Apparition de pubs intempestives
Résolu/Fermé
opaline59171
Messages postés
8
Date d'inscription
jeudi 20 janvier 2011
Statut
Membre
Dernière intervention
20 janvier 2011
-
20 janv. 2011 à 13:06
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 - 20 janv. 2011 à 22:33
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 - 20 janv. 2011 à 22:33
A voir également:
- Apparition de pubs intempestives
- Bloqueur de pub youtube - Guide
- Supprimer les pubs - Guide
- YT Siphon : une extension pour contourner la pub sur YouTube - Guide
- Pubs netflix - Guide
- Bloquer les pubs sur youtube - Guide
13 réponses
Malekal_morte-
Messages postés
180304
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
15 décembre 2020
24 628
20 janv. 2011 à 13:12
20 janv. 2011 à 13:12
Salut,
Télécharge et installe Malwarebyte : https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
Mets le à jour, fais un scan, supprime tout et poste le rapport ici.
puis :
Tu peux suivre les indications de cette page pour t'aider : https://www.malekal.com/tutorial-otl/
* Télécharge http://www.geekstogo.com/forum/files/file/398-otl-oldtimers-list-it/ sur ton bureau.
(Sous Vista/Win7, il faut cliquer droit sur OTL et choisir Exécuter en tant qu'administrateur)
* Lance OTL
* Sous Peronnalisation, copie-colle ce qu'il y a dans le cadre ci-dessous :
netsvcs
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%SYSTEMDRIVE%\*.exe
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
/md5start
explorer.exe
winlogon.exe
wininit.exe
/md5stop
CREATERESTOREPOINT
* Clique sur le bouton Analyse.
* Quand le scan est fini, utilise le site http://www.cijoint.fr/ pour me donner les deux rapports : OTL.Txt et Extras.Txt.
Télécharge et installe Malwarebyte : https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
Mets le à jour, fais un scan, supprime tout et poste le rapport ici.
puis :
Tu peux suivre les indications de cette page pour t'aider : https://www.malekal.com/tutorial-otl/
* Télécharge http://www.geekstogo.com/forum/files/file/398-otl-oldtimers-list-it/ sur ton bureau.
(Sous Vista/Win7, il faut cliquer droit sur OTL et choisir Exécuter en tant qu'administrateur)
* Lance OTL
* Sous Peronnalisation, copie-colle ce qu'il y a dans le cadre ci-dessous :
netsvcs
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%SYSTEMDRIVE%\*.exe
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
/md5start
explorer.exe
winlogon.exe
wininit.exe
/md5stop
CREATERESTOREPOINT
* Clique sur le bouton Analyse.
* Quand le scan est fini, utilise le site http://www.cijoint.fr/ pour me donner les deux rapports : OTL.Txt et Extras.Txt.
opaline59171
Messages postés
8
Date d'inscription
jeudi 20 janvier 2011
Statut
Membre
Dernière intervention
20 janvier 2011
20 janv. 2011 à 13:21
20 janv. 2011 à 13:21
La je suis en train de m'occuper de malawarebyte j'attend qu'il se met à jour :)
Ccleaner est paramétrer toutes les erreurs ont été corrigées.
Ccleaner est paramétrer toutes les erreurs ont été corrigées.
Malekal_morte-
Messages postés
180304
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
15 décembre 2020
24 628
20 janv. 2011 à 13:59
20 janv. 2011 à 13:59
On s'en fout de CCleaner...
opaline59171
Messages postés
8
Date d'inscription
jeudi 20 janvier 2011
Statut
Membre
Dernière intervention
20 janvier 2011
20 janv. 2011 à 14:29
20 janv. 2011 à 14:29
Voici le rapport de malawarebyte...
et merci pour votre aide
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Version de la base de données: 5559
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
20/01/2011 14:27:52
mbam-log-2011-01-20 (14-27-52).txt
Type d'examen: Examen complet (C:\|D:\|)
Elément(s) analysé(s): 500377
Temps écoulé: 1 heure(s), 2 minute(s), 7 seconde(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 15
Valeur(s) du Registre infectée(s): 3
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 7
Fichier(s) infecté(s): 52
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\AppID\{0D82ACD6-A652-4496-A298-2BDE705F4227} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{7025E484-D4B0-441a-9F0B-69063BD679CE} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{8258B35C-05B8-4c0e-9525-9BCCC70F8F2D} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{A89256AD-EC17-4a83-BEF5-4B8BC4F39306} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{100EB1FD-D03E-47FD-81F3-EE91287F9465} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{258C9770-1713-4021-8D7E-1F184A2BD754} (Adware.ShoppingReport2) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{46897C77-E7A6-4C33-BFFB-E9C2E2718942} (Adware.Mp3Tube) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{46897C77-E7A6-4C33-BFFB-E9C2E2718942} (Adware.Mp3Tube) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7CDDCDC-BEEB-4685-A062-978F5E07CEEE} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{BDEA95CF-F0E6-41E0-BD3D-B00F39A4E939} (Adware.ShoppingReport2) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7} (Adware.Softomate) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.Reporter (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.Reporter.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Mp3Tube (Adware.Mp3Tube) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\HBLite (Adware.HotBar) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{46897C77-E7A6-4C33-BFFB-E9C2E2718942} (Adware.Mp3Tube) -> Value: {46897C77-E7A6-4C33-BFFB-E9C2E2718942} -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{46897C77-E7A6-4C33-BFFB-E9C2E2718942} (Adware.Mp3Tube) -> Value: {46897C77-E7A6-4C33-BFFB-E9C2E2718942} -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform\SRS_IT_E8790475B6765B5434AB98 (Malware.Trace) -> Value: SRS_IT_E8790475B6765B5434AB98 -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
d:\documents and settings\Tiote\application data\mp3tube toolbar (Adware.Mp3Tube) -> Quarantined and deleted successfully.
d:\documents and settings\Tiote\application data\mp3tube toolbar\images (Adware.Mp3Tube) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104 (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\rules (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\temp (PUP.Dealio) -> Quarantined and deleted successfully.
Fichier(s) infecté(s):
c:\Temp\crazyloader-1.3-win32.exe (Adware.Hotbar) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\local settings\application data\IM\identities\{7f0beecf-d0f4-4a5f-8285-73b6febaa9ab}\addressbook\tempcontacts.imb (Trojan.Goldun) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\mes documents\personnalisation\nouveau dossier\crystal clear\packfiles\9_calc.exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
d:\documents and settings\fred.115189560310\local settings\application data\IM\identities\{23927197-c5f8-4b46-b4b1-123ac1d59e6c}\addressbook\tempcontacts.imb (Trojan.Goldun) -> Quarantined and deleted successfully.
d:\documents and settings\Tiote\application data\mp3tube toolbar\pref.xml (Adware.Mp3Tube) -> Quarantined and deleted successfully.
d:\documents and settings\Tiote\application data\mp3tube toolbar\tbconfig.xml (Adware.Mp3Tube) -> Quarantined and deleted successfully.
d:\documents and settings\Tiote\application data\mp3tube toolbar\images\dailyhotdeals.png (Adware.Mp3Tube) -> Quarantined and deleted successfully.
d:\documents and settings\Tiote\application data\mp3tube toolbar\images\divider.png (Adware.Mp3Tube) -> Quarantined and deleted successfully.
d:\documents and settings\Tiote\application data\mp3tube toolbar\images\feeditem.png (Adware.Mp3Tube) -> Quarantined and deleted successfully.
d:\documents and settings\Tiote\application data\mp3tube toolbar\images\games.png (Adware.Mp3Tube) -> Quarantined and deleted successfully.
d:\documents and settings\Tiote\application data\mp3tube toolbar\images\savemp3.png (Adware.Mp3Tube) -> Quarantined and deleted successfully.
d:\documents and settings\Tiote\application data\mp3tube toolbar\images\savemp3_disabled.png (Adware.Mp3Tube) -> Quarantined and deleted successfully.
d:\documents and settings\Tiote\application data\mp3tube toolbar\images\screensaver.png (Adware.Mp3Tube) -> Quarantined and deleted successfully.
d:\documents and settings\Tiote\application data\mp3tube toolbar\images\shopping.png (Adware.Mp3Tube) -> Quarantined and deleted successfully.
d:\documents and settings\Tiote\application data\mp3tube toolbar\images\watermark.png (Adware.Mp3Tube) -> Quarantined and deleted successfully.
d:\documents and settings\Tiote\application data\mp3tube toolbar\images\weatherbug.png (Adware.Mp3Tube) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\err_toolbar.html (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\as_sidebar.html (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\blank.gif (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\dealiosearch.html (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\deals-endcap.gif (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\deals-leftcap.gif (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\deal_report.jpg (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\ebay_login.jpg (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\err_mainwindow.html (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\err_sidebar.html (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\global_scripts.js (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\headerbgthin.jpg (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\logo.png (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\logo_over.png (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\man_toolbar.html (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\man_toolbar.js (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\pill_bg.gif (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\post-this-deal.gif (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\post-this-deal_over.gif (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\ps.png (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\ps_over.png (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\scripts.js (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\scroller.js (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\search_bg_blink.gif (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\separator.gif (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\settings.gif (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\settings_over.gif (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\sidebar.html (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\steals_bg.gif (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\toolbar_background.gif (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\temp\dealio-13643.log (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\temp\dealio-13644.log (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\temp\dealio-13646.log (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\temp\dealio-13647.log (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\temp\dod_cache.xml (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\temp\_toolbar_tmp_3396_3276_5.html (PUP.Dealio) -> Quarantined and deleted successfully.
et merci pour votre aide
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Version de la base de données: 5559
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
20/01/2011 14:27:52
mbam-log-2011-01-20 (14-27-52).txt
Type d'examen: Examen complet (C:\|D:\|)
Elément(s) analysé(s): 500377
Temps écoulé: 1 heure(s), 2 minute(s), 7 seconde(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 15
Valeur(s) du Registre infectée(s): 3
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 7
Fichier(s) infecté(s): 52
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\AppID\{0D82ACD6-A652-4496-A298-2BDE705F4227} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{7025E484-D4B0-441a-9F0B-69063BD679CE} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{8258B35C-05B8-4c0e-9525-9BCCC70F8F2D} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{A89256AD-EC17-4a83-BEF5-4B8BC4F39306} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{100EB1FD-D03E-47FD-81F3-EE91287F9465} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{258C9770-1713-4021-8D7E-1F184A2BD754} (Adware.ShoppingReport2) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{46897C77-E7A6-4C33-BFFB-E9C2E2718942} (Adware.Mp3Tube) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{46897C77-E7A6-4C33-BFFB-E9C2E2718942} (Adware.Mp3Tube) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7CDDCDC-BEEB-4685-A062-978F5E07CEEE} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{BDEA95CF-F0E6-41E0-BD3D-B00F39A4E939} (Adware.ShoppingReport2) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7} (Adware.Softomate) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.Reporter (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.Reporter.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Mp3Tube (Adware.Mp3Tube) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\HBLite (Adware.HotBar) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{46897C77-E7A6-4C33-BFFB-E9C2E2718942} (Adware.Mp3Tube) -> Value: {46897C77-E7A6-4C33-BFFB-E9C2E2718942} -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{46897C77-E7A6-4C33-BFFB-E9C2E2718942} (Adware.Mp3Tube) -> Value: {46897C77-E7A6-4C33-BFFB-E9C2E2718942} -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform\SRS_IT_E8790475B6765B5434AB98 (Malware.Trace) -> Value: SRS_IT_E8790475B6765B5434AB98 -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
d:\documents and settings\Tiote\application data\mp3tube toolbar (Adware.Mp3Tube) -> Quarantined and deleted successfully.
d:\documents and settings\Tiote\application data\mp3tube toolbar\images (Adware.Mp3Tube) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104 (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\rules (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\temp (PUP.Dealio) -> Quarantined and deleted successfully.
Fichier(s) infecté(s):
c:\Temp\crazyloader-1.3-win32.exe (Adware.Hotbar) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\local settings\application data\IM\identities\{7f0beecf-d0f4-4a5f-8285-73b6febaa9ab}\addressbook\tempcontacts.imb (Trojan.Goldun) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\mes documents\personnalisation\nouveau dossier\crystal clear\packfiles\9_calc.exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
d:\documents and settings\fred.115189560310\local settings\application data\IM\identities\{23927197-c5f8-4b46-b4b1-123ac1d59e6c}\addressbook\tempcontacts.imb (Trojan.Goldun) -> Quarantined and deleted successfully.
d:\documents and settings\Tiote\application data\mp3tube toolbar\pref.xml (Adware.Mp3Tube) -> Quarantined and deleted successfully.
d:\documents and settings\Tiote\application data\mp3tube toolbar\tbconfig.xml (Adware.Mp3Tube) -> Quarantined and deleted successfully.
d:\documents and settings\Tiote\application data\mp3tube toolbar\images\dailyhotdeals.png (Adware.Mp3Tube) -> Quarantined and deleted successfully.
d:\documents and settings\Tiote\application data\mp3tube toolbar\images\divider.png (Adware.Mp3Tube) -> Quarantined and deleted successfully.
d:\documents and settings\Tiote\application data\mp3tube toolbar\images\feeditem.png (Adware.Mp3Tube) -> Quarantined and deleted successfully.
d:\documents and settings\Tiote\application data\mp3tube toolbar\images\games.png (Adware.Mp3Tube) -> Quarantined and deleted successfully.
d:\documents and settings\Tiote\application data\mp3tube toolbar\images\savemp3.png (Adware.Mp3Tube) -> Quarantined and deleted successfully.
d:\documents and settings\Tiote\application data\mp3tube toolbar\images\savemp3_disabled.png (Adware.Mp3Tube) -> Quarantined and deleted successfully.
d:\documents and settings\Tiote\application data\mp3tube toolbar\images\screensaver.png (Adware.Mp3Tube) -> Quarantined and deleted successfully.
d:\documents and settings\Tiote\application data\mp3tube toolbar\images\shopping.png (Adware.Mp3Tube) -> Quarantined and deleted successfully.
d:\documents and settings\Tiote\application data\mp3tube toolbar\images\watermark.png (Adware.Mp3Tube) -> Quarantined and deleted successfully.
d:\documents and settings\Tiote\application data\mp3tube toolbar\images\weatherbug.png (Adware.Mp3Tube) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\err_toolbar.html (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\as_sidebar.html (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\blank.gif (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\dealiosearch.html (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\deals-endcap.gif (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\deals-leftcap.gif (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\deal_report.jpg (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\ebay_login.jpg (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\err_mainwindow.html (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\err_sidebar.html (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\global_scripts.js (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\headerbgthin.jpg (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\logo.png (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\logo_over.png (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\man_toolbar.html (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\man_toolbar.js (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\pill_bg.gif (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\post-this-deal.gif (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\post-this-deal_over.gif (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\ps.png (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\ps_over.png (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\scripts.js (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\scroller.js (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\search_bg_blink.gif (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\separator.gif (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\settings.gif (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\settings_over.gif (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\sidebar.html (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\steals_bg.gif (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\res\toolbar_background.gif (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\temp\dealio-13643.log (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\temp\dealio-13644.log (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\temp\dealio-13646.log (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\temp\dealio-13647.log (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\temp\dod_cache.xml (PUP.Dealio) -> Quarantined and deleted successfully.
d:\documents and settings\account.978 (retrieved after unexpected restart.)\application data\Dealio\kb104\temp\_toolbar_tmp_3396_3276_5.html (PUP.Dealio) -> Quarantined and deleted successfully.
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Malekal_morte-
Messages postés
180304
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
15 décembre 2020
24 628
20 janv. 2011 à 14:32
20 janv. 2011 à 14:32
hummpfff - fais péter OTL comme demandé !
pis après jte gronderai :)
pis après jte gronderai :)
opaline59171
Messages postés
8
Date d'inscription
jeudi 20 janvier 2011
Statut
Membre
Dernière intervention
20 janvier 2011
20 janv. 2011 à 14:39
20 janv. 2011 à 14:39
loool ok pas de soucis.C'est le pc a ma soeur je sais pas ce qu'elle a fait avec ;)
opaline59171
Messages postés
8
Date d'inscription
jeudi 20 janvier 2011
Statut
Membre
Dernière intervention
20 janvier 2011
20 janv. 2011 à 14:53
20 janv. 2011 à 14:53
Voici les rapports
http://www.cijoint.fr/cjlink.php?file=cj201101/cij7WzapoG.txt
http://www.cijoint.fr/cjlink.php?file=cj201101/cijIdPBiHx.txt
http://www.cijoint.fr/cjlink.php?file=cj201101/cij7WzapoG.txt
http://www.cijoint.fr/cjlink.php?file=cj201101/cijIdPBiHx.txt
Malekal_morte-
Messages postés
180304
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
15 décembre 2020
24 628
20 janv. 2011 à 14:57
20 janv. 2011 à 14:57
Passe AD-Remover en nettoyage : http://www.teamxscript.org/adremover.html
Poste le rapport ici.
Poste le rapport ici.
opaline59171
Messages postés
8
Date d'inscription
jeudi 20 janvier 2011
Statut
Membre
Dernière intervention
20 janvier 2011
20 janv. 2011 à 15:07
20 janv. 2011 à 15:07
voila le rapport
======= RAPPORT D'AD-REMOVER 2.0.0.2,D | UNIQUEMENT XP/VISTA/7 =======
Mis à jour par TeamXscript le 19/01/11 à 17:30
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org
C:\Program Files\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 15:01:18 le 20/01/2011, Mode normal
Microsoft Windows XP Édition familiale Service Pack 3 (X86)
Tiote@LAURIE ( )
============== ACTION(S) ==============
Dossier supprimé: C:\Program Files\Installer
Fichier supprimé: C:\WINDOWS\system32\Utils.dll
Dossier supprimé: C:\WINDOWS\BackupIP
Dossier supprimé: D:\Documents and Settings\All Users\Application Data\Viewpoint
Dossier supprimé: C:\Program Files\Viewpoint
Dossier supprimé: D:\Documents and Settings\Tiote\Local Settings\Application Data\networker
Dossier supprimé: D:\Documents and Settings\Tiote\Application Data\OfferBox
(!) -- Fichiers temporaires supprimés.
Clé supprimée: HKLM\Software\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Clé supprimée: HKLM\Software\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Clé supprimée: HKLM\Software\Classes\AxMetaStream.MetaStreamCtl
Clé supprimée: HKLM\Software\Classes\AxMetaStream.MetaStreamCtl.1
Clé supprimée: HKLM\Software\Classes\AxMetaStream.MetaStreamCtlSecondary
Clé supprimée: HKLM\Software\Classes\AxMetaStream.MetaStreamCtlSecondary.1
Clé supprimée: HKLM\Software\OfferBox
Clé supprimée: HKLM\Software\Install Pedia Limited
Clé supprimée: HKLM\Software\MetaStream
Clé supprimée: HKLM\Software\Viewpoint
Clé supprimée: HKCU\Software\OfferBox
Clé supprimée: HKCU\Software\FissaSearch
Clé supprimée: HKCU\Software\Spointer
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu\Programs\ShopperReports
Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}
Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{b41306c6-96d0-442a-bcc4-b0f621e82ce9}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer
Clé supprimée: HKLM\Software\Google\Chrome\Extensions\bjeikeheijdjdfjbmknpefojickbkmom
Clé supprimée: HKLM\Software\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Clé supprimée: HKLM\Software\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Valeur supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Run|installer
Valeur supprimée: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{D4027C7F-154A-4066-A1AD-4243D8127440}
============== SCAN ADDITIONNEL ==============
** Internet Explorer Version [8.0.6001.18702] **
[HKCU\Software\Microsoft\Internet Explorer\Main]
AutoHide: yes
Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Do404Search: 0x01000000
Enable Browser Extensions: yes
Local Page: C:\WINDOWS\system32\blank.htm
Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
Show_ToolBar: yes
Start Page: hxxp://fr.msn.com/
Use Custom Search URL: 1
[HKLM\Software\Microsoft\Internet Explorer\Main]
Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Delete_Temp_Files_On_Exit: yes
Local Page: C:\WINDOWS\system32\blank.htm
Search bar: hxxp://search.msn.com/spbasic.htm
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Start Page: hxxp://fr.msn.com/
[HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS]
Tabs: res://ieframe.dll/tabswelcome.htm
Blank: res://mshtml.dll/blank.htm
========================================
C:\Program Files\Ad-Remover\Quarantine: 60 Fichier(s)
C:\Program Files\Ad-Remover\Backup: 13 Fichier(s)
D:\Ad-Report-CLEAN[1].txt - 20/01/2011 (915 Octet(s))
Fin à: 15:02:12, 20/01/2011
============== E.O.F ==============
======= RAPPORT D'AD-REMOVER 2.0.0.2,D | UNIQUEMENT XP/VISTA/7 =======
Mis à jour par TeamXscript le 19/01/11 à 17:30
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org
C:\Program Files\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 15:01:18 le 20/01/2011, Mode normal
Microsoft Windows XP Édition familiale Service Pack 3 (X86)
Tiote@LAURIE ( )
============== ACTION(S) ==============
Dossier supprimé: C:\Program Files\Installer
Fichier supprimé: C:\WINDOWS\system32\Utils.dll
Dossier supprimé: C:\WINDOWS\BackupIP
Dossier supprimé: D:\Documents and Settings\All Users\Application Data\Viewpoint
Dossier supprimé: C:\Program Files\Viewpoint
Dossier supprimé: D:\Documents and Settings\Tiote\Local Settings\Application Data\networker
Dossier supprimé: D:\Documents and Settings\Tiote\Application Data\OfferBox
(!) -- Fichiers temporaires supprimés.
Clé supprimée: HKLM\Software\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Clé supprimée: HKLM\Software\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Clé supprimée: HKLM\Software\Classes\AxMetaStream.MetaStreamCtl
Clé supprimée: HKLM\Software\Classes\AxMetaStream.MetaStreamCtl.1
Clé supprimée: HKLM\Software\Classes\AxMetaStream.MetaStreamCtlSecondary
Clé supprimée: HKLM\Software\Classes\AxMetaStream.MetaStreamCtlSecondary.1
Clé supprimée: HKLM\Software\OfferBox
Clé supprimée: HKLM\Software\Install Pedia Limited
Clé supprimée: HKLM\Software\MetaStream
Clé supprimée: HKLM\Software\Viewpoint
Clé supprimée: HKCU\Software\OfferBox
Clé supprimée: HKCU\Software\FissaSearch
Clé supprimée: HKCU\Software\Spointer
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu\Programs\ShopperReports
Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}
Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{b41306c6-96d0-442a-bcc4-b0f621e82ce9}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer
Clé supprimée: HKLM\Software\Google\Chrome\Extensions\bjeikeheijdjdfjbmknpefojickbkmom
Clé supprimée: HKLM\Software\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Clé supprimée: HKLM\Software\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Valeur supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Run|installer
Valeur supprimée: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{D4027C7F-154A-4066-A1AD-4243D8127440}
============== SCAN ADDITIONNEL ==============
** Internet Explorer Version [8.0.6001.18702] **
[HKCU\Software\Microsoft\Internet Explorer\Main]
AutoHide: yes
Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Do404Search: 0x01000000
Enable Browser Extensions: yes
Local Page: C:\WINDOWS\system32\blank.htm
Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
Show_ToolBar: yes
Start Page: hxxp://fr.msn.com/
Use Custom Search URL: 1
[HKLM\Software\Microsoft\Internet Explorer\Main]
Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Delete_Temp_Files_On_Exit: yes
Local Page: C:\WINDOWS\system32\blank.htm
Search bar: hxxp://search.msn.com/spbasic.htm
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Start Page: hxxp://fr.msn.com/
[HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS]
Tabs: res://ieframe.dll/tabswelcome.htm
Blank: res://mshtml.dll/blank.htm
========================================
C:\Program Files\Ad-Remover\Quarantine: 60 Fichier(s)
C:\Program Files\Ad-Remover\Backup: 13 Fichier(s)
D:\Ad-Report-CLEAN[1].txt - 20/01/2011 (915 Octet(s))
Fin à: 15:02:12, 20/01/2011
============== E.O.F ==============
opaline59171
Messages postés
8
Date d'inscription
jeudi 20 janvier 2011
Statut
Membre
Dernière intervention
20 janvier 2011
20 janv. 2011 à 15:44
20 janv. 2011 à 15:44
est ce que c'est bon aprés ça?
Malekal_morte-
Messages postés
180304
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
15 décembre 2020
24 628
20 janv. 2011 à 17:00
20 janv. 2011 à 17:00
C'est le moment que tu vas aimer !
faut enguirlander ta soeur !
Les pubs sont venus par des programmes qu'on appelle adwares qui sont installés via des programmes que ta soeur a installés (souvent ces programmes sont gratuits).
En autre par un crazyloader :
c:\Temp\crazyloader-1.3-win32.exe (Adware.Hotbar) -> Quarantined and deleted successfully.
C'est proposé en pub sur des sites de streaming, comme le faux plugin vlc, voir :
https://forum.malekal.com/viewtopic.php?t=29633&start=
Conclusion : Faire plus attention à ce qu'elle installe
Lui faire lire ça :
Maintiens tes logiciel à jour c'est important, utilise ce programme : /faq/13362-mettre-a-jour-son-pc-contre-les-failles-de-securite
Absolument à faire.
Les antivirus ne font pas tout en ce qui concerne la sécurité de ta machine (mettre à jour ses logiciels etc etc)
La meilleur protection reste de connaître les infections pour pouvoir les éviter et avoir de bonne habitude.
Donc faut se documenter.
Un peu de lecture pour éviter les infections :
- connaitre et éviter les infections : https://www.malekal.com/fichiers/projetantimalwares/ProjetAntiMalware-courte.pdf
- sécuriser son PC : http://forum.malekal.com/comment-securiser-son-ordinateur.html
- lire : http://www.commentcamarche.net/faq/27128-malwares-quels-enjeux-version-synthese
Ce qu'il ne faut pas faire :
Je télécharge n'importe quoi - je m'infecte :
https://forums.commentcamarche.net/forum/affich-19719198-onglets-pub-intempestifs#14
https://forums.commentcamarche.net/forum/affich-18347759-le-nouveau-avast-sonne-trop-souvent#9
Je télécharge depuis n'importe où - je m'infecte : https://forums.commentcamarche.net/forum/affich-19916973-clickpotato-vlc-virus#6
Recommandations sur la sécurité : https://forums.commentcamarche.net/forum/affich-18680013-windows-7-et-antispyware#1
Fonctionnement de quelques catégories de malwares :
https://forums.commentcamarche.net/forum/affich-17725521-virus-programme-troyen
https://forums.commentcamarche.net/forum/affich-17746390-concernant-la-propagation-des-virus
Si tu as des questions sur le fonctionement des malwares.
N'hésite pas.
faut enguirlander ta soeur !
Les pubs sont venus par des programmes qu'on appelle adwares qui sont installés via des programmes que ta soeur a installés (souvent ces programmes sont gratuits).
En autre par un crazyloader :
c:\Temp\crazyloader-1.3-win32.exe (Adware.Hotbar) -> Quarantined and deleted successfully.
C'est proposé en pub sur des sites de streaming, comme le faux plugin vlc, voir :
https://forum.malekal.com/viewtopic.php?t=29633&start=
Conclusion : Faire plus attention à ce qu'elle installe
Lui faire lire ça :
Maintiens tes logiciel à jour c'est important, utilise ce programme : /faq/13362-mettre-a-jour-son-pc-contre-les-failles-de-securite
Absolument à faire.
Les antivirus ne font pas tout en ce qui concerne la sécurité de ta machine (mettre à jour ses logiciels etc etc)
La meilleur protection reste de connaître les infections pour pouvoir les éviter et avoir de bonne habitude.
Donc faut se documenter.
Un peu de lecture pour éviter les infections :
- connaitre et éviter les infections : https://www.malekal.com/fichiers/projetantimalwares/ProjetAntiMalware-courte.pdf
- sécuriser son PC : http://forum.malekal.com/comment-securiser-son-ordinateur.html
- lire : http://www.commentcamarche.net/faq/27128-malwares-quels-enjeux-version-synthese
Ce qu'il ne faut pas faire :
Je télécharge n'importe quoi - je m'infecte :
https://forums.commentcamarche.net/forum/affich-19719198-onglets-pub-intempestifs#14
https://forums.commentcamarche.net/forum/affich-18347759-le-nouveau-avast-sonne-trop-souvent#9
Je télécharge depuis n'importe où - je m'infecte : https://forums.commentcamarche.net/forum/affich-19916973-clickpotato-vlc-virus#6
Recommandations sur la sécurité : https://forums.commentcamarche.net/forum/affich-18680013-windows-7-et-antispyware#1
Fonctionnement de quelques catégories de malwares :
https://forums.commentcamarche.net/forum/affich-17725521-virus-programme-troyen
https://forums.commentcamarche.net/forum/affich-17746390-concernant-la-propagation-des-virus
Si tu as des questions sur le fonctionement des malwares.
N'hésite pas.
opaline59171
Messages postés
8
Date d'inscription
jeudi 20 janvier 2011
Statut
Membre
Dernière intervention
20 janvier 2011
Modifié par opaline59171 le 20/01/2011 à 18:27
Modifié par opaline59171 le 20/01/2011 à 18:27
ok ok cest déja fait je lui ai fait des remontrances loool je me doutai que c'était dû à des téléchargements de tout et n'importe quoi.Elle fait pas attention quand elle télécharge elle dit oui à tout.
En tout cas je te remercie d'avoir pris le temps de m'aider :))
Je me débrouille pas mal en informatique mais la ça dépassait mes compétences lol
En tout cas je te remercie d'avoir pris le temps de m'aider :))
Je me débrouille pas mal en informatique mais la ça dépassait mes compétences lol
Malekal_morte-
Messages postés
180304
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
15 décembre 2020
24 628
20 janv. 2011 à 22:33
20 janv. 2011 à 22:33
Elle fait pas attention quand elle télécharge elle dit oui à tout.
pfffff \o
pfffff \o
boogieman83
Messages postés
395
Date d'inscription
jeudi 14 mai 2009
Statut
Membre
Dernière intervention
10 mai 2012
94
20 janv. 2011 à 13:13
20 janv. 2011 à 13:13
salut
essaie malawarebyte tu fais la mise a jour ensuite examen complet ca met du temps ensuite tu fait un scan en ligne gratuit avec bitdefender ,tu devrais plus avoir de probleme
est ce que ccleaner tu l'a parametrer avant de t'en servir ?il faut tout cocher sauf verifier l'espace disque ensuite rgistre chercher les erreurs sauvegarde si tu veut et tu fais corriger
voila dans un premier temps
essaie malawarebyte tu fais la mise a jour ensuite examen complet ca met du temps ensuite tu fait un scan en ligne gratuit avec bitdefender ,tu devrais plus avoir de probleme
est ce que ccleaner tu l'a parametrer avant de t'en servir ?il faut tout cocher sauf verifier l'espace disque ensuite rgistre chercher les erreurs sauvegarde si tu veut et tu fais corriger
voila dans un premier temps
