FORUM D’ENTRAIDE INFORMATIQUE (FEI)
Site d’assistance et de sécurité informatique

Vérification de désinfection

Règles du forum : Entraide concernant la désinfection et la sécurité informatique : en cas de publicités intempestives, pop-up, redirections, logiciels indésirables, ralentissements suspects, virus, etc.
Une désinfection complète vous sera assurée : désinfection, sécurisation, puis prévention.
Seuls les helpers (personnes qualifiées et formées à la désinfection) ainsi que le staff sont autorisés à apporter leur aide dans cette section.
Merci également de prendre connaissance de la charte générale du forum.

Répondre

Afin d’empêcher la création automatisée de comptes, nous vous demandons de réussir le défi ci-contre.
Smileys
:D :) :-) ;) :| :( :cry: :cheers: :hourra: :mv: :lol: :mdr: :bonjour: :hello: :jap: :siffle: :bisou: :P :o :x :roll: :good: :bad: :super: :reflexion: :suspect: :? :oops: :peur: :zen: :boude: :bug:

Revue du sujet : Vérification de désinfection Étendre la vue

Re: Vérification de désinfection

par g3n-h@ckm@n » ven. 20 févr. 2015 11:28
bonjour je m'en suis occupé , bonne journée :D

Re: Vérification de désinfection

par Sarrax » jeu. 19 févr. 2015 12:12
Merci pour ton aide :-)

peux-tu me dire comment mettre le post en "Résolu" ?

Re: Vérification de désinfection

par g3n-h@ckm@n » jeu. 19 févr. 2015 11:05
impec :)

Re: Vérification de désinfection

par Sarrax » jeu. 19 févr. 2015 09:27
OK, je me disais bien aussi qu'il manquait quelque chose...

Voilà le rapport Delfix (comme il n'est pas très grand, je le copie ci-dessous) :

# DelFix v10.8 - Rapport créé le 19/02/2015 à 08:17:32
# Mis à jour le 29/07/2014 par Xplode
# Nom d'utilisateur : Arnaud - LENOVO-ARNAUD
# Système d'exploitation : Windows 8.1 (64 bits)

~ Activation de l'UAC ... OK

~ Suppression des outils de désinfection ...

Supprimé : C:\_OTM
Supprimé : C:\AdwCleaner
Supprimé : C:\AdsFix
Supprimé : C:\Users\Arnaud\AppData\Roaming\ZHP
Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
Supprimé : C:\Program Files (x86)\ZHPDiag
Supprimé : C:\AdsFix_17_02_2015_19_56_21.txt
Supprimé : C:\JavaRa.log
Supprimé : C:\PhysicalDisk0_MBR.bin
Supprimé : C:\Users\Arnaud\Desktop\AdsFix.exe
Supprimé : C:\Users\Arnaud\Desktop\AdsFix_17_02_2015_19_56_21.txt
Supprimé : C:\Users\Arnaud\Desktop\AdwCleaner[S0].txt
Supprimé : C:\Users\Arnaud\Desktop\adwcleaner_4-110_fr_430277.exe
Supprimé : C:\Users\Arnaud\Desktop\OTM.exe
Supprimé : C:\Users\Arnaud\Desktop\ZHPDiag.lnk
Supprimé : C:\Users\Arnaud\Desktop\ZHPDiag.txt
Supprimé : C:\Users\Arnaud\Desktop\ZHPFix.lnk
Supprimé : C:\Users\Arnaud\Downloads\adwcleaner_4-110_fr_430277.exe
Supprimé : C:\Users\Arnaud\Downloads\ZHPDiag2 (1).exe
Supprimé : C:\Users\Arnaud\Downloads\ZHPDiag2.exe
Supprimée : HKCU\Software\AdsFix
Supprimée : HKLM\SOFTWARE\OldTimer Tools
Supprimée : HKLM\SOFTWARE\AdsFix
Supprimée : HKLM\SOFTWARE\AdwCleaner
Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ZHPDiag_is1

~ Sauvegarde de la base de registre ... OK

~ Purge de la restauration système ...

Supprimé : RP #47 [Point de contrôle planifié | 02/09/2015 01:29:18]
Supprimé : RP #48 [Windows Update | 02/12/2015 18:20:26]
Supprimé : RP #49 [Windows Update | 02/16/2015 05:00:03]
Supprimé : RP #50 [Removed Adobe Reader XI (11.0.10) - Français. | 02/19/2015 07:04:56]

Re: Vérification de désinfection

par g3n-h@ckm@n » mer. 18 févr. 2015 20:55

Re: Vérification de désinfection

par Sarrax » mer. 18 févr. 2015 19:55
Yep, pas mal !

Question problèmes, je viens malheureusement de constater à nouveau des déconnexions Wifi, apparemment moins fréquentes qu'avant mais comme de toutes façons le phénomène était aléatoire, je ne suis pas sûr que ça signifie quoi que ce soit...
Si à priori l'ordi est clean, je retourne sur le forum réseau pour ce problème.

Merci pour tout

Re: Vérification de désinfection

par g3n-h@ckm@n » mer. 18 févr. 2015 19:43
ok presque 6.5 Go de gagnés dans cette action ^^

des soucis persistent ?

Re: Vérification de désinfection

par Sarrax » mer. 18 févr. 2015 19:37
Bizarre...

Je colle :

All processes killed
========== REGISTRY ==========
Registry value HKEY_USERS\S-1-5-21-849791135-2590156444-1168506348-1002\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Adobe Speed Launcher deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\"NoActiveDesktopChanges"|DWORD:0 /E : value set successfully!
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\"NoActiveDesktop"|DWORD:0 /E : value set successfully!
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer\\"NoActiveDesktopChanges"|DWORD:0 /E : value set successfully!
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer\\"NoActiveDesktop"|DWORD:0 /E : value set successfully!
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\\"EnableFirewall"|DWORD:0 /E : value set successfully!
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\\"EnableFirewall"|DWORD:0 /E : value set successfully!
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\PublicProfile\\"EnableFirewall"|DWORD:0 /E : value set successfully!
========== FILES ==========
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\052612 665 [JavBuzz.com].flv.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\114408.JPG.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\122_8.gif.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\13684[1].flv.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\13913[1].flv.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\14437a67fddd4facbe6c0b3366428607[1].flv.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\170198_SARRALUX.jpg.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\1811707_enjoying_romantic_ramming[1].flv.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\2008 - Floating Point.zip.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\26 St sorlin.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\4082513[1].flv.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\4226683[1].flv.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\5010914[1].flv.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\5081544[1].flv.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\8192.JPG.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\AdsFix_17_02_2015_19_56_21.txt.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\AdwCleaner.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\AdwCleaner[R2].txt.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\AdwCleaner[S0].txt.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\AE.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Akun's Readme.txt.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Après la vie.mkv.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Attestation CSG 1404.pdf.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Attestation FAF 1404.pdf.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Au voleur.mkv.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\AutomaticDestinations folder moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Avid Pro Tools 11 Crack with PATCH Only.rar.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Avid Pro Tools HD Virtual Instruments.rar.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Avid Pro Tools HD Plug-Ins.rar.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\avid1037.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\avid1037.rar.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Azur Déco 141021 RAR.odt.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Azur Déco.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Best friend.webm.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Breaking bad.jpg.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Breaking bad.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\CalculPret.ods.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\CC.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Cde Fa610.pdf.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Cde Fa687.pdf.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Cde Fa726.pdf.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Cde Fa777.pdf.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Cde Vision 150218.pdf.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\CHAOS.nfo.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\ChingLiu.Install.Notes.nfo.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Christmas vacation.flv.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Classic album-Cream-Disreali gears .vob.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Classic album-Cream-Disreali gears.vob.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Classic album-Pink Floyd-The dark side of the moon.vob.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Classic album-The Jimi Hendrix experience-Electric ladyland.vob.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Comptes enfants.ods.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Crack.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations folder moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\desktop.ini moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Diva 1981.mkv.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\document_io_logring.txt.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Dutourd, Jean Mémoires de Mary Watson.odg.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Elementary - Saison 2 épisode 16_M6_2015_01_30_21_45.ts.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Elementary 02x16.ts.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Enfants.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Engrenages 05.jpg.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Engrenages.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Finale 2012.rar.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Finance.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Four friends [Georgia] 1981.mkv.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\FR.12.0.101.264.rar.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Game of thrones.jpg.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\GoT.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Greta, Monika et Suzelle (Das Sex-Theater) (1980).mkv.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\hawking.rar.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\How To Open Nfo Files.txt.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\IMPORTANT! Readme!.txt.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\jce_policy-6.zip.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Juridique.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\katalog_en_ru.zip.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Kbis Sarralux 2013.PDF.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\KillerBugs v3.rar.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Konica 110708.odt.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Le capital au XXIe siècle[WwW.Roman-Gratuit.CoM].rar.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Le pantalon.jpg.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Le visiteur du futur.jpg.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\le visiteur du futur.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\LEI2.doc.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Les combattants.jpg.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Liste BD.ods.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Litige.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\luminarias-empotrables.zip.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\magicolor1690MF.zip.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\MAISON.WK4.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\NFL.2015.02.01.Super-Bowl.New-England-Patriots.vs.Seattle-Seahawks.540p.HDTV.30fps.x264-HDSportBits.mkv.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\NFL.NFC.Conf.Champ.15.01.18_Packers@Seahawks.mkv.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\On n'est pas couché_France 2_2015_01_24_23_15.ts.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\patch.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\pd-0.45-4.msw.zip.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Person of interest - Person of interest - Episode 10 Saison 03 - Le syndrome du survivant_TF1_2015_01_27_21_45.ts.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Person of interest - Person of interest - Episode 9 Saison 03 - La traversée de New York_TF1_2015_01_27_20_55.ts.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Pink Floyd - The Endless River.flac.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Plafondecor 141003 RAR.odt.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Planning 2014-2015.ods.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Planning CC 2014-2015 ok.ods.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Planning CC 2014-2015 ok2.ods.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Planning CC 2014-2015.ods.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Pro Tools 10.3.7.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Pro Tools 11.0.4 HD WIN + Crack.rar.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Pro_Tools_10.3.7_Win.zip.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\QuickDiag_18_02_2015_16_21_44.txt.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Recettes.odt.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Remboursement.ods.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Rugby_France 2_2015_02_06_20_55.ts.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Règlements ok.ods.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Règlements.ods.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\SARRALUX.ECP.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\SARRALUX.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\SARRALUX1.egc.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Sauvegardes.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Streamy_4.0_beta_M4.win32.win32.x86.zip.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\SU St Sorlin 141021 RAR.odt.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\SUIVI.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Suède Cde 150217.pdf.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Suède Saunas.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Tampon Sarralux.odp.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\teg.xls.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\temp.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Tested and Working.txt.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\The giver.jpg.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Téléchargements.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\URSSAF 140518.odt.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\URSSAF 141202.odt.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\URSSAF 150218.odt.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Urssaf.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\VIDEO_TS.IFO.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\VIDEO_TS.VOB.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Vidéo-Films Classiques, Documentaires, Biopic, Historique.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Vir Comatelec 150216.pdf.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Vision Licht.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\vobm250eng.zip.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\VR.nfo.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\VTS_01_0.IFO.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\VTS_01_0.VOB.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\VTS_01_1.VOB.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\VTS_01_2.VOB.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\VTS_02_0.BUP.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\VTS_02_0.IFO.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\VTS_02_0.VOB.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\VTS_02_1.VOB.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Windows Finale Read Me.rtf.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\WLM100C.tmp.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\WLM68E2.tmp.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\WLM8550.tmp.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\WLME9FE.tmp.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\Xart Supermodel.webm.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\ZHPDiag.txt.lnk moved successfully.
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\[kickass.so]nfl.2015.super.bowl.xlix.week22.01.feb.ne.patriots.v.sea.seahawks.540p.reborn4hd.torrent.lnk moved successfully.
C:\eula.1028.txt moved successfully.
C:\eula.1031.txt moved successfully.
C:\eula.1033.txt moved successfully.
C:\eula.1036.txt moved successfully.
C:\eula.1040.txt moved successfully.
C:\eula.1041.txt moved successfully.
C:\eula.1042.txt moved successfully.
C:\eula.2052.txt moved successfully.
C:\eula.3082.txt moved successfully.
DllUnregisterServer procedure not found in C:\install.res.1028.dll
DllUnregisterServer procedure not found in C:\install.res.1031.dll
DllUnregisterServer procedure not found in C:\install.res.1033.dll
DllUnregisterServer procedure not found in C:\install.res.1036.dll
DllUnregisterServer procedure not found in C:\install.res.1040.dll
DllUnregisterServer procedure not found in C:\install.res.1041.dll
DllUnregisterServer procedure not found in C:\install.res.1042.dll
DllUnregisterServer procedure not found in C:\install.res.2052.dll
DllUnregisterServer procedure not found in C:\install.res.3082.dll
C:\install.exe moved successfully.
C:\install.ini moved successfully.
C:\install.res.1028.dll moved successfully.
C:\install.res.1031.dll moved successfully.
C:\install.res.1033.dll moved successfully.
C:\install.res.1036.dll moved successfully.
C:\install.res.1040.dll moved successfully.
C:\install.res.1041.dll moved successfully.
C:\install.res.1042.dll moved successfully.
C:\install.res.2052.dll moved successfully.
C:\install.res.3082.dll moved successfully.
C:\Users\All Users\Spybot - Search & Destroy\Quarantine folder moved successfully.
C:\Users\All Users\Spybot - Search & Destroy\Logs folder moved successfully.
C:\Users\All Users\Spybot - Search & Destroy\Ignore folder moved successfully.
C:\Users\All Users\Spybot - Search & Destroy\Cleaning folder moved successfully.
C:\Users\All Users\Spybot - Search & Destroy folder moved successfully.
C:\Users\Arnaud\AppData\Local\Apps\2.0\K5CRTACW.CMK\VQK4NYVW.4TV\manifests folder moved successfully.
C:\Users\Arnaud\AppData\Local\Apps\2.0\K5CRTACW.CMK\VQK4NYVW.4TV folder moved successfully.
C:\Users\Arnaud\AppData\Local\Apps\2.0\K5CRTACW.CMK folder moved successfully.
C:\Users\Arnaud\AppData\Local\Apps\2.0 folder moved successfully.
C:\Users\Arnaud\AppData\Local\Apps folder moved successfully.
C:\Program Files (x86)\Spybot - Search & Destroy 2\locale\fr_FR\LC_MESSAGES folder moved successfully.
C:\Program Files (x86)\Spybot - Search & Destroy 2\locale\fr_FR folder moved successfully.
C:\Program Files (x86)\Spybot - Search & Destroy 2\locale folder moved successfully.
C:\Program Files (x86)\Spybot - Search & Destroy 2 folder moved successfully.
File/Folder C:\WINDOWS\System32\Tasks\Safer-Networking not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Arnaud
->Temp folder emptied: 6181596623 bytes
->Temporary Internet Files folder emptied: 115049428 bytes
->Java cache emptied: 51405 bytes
->Google Chrome cache emptied: 374390462 bytes
->Flash cache emptied: 57817 bytes

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 57311 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Public

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 4813 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 6 362,00 mb


OTM by OldTimer - Version 3.1.21.0 log created on 02182015_175249

Files moved on Reboot...
C:\Users\Arnaud\AppData\Local\Microsoft\Windows\INetCache\IE\I2Y248GY\franceinterhautdebit[1].dat moved successfully.
C:\Users\Arnaud\AppData\Local\Microsoft\Windows\INetCache\counters.dat moved successfully.
File move failed. C:\WINDOWS\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...

Re: Vérification de désinfection

par g3n-h@ckm@n » mer. 18 févr. 2015 19:28
moi j'ai ca en cliquant sur ton lien :)

http://www.cjoint.com/15fe/EBstM6rUeD0.htm

colle son contenu ici il devrait rentrer

Re: Vérification de désinfection

par Sarrax » mer. 18 févr. 2015 18:56
Ben oui, le document joint est bien "02182015_175249.log" qui est le rapport OTM... En cliquant sur le lien, le fichier est bien présent en haut de la page !

Re: Vérification de désinfection

par g3n-h@ckm@n » mer. 18 févr. 2015 18:30
t'es sure que t'as pris le bon lien ? ^^ clique dessus ^^

Re: Vérification de désinfection

par Sarrax » mer. 18 févr. 2015 18:13
Voilà le rapport OTM :

http://cjoint.com/?0BssxML3tcw

Re: Vérification de désinfection

par g3n-h@ckm@n » mer. 18 févr. 2015 17:39
si ce n'est fait desinstalle spybot et glary utilties , l'un est inutile , l'autre un fracasse-système

==

Désactive ton antivirus le temps de la manipulation car OTM est détecté comme une infection à tort.
Télécharge https://www.sosvirus.net/telecharger/otm/ OTM (OldTimer) sur ton Bureau :
Double-clique sur OTM.exe afin de le lancer. (clic droit "executer en tant qu'administrateur" pour Vista/7/8 )

Copie (Ctrl+C) le texte suivant ci-dessous :
Code : Tout sélectionner
:reg
[HKU\S-1-5-21-849791135-2590156444-1168506348-1002\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Adobe Speed Launcher"=-
[HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] 
"NoActiveDesktopChanges"=DWORD:0
"NoActiveDesktop"=DWORD:0
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer] 
"NoActiveDesktopChanges"=DWORD:0
"NoActiveDesktop"=DWORD:0
[HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] 
"EnableFirewall"=DWORD:0
[HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0
[HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] 
"EnableFirewall"=DWORD:0

:files
C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Recent\* 
C:\eula.*.txt 
C:\install.*
C:\Users\All Users\Spybot - Search & Destroy 
C:\Users\Arnaud\AppData\Local\Apps     
C:\Program Files (x86)\Spybot - Search & Destroy 2 
C:\WINDOWS\System32\Tasks\Safer-Networking 

:commands
[emptytemp]
Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.
Clique maintenant sur le bouton MoveIt!
Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.

Poste le rapport situé dans ce dossier : C:\_OTM\MovedFiles\

*Le nom du rapport correspond au moment de sa création : date_heure.log

Re: Vérification de désinfection

par Sarrax » mer. 18 févr. 2015 16:24
Merci pour ton aide,

le rapport est là : http://upload.sosvirus.net/download/4gx ... 5htbkk80vr

Re: Vérification de désinfection

par g3n-h@ckm@n » mer. 18 févr. 2015 15:07
ok on va faire un diag voir ce qui pourrait rester :)
note : le rapport sera sur le bureau au nom de QuickDiag_date_heure.txt, et une copie du même nom sera disponible dans ton disque système ( logiquement C: )

Re: Vérification de désinfection

par Sarrax » mer. 18 févr. 2015 14:17

Re: Vérification de désinfection

par g3n-h@ckm@n » mer. 18 févr. 2015 13:13
salut tu as mis 2 fois le rapport d'adwcleaner ^^

Vérification de désinfection

par Sarrax » mer. 18 févr. 2015 11:08
Bonjour,

à la suite d'un problème de déconnexion sauvage de ma connexion Wifi, GrimP3uR m'a conseillé de faire un tour dans cette section.

Dans un premier temps, en suivant les conseils présents sur le forum, j'ai commencé par AdwCleaner et AdsFix. Les rapports sont là :
http://cjoint.com/?0Bslqt4VI7n
http://cjoint.com/?0Bslqt4VI7n

Le problème semble réglé, mais j'aimerai être sûr que mon ordi est bien complètement désinfecté.

Merci pour votre aide
désinstaller sophos

j'ai fait une recherche sophos avec regedit https[…]

Сайн уу. Би та бүхэнд Мелбет Монгол https://melbe[…]

Рекламно-Производственная Компания «Ресурс&r[…]

Bonjour, Oui le chabot est très utile il p[…]