Le 13-10-2008 à 19:36, tigzy :
mais déjà je te conseil de rester en permanence sur Firefox qui est bien plus rapide et sur que Internet Explorer!
Pareil!
A tout hasard,
MalwareByte Anti-Malware :
Télécharger sur le bureau Malwarebyte's Anti-Malware
=> double-clic sur mbam-setup pour lancer l'installation
=> Installer simplement sans rien modifier
=> Quand le programme lancé ==> onglet Mise à jour cliquer sur => Recherche de mise à jour
Onglet Recherche => cocher Exécuter un examen complet
=> Clic Rechercher
=> Eventuellement décocher les disque à ne pas analyser
=> Clic Lancer l'examen
=> En fin de scan , si infection trouvée
==> Clic Afficher résultat
=> Fermer vos applications en cours
=> Vérifier si tout est coché et clic Supprimer la sélection
=> un rapport s'ouvre le copier et le coller dans la réponse
Bonjour TIGZY
Suite à info, j ai fait l examen qui a sorti 63 éléments infectés, que j ai supprimé.
Le rapport étant anormalement long, il ne peut rentrer dans cette fenetre, et donc, ci après le lien du rapport
Merci
mbam-log-2008-10-14 (11-18-57).txt
Ajout du 14-10-2008 à 11:39:
To Tigzy
J essaye de le coller en 2 fois :
Malwarebytes' Anti-Malware 1.28
Version de la base de données: 1267
Windows 5.1.2600 Service Pack 3
14/10/2008 11:18:57
mbam-log-2008-10-14 (11-18-57).txt
Type de recherche: Examen complet (C:\|D:\|)
Eléments examinés: 239074
Temps écoulé: 1 hour(s), 28 minute(s), 39 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 9
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 4
Fichier(s) infecté(s): 50
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\CLSID\{9afb8248-617f-460d-9366-d71cdeda3179} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3c471948-f874-49f5-b338-4f214a2ee0b1} (Trojan.HumourCanine) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{300cf5c9-f02d-4cb8-abed-9c229da56825} (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{90b5a95a-afd5-4d11-b9bd-a69d53d22226} (Adware.Hotbar) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8109fd3d-d891-4f80-8339-50a4913ace6f} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{0ac49246-419b-4ee0-8917-8818daad6a4e} (Adware.180Solutions) -> Quarantined and deleted successfully.
Ajout du 14-10-2008 à 11:41:
suite 2 :
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{99410cde-6f16-42ce-9d49-3807f78f0287} (Adware.180Solutions) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{f31a5d11-bf0b-4a4e-90af-274f2090aaa6} (Adware.180Solutions) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_FMTR (Rogue.Multiple) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
C:\Documents and Settings\All Users\Application Data\SalesMonitor (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\SalesMonitor\Data (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Administrateur\Application Data\DriveCleaner 2006 Free (Rogue.DriveCleaner) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Administrateur\Application Data\DriveCleaner 2006 Free\Logs (Rogue.DriveCleaner) -> Quarantined and deleted successfully.
Fichier(s) infecté(s):
C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\etdhhbgpue_navps.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\etdhhbgpue_nav.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\etdhhbgpue.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\ismaimcl_navps.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\ismaimcl_nav.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\ismaimcl.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\kozjppaw_navps.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\kozjppaw_nav.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\kozjppaw.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\rmzfjfpqi_navps.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\rmzfjfpqi_nav.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\rmzfjfpqi.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\yfcyxx_navps.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\yfcyxx_nav.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\yfcyxx.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\ncsgcjgds_navps.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
Ajout du 14-10-2008 à 11:45:
Suite 3
C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\ncsgcjgds_nav.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\ncsgcjgds.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\ozhgmzu_navps.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\ozhgmzu_nav.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\ozhgmzu.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\ozhgmzu.exe (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\pinitarnp_navps.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\pinitarnp_nav.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\pinitarnp.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\yzophsgil_navps.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\yzophsgil_nav.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\yzophsgil.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Program Files\Conduit\Community Alerts\Alert.dll (Trojan.HumourCanine) -> Quarantined and deleted successfully.
C:\Program Files\The Weather Channel FW\Desktop Weather\DesktopWeather.exe (Adware.Hotbar) -> Quarantined and deleted successfully.
C:\Program Files\The Weather Channel FW\Framework\wxfw.dll (Adware.Hotbar) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP682\A0572252.dll (Adware.Hotbar) -> Quarantined and deleted successfully.
Ajout du 14-10-2008 à 11:48:
Suite 3
C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP682\A0572254.exe (Adware.Hotbar) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP682\A0572255.exe (Adware.Hotbar) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP682\A0572256.exe (Adware.Hotbar) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP682\A0572257.exe (Adware.Hotbar) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP682\A0572258.exe (Adware.Hotbar) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP715\A0610832.exe (Adware.HumourCanineToolbar) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP715\A0610833.dll (Adware.HumourCanineToolbar) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP726\A0634756.dll (Adware.Conduit) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP726\A0634757.dll (Adware.HumourCanineToolbar) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP726\A0634758.exe (Adware.HumourCanineToolbar) -> Quarantined and deleted successfully
Ajout du 14-10-2008 à 11:49:
Suite 4 et fin (MERCI)
C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP727\A0637079.dll (Adware.Conduit) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP727\A0637080.dll (Adware.HumourCanineToolbar) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP727\A0637081.exe (Adware.HumourCanineToolbar) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP727\A0638774.dll (Adware.Hotbar) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP727\A0638782.exe (Adware.Hotbar) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP728\A0644116.dll (Adware.HumourCanineToolbar) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP728\A0644115.exe (Adware.HumourCanineToolbar) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Administrateur\Application Data\DriveCleaner 2006 Free\Logs\update.log (Rogue.DriveCleaner) -> Quarantined and deleted successfully.
Le 13 octobre à 11:50 #
mais déjà je te conseil de rester en permanence sur Firefox qui est bien plus rapide et sur que Internet Explorer! 
sinon niveau mémoire c'est correct je pense surtout sous XP donc
57 ans.
