (X64).) — C:WindowsSystem32driversadpu320.sys [182864] =>.Microsoft Windows®
    O58 – SDL:2009/07/14 03:52:21 A . (.Acer Laboratories Inc. – ALi mini IDE Driver.) — C:WindowsSystem32driversaliide.sys [15440] =>.Microsoft Windows®
    O58 – SDL:2011/03/11 08:41:12 A . (.Advanced Micro Devices – AHCI 1.2 Device Driver.) — C:WindowsSystem32driversamdsata.sys [107904] =>.Microsoft Windows®
    O58 – SDL:2009/07/14 03:52:20 A . (.AMD Technologies Inc. – AMD Technology AHCI Compatible Controller D.) — C:WindowsSystem32driversamdsbs.sys [194128] =>.Microsoft Windows®
    O58 – SDL:2011/03/11 08:41:12 A . (.Advanced Micro Devices – Storage Filter Driver.) — C:WindowsSystem32driversamdxata.sys [27008] =>.Microsoft Windows®
    O58 – SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. – Adaptec RAID Storport Driver.) — C:WindowsSystem32driversarc.sys [87632] =>.Microsoft Windows®
    O58 – SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. – Adaptec SAS RAID WS03 Driver.) — C:WindowsSystem32driversarcsas.sys [97856] =>.Microsoft Windows®
    O58 – SDL:2016/05/27 03:13:57 A . (.AVAST Software – avast! HWID.) — C:WindowsSystem32driversaswHwid.sys [37656] =>.AVAST Software a.s.® (ALWIL Software)
    O58 – SDL:2016/05/27 03:18:05 A . (.AVAST Software – avast! Keyboard Filter Driver.) — C:WindowsSystem32driversaswKbd.sys [37144] =>.AVAST Software a.s.®
    O58 – SDL:2016/05/27 03:13:57 A . (.AVAST Software – avast! File System Minifilter for Windows 2.) — C:WindowsSystem32driversaswMonFlt.sys [107792] =>.AVAST Software a.s.®
    O58 – SDL:2016/05/27 03:13:57 A . (.AVAST Software – avast! WFP Redirect Driver.) — C:WindowsSystem32driversaswRdr2.sys [103064] =>.AVAST Software a.s.®
    O58 – SDL:2016/05/27 03:13:57 A . (.AVAST Software – avast! Revert.) — C:WindowsSystem32driversaswRvrt.sys [74544] =>.AVAST Software a.s.® (ALWIL Software)
    O58 – SDL:2016/05/27 03:12:34 A . (.AVAST Software – avast! Virtualization Driver.) — C:WindowsSystem32driversaswSnx.sys [1070904] =>.AVAST Software a.s.®
    O58 – SDL:2016/05/27 03:13:57 A . (.AVAST Software – avast! self protection module.) — C:WindowsSystem32driversaswSP.sys [465792] =>.AVAST Software a.s.®
    O58 – SDL:2016/05/27 03:13:57 A . (.AVAST Software – Stream Filter.) — C:WindowsSystem32driversaswStm.sys [166432] =>.AVAST Software a.s.®
    O58 – SDL:2016/05/27 03:13:57 A . (.AVAST Software – avast! VM Monitor.) — C:WindowsSystem32driversaswVmm.sys [287528] =>.AVAST Software a.s.® (ALWIL Software)
    O58 – SDL:2009/06/10 22:34:23 A . (.Broadcom Corporation – Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) — C:WindowsSystem32driversb57nd60a.sys [270848] =>.Broadcom Corporation
    O58 – SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. – Windows ME USB Mass-Storage Bulk-Only Lower.) — C:WindowsSystem32driversBrFiltLo.sys [18432] =>.Brother Industries, Ltd.
    O58 – SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. – Windows ME USB Mass-Storage Bulk-Only Upper.) — C:WindowsSystem32driversBrFiltUp.sys [8704] =>.Brother Industries, Ltd.
    O58 – SDL:2009/07/14 03:19:07 A . (.Brother Industries Ltd. – Pilote Brother Série I/F (WDM).) — C:WindowsSystem32driversBrSerId.sys [286720] =>.Brother Industries Ltd.
    O58 – SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. – Brother Serial driver (WDM version).) — C:WindowsSystem32driversBrSerWdm.sys [47104] =>.Brother Industries Ltd.
    O58 – SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. – Brother USB MDM Driver.) — C:WindowsSystem32driversBrUsbMdm.sys [14976] =>.Brother Industries Ltd.
    O58 – SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. – Brother USB Serial Driver.) — C:WindowsSystem32driversBrUsbSer.sys [14720] =>.Brother Industries Ltd.
    O58 – SDL:2009/06/10 22:34:28 A . (.Broadcom Corporation – Broadcom NetXtreme II GigE VBD.) — C:WindowsSystem32driversbxvbda.sys [468480] =>.Broadcom Corporation
    O58 – SDL:2009/07/14 03:52:31 A . (.CMD Technology, Inc. – CMD PCI IDE Bus Driver.) — C:WindowsSystem32driverscmdide.sys [17488] =>.Microsoft Windows®
    O58 – SDL:2009/07/14 03:47:48 A . (.Emulex – Storport Miniport Driver for LightPulse HBA.) — C:WindowsSystem32driverselxstor.sys [530496] =>.Microsoft Windows®
    O58 – SDL:2009/06/10 22:34:33 A . (.Broadcom Corporation – Broadcom NetXtreme II 10 GigE VBD.) — C:WindowsSystem32driversevbda.sys [3286016] =>.Broadcom Corporation
    O58 – SDL:2013/09/27 12:38:50 A . (.LeapFrog – FLY Fusion USB Driver.) — C:WindowsSystem32driversFlyUsb.sys [24576] =>.LeapFrog
    O58 – SDL:2014/10/13 19:01:02 A . (.FNet Co., Ltd. – FNetTbos.sys.) — C:WindowsSystem32driversFNETTBOH_305.SYS [32320] =>.FNet Co., Ltd.®
    O58 – SDL:2014/10/13 19:00:53 A . (.FNet Co., Ltd. – FNetUrPx.sys.) — C:WindowsSystem32driversFNETURPX.SYS [16648] =>.FNet Co., Ltd.®
    O58 – SDL:2012/08/21 14:01:20 A . (.GEAR Software Inc. – CD DVD Filter.) — C:WindowsSystem32driversGEARAspiWDM.sys [33240] =>.GEAR Software Inc.®
    O58 – SDL:2013/05/23 08:39:23 A . (.ThreatTrack Security – gfiark64.sys.) — C:WindowsSystem32driversgfiark.sys [41032] =>.ThreatTrack Security, Inc.®
    O58 – SDL:2013/06/22 21:27:58 A . (.GFI Software – GFI Boot Time Operations Driver.) — C:WindowsSystem32driversgfibto.sys [14456] =>.GFI Software Development Ltd.®
    O58 – SDL:2009/06/10 22:31:59 A . (.Hauppauge Computer Works, Inc. – Hauppauge WinTV 885 Consumer IR Driver for.) — C:WindowsSystem32drivershcw85cir.sys [31232] =>.Hauppauge Computer Works, Inc.
    O58 – SDL:2010/11/20 15:33:35 A . (.Hewlett-Packard Company – Smart Array SAS/SATA Controller Media Drive.) — C:WindowsSystem32driversHpSAMD.sys [78720] =>.Microsoft Windows®
    O58 – SDL:2011/03/11 08:41:26 A . (.Intel Corporation – Intel Matrix Storage Manager driver – x64.) — C:WindowsSystem32driversiaStorV.sys [410496] =>.Microsoft Windows®
    O58 – SDL:2011/07/06 15:14:42 A . (.Tonec Inc. – Internet Download Manager WFP Driver.) — C:WindowsSystem32driversidmwfp.sys [145008] =>.Tonec Inc.®
    O58 – SDL:2009/07/14 03:48:04 A . (.Intel Corp./ICP vortex GmbH – Intel/ICP Raid Storport Driver.) — C:WindowsSystem32driversiirsp.sys [44112] =>.Microsoft Windows®
    O58 – SDL:2009/07/14 03:48:04 A . (.LSI Corporation – LSI Fusion-MPT FC Driver (StorPort).) — C:WindowsSystem32driverslsi_fc.sys [114752] =>.Microsoft Windows®
    O58 – SDL:2009/07/14 03:48:04 A . (.LSI Corporation – LSI Fusion-MPT SAS Driver (StorPort).) — C:WindowsSystem32driverslsi_sas.sys [106560] =>.Microsoft Windows®
    O58 – SDL:2009/07/14 03:48:04 A . (.LSI Corporation – LSI SAS Gen2 Driver (StorPort).) — C:WindowsSystem32driverslsi_sas2.sys [65600] =>.Microsoft Windows®
    O58 – SDL:2009/07/14 03:48:04 A . (.LSI Corporation – LSI Fusion-MPT SCSI Driver (StorPort).) — C:WindowsSystem32driverslsi_scsi.sys [115776] =>.Microsoft Windows®
    O58 – SDL:2012/09/29 19:54:26 A . (.Malwarebytes Corporation – Malwarebytes Anti-Malware.) — C:WindowsSystem32driversmbam.sys [25928] =>.Malwarebytes Corporation®
    O58 – SDL:2009/07/14 03:48:04 A . (.LSI Corporation – MEGASAS RAID Controller Driver for Windows.) — C:WindowsSystem32driversmegasas.sys [35392] =>.Microsoft Windows®
    O58 – SDL:2009/07/14 03:48:04 A . (.LSI Corporation, Inc. – LSI MegaRAID Software RAID Driver.) — C:WindowsSystem32driversMegaSR.sys [284736] =>.Microsoft Windows®
    O58 – SDL:2009/07/14 03:48:26 A . (.IBM Corporation – IBM ServeRAID Controller Driver.) — C:WindowsSystem32driversnfrd960.sys [51264] =>.Microsoft Windows®
    O58 – SDL:2010/06/25 19:07:26 A . (.CACE Technologies, Inc. – npf.sys (NT5/6 AMD64) Kernel Driver.) — C:WindowsSystem32driversnpf.sys [35344] =>.CACE Technologies, Inc.®
    O58 – SDL:2015/02/18 10:55:54 A . (.NVIDIA Corporation – NVIDIA Windows Kernel Mode Driver, Version.) — C:WindowsSystem32driversnvlddmkm.sys [13585736] =>.NVIDIA Corporation®
    O58 – SDL:2009/06/10 22:35:35 A . (.NVIDIA Corporation – NVIDIA MCP Networking Function Driver..) — C:WindowsSystem32driversnvm62x64.sys [408960] =>.NVIDIA Corporation
    O58 – SDL:2010/08/12 12:07:50 A . (.NVIDIA Corporation – NVIDIA MCP Networking Function Driver..) — C:WindowsSystem32driversnvmf6264.sys [350952] =>.NVIDIA Corporation®
    O58 – SDL:2011/03/11 08:41:34 A . (.NVIDIA Corporation – NVIDIA® nForce(TM) RAID Driver.) — C:WindowsSystem32driversnvraid.sys [148352] =>.Microsoft Windows®
    O58 – SDL:2011/03/11 08:41:34 A . (.NVIDIA Corporation – NVIDIA® nForce(TM) Sata Performance Driver.) — C:WindowsSystem32driversnvstor.sys [166272] =>.Microsoft Windows®
    O58 – SDL:2010/07/12 20:36:10 A . (.Sonic Solutions – Px Engine Device Driver for 64-bit Windows.) — C:WindowsSystem32driversPxHlpa64.sys [55856] =>.Sonic Solutions®
    O58 – SDL:2009/07/14 03:45:46 A . (.QLogic Corporation – QLogic Fibre Channel Stor Miniport Driver.) — C:WindowsSystem32driversql2300.sys [1524816] =>.Microsoft Windows®
    O58 – SDL:2009/07/14 03:45:45 A . (.QLogic Corporation – QLogic iSCSI Storport Miniport Driver.) — C:WindowsSystem32driversql40xx.sys [128592] =>.Microsoft Windows®
    O58 – SDL:2009/11/17 14:13:08 A . (.Realtek Semiconductor Corp. – Realtek(r) High Definition Audio Function D.) — C:WindowsSystem32driversRTKVHD64.sys [2037408] =>.Realtek Semiconductor Corp®
    O58 – SDL:2009/06/10 22:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, – Macrovision SECURITY Driver.) — C:WindowsSystem32driverssecdrv.sys [23040] =>.Macrovision Corporation, Macrovision Europe Limited,
    O58 – SDL:2009/07/14 03:45:45 A . (.Silicon Integrated Systems Corp. – SiS RAID Stor Miniport Driver.) — C:WindowsSystem32driverssisraid2.sys [43584] =>.Microsoft Windows®
    O58 – SDL:2009/07/14 03:45:46 A . (.Silicon Integrated Systems – SiS AHCI Stor-Miniport Driver.) — C:WindowsSystem32driverssisraid4.sys [80464] =>.Microsoft Windows®
    O58 – SDL:2009/07/14 03:45:55 A . (.Promise Technology – Promise SuperTrak EX Series Driver for Win.) — C:WindowsSystem32driversstexstor.sys [24656] =>.Microsoft Windows®
    O58 – SDL:2016/04/28 17:20:32 A . (.BitDefender S.R.L. – Trufos Kernel Module.) — C:WindowsSystem32driversTrufos.sys [485512] =>.Bitdefender SRL®
    O58 – SDL:2014/07/28 14:52:00 A . (.Apple, Inc. – Apple Mobile Device USB Driver.) — C:WindowsSystem32driversusbaapl64.sys [54784] =>.Apple, Inc.
    O58 – SDL:2009/07/14 03:45:55 A . (.VIA Technologies, Inc. – VIA Generic PCI IDE Bus Driver.) — C:WindowsSystem32driversviaide.sys [17488] =>.Microsoft Windows®
    O58 – SDL:2009/07/14 03:45:55 A . (.VIA Technologies Inc.,Ltd – VIA RAID DRIVER FOR AMD-X86-64.) — C:WindowsSystem32driversvsmraid.sys [161872] =>.Microsoft Windows®

    Derniers fichiers modifiés ou crées (Utilisateur) (1) – 12s
    O61 – LFC: 2016/06/09 18:31:22 A . (..) — C:UsersRolcaAppDataLocalMicrosoftInternet ExplorerUrlBlockManagerurlblocklist.bin [0]

    Menu de démarrage Internet (12) – 1s
    O68 – StartMenuInternet: [HKLM..ShellopenCommand] (.Mozilla Corporation – Firefox.) — C:Program Files (x86)Mozilla Firefoxfirefox.exe =>.Mozilla Corporation®
    O68 – StartMenuInternet: [HKLM..ShellopenCommand] (.Microsoft Corporation – Internet Explorer.) — C:Program FilesInternet Exploreriexplore.exe =>.Microsoft Corporation®
    O68 – StartMenuInternet: [HKLM..ShellopenCommand] (.Avast Software – Avast SafeZone Browser.) — C:Program FilesAVAST SoftwareSZBrowserLauncher.exe =>.AVAST Software s.r.o.®
    O68 – StartMenuInternet: [HKLM..InstallInfoShowIconsCommand] (.Mozilla Corporation – Firefox Helper.) — C:Program Files (x86)Mozilla Firefoxuninstallhelper.exe =>.Mozilla Corporation
    O68 – StartMenuInternet: [HKLM..InstallInfoShowIconsCommand] (.Microsoft Corporation – Utilitaire d’initialisation d’Internet Expl.) — C:WindowsSystem32ie4uinit.exe =>.Microsoft Corporation
    O68 – StartMenuInternet: [HKLM..InstallInfoShowIconsCommand] (.Avast Software – Avast SafeZone Browser.) — C:Program FilesAVAST SoftwareSZBrowserlauncher.exe =>.AVAST Software
    O68 – StartMenuInternet: [HKLM..InstallInfoReinstallCommand] (.Mozilla Corporation – Firefox Helper.) — C:Program Files (x86)Mozilla Firefoxuninstallhelper.exe =>.Mozilla Corporation
    O68 – StartMenuInternet: [HKLM..InstallInfoReinstallCommand] (.Microsoft Corporation – Utilitaire d’initialisation d’Internet Expl.) — C:WindowsSystem32ie4uinit.exe =>.Microsoft Corporation
    O68 – StartMenuInternet: [HKLM..InstallInfoReinstallCommand] (.Avast Software – Avast SafeZone Browser.) — C:Program FilesAVAST SoftwareSZBrowserlauncher.exe =>.AVAST Software
    O68 – StartMenuInternet: [HKLM..InstallInfoHideIconsCommand] (.Mozilla Corporation – Firefox Helper.) — C:Program Files (x86)Mozilla Firefoxuninstallhelper.exe =>.Mozilla Corporation
    O68 – StartMenuInternet: [HKLM..InstallInfoHideIconsCommand] (.Microsoft Corporation – Utilitaire d’initialisation d’Internet Expl.) — C:WindowsSystem32ie4uinit.exe =>.Microsoft Corporation
    O68 – StartMenuInternet: [HKLM..InstallInfoHideIconsCommand] (.Avast Software – Avast SafeZone Browser.) — C:Program FilesAVAST SoftwareSZBrowserlauncher.exe =>.AVAST Software

    Recherche d’infection sur les navigateurs (10) – 22s
    O69 – SBI: prefs.js [Rolca – gmjxxnnf.default] user_pref(« extensions.OneClickDownload.filter », « 0 »); =>PUP.Optional.1ClickDownloader
    O69 – SBI: prefs.js [Rolca – gmjxxnnf.default] user_pref(« smi2bar002_002.leadsWInCheckStep », « 1 »); =>PUP.Optional.Wincheck
    O69 – SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} – (Bing) – http://www.bing.com/
    O69 – SBI: SearchScopes [HKCU] {67A2568C-7A0A-4EED-AECC-B5405DE63B64} – (Google) – http://www.google.com/
    O69 – SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} – (Google) – http://www.google.com/
    O69 – SBI: SearchScopes [HKCU] {95B7759C-8C7F-4BF1-B163-73684A933233} [DefaultScope] – (AVG Secure Search) – http://mysearch.avg.com/ =>PUP.Optional.MyWebSearch
    O69 – SBI: SearchScopes [HKCU] {ED57B6EB-FF97-42B2-ADB4-A44A32B9D7E0} – (Ask Search) – http://websearch.ask.com/ =>Toolbar.Ask
    O69 – SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} – (@ieframe.dll,-12512) – http://www.bing.com/
    O69 – SBI: SearchScopes [HKLM] {67A2568C-7A0A-4EED-AECC-B5405DE63B64} – (Google) – http://www.google.com/
    O69 – SBI: SearchScopes [HKLM] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} – (Google) – http://www.google.com/
    Scan Additionnel (22) – 0s
    C:WindowsSystem32TasksGo for FilesUpdate =>PUP.Optional.YourFileDownloader
    C:UsersRolcaAppDataRoamingMozillaExtensions{ec8030f7-c20a-464f-9b0e-13a3a9e97384} =>PUP.Optional.Wajam
    HKLMSOFTWAREMicrosoftWindowsCurrentVersionUninstall{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>Heuristic.Suspect
    HKLMSOFTWAREMicrosoftWindowsCurrentVersionUninstall{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C} =>Riskware.QuickTime
    HKLMSOFTWAREWow6432NodeMicrosoftWindowsCurrentVersionUninstall{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>Heuristic.Suspect
    HKLMSOFTWAREWow6432NodeMicrosoftWindowsCurrentVersionUninstall{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C} =>Riskware.QuickTime
    HKCUSOFTWAREAppDataLowSoftwareadawarebp =>PUP.Optional.ToolbarCleaner
    C:UsersRolcaAppDataRoamingEvent Monitor =>.Superfluous.EventMonitor
    C:UsersRolcaAppDataLocalCrashRpt =>.Superfluous.CrashReports
    HKCUSoftwareMicrosoftInternet ExplorerSearchScopes{95B7759C-8C7F-4BF1-B163-73684A933233} =>PUP.Optional.MyWebSearch
    HKCUSoftwareMicrosoftInternet ExplorerSearchScopes{ED57B6EB-FF97-42B2-ADB4-A44A32B9D7E0} =>Toolbar.Ask
    C:WindowsInstaller{332DB63A-14F2-465D-9C7E-B0D04353323F}ARPPRODUCTICON.exe =>PUP.Optional.RegistryReviver
    HKLMSoftwareClassesInstallerProductsA36BD2332F41D564C9E70B0D343523F3 =>PUP.Optional.RegistryReviver
    HKLMSoftwareClassesInstallerFeaturesA36BD2332F41D564C9E70B0D343523F3 =>PUP.Optional.RegistryReviver
    HKLM64SOFTWAREMicrosoftTracingRegistryReviver64_RASAPI32 =>PUP.Optional.RegistryReviver
    HKLM64SOFTWAREMicrosoftTracingRegistryReviver64_RASMANCS =>PUP.Optional.RegistryReviver
    HKLMSOFTWAREWow6432NodeMicrosoftTracingBandooUI_RASAPI32 =>PUP.Optional.Bandoo
    HKLMSOFTWAREWow6432NodeMicrosoftTracingBandooUI_RASMANCS =>PUP.Optional.Bandoo
    HKLMSOFTWAREWow6432NodeMicrosoftTracingGFFUpdater_RASAPI32 =>.Superfluous.Funfeedr
    HKLMSOFTWAREWow6432NodeMicrosoftTracingGFFUpdater_RASMANCS =>.Superfluous.Funfeedr
    HKLMSOFTWAREWow6432NodeMicrosoftTracingInstall_BubbleDock_RASAPI32 =>PUP.Optional.BubbleDock
    HKLMSOFTWAREWow6432NodeMicrosoftTracingInstall_BubbleDock_RASMANCS =>PUP.Optional.BubbleDock

    Récapitulatif des éléments trouvés sur votre station (16) – 0s
    http://www.nicolascoolman.fr/?p=1128 =>PUP.Optional.YourFileDownloader
    http://www.nicolascoolman.fr/?p=263 =>PUP.Optional.Wajam
    https://www.nicolascoolman.info/2016/04/22/heuristic-suspect/ =>Heuristic.Suspect
    https://www.nicolascoolman.info/2016/04/21/riskware-quicktime/ =>Riskware.QuickTime
    http://www.nicolascoolman.fr/?p=712 =>PUP.Optional.ToolbarCleaner
    http://www.nicolascoolman.fr/?p=5145 =>.Superfluous.EventMonitor
    http://www.nicolascoolman.fr/?p=5145 =>.Superfluous.CrashReports
    http://www.nicolascoolman.fr/?p=668 =>PUP.Optional.1ClickDownloader
    http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Wincheck
    http://www.nicolascoolman.fr/?p=220 =>PUP.Optional.MyWebSearch
    http://www.nicolascoolman.fr/?p=235 =>Toolbar.Ask
    http://www.nicolascoolman.fr/?p=5145 =>.Superfluous.AkamaiHD
    http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.RegistryReviver
    http://www.nicolascoolman.fr/?p=237 =>PUP.Optional.Bandoo
    https://www.nicolascoolman.info/2016/05/05/superfluous-funfeedr/ =>.Superfluous.Funfeedr
    http://www.nicolascoolman.fr/?p=177 =>PUP.Optional.BubbleDock

    jacques.gache
    Participant
    Nombre d'articles : 678

    bonjour, tu vas passer adsfix puis poster un zhpdiag comme expliqué , merci

    1) pour zhpfix

    • Désactive ton antivirus le temps du téléchargement et de l’utilisation, le mieux étant jusqu’au prochain redémarrage.
    • Télécharge AdsFix sur ton bureau.
      Note : Enregistrer votre travail avant de continuer !
    • Lance AdsFix ( clic droit « executer en tant qu’administrateur » pour Vista/7/8/8.1 )
    • Pour un pc assez infecté , il peut mettre plusieurs secondes à se charger
    • Inscrit ton pays
    • Clique sur Nettoyer , après l’avoir débloqué dans les options

      Note : Patiente le temps du scandes fois très long
    • Laisse travailler l’outil même s’il te parait bloqué des fois plus de 2 heures
    • Si l’outil détecte un proxy que tu ne connais pas clic sur : « Supprimer le proxy« 
    • Héberge le rapport C:AdsFix_date_heure.txt sur Cjoint puis donne le lien obtenu.

    2) postes un zhpdiag

    • Télécharge ZHPDiag (de Nicolas Coolman) sur ton bureau.
    • Lance ZHPDiag, exécuter en tant qu’administrateur sous Windows : 7/8/10 et Vista
    • le « Disclamer » va s’afficher, clique sur » j’accepte
    • Clique sur Scanner

      Note : Ne pas fermer le programme même si il est indiqué qu’il ne répond plus.

    • Une fois le scan terminé, sur le bureau, le fichier ZHPDiag.txt à été créé.
    • Héberge le rapport ZHPDiag.txt présent sur ton bureau sur le site ci dessous, puis copie/colle le lien fourni dans ta prochaine réponse :

    http://www.cjoint.com

    tuto vidéo de cjoint : https://www.youtube.com/watch?v=eEsaF1NOrdw

    jacques.gache
    Participant
    Nombre d'articles : 678

    bonjour, :riencompris

    VIRUS MEME MALWAREBYTES M’AIDE PAS

    la c’est toi qui n’aide pas ton pc en donnant pas de suite à ta demande d’aide :lacheur :lol:

3 sujets de 1 à 3 (sur un total de 3)

Vous devez être connecté pour répondre à ce sujet.