Sujet Précédent Sujet Suivant

Je pense avoir installé un virus

Résolu/Fermé
ant - 30 nov. 2013 à 03:37
 ant - 30 nov. 2013 à 14:55
bonjour quelqu'un m'a envoyé un lien, j'ai téléchargé et installé, j'ai des raisons de penser que cest un virus espion, comment je peux m'en assurer svp ?

pardon pour le lien cetait stupid je suis un peu stressé la
A voir également:

20 réponses

Réponse 1 / 20
Utilisateur anonyme
30 nov. 2013 à 03:38
Bonsoir

Télécharge Malwaresbytes anti malware ici
https://www.malwarebytes.com/

* Installe le (choisis bien "français" ; ne modifie pas les paramètres d'installe ) et mets le à jour .

* Potasse le tuto pour te familiariser avec le prg :

https://forum.pcastuces.com/sujet.asp?f=31&s=3

(cela dis, il est très simple d'utilisation).

relance Malwaresbytes en suivant scrupuleusement ces consignes :

! Déconnecte toi et ferme toutes applications en cours !

* Lance Malwarebyte's. Sous Vista ;Seven ou Windows 8 (clic droit de la souris « exécuter en tant que administrateur »)

*Procèdes à une mise à jour

*Fais un examen dit "Rapide"

--> Laisse le programme travailler ( et ne rien faire d'autre avec le PC durant le scan ).
--> à la fin tu cliques sur "Afficher les résultats" " .
--> Vérifie que tous les objets infectés soient validés, puis clique sur " supprimer la sélection " .

Note : si il faut redémarrer ton PC pour finir le nettoyage, fais le !


Poste le rapport sauvegardé après la suppression des objets infectés (dans l'onglet "rapport/log"de Malwaresbytes, le dernier en date)

@+

0
Réponse 2 / 20
ant
30 nov. 2013 à 03:43
dans le fichier j'ai trouvé ces lignes de codes dans un fichier appelé msconfig


ça veut dire quoi tout ça ?


<?xml version="1.0" encoding="UTF-8"?>
-<mconfig> -<configuration> -<handlers> <handler storageType="System.Collections.Generic.Dictionary'2[[System.String, mscorlib, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[Mono.MonoConfig.FeatureNode, mconfig, Version=0.1.0.0, Culture=neutral, PublicKeyToken=null]], mscorlib, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" type="Mono.MonoConfig.FeatureNodeHandler, mconfig, Version=0.1.0.0, Culture=neutral, PublicKeyToken=null" section="feature"/> <handler storageType="System.Collections.Generic.Dictionary'2[[System.String, mscorlib, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[Mono.MonoConfig.ConfigBlockBlock, mconfig, Version=0.1.0.0, Culture=neutral, PublicKeyToken=null]], mscorlib, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" type="Mono.MonoConfig.ConfigBlockNodeHandler, mconfig, Version=0.1.0.0, Culture=neutral, PublicKeyToken=null" section="configBlock"/> <handler storageType="System.Collections.Generic.Dictionary'2[[System.String, mscorlib, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[Mono.MonoConfig.DefaultNode, mconfig, Version=0.1.0.0, Culture=neutral, PublicKeyToken=null]], mscorlib, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" type="Mono.MonoConfig.DefaultNodeHandler, mconfig, Version=0.1.0.0, Culture=neutral, PublicKeyToken=null" section="default"/> <handler storageType="System.Collections.Generic.Dictionary'2[[System.String, mscorlib, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[Mono.MonoConfig.DefaultConfigFile, mconfig, Version=0.1.0.0, Culture=neutral, PublicKeyToken=null]], mscorlib, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" type="Mono.MonoConfig.DefaultConfigFileNodeHandler, mconfig, Version=0.1.0.0, Culture=neutral, PublicKeyToken=null" section="defaultConfigFile"/> </handlers> </configuration> -<feature target="web" name="AJAX"> -<description>
<![CDATA[ Adds entries to your Web.config file which are required by any .NET 3.5 AJAX.NET application. ]]>
</description> -<blocks> <block name="AJAX config sections"/> <block name="AJAX controls registration"/> <block name="AJAX compilation"/> <block name="AJAX HTTP handlers"/> <block name="AJAX HTTP modules"/> <block name="AJAX CodeDOM 3.5 settings"/> <block name="AJAX runtime settings"/> <block name="AJAX system.webServer"/> <block name=""/> </blocks> </feature> -<feature target="web" name="AJAX1"> -<description>
<![CDATA[ Adds entries to your Web.config file which are required by any AJAX.NET 1.0 application. ]]>
</description> -<blocks> <block name="AJAX1 config sections"/> <block name="AJAX1 controls registration"/> <block name="AJAX1 compilation"/> <block name="AJAX1 HTTP handlers"/> <block name="AJAX1 HTTP modules"/> <block name="AJAX1 system.web.extensions"/> <block name="AJAX1 system.webServer"/> <block name=""/> </blocks> </feature> -<feature target="web" name="DynamicData"> -<description>
<![CDATA[ Adds entries to your Web.config file which are required by any ASP.NET DynamicData application. ]]>
</description> -<blocks> <block name="AJAX config sections"/> <block name="AJAX controls registration"/> <block name="AJAX compilation"/> <block name="AJAX HTTP handlers"/> <block name="AJAX HTTP modules"/> <block name="AJAX system.web.extensions"/> <block name="AJAX system.webServer"/> <block name="DynamicData controls registration"/> <block name="DynamicData compilation"/> <block name="DynamicData HTTP modules"/> </blocks> </feature> -<feature target="web" name="SettingsMapProtection"> -<description>
<![CDATA[ Adds an entry to your config file which will prevent download of the 'settings.map' file. The file is used by the settings mapping manager to modify configuration settings depending on the operating system under which your application runs. Add this feature only if you have your own custom 'settings.map' file in the top-level directory of your ASP.NET application. ]]>
</description> -<blocks> <block name="SettingsMap Handler"/> </blocks> </feature>
<!-- configuration blocks required by the features -->
-<configBlock name="SettingsMap Handler"> -<requires> -<section name="configuration"> -<section name="system.web"> <section name="httpHandlers" defaultBlockName="system.web.httpHandlers"/> </section> </section> </requires> -<contents>
<![CDATA[ <add verb="*" path="settings.map" type="System.Web.HttpForbiddenHandler, System.Web, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a" /> ]]>
</contents> </configBlock>
<!-- AJAX.NET 3.5 start -->
-<configBlock name="AJAX config sections"> -<requires> -<section name="configuration"> <section name="configSections" attachPoint="true"/> </section> </requires> -<contents>
<![CDATA[ <sectionGroup name="system.web.extensions" type="System.Web.Configuration.SystemWebExtensionsSectionGroup, System.Web.Extensions, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35"> <sectionGroup name="scripting" type="System.Web.Configuration.ScriptingSectionGroup, System.Web.Extensions, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35"> <section name="scriptResourceHandler" type="System.Web.Configuration.ScriptingScriptResourceHandlerSection, System.Web.Extensions, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35" requirePermission="false" allowDefinition="MachineToApplication"/> <sectionGroup name="webServices" type="System.Web.Configuration.ScriptingWebServicesSectionGroup, System.Web.Extensions, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35"> <section name="jsonSerialization" type="System.Web.Configuration.ScriptingJsonSerializationSection, System.Web.Extensions, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35" requirePermission="false" allowDefinition="Everywhere" /> <section name="profileService" type="System.Web.Configuration.ScriptingProfileServiceSection, System.Web.Extensions, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35" requirePermission="false" allowDefinition="MachineToApplication" /> <section name="authenticationService" type="System.Web.Configuration.ScriptingAuthenticationServiceSection, System.Web.Extensions, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35" requirePermission="false" allowDefinition="MachineToApplication" /> <section name="roleService" type="System.Web.Configuration.ScriptingRoleServiceSection, System.Web.Extensions, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35" requirePermission="false" allowDefinition="MachineToApplication" /> </sectionGroup> </sectionGroup> </sectionGroup> ]]>
</contents> </configBlock> -<configBlock name="AJAX controls registration"> -<requires> -<section name="configuration"> -<section name="system.web"> -<section name="pages" defaultBlockName="system.web.pages"> <section name="controls" defaultBlockName="system.web.pages.controls"/> </section> </section> </section> </requires> -<contents>
<![CDATA[ <add tagPrefix="asp" namespace="System.Web.UI" assembly="System.Web.Extensions, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35"/> <add tagPrefix="asp" namespace="System.Web.UI.WebControls" assembly="System.Web.Extensions, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35"/> ]]>
</contents> </configBlock> -<configBlock name="AJAX compilation"> -<requires> -<section name="configuration"> -<section name="system.web"> -<section name="compilation" defaultBlockName="system.web.compilation"> <section name="assemblies" defaultBlockName="system.web.compilation.assemblies"/> </section> </section> </section> </requires> -<contents>
<![CDATA[ <add assembly="System.Core, Version=3.5.0.0, Culture=neutral, PublicKeyToken=B77A5C561934E089"/> <add assembly="System.Web.Extensions, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35"/> <add assembly="System.Data.DataSetExtensions, Version=3.5.0.0, Culture=neutral, PublicKeyToken=B77A5C561934E089"/> <add assembly="System.Xml.Linq, Version=3.5.0.0, Culture=neutral, PublicKeyToken=B77A5C561934E089"/> ]]>
</contents> </configBlock> -<configBlock name="AJAX HTTP handlers"> -<requires> -<section name="configuration"> -<section name="system.web"> <section name="httpHandlers" defaultBlockName="system.web.httpHandlers"/> </section> </section> </requires> -<contents>
<![CDATA[ <remove verb="*" path="*.asmx"/> <add verb="*" path="*.asmx" validate="false" type="System.Web.Script.Services.ScriptHandlerFactory, System.Web.Extensions, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35"/> <add verb="*" path="*_AppService.axd" validate="false" type="System.Web.Script.Services.ScriptHandlerFactory, System.Web.Extensions, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35"/> <add verb="GET,HEAD" path="ScriptResource.axd" type="System.Web.Handlers.ScriptResourceHandler, System.Web.Extensions, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35" validate="false"/> ]]>
</contents> </configBlock> -<configBlock name="AJAX HTTP modules"> -<requires> -<section name="configuration"> -<section name="system.web"> <section name="httpModules" defaultBlockName="system.web.httpModules"/> </section> </section> </requires> -<contents>
<![CDATA[ <add name="ScriptModule" type="System.Web.Handlers.ScriptModule, System.Web.Extensions, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35"/> ]]>
</contents> </configBlock> -<configBlock name="AJAX CodeDOM 3.5 settings"> -<requires> -<section name="configuration"> -<section name="system.codedom"> <section name="compilers" defaultBlockName="system.codedom.compilers"/> </section> </section> </requires> -<contents>
<![CDATA[ <compiler language="c#;cs;csharp" extension=".cs" warningLevel="4" type="Microsoft.CSharp.CSharpCodeProvider, System, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089"> <providerOption name="CompilerVersion" value="v3.5"/> <providerOption name="WarnAsError" value="false"/> </compiler> <compiler language="vb;vbs;visualbasic;vbscript" extension=".vb" warningLevel="4" type="Microsoft.VisualBasic.VBCodeProvider, System, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089"> <providerOption name="CompilerVersion" value="v3.5"/> <providerOption name="OptionInfer" value="true"/> <providerOption name="WarnAsError" value="false"/> </compiler> ]]>
</contents> </configBlock> -<configBlock name="AJAX runtime settings"> -<requires> -<section name="configuration"> <section name="runtime"/> </section> </requires> -<contents>
<![CDATA[ <assemblyBinding xmlns="urn:schemas-microsoft-com:asm.v1"> <dependentAssembly> <assemblyIdentity name="System.Web.Extensions" publicKeyToken="31bf3856ad364e35"/> <bindingRedirect oldVersion="1.0.0.0-1.1.0.0" newVersion="3.5.0.0"/> </dependentAssembly> <dependentAssembly> <assemblyIdentity name="System.Web.Extensions.Design" publicKeyToken="31bf3856ad364e35"/> <bindingRedirect oldVersion="1.0.0.0-1.1.0.0" newVersion="3.5.0.0"/> </dependentAssembly> </assemblyBinding> ]]>
</contents> </configBlock> -<configBlock name="AJAX system.webServer"> -<requires> -<section name="configuration"> <section name="system.webServer"/> </section> </requires> -<contents>
<![CDATA[ <validation validateIntegratedModeConfiguration="false"/> <modules> <remove name="ScriptModule" /> <add name="ScriptModule" preCondition="managedHandler" type="System.Web.Handlers.ScriptModule, System.Web.Extensions, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35"/> </modules> <handlers> <remove name="WebServiceHandlerFactory-Integrated"/> <remove name="ScriptHandlerFactory" /> <remove name="ScriptHandlerFactoryAppServices" /> <remove name="ScriptResource" /> <add name="ScriptHandlerFactory" verb="*" path="*.asmx" preCondition="integratedMode" type="System.Web.Script.Services.ScriptHandlerFactory, System.Web.Extensions, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35"/> <add name="ScriptHandlerFactoryAppServices" verb="*" path="*_AppService.axd" preCondition="integratedMode" type="System.Web.Script.Services.ScriptHandlerFactory, System.Web.Extensions, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35"/> <add name="ScriptResource" preCondition="integratedMode" verb="GET,HEAD" path="ScriptResource.axd" type="System.Web.Handlers.ScriptResourceHandler, System.Web.Extensions, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35" /> </handlers> ]]>
</contents> </configBlock>
<!-- AJAX.NET 3.5 end -->

<!-- AJAX.NET 1.0 start -->
-<configBlock name="AJAX1 config sections"> -<requires> -<section name="configuration"> <section name="configSections" attachPoint="true"/> </section> </requires> -<contents>
<![CDATA[ <sectionGroup name="system.web.extensions" type="System.Web.Configuration.SystemWebExtensionsSectionGroup, System.Web.Extensions, Version=1.0.61025.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35"> <sectionGroup name="scripting" type="System.Web.Configuration.ScriptingSectionGroup, System.Web.Extensions, Version=1.0.61025.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35"> <section name="scriptResourceHandler" type="System.Web.Configuration.ScriptingScriptResourceHandlerSection, System.Web.Extensions, Version=1.0.61025.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" requirePermission="false" allowDefinition="MachineToApplication"/> <sectionGroup name="webServices" type="System.Web.Configuration.ScriptingWebServicesSectionGroup, System.Web.Extensions, Version=1.0.61025.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35"> <section name="jsonSerialization" type="System.Web.Configuration.ScriptingJsonSerializationSection, System.Web.Extensions, Version=1.0.61025.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" requirePermission="false" allowDefinition="Everywhere" /> <section name="profileService" type="System.Web.Configuration.ScriptingProfileServiceSection, System.Web.Extensions, Version=1.0.61025.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" requirePermission="false" allowDefinition="MachineToApplication" /> <section name="authenticationService" type="System.Web.Configuration.ScriptingAuthenticationServiceSection, System.Web.Extensions, Version=1.0.61025.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" requirePermission="false" allowDefinition="MachineToApplication" /> </sectionGroup> </sectionGroup> </sectionGroup> ]]>
</contents> </configBlock> -<configBlock name="AJAX1 controls registration"> -<requires> -<section name="configuration"> -<section name="system.web"> -<section name="pages" defaultBlockName="system.web.pages"> <section name="controls" defaultBlockName="system.web.pages.controls"/> </section> </section> </section> </requires> -<contents>
<![CDATA[ <add tagPrefix="asp" namespace="System.Web.UI" assembly="System.Web.Extensions, Version=1.0.61025.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35"/> ]]>
</contents> </configBlock> -<configBlock name="AJAX1 compilation"> -<requires> -<section name="configuration"> -<section name="system.web"> -<section name="compilation" defaultBlockName="system.web.compilation"> <section name="assemblies" defaultBlockName="system.web.compilation.assemblies"/> </section> </section> </section> </requires> -<contents>
<![CDATA[ <add assembly="System.Web.Extensions, Version=1.0.61025.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35"/> ]]>
</contents> </configBlock> -<configBlock name="AJAX1 HTTP handlers"> -<requires> -<section name="configuration"> -<section name="system.web"> <section name="httpHandlers" defaultBlockName="system.web.httpHandlers"/> </section> </section> </requires> -<contents>
<![CDATA[ <remove verb="*" path="*.asmx"/> <add verb="*" path="*.asmx" validate="false" type="System.Web.Script.Services.ScriptHandlerFactory, System.Web.Extensions, Version=1.0.61025.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35"/> <add verb="*" path="*_AppService.axd" validate="false" type="System.Web.Script.Services.ScriptHandlerFactory, System.Web.Extensions, Version=1.0.61025.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35"/> <add verb="GET,HEAD" path="ScriptResource.axd" type="System.Web.Handlers.ScriptResourceHandler, System.Web.Extensions, Version=1.0.61025.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" validate="false"/> ]]>
</contents> </configBlock> -<configBlock name="AJAX1 HTTP modules"> -<requires> -<section name="configuration"> -<section name="system.web"> <section name="httpModules" defaultBlockName="system.web.httpModules"/> </section> </section> </requires> -<contents>
<![CDATA[ <add name="ScriptModule" type="System.Web.Handlers.ScriptModule, System.Web.Extensions, Version=1.0.61025.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35"/> ]]>
</contents> </configBlock> -<configBlock name="AJAX1 system.web.extensions"> -<requires> -<section name="configuration"> <section name="system.web.extensions"/> </section> </requires> -<contents>
<![CDATA[ <scripting> <webServices> <!-- Uncomment this line to customize maxJsonLength and add a custom converter --> <!-- <jsonSerialization maxJsonLength="500"> <converters> <add name="ConvertMe" type="Acme.SubAcme.ConvertMeTypeConverter"/> </converters> </jsonSerialization> --> <!-- Uncomment this line to enable the authentication service. Include requireSSL="true" if appropriate. --> <!-- <authenticationService enabled="true" requireSSL = "true|false"/> --> <!-- Uncomment these lines to enable the profile service. To allow profile properties to be retrieved and modified in ASP.NET AJAX applications, you need to add each property name to the readAccessProperties and writeAccessProperties attributes. --> <!-- <profileService enabled="true" readAccessProperties="propertyname1,propertyname2" writeAccessProperties="propertyname1,propertyname2" /> --> </webServices> <!-- <scriptResourceHandler enableCompression="true" enableCaching="true" /> --> </scripting> ]]>
</contents> </configBlock> -<configBlock name="AJAX1 system.webServer"> -<requires> -<section name="configuration"> <section name="system.webServer"/> </section> </requires> -<contents>
<![CDATA[ <validation validateIntegratedModeConfiguration="false"/> <modules> <add name="ScriptModule" preCondition="integratedMode" type="System.Web.Handlers.ScriptModule, System.Web.Extensions, Version=1.0.61025.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35"/> </modules> <handlers> <remove name="WebServiceHandlerFactory-Integrated" /> <add name="ScriptHandlerFactory" verb="*" path="*.asmx" preCondition="integratedMode" type="System.Web.Script.Services.ScriptHandlerFactory, System.Web.Extensions, Version=1.0.61025.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35"/> <add name="ScriptHandlerFactoryAppServices" verb="*" path="*_AppService.axd" preCondition="integratedMode" type="System.Web.Script.Services.ScriptHandlerFactory, System.Web.Extensions, Version=1.0.61025.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35"/> <add name="ScriptResource" preCondition="integratedMode" verb="GET,HEAD" path="ScriptResource.axd" type="System.Web.Handlers.ScriptResourceHandler, System.Web.Extensions, Version=1.0.61025.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" /> </handlers> ]]>
</contents> </configBlock>
<!-- AJAX.NET 1.0 end -->
-<configBlock name="DynamicData controls registration"> -<requires> -<section name="configuration"> -<section name="system.web"> -<section name="pages" defaultBlockName="system.web.pages"> <section name="controls" defaultBlockName="system.web.pages.controls"/> </section> </section> </section> </requires> -<contents>
<![CDATA[ <add tagPrefix="asp" namespace="System.Web.DynamicData" assembly="System.Web.DynamicData, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35"/> ]]>
</contents> </configBlock> -<configBlock name="DynamicData compilation"> -<requires> -<section name="configuration"> -<section name="system.web"> -<section name="compilation" defaultBlockName="system.web.compilation"> <section name="assemblies" defaultBlockName="system.web.compilation.assemblies"/> </section> </section> </section> </requires> -<contents>
<![CDATA[ <add assembly="System.Core, Version=3.5.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089"/> <add assembly="System.Data.DataSetExtensions, Version=3.5.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089"/> <add assembly="System.Xml.Linq, Version=3.5.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089"/> <add assembly="System.Data.Linq, Version=3.5.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089"/> <add assembly="System.Web.Abstractions, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35"/> <add assembly="System.Web.Routing, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35"/> <add assembly="System.ComponentModel.DataAnnotations, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35"/> <add assembly="System.Web.DynamicData, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35"/> ]]>
</contents> </configBlock> -<configBlock name="DynamicData HTTP modules"> -<requires> -<section name="configuration"> -<section name="system.web"> <section name="httpModules" defaultBlockName="system.web.httpModules"/> </section> </section> </requires> -<contents>
<![CDATA[ <add name="UrlRoutingModule" type="System.Web.Routing.UrlRoutingModule, System.Web.Routing, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35"/> ]]>
</contents> </configBlock>
<!-- default contents for missing sections -->
-<default section="configuration" target="any">
<![CDATA[ <configuration> </configuration> ]]>
</default> -<default section="configSections" target="any">
<![CDATA[ <configSections> </configSections> ]]>
</default> -<default section="system.web" target="web">
<![CDATA[ <system.web> </system.web> ]]>
</default> -<default section="system.web.pages" target="web">
<![CDATA[ <pages> </pages> ]]>
</default> -<default section="system.web.pages.controls" target="web">
<![CDATA[ <controls> </controls> ]]>
</default> -<default section="system.web.compilation" target="web">
<![CDATA[ <compilation debug="true"> </compilation> ]]>
</default> -<default section="system.web.compilation.assemblies" target="web">
<![CDATA[ <assemblies> </assemblies> ]]>
</default> -<default section="system.web.httpHandlers" target="web">
<![CDATA[ <httpHandlers> </httpHandlers> ]]>
</default> -<default section="system.web.httpModules" target="web">
<![CDATA[ <httpModules> </httpModules> ]]>
</default> -<default section="system.web.extensions" target="web">
<![CDATA[ <system.web.extensions> </system.web.extensions> ]]>
</default> -<default section="system.webServer" target="web">
<![CDATA[ <system.webServer> </system.webServer> ]]>
</default> -<default section="system.web.customErrors" target="web">
<![CDATA[ <customErrors mode="RemoteOnly"/> ]]>
</default> -<default section="system.codedom" target="any">
<![CDATA[ <system.codedom> </system.codedom> ]]>
</default> -<default section="system.codedom.compilers" target="any">
<![CDATA[ <compilers> </compilers> ]]>
</default> -<default section="runtime" target="any">
<![CDATA[ <runtime> </runtime> ]]>
</default>
<!-- default config file definitions -->
-<defaultConfigFile target="web" name="web.config" fileName="Web.config"> -<section name="configuration"> -<section name="system.web"> <section name="compilation" defaultBlockName="system.web.compilation"/> <section name="customErrors" defaultBlockName="system.web.customErrors"/> </section> </section> </defaultConfigFile> </mconfig>
0
Réponse 3 / 20
Utilisateur anonyme
30 nov. 2013 à 03:45
Re

ce n'est pas le rapport attendu !!!

@+
0
Réponse 4 / 20
ant
30 nov. 2013 à 03:46
s'il te plait aide moi, ou dis moi ou poser ma question
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 20
ant
30 nov. 2013 à 03:48
bonjour pardon javais pas vu ta réponce, merci beacoup de m'aider, désolé je suis super stressé la, j'ai deja malware bytes en anglais
0
Réponse 6 / 20
Utilisateur anonyme
30 nov. 2013 à 03:49
Re

J'attends ce rapport de suppression

Merci

@+
0
Réponse 7 / 20
ant
30 nov. 2013 à 04:07
voici le rapport

Malwarebytes Anti-Malware (PRO) 1.75.0.1300
www.malwarebytes.org

Database version: v2013.11.30.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Bear :: CARILINK [administrator]

Protection: Enabled

30/11/2013 03:59:59
mbam-log-2013-11-30 (03-59-59).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 229642
Time elapsed: 1 minute(s), 13 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 6
HKCR\CLSID\{DF84E609-C3A4-49CB-A160-61767DAF8899} (PUP.Optional.WebCake.A) -> Quarantined and deleted successfully.
HKCR\Interface\{DF84E609-C3A4-49CB-A160-61767DAF8899} (PUP.Optional.WebCake.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} (PUP.Optional.Qone8) -> Quarantined and deleted successfully.
HKCU\Software\1ClickDownload (PUP.Optional.1ClickDownload.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\qvo6Software (PUP.Optional.qvo6.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} (PUP.Optional.Qone8) -> Quarantined and deleted successfully.

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 5
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main|Start Page (Hijack.StartPage) -> Bad: (http://www.qvo6.com/?utm_source=b&utm_medium=ild&from=ild&uid=CorsairXForceXGS_1246791400009741037D&ts=1370021213) Good: (http://www.google.com) -> Quarantined and repaired successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main|Default_Page_URL (Hijack.StartPage) -> Bad: (http://www.qvo6.com/?utm_source=b&utm_medium=ild&from=ild&uid=CorsairXForceXGS_1246791400009741037D&ts=1370021213) Good: (http://www.google.com) -> Quarantined and repaired successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main|Default_Page_URL (Hijack.StartPage) -> Bad: (http://www.qvo6.com/?utm_source=b&utm_medium=ild&from=ild&uid=CorsairXForceXGS_1246791400009741037D&ts=1370021213) Good: (http://www.google.com) -> Quarantined and repaired successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main|Start Page (Hijack.StartPage) -> Bad: (http://www.qvo6.com/?utm_source=b&utm_medium=ild&from=ild&uid=CorsairXForceXGS_1246791400009741037D&ts=1370021213) Good: (http://www.google.com) -> Quarantined and repaired successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes|DefaultScope (PUP.Optional.Qone8) -> Bad: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}) Good: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}) -> Quarantined and repaired successfully.

Folders Detected: 20
C:\Users\Bear\AppData\Roaming\Desk 365 (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\app (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\app\config (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\app\config\1 (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\app\config\3 (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\app\config\35 (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\app\config\36 (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\app\config\39 (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\app\config\4 (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\app\config\41 (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\app\config\42 (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\desk_bkg (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\icons (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\promote (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\sysicons (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\wp (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Desk 365 (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Local\Temp\ct3288691 (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Local\Temp\ct3297861 (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\hdvidcodec.com (PUP.Optional.HDVidCodec.A) -> Quarantined and deleted successfully.

Files Detected: 93
C:\Users\Bear\AppData\Roaming\eIntaller\EB0C8C5C43454e74B60BD83A1B862327\Desk365.exe (PUP.Optional.E7) -> Quarantined and deleted successfully.
C:\$Recycle.Bin\S-1-5-21-3906413075-3106456544-3094034350-1000\$RG29OZ0.exe (PUP.Optional.Installex) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Local\Temp\nsn8401.tmp\elexinst.exe (PUP.Optional.Elex.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Local\Temp\nsn8401.tmp\WBCSetup.exe (PUP.Optional.WebCake.A) -> Quarantined and deleted successfully.
C:\Users\Bear\Downloads\codec_pack_645877_ch.exe (PUP.BundleInstaller.DW) -> Quarantined and deleted successfully.
C:\Users\Bear\Downloads\le rapport campbell pdf.exe (PUP.Optional.Installex) -> Quarantined and deleted successfully.
C:\Users\Bear\Downloads\Rambo_III_[1988]-keltz.avi.exe (PUP.BundleInstaller.DW) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\promote.xml (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\accelerate (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\desk_bkg_list.xml (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\desk_list.xml (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\desk_settings.ini (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\firstrun (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\process_mgr.xml (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\app\config\1\angrybirds.db (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\app\config\1\angrybirds.ico (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\app\config\3\BigFarm.db (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\app\config\3\BigFarm.ico (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\app\config\35\Gmail.db (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\app\config\35\Gmail.ico (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\app\config\36\Outlook.db (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\app\config\36\Outlook.ico (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\app\config\39\ESPN.db (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\app\config\39\ESPN.ico (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\app\config\4\Empire.db (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\app\config\4\Empire.ico (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\app\config\41\gcalendar.db (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\app\config\41\gcalendar.ico (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\app\config\42\pulse.db (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\app\config\42\pulse.ico (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\desk_bkg\desk_bkg_1.png (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\desk_bkg\desk_bkg_2.png (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\desk_bkg\desk_bkg_3.png (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\desk_bkg\desk_bkg_4.png (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\desk_bkg\desk_bkg_5.png (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\desk_bkg\desk_bkg_default.png (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\icons\337_7c9140b13c049fd26989f7fa25b77cb1_48_48.png (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\icons\angrybirds_00ff92c12703baaf0130d6aec427d047_48_48.png (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\icons\Barbie_00a67ff4ef657679a6c88553135d62ad_48_48.png (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\icons\BigFarm_de933b0e5218a4db24bebe3d55ed3558_48_48.png (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\icons\chrome_49c27705d2f62a4f6b2c6e949bb0c503.ico (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\icons\chrome_49c27705d2f62a4f6b2c6e949bb0c503_48_48.png (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\icons\Empire_22b42f57d1c467841280810e218d5510_48_48.png (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\icons\ESPN_a7b078f5f5f5b87efcef66ab5783cf9d_48_48.png (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\icons\Facebook_aab07bc79cf599b25c0110f32d46a3ef_48_48.png (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\icons\gcalendar_50b3e3c5fc202f0cfcae8032b2465c1b_48_48.png (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\icons\Gmail_731b6d011bd9f67463a916a496775935_48_48.png (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\icons\Google_60d75cb277f0c452fa60dba8350caf65_48_48.png (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\icons\iexplore_30c9b530b79903e5b3e36bdbdcb97626.ico (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\icons\iexplore_30c9b530b79903e5b3e36bdbdcb97626_48_48.png (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\icons\Mario_52934d81761dc31187a93a3a0be7fecc_48_48.png (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\icons\Outlook_6f817b67fa6af1a9c8abfa3813a8595c_48_48.png (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\icons\pulse_b5a242da04cc06eacd02b1ca41e3583c_48_48.png (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\icons\sys_computer_48_48.png (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\icons\sys_control_panel_48_48.png (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\icons\sys_my_documents_48_48.png (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\icons\Twitter_ebddd85ec04b7b94a2b2e97b73a90a4a_48_48.png (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\icons\Youtube_bf18fdfc4aefd6417a8bacae4be5b415_48_48.png (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\promote\337.ico (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\promote\337_7c9140b13c049fd26989f7fa25b77cb1.ico (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\promote\barbie.ico (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\promote\Barbie_00a67ff4ef657679a6c88553135d62ad.ico (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\promote\facebook.ico (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\promote\Facebook_aab07bc79cf599b25c0110f32d46a3ef.ico (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\promote\GameCenter.ico (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\promote\google.ico (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\promote\Google_60d75cb277f0c452fa60dba8350caf65.ico (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\promote\mario.ico (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\promote\Mario_52934d81761dc31187a93a3a0be7fecc.ico (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\promote\twitter.ico (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\promote\Twitter_ebddd85ec04b7b94a2b2e97b73a90a4a.ico (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\promote\v9.ico (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\promote\youtube.ico (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\promote\Youtube_bf18fdfc4aefd6417a8bacae4be5b415.ico (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\sysicons\imageres.dll_104.ico (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\sysicons\imageres.dll_107.ico (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\sysicons\shell32.dll_21.ico (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\wp\r0.jpg (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\wp\r1.jpg (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\wp\r2.jpg (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\wp\r3.jpg (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\wp\r4.jpg (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\wp\r5.jpg (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\wp\r6.jpg (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\wp\r7.jpg (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\wp\r8.jpg (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Users\Bear\AppData\Roaming\Desk 365\wp\r9.jpg (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Desk 365\promote.xml (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Desk 365\desk_bkg_list.xml (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Desk 365\desk_list.xml (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Desk 365\desk_settings.ini (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Desk 365\process_mgr.xml (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Desk 365\recent.xml (PUP.Optional.Desk365.A) -> Quarantined and deleted successfully.

(end)
0
Réponse 8 / 20
Utilisateur anonyme
30 nov. 2013 à 04:11
Re

Télécharge AdwCleaner ( d'Xplode ) sur ton bureau.
Lance le, clique sur [Scanner] puis patiente le temps du scan.
Une fois le scan terminé clique sur le bouton [Nettoyer]
Patiente durant le nettoyage. Lis le message qui apparaît, puis clique sur Ok . Le PC va être redémarré automatiquement et le rapport s'ouvrira à la fin du redémarrage.
Poste le rapport

Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt

0
Réponse 9 / 20
ant
30 nov. 2013 à 04:19
# AdwCleaner v3.013 - Report created 30/11/2013 at 04:16:02
# Updated 24/11/2013 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : Bear - CARILINK
# Running from : C:\Users\Bear\Downloads\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\eSafe
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZipper
Folder Deleted : C:\Program Files (x86)\WinZipper
Folder Deleted : C:\Program Files (x86)\Yontoo
Folder Deleted : C:\Users\Bear\AppData\LocalLow\boost_interprocess
Folder Deleted : C:\Users\Bear\AppData\Roaming\eIntaller
Folder Deleted : C:\Users\Bear\AppData\Roaming\WinZipper
File Deleted : C:\END
File Deleted : C:\Windows\System32\Tasks\Desk 365 RunAsStdUser

***** [ Shortcuts ] *****

Shortcut Disinfected : C:\Users\Bear\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
Shortcut Disinfected : C:\Users\Bear\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Shortcut Disinfected : C:\Users\Bear\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
Shortcut Disinfected : C:\Users\Bear\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
Shortcut Disinfected : C:\Users\Bear\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\kpkbnefaikfaeadgidhpoanckoiaheli
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASMANCS
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\DeskSvc
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0AFD55C8-ADF8-4A33-A6E1-DEDB7A36AEB4}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKLM\Software\Desksvc
Key Deleted : HKLM\Software\hdcode
Key Deleted : [x64] HKLM\SOFTWARE\DivX\Install\Setup\WizardLayout\ConduitToolbar
Key Deleted : [x64] HKLM\SOFTWARE\Tarma Installer

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16483

Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]

-\\ Mozilla Firefox v

-\\ Google Chrome v31.0.1650.57

[ File : C:\Users\Bear\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [4263 octets] - [30/11/2013 04:14:05]
AdwCleaner[S0].txt - [3226 octets] - [30/11/2013 04:16:02]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3286 octets] ##########
0
Réponse 10 / 20
Utilisateur anonyme
30 nov. 2013 à 04:22
Re

Pour de plus amples informations, fait ceci stp

Ouvre ce lien et télécharge ZHPDiag de Nicolas Coolman :

https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html

Ou

https://www.commentcamarche.net/telecharger/utilitaires/24803-zhpdiag/

en bas de la page ZHP avec un numéro de version.

Une fois le téléchargement achevé,

Double-clique sur l'icône pour lancer le programme. Sous Vista ; Seven ou Windows 8 clic droit « exécuter en tant que administrateur »


Dans la fenêtre ZHPDiag qui vient de s'ouvrir, clique sur "Configurer"

Clique sur la loupe en bas à gauche avec le signe plus pour lancer l'analyse.


Laisse l'outil travailler, il peut être assez long.

Un rapport s'ouvre. Ce rapport se trouve également sur ton bureau

Pour transmettre le rapport clique sur ce lien:
http://pjjoint.malekal.com/

Si problème utilise un des suivants

https://forums-fec.be/upload
https://www.cjoint.com/


Regarde sur le bureau

Sélectionne le fichier ZHPDiag.txt.

Clique sur "Cliquez ici pour déposer le fichier".

Un lien de cette forme :

http://www.cijoint.com/cjlink.php?file=cj200905/cijSKAP5fU.txt

est ajouté dans la page.

Copie ce lien dans ta réponse.

Merci

@+

0
Réponse 11 / 20
ant
30 nov. 2013 à 04:36
le programme se bloque à 1% et ne réponds plus, quand je le ferme une fenetre s'ouvre et dit que le programme a put etre mal installé, il me propose de le reinstaller avec les parametres recommandés, ce que je fais mais ça recommence avec les meme problemes
0
Réponse 12 / 20
ant
30 nov. 2013 à 04:37
je n'ai pas trouvé la loupe, j'ai rechercher et configurer quand j'ouvre le programme
0
Réponse 13 / 20
ant
Modifié par ant le 30/11/2013 à 04:40
pardon c'est ma faute j'ai trouvé, désolé (ça ne marche quand meme pas et ça fait la meme chose quand je clique sur la loupe)
0
Réponse 14 / 20
ant
Modifié par ant le 30/11/2013 à 04:49
j'ai envoyé le rapport avec le site
0
Réponse 15 / 20
ant
30 nov. 2013 à 04:44
voici le lien sur le site de partage ou j'ai uploadé le report

http://pjjoint.malekal.com/files.php?id=ZHPDiag_20131130_d14g8n8e8w9
0
Réponse 16 / 20
ant
30 nov. 2013 à 05:02
comment dois-je faire pour reinstaller un windows clean ?
0
Réponse 17 / 20
Utilisateur anonyme
30 nov. 2013 à 09:18
Bonjour

Tu reprends ZHPDiag mais en mode sans echec avec prise en charge reseau;merci

@+
0
Réponse 18 / 20
ant
30 nov. 2013 à 12:21
excuse moi, j'ai envoyé le rapport, entre temps j'ai fais une reinstallation clean de windows
0
Réponse 19 / 20
Utilisateur anonyme
30 nov. 2013 à 14:28
Re

Ton problème est donc résolu?

@+
0
Réponse 20 / 20
ant
30 nov. 2013 à 14:55
oui, merci beaucoup de tes réponses rapides et efficaces, c'est vraiment génial de ta part
0

Discussions similaires

Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
Comment savoir si j'ai attrapé un virus sur mon téléphone ?
Infolock -
bell -

66 réponses
Virus Altruistic
Mael03250 -
MisteryBean -

11 réponses
comment envoyer un virus ?
willva -
BeFaX -

1 réponse
je viens de recevoir une alerte aux virus sur mon iphone
Hugoboss23 -
zoulou33 -

6 réponses