Répondre à : mise à jour intempestive de java et média player 2016-09-08T13:39:47+00:00
buckhulk
Participant
Post count: 2391

il manque Malwarebytes ?

mise à jour >> Adobe Reader (décocher mcAfee)

pour Flash , java, adobe

Ne prendre des téléchargements QUE sur le site Editeur !

puis tu vas passer ce script :

  • Séléctionne et copie le script suivant :

    Script ZHPFix
    ShortcutFix
    G2 - GCE: Preference [User DataDefault] [dolkoohpbcbicjpeocmcfobmnlldjabe] PSSdrunnEru v.5.4 (Activé)
    G2 - EXT: C:UsersyannAppDataLocalGoogleChromeUser DataDefaultExtensionsdolkoohpbcbicjpeocmcfobmnlldjabe [PSSdrunnEru]
    R4 - HKLMSOFTWAREMicrosoftInternet ExplorerPhishingFilter,EnabledV8 = 0 => Microsoft Internet Explorer Phishing Filter Disabled
    R4 - HKLMSOFTWAREWow6432NodeMicrosoftInternet ExplorerPhishingFilter,EnabledV8 = 0 => Microsoft Internet Explorer Phishing Filter Disabled
    O2 - BHO: (no name) [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} Clé orpheline => Toolbar.Google
    O3 - Toolbar: (no name) - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} Clé orpheline => Toolbar.Google
    O3 - ToolbarWebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Clé orpheline => Toolbar.Google
    O4 - GSQuickLaunch [yann]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) -- C:UsersyannAppDataRoaminguTorrentuTorrent.exe =>P2P.BitTorrent
    OPT:O4 - HKLM..Wow6432NodeRun: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:Program Files (x86)QuickTimeQTTask.exe
    OPT:O4 - HKLM..Wow6432NodeRun: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:Program Files (x86)iTunesiTunesHelper.exe
    OPT:O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:Program Files (x86)BonjourmDNSResponder.exe
    [MD5.00000000000000000000000000000000] [APT] [AdobeFlashPlayerUpdate] (...) -- C:WindowsSysWOW64FlashPlayerUpdateService.exe (.not file.) [0] => Trojan.Agent
    [MD5.00000000000000000000000000000000] [APT] [AdobeFlashPlayerUpdate 2] (...) -- C:WindowsSysWOW64FlashPlayerUpdateService.exe (.not file.) [0] => Trojan.Agent
    [MD5.00000000000000000000000000000000] [APT] [AVG-Secure-Search-Update_JUNE2013_TB_rmv] (...) -- C:WindowsTEMP{0495C06B-26C6-4624-A7E0-CEB58F41B566}.exe (.not file.) [0] =>Toolbar.AVGSearch
    [MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-595886323-1816003800-3526052613-1000Core] (.Facebook Inc..) -- C:UsersyannAppDataLocalFacebookUpdateFacebookUpdate.exe [138096]
    [MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-595886323-1816003800-3526052613-1000UA] (.Facebook Inc..) -- C:UsersyannAppDataLocalFacebookUpdateFacebookUpdate.exe [138096]
    [MD5.00000000000000000000000000000000] [APT] [PCConfidential] (...) -- C:Program Files (x86)WinfernoPC ConfidentialPCConfidential.exe (.not file.) [0] => Winferno PC Confidential
    [MD5.00000000000000000000000000000000] [APT] [SweetPCFix] (...) -- C:Program Files (x86)SweetPCFixSweetPCFix.exe (.not file.) [0] =>PUP.SweetPCFix
    [MD5.00000000000000000000000000000000] [APT] [SweetPCFix_UPDATES] (...) -- C:Program Files (x86)SweetPCFixSweetPCFix.exe (.not file.) [0] =>PUP.SweetPCFix
    [MD5.00000000000000000000000000000000] [APT] [Test TimeTrigger] (...) -- C:UsersyannAppDataLocalTempRunner.exe (.not file.) [0] => Fichier absent
    [MD5.00000000000000000000000000000000] [APT] [{2A00E809-117B-4AB2-BC19-EC50D114C993}] (...) -- J:WinRAR 3.90 Beta 4 Cracked + Keygen + Instructions.txt [100% Working]rarreg.exe (.not file.) [0] => Crack, KeyGen, Keymaker - Possible Malware
    [MD5.00000000000000000000000000000000] [APT] [{32B4158B-B53A-4710-84A8-4551730EC89B}] (...) -- c:usersyannappdatalocalgooglechromeapplicationchrome.exe (.not file.) [0] => Google Chrome
    [MD5.00000000000000000000000000000000] [APT] [{5EB60E8A-178B-44B5-80A3-62ABF8DAEAEC}] (...) -- E:setup.exe (.not file.) [0] => Existe aussi en malware DELF-CA.Troj
    [MD5.00000000000000000000000000000000] [APT] [{694811CA-40E8-404F-B25C-F01DC0A871B5}] (...) -- C:Program Files (x86)VuzeAzureus.exe (.not file.) [0] =>P2P.Azureus
    [MD5.00000000000000000000000000000000] [APT] [{A827BEBA-C7B6-43DA-BDAC-48736A62B37C}] (...) -- E:autorun.exe (.not file.) [0] => Microsoft Windows NT or Infection USB
    [MD5.00000000000000000000000000000000] [APT] [{AB5DB656-0E71-4057-8E96-720D2F22B8E7}] (...) -- E:Installation.exe (.not file.) [0] => Fichier absent
    O39 - APT: FacebookUpdateTaskUserS-1-5-21-595886323-1816003800-3526052613-1000Core - (.Facebook Inc..) -- C:WindowsTasksFacebookUpdateTaskUserS-1-5-21-595886323-1816003800-3526052613-1000Core.job [902] => Facebook Update Task User
    O39 - APT: FacebookUpdateTaskUserS-1-5-21-595886323-1816003800-3526052613-1000Core - (.Facebook Inc..) -- C:WindowsSystem32TasksFacebookUpdateTaskUserS-1-5-21-595886323-1816003800-3526052613-1000Core [902] => Facebook Update Task User
    O39 - APT: FacebookUpdateTaskUserS-1-5-21-595886323-1816003800-3526052613-1000UA - (.Facebook Inc..) -- C:WindowsTasksFacebookUpdateTaskUserS-1-5-21-595886323-1816003800-3526052613-1000UA.job [924] => Facebook Update Task User
    O39 - APT: FacebookUpdateTaskUserS-1-5-21-595886323-1816003800-3526052613-1000UA - (.Facebook Inc..) -- C:WindowsSystem32TasksFacebookUpdateTaskUserS-1-5-21-595886323-1816003800-3526052613-1000UA [924] => Facebook Update Task User
    O39 - APT: PCConfidential - (...) -- C:WindowsSystem32TasksPCConfidential [440]
    O39 - APT: SweetPCFix_UPDATES - (...) -- C:WindowsTasksSweetPCFix_UPDATES.job [276] =>PUP.SweetPCFix
    O39 - APT: SweetPCFix_UPDATES - (...) -- C:WindowsSystem32TasksSweetPCFix_UPDATES [276] =>PUP.SweetPCFix
    O41 - Driver: (wStLib64) . (.StdLib - StdLib.) - C:WindowsSystem32driverswStLib64.sys =>PUP.LinkiDoo
    O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C} =>Toolbar.Google
    O42 - Logiciel: Is Cool - (...) [HKLM][64Bits] -- Is Cool =>Toolbar.IsCool
    O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKLM][64Bits] -- uTorrent =>P2P.BitTorrent
    [HKCUSoftwareAppDataLowSoftwareFCTB000061101] => Infection BT (Adware.IEtoolbar)
    [HKCUSoftwareAzureus] =>P2P.Azureus
    [HKCUSoftwareBitTorrent] =>P2P.BitTorrent
    [HKCUSoftwareMCAFEE]
    [HKCUSoftwareMGinstall]
    [HKCUSoftwareOB]
    [HKCUSoftwareusyndication.com] =>Trojan.USyndication
    [HKLMSoftwareWow6432NodeAzureus] =>P2P.Azureus
    [HKLMSoftwareWow6432NodeFCTB000061101] => Infection BT (Adware.IEtoolbar)
    [HKLMSoftwareWow6432NodeSoftware]
    O43 - CFD: 21/11/2010 - 15:08:31 - [] ----D C:Program Files (x86)LimeWire => LimeWire Java PeerToPeer
    O43 - CFD: 14/02/2014 - 14:31:10 - [] ----D C:ProgramDatac0e1356a6e18deef
    O43 - CFD: 30/01/2014 - 22:05:51 - [] ----D C:ProgramDatadolkoohpbcbicjpeocmcfobmnlldjabe
    O43 - CFD: 23/12/2013 - 12:21:50 - [] ----D C:ProgramDatakijijcigfbojacfafpadmkfmdbheookn
    O43 - CFD: 16/08/2010 - 04:31:51 - [] ----D C:ProgramDataMcAfee
    O43 - CFD: 15/09/2010 - 18:05:44 - [] ----D C:ProgramDataPPU
    O43 - CFD: 18/03/2014 - 22:31:53 - [] ----D C:ProgramDataPSSdrunnEru
    O43 - CFD: 04/12/2013 - 10:23:26 - [] ----D C:UsersyannAppDataRoaming.mono
    O43 - CFD: 18/03/2014 - 23:23:52 - [] ----D C:UsersyannAppDataRoamingAzureus =>P2P.Azureus
    O43 - CFD: 01/10/2010 - 14:00:14 - [] ----D C:UsersyannAppDataRoamingshufflr.B44416D205F9BE523726716C5EA9F9A53D22DAAF.1
    O43 - CFD: 18/03/2014 - 23:23:40 - [] ----D C:UsersyannAppDataRoaminguTorrent =>P2P.µTorrent
    O58 - SDL:18/03/2014 - 07:43:18 ---A- . (.StdLib - StdLib.) -- C:WindowsSystem32DriverswStLib64.sys [61120] =>PUP.LinkiDoo
    O64 - Services: CurCS - 20/10/2009 - C:WindowsSystem32driversnpf.sys (NPF) .(.CACE Technologies, Inc. - npf.sys (NT5/6 AMD64) Kernel Driver.) - LEGACY_NPF
    O64 - Services: CurCS - 18/03/2014 - C:WindowsSystem32driverswStLib64.sys (wStLib64) .(.StdLib - StdLib.) - LEGACY_WSTLIB64 =>PUP.LinkiDoo
    O87 - FAEL: "{97EC262E-48F0-464F-A79A-8E3F1895AAE6}" | In - None - P6 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:UsersyannAppDataRoaminguTorrentuTorrent.exe =>P2P.BitTorrent
    O87 - FAEL: "{87E4BC7C-B2FE-47C6-9573-B48F028685D8}" | In - None - P17 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:UsersyannAppDataRoaminguTorrentuTorrent.exe =>P2P.BitTorrent
    O90 - PUC: "112C48061A10E464790A9077E221B205" . (.Moovida.) -- C:WindowsInstaller{6084C211-01A1-464E-97A0-09772E122B50}ARPPRODUCTICON.exe =>Adware.SPointer
    [MD5.8AF5195348AD7D6EE381EDC9D2B81871] [WIS][06/01/2011] (.Secure Digital Services - Moovida.) -- C:WindowsInstaller11322f3.msi [2275840] =>Adware.SPointer
    [MD5.79E6443F01B4B1C3B957AA38DDD564FF] [WIS][16/07/2012] (.Boxore OU. - Software Update Helper.) -- C:WindowsInstaller229ca33.msi [45056] =>Adware.Boxore
    [MD5.E6A476329CDC652B02404453D1A4314D] [WIS][18/02/2013] (.QwertyBox Team - FrameFox Extensions 1.0.100.0 Setup.) -- C:WindowsInstaller24b17bc.msi [688128] =>PUP.FrameFox
    [MD5.854A87AFC88107DD499487FD6291611F] [WIS][13/02/2014] (.The Software Group - Software Update Helper.) -- C:WindowsInstaller25d473.msi [45056] =>Adware.Boxore
    [MD5.D24949E5C6EC59F7F8664A657066994D] [WIS][18/12/2009] (.Google Inc. - Google Toolbar for Internet Explorer.) -- C:WindowsInstaller75d24.msi [28160] =>Toolbar.Google
    HKLMSOFTWAREMicrosoftTracingBackupStack_RASAPI32 =>PUP.MyPCBackup
    HKLMSOFTWAREMicrosoftTracingBackupStack_RASMANCS =>PUP.MyPCBackup
    HKLMSOFTWAREMicrosoftTracingSignup Wizard_RASAPI32 =>PUP.JDIBackup
    HKLMSOFTWAREMicrosoftTracingSignup Wizard_RASMANCS =>PUP.JDIBackup
    HKLMSOFTWAREWow6432NodeMicrosoftTracingAzureus_RASAPI32 =>P2P.Azureus
    HKLMSOFTWAREWow6432NodeMicrosoftTracingAzureus_RASMANCS =>P2P.Azureus
    HKLMSOFTWAREWow6432NodeMicrosoftTracingbasicscan_RASAPI32 =>Adware.BasicScan
    HKLMSOFTWAREWow6432NodeMicrosoftTracingbasicscan_RASMANCS =>Adware.BasicScan
    HKLMSOFTWAREWow6432NodeMicrosoftTracingGoogleToolbarInstaller_updater_signed_RASAPI32 =>Toolbar.Google
    HKLMSOFTWAREWow6432NodeMicrosoftTracingGoogleToolbarInstaller_updater_signed_RASMANCS =>Toolbar.Google
    HKLMSOFTWAREWow6432NodeMicrosoftTracingGoogleToolbarNotifier_RASAPI32 =>Toolbar.Google
    HKLMSOFTWAREWow6432NodeMicrosoftTracingGoogleToolbarNotifier_RASMANCS =>Toolbar.Google
    HKLMSOFTWAREWow6432NodeMicrosoftTracingInstall_BubbleDock_RASMANCS =>PUP.BubbleDock
    HKLMSOFTWAREWow6432NodeMicrosoftTracingMedia Finder_RASAPI32 =>PUP.MediaFinder
    HKLMSOFTWAREWow6432NodeMicrosoftTracingMedia Finder_RASMANCS =>PUP.MediaFinder
    HKLMSOFTWAREWow6432NodeMicrosoftTracingmoovida_air_RASMANCS =>Adware.SPointer
    HKLMSOFTWAREWow6432NodeMicrosoftTracingSweetPCFix_RASAPI32 =>PUP.SweetPCFix
    HKLMSOFTWAREWow6432NodeMicrosoftTracingSweetPCFix_RASMANCS =>PUP.SweetPCFix
    HKLMSOFTWAREWow6432NodeMicrosoftTracingupdateStorimbo_RASAPI32 =>PUP.Storimbo
    HKLMSOFTWAREWow6432NodeMicrosoftTracingupdateStorimbo_RASMANCS =>PUP.Storimbo
    HKLMSOFTWAREWow6432NodeMicrosoftTracingVuzeInstaller_RASAPI32 =>P2P.Azureus
    HKLMSOFTWAREWow6432NodeMicrosoftTracingVuzeInstaller_RASMANCS =>P2P.Azureus
    HKLMSOFTWAREWow6432NodeMicrosoftTracingVuze_Installer_RASAPI32 =>P2P.Azureus
    HKLMSOFTWAREWow6432NodeMicrosoftTracingVuze_Installer_RASMANCS =>P2P.Azureus
    HKLMSOFTWAREWow6432NodeMicrosoftTracingVuze_RemoteAutoUpdaterHelper_RASAPI32 =>P2P.Azureus
    HKLMSOFTWAREWow6432NodeMicrosoftTracingVuze_RemoteAutoUpdaterHelper_RASMANCS =>P2P.Azureus
    HKLMSOFTWAREWow6432NodeMicrosoftTracingWebAdSystem_RASAPI32 =>Adware.WebAdSystem
    HKLMSOFTWAREWow6432NodeMicrosoftTracingWebAdSystem_RASMANCS =>Adware.WebAdSystem
    HKLMSOFTWAREWow6432NodeMicrosoftTracingwidestream6_air_RASAPI32 =>Adware.SPointer
    HKLMSOFTWAREWow6432NodeMicrosoftTracingwidestream6_air_RASMANCS =>Adware.SPointer
    [HKCRCLSID{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}] (Google Toolbar Notifier BHO) =>Toolbar.Google
    OPT:SR - | Auto 07/10/2010 345376 | (Bonjour Service) . (.Apple Inc..) - C:Program Files (x86)BonjourmDNSResponder.exe
    [HKLMSoftwareMicrosoftWindowsCurrentVersionUninstall{18455581-E099-4BA8-BC6B-F34B2F06600C}] =>Toolbar.Google^
    [HKLMSoftwareMicrosoftWindowsCurrentVersionUninstallIs Cool] =>Toolbar.IsCool^
    [HKLMSoftwareMicrosoftWindowsCurrentVersionUninstalluTorrent] =>P2P.BitTorrent^
    [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUpgradeCodes1C875DDE39636004CA8CDAEC335B4160] =>Adware.PredictAd
    [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUpgradeCodesBA086F2D38A8E1A47912955A68B3AD24] =>Adware.PredictAd
    [HKLMSoftwareClassesInstallerProducts112C48061A10E464790A9077E221B205] =>Adware.SPointer
    [HKLMSoftwareWow6432NodeClassesInstallerProducts112C48061A10E464790A9077E221B205] =>Adware.SPointer
    [HKCUSoftwareClassesMF] =>PUP.MediaFinder
    [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUpgradeCodes789034A89BAC50E4782F0A7BDBF75632] =>PUP.SweetIM
    [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components75D5168E5E176C24981B4E5DBD991078] =>PUP.SweetIM
    [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUpgradeCodesA97CEC23332751B47BA4B95BAA50C9D0] =>PUP.SweetIM
    [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsF754C503375A13344B22388E18DFE87E] =>PUP.SweetIM
    [HKCUSoftwareusyndication.com] =>Trojan.USyndication
    C:UsersyannAppDataRoamingAzureus =>P2P.Azureus^
    C:UsersyannAppDataRoaminguTorrent =>P2P.µTorrent^
    C:ProgramDataMicrosoftWindowsStart MenuProgramsSweetPCFix =>PUP.SweetPCFix
    C:WindowsTasksSweetPCFix_UPDATES.job =>PUP.SweetPCFix^
    C:WindowsSystem32TasksSweetPCFix_UPDATES =>PUP.SweetPCFix^
    [HKCUSoftwareAzureus] =>P2P.Azureus^
    [HKCUSoftwareBitTorrent] =>P2P.BitTorrent^
    [HKLMSoftwareWow6432NodeAzureus] =>P2P.Azureus^
    C:WindowsInstaller11322f3.msi =>Adware.SPointer^
    C:WindowsInstaller229ca33.msi =>Adware.Boxore^
    C:WindowsInstaller24b17bc.msi =>PUP.FrameFox^
    C:WindowsInstaller25d473.msi =>Adware.Boxore^
    C:WindowsInstaller75d24.msi =>Toolbar.Google^
    [HKCRCLSID{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}] (Google Toolbar Notifier BHO) =>Toolbar.Google^
    ProxyFix
    EmptyPrefetch
    EmptyFlash
    SysRestore
    FirewallRAZ
    EmptyTemp

  • Lances ZHPFix, exécuter en tant qu’administrateur sous Windows : 7/8 et Vista

    1. Clique sur Importer
    2. Les lignes précedemment copiées doivent être collées dans le cadre
    3. Si c’est le cas, Clic sur “GO


    exemple :

  • Confirmes les nettoyages des données en cliquant sur “Oui
  • Une fois le scan terminé rends toi sur le bureau, le fichier ZHPFixReport à été crée.
  • Héberge le rapport ZHPFixReport sur SosUpload, puis copie/colle le lien fourni dans ta prochaine réponse.

Ensuite tu me referas un ZHPDiag que je vois si on n’a pas oublié quelque chose

:merci2: