Répondre à : Machine Win 7 (Venus) 2016-09-08T13:58:28+00:00
Photo du profil de buckhulkbuckhulk
Participant
Post count: 2391

Je viens de voir que tu au moins 5 logiciel de P2P ??

pourquoi 5 ?? en plus tu as du les télécharger ou il ne fallait pas …. :(

c’est peut-être aussi à cause de ça que tu es infecté :
[spoiler:1oylbomw]fichiers Crack & Keygen
D:Public document'scomputer managementdownloadFSX-#1VRS_ FA18_E Cracked.rar =>.Crack,Keygen
D:Public document'scomputer managementdownloadWindows.Genuine.Advantage.Validation.v1.8.31.9.CRACKED SP3 WORKSWindows.Genuine.Advantage.Validation.v1.8.31.9.CRACKEDWgaTray.exe =>.Crack,Keygen
J:Documents and Settings thuThucomputers exchangesto be sortedNew FolderLacviet_hanhchinh.com.vnKeygen_mtd9Huong dan.pdf =>.Crack,Keygen
J:emuleIncoming- Sony.vegas.pro.9.0-crack.and.keygen.only.rar =>.Crack,Keygen
J:emuleIncomingSony Vegas Pro v12.0 Build 394 (32 & 64Bit) + Keygen & RegKey.zip =>.Crack,Keygen
J:emuleIncomingTchaikovsky.-.[Suite.from.the.Ballet.'Swan.Lake','Sleeping.Beauty','Nutcracker'].??.(mp3).rar =>.Crack,Keygen
J:LangagesFrench[Rosetta Stone] (French) [levels 1,2,3] 2007 + Audio Companion + [Rosetta Stone 3.4.5 exe] + crack, keygen, patch.zip =>.Crack,Keygen
J:microprogramProgrammesGenie.Outlook.Express.Backup.6.5.121+keygen.rar =>.Crack,Keygen
J:microprogramProgrammesLavasoft Adaware Se Professional All Language Files Cracked.rar =>.Crack,Keygen
J:microprogramProgrammesVirtualDrive-Pro12keygen.exe =>.Crack,Keygen
J:Sony Vegas Pro v.11.0.425 32Bit + 64Bit + KeyGen_DnGnMsTrInstalador32Bitvegaspro11.0.424_32bit.exe =>.Crack,Keygen
J:Sony Vegas Pro v.11.0.425 32Bit + 64Bit + KeyGen_DnGnMsTrInstalador64Bitvegaspro11.0.425_64bit.exe =>.Crack,Keygen[/spoiler:1oylbomw]

Adobe reader à mettre à jour : Adobe Reader décocher McAfee

voici un premier script , tu me referas un nouveau ZHPDiag après s’il te plait :

  • Séléctionne et copie le script suivant :

    Script ZHPFix
    ShortcutFix
    eMule0.60 v1.0.0.3
    B0 - SPO: operaprefs.ini [VenusDominique] Home URL=http://search.softonic.com/INF00212/tb_v1?SearchSource=10&cc=&mi=488d57c000000000000000270e243825 =>Toolbar.Conduit
    B1 - OSP: search.ini [VenusDominique] URL=http://search.softonic.com/INF00212/tb_v1?q=%s =>Toolbar.Conduit
    eMule0.60 v1.0.0.3
    O23 - Service: Soda PDF 3D Reader Creator (Soda PDF 3D Reader Creator) . (.LULU SOFTWARE LIMITED - Soda PDF 3D Reader.) - C:Program Files (x86)Soda PDF 3D Readercreator-ws.exe
    [MD5.00000000000000000000000000000000] [APT] [GoogleUpdateTaskUserS-1-5-21-3711420242-1791583040-2677181901-1005Core] (...) -- C:UsersVenusDominiqueAppDataLocalGoogleUpdateGoogleUpdate.exe (.not file.) [0] => Google Update Task User
    [MD5.00000000000000000000000000000000] [APT] [GoogleUpdateTaskUserS-1-5-21-3711420242-1791583040-2677181901-1005UA] (...) -- C:UsersVenusDominiqueAppDataLocalGoogleUpdateGoogleUpdate.exe (.not file.) [0] => Google Update Task User
    [MD5.00000000000000000000000000000000] [APT] [{47342C96-D420-4752-B767-1676D66052ED}] (...) -- D:ProgramsDisksWindows repairstartuplite-setup-1.07.exe (.not file.) [0] => Fichier absent
    [MD5.00000000000000000000000000000000] [APT] [{B9173709-B8C2-4764-A558-6B4C55A71934}] (...) -- c:usersVenusDominiqueappdatalocalgooglechromeapplicationchrome.exe (.not file.) [0] => Google Chrome
    O41 - Driver: (Eve) . (...) - C:WindowsSystem32DRIVERSeve.sys
    O41 - Driver: (A2DDA) . (. - .) - C:Program Files (x86)Emsisoft Anti-Malwarea2ddax64.sys (.not file.) => Fichier absent
    O41 - Driver: (a2injectiondriver) . (. - .) - C:Program Files (x86)Emsisoft Anti-Malwarea2dix64.sys (.not file.) => Fichier absent
    O41 - Driver: (a2util) . (. - .) - C:Program Files (x86)Emsisoft Anti-Malwarea2util64.sys (.not file.) => Fichier absent
    O41 - Driver: ({a3f28269-ad17-41a8-b032-3e0313ef8979}Gw64) . (. - .) - C:WindowsSystem32drivers{a3f28269-ad17-41a8-b032-3e0313ef8979}Gw64.sys (.not file.) => Fichier absent
    O42 - Logiciel: Adobe Flash Player 13 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX => Adobe Systems
    O42 - Logiciel: eMule0.60 - (.eMule.com.) [HKLM][64Bits] -- eMule0.60
    [HKCUSoftwareAd-Aware Search Protection] => Lavasoft
    [HKCUSoftwareBitComet eMule plugin] =>P2P.BitComet
    [HKCUSoftwareBitComet] =>P2P.BitComet
    [HKCUSoftwareFieldston Software]
    [HKCUSoftwareMcAfee]
    [HKCUSoftwareSUPERAntiSpyware.com] => SUPERAntiSpyware.com*
    [HKCUSoftwarecks]
    [HKCUSoftwareeMule0.60]
    [HKCUSoftwareeMuleTorrentVersion]
    [HKLMSoftwareSUPERAntiSpyware.com] => SUPERAntiSpyware.com*
    [HKLMSoftwareWow6432NodeArchibel S.A.]
    [HKLMSoftwareWow6432NodeSk-Enabler] =>Adware.SurfAndKeep
    O43 - CFD: 31.01.2013 - 11:33:13 - [] ----D C:Program Files (x86)Archibel S.A
    O43 - CFD: 17.03.2014 - 13:24:44 - [] ----D C:Program Files (x86)BitComet =>P2P.BitComet
    O43 - CFD: 29.07.2014 - 05:00:09 - [] ----D C:Program Files (x86)eMule0.60
    O43 - CFD: 30.01.2013 - 10:11:35 - [] ----D C:Program Files (x86)Fieldston Software
    O43 - CFD: 13.10.2010 - 19:06:43 - [0] ----D C:Program Files (x86)interdescargas-FR => interdescargas-FR
    O43 - CFD: 30.01.2013 - 10:15:10 - [] ----D C:Program Files (x86)Microsoft Integration
    O43 - CFD: 07.04.2013 - 06:53:59 - [] ----D C:Program Files (x86)Microsoft ISATAP Adapter
    O43 - CFD: 12.03.2014 - 09:42:16 - [] ----D C:Program Files (x86)Total PDF Converter OCR
    O43 - CFD: 10.06.2014 - 17:35:34 - [] ----D C:Program Files (x86)Common FilesMicrosoft ISATAP Adapter
    O43 - CFD: 02.07.2014 - 23:52:36 - [] ----D C:ProgramDataAd-Aware Browsing Protection => Lavasoft
    O43 - CFD: 21.08.2014 - 10:26:43 - [] ----D C:ProgramDataeMule => P2P.eMule
    O43 - CFD: 30.12.2012 - 16:06:37 - [] ----D C:ProgramDataMcAfee
    O43 - CFD: 06.05.2014 - 13:48:52 - [0] ----D C:ProgramDataSpeed Streamer => Empty Folder not necessary
    O43 - CFD: 27.12.2013 - 11:15:03 - [] ----D C:ProgramDatasurf And! Keep =>Adware.SurfAndKeep
    O43 - CFD: 27.07.2014 - 23:04:54 - [0] -SH-D C:ProgramData{01BD4FC9-2F86-4706-A62E-774BB7E9D308} => PUP.Agent
    O43 - CFD: 27.07.2014 - 22:19:50 - [] ----D C:UsersVenusDominique.VenusAppDataRoamingAVG => Grisoft AVG
    O43 - CFD: 14.07.2014 - 07:39:31 - [] ----D C:UsersVenusDominique.VenusAppDataRoamingBitComet =>P2P.BitComet
    O43 - CFD: 10.08.2014 - 08:29:48 - [0] ----D C:UsersVenusDominique.VenusAppDataRoamingFirefoxToolbar => Toolbar.Firefox
    O43 - CFD: 31.03.2013 - 03:52:51 - [] ----D C:UsersVenusDominique.VenusAppDataRoamingHoudah Software
    O43 - CFD: 10.07.2013 - 10:36:50 - [] ----D C:UsersVenusDominique.VenusAppDataRoamingIncomingFiles
    O43 - CFD: 20.06.2014 - 06:24:21 - [] ----D C:UsersVenusDominique.VenusAppDataRoamingLULU_SOFTWARE_LIMITED
    O43 - CFD: 27.07.2014 - 16:46:49 - [] ----D C:UsersVenusDominique.VenusAppDataRoamingrmi
    O43 - CFD: 27.08.2012 - 05:58:43 - [] ----D C:UsersVenusDominique.VenusAppDataRoamingSymantec_Corporation => Symantec Corporation
    O43 - CFD: 27.08.2012 - 09:26:56 - [] ----D C:UsersVenusDominique.VenusAppDataLocalAvira
    O43 - CFD: 27.08.2012 - 09:26:56 - [] ----D C:UsersVenusDominique.VenusAppDataLocalAVS4YOU
    O43 - CFD: 27.08.2012 - 09:17:46 - [] ----D C:UsersVenusDominique.VenusAppDataLocalBitComet =>P2P.BitComet
    O43 - CFD: 20.08.2012 - 10:05:04 - [] ----D C:UsersVenusDominique.VenusAppDataLocaleMule => P2P.eMule
    O43 - CFD: 21.06.2014 - 17:40:05 - [] ----D C:UsersVenusDominique.VenusAppDataLocaleMule0.60
    O49 - CSB:Control Safe Boot HKLM...CCSMinimalCleanHlp.sys . (...) -- C:WindowsSystem32DriversCleanHlp.sys (.not file.) => Fichier absent
    O49 - CSB:Control Safe Boot HKLM...CCSNetworkCleanHlp.sys . (...) -- C:WindowsSystem32DriversCleanHlp.sys (.not file.) => Fichier absent
    O53 - SMSR:HKLM...startupregAd-Aware Browsing Protection [Key] . (.Lavasoft - Ad-Aware Browsing Protection and Anti-Phish.) -- C:ProgramDataAd-Aware Browsing Protectionadawarebp.exe
    O53 - SMSR:HKLM...startupregBitComet [Key] . (...) -- C:Program FilesBitCometBitComet.exe (.not file.) =>P2P.BitComet
    O53 - SMSR:HKLM...startupregOP12 Reminder [Key] . (.ScanSoft, Inc. - SSFT Ereg.) -- C:Program Files (x86)ScanSoftOmniPagePro12.0EregEngEreg.exe
    O58 - SDL:28.03.2013 - 19:50:02 ---A- . (...) -- C:WindowsSystem32Driverseve.sys [41304]
    O58 - SDL:15.08.2007 - 21:32:34 ---A- . (.FarStone Inc. - FarStone SCSI Miniport.) -- C:WindowsSystem32DriversFVXSCSI.SYS [81424]
    O61 - LFC: 14.08.2014 - 18:13:09 ---A- . (...) -- C:UsersVenusDominique.VenusAppDataLocalTempNVIDIA CorporationNV_Cache6d1026b4fa6d4c49d77d65f8805a9c0_fce8395c8fd8a860_8ef65da2b249774d_0_0.bin [16384] => Temporary file not necessary
    O61 - LFC: 21.08.2014 - 18:13:25 ---A- . (.eMule Plus Team.) -- C:UsersVenusDominique.VenusDesktopeMulePlus-1.2e.Installer.exe [2685642]
    O64 - Services: CurCS - 28.03.2013 - C:WindowsSystem32DRIVERSeve.sys (Eve) .(...) - LEGACY_EVE
    O64 - Services: CurCS - 16.07.2010 - C:WindowsSystem32driversnpf.sys (npf) .(.CACE Technologies, Inc. - npf.sys (NT5/6 AMD64) Kernel Driver.) - LEGACY_NPF
    O69 - SBI: SearchScopes [HKCU] {9BB47C17-9C68-4BB3-B188-DD9AF0FD2503} - (default-search.net) - http://www.default-search.net =>Hijacker.Browsers
    [MD5.939B0DA535485F8B5B11DD23DEDF6B50] [SPRF][21.08.2014] (.eMule Plus Team - eMule Plus, The eye candy eMule client.) -- C:UsersVenusDominique.VenusDesktopeMulePlus-1.2e.Installer.exe [2685642]
    [MD5.798610F0CC4208089886EEDCC5951D96] [SPRF][11.08.2014] (.Pas de propriétaire - Setup Application.) -- C:UsersVenusDominique.VenusDesktoptweaking.com_windows_repair_aio_setup.exe [9521280]
    MD5.CF5920F2091D55A2B621B16D9DC0BB9E] [SPRF][12.12.2008] (...) -- C:Program Files (x86)Remote_Panel.exe [606208]
    O87 - FAEL: "TCP Query User{861FF1BF-2D48-4407-AB46-66CD14125A92}C:program filesbitcometplugin_emuleplugin_emule.exe" | In - Public - P6 - TRUE | .(.http://www.bitcomet.com - eMule plugin host for BitComet.) -- C:program filesbitcometplugin_emuleplugin_emule.exe =>P2P.BitComet
    O87 - FAEL: "UDP Query User{5C7D7C77-A220-4909-8BA9-0C971821822F}C:program filesbitcometplugin_emuleplugin_emule.exe" | In - Public - P17 - TRUE | .(.http://www.bitcomet.com - eMule plugin host for BitComet.) -- C:program filesbitcometplugin_emuleplugin_emule.exe =>P2P.BitComet
    HKLMSOFTWAREMicrosoftTracingBitComet_RASAPI32 =>P2P.BitComet
    HKLMSOFTWAREMicrosoftTracingBitComet_RASMANCS =>P2P.BitComet
    HKLMSOFTWAREWow6432NodeMicrosoftTracingBitComet_RASAPI32 =>P2P.BitComet
    HKLMSOFTWAREWow6432NodeMicrosoftTracingBitComet_RASMANCS =>P2P.BitComet
    HKLMSOFTWAREWow6432NodeMicrosoftTracingBI_RunOnce_RASAPI32 =>Adware.MegaSearch
    HKLMSOFTWAREWow6432NodeMicrosoftTracingBI_RunOnce_RASMANCS =>Adware.MegaSearch
    HKLMSOFTWAREWow6432NodeMicrosoftTracingemule_RASAPI32 =>P2P.eMule
    HKLMSOFTWAREWow6432NodeMicrosoftTracingemule_RASMANCS =>P2P.eMule
    HKLMSOFTWAREWow6432NodeMicrosoftTracingplugin_eMule_RASAPI32 =>P2P.eMule
    HKLMSOFTWAREWow6432NodeMicrosoftTracingplugin_eMule_RASMANCS =>P2P.eMule
    HKLMSOFTWAREWow6432NodeMicrosoftTracingRockTurner_RASAPI32 =>PUP.RockTurner
    HKLMSOFTWAREWow6432NodeMicrosoftTracingRockTurner_RASMANCS =>PUP.RockTurner
    HKLMSOFTWAREWow6432NodeMicrosoftTracingSk-Enabler_RASAPI32 =>Adware.SurfAndKeep
    HKLMSOFTWAREWow6432NodeMicrosoftTracingupdateRockTurner_RASAPI32 =>PUP.RockTurner
    HKLMSOFTWAREWow6432NodeMicrosoftTracingupdateRockTurner_RASMANCS =>PUP.RockTurner
    HKLMSOFTWAREWow6432NodeMicrosoftTracingutilRockTurner_RASAPI32 =>PUP.RockTurner
    HKLMSOFTWAREWow6432NodeMicrosoftTracingutilRockTurner_RASMANCS =>PUP.RockTurner
    OPT:SS - | Disabled 30.08.2011 462184 | (Bonjour Service) . (.Apple Inc..) - C:Program FilesBonjourmDNSResponder.exe
    SS - | Demand 23.04.2014 744800 | (LULU Software CrashHandler) . (.LULU SOFTWARE LIMITED.) - C:Program Files (x86)Soda PDF 3D Readercrash-handler-ws.exe
    SS - | Demand 23.04.2014 1598816 | (Soda PDF 3D Reader) . (.LULU SOFTWARE LIMITED.) - C:Program Files (x86)Soda PDF 3D Readerws.exe
    SS - | Auto 23.04.2014 621408 | (Soda PDF 3D Reader Creator) . (.LULU SOFTWARE LIMITED.) - C:Program Files (x86)Soda PDF 3D Readercreator-ws.exe
    [HKLMSoftwareMicrosoftShared ToolsMSConfigstartupregBitComet] =>P2P.BitComet^
    [HKLMSoftwareMicrosoftInternet ExplorerSearchScopes{9BB47C17-9C68-4BB3-B188-DD9AF0FD2503}] =>Adware.Bandoo^
    C:Program Files (x86)BitComet =>P2P.BitComet^
    C:ProgramDatasurf And! Keep =>Adware.SurfAndKeep^
    C:UsersVenusDominique.VenusAppDataRoamingBitComet =>P2P.BitComet^
    C:UsersVenusDominique.VenusAppDataLocalBitComet =>P2P.BitComet^
    C:Program Files (x86)interdescargas-FR =>Toolbar.Conduit
    C:UsersVenusDominique.VenusAppDataLocalLowAVG Secure Search =>Toolbar.AVGSearch
    C:Program Files (x86)VDOWNLOADEROpenCandy =>Adware.OpenCandy
    C:UsersVenusDominique.VenusAppDataRoamingMozillaFirefoxProfilesjksx81yt.defaultadawaretb =>Toolbar.AdAware
    [HKCUSoftwareBitComet eMule plugin] =>P2P.BitComet^
    [HKCUSoftwareBitComet] =>P2P.BitComet^
    [HKLMSoftwareWow6432NodeSk-Enabler] =>Adware.SurfAndKeep^
    ProxyFix
    EmptyPrefetch
    EmptyFlash
    SysRestore
    FirewallRAZ
    EmptyTemp

  • Lances ZHPFix, exécuter en tant qu’administrateur sous Windows : 7/8 et Vista

    1. Clique sur Importer
    2. Les lignes précedemment copiées doivent être collées dans le cadre
    3. Si c’est le cas, Clic sur “GO


    exemple :

  • Confirmes les nettoyages des données en cliquant sur “Oui
  • Une fois le scan terminé rends toi sur le bureau, le fichier ZHPFixReport à été crée.
  • Héberge le rapport ZHPFixReport sur SosUpload, puis copie/colle le lien fourni dans ta prochaine réponse.

donc un nouveau ZHPDiag après avoir redémarré s’il te plait !

2 rapports , ZHPFix et ZHPDiag
:merci2: