Bonjour,J'ai un PC infecté par plusieurs petites saloperies : SystemSpeedup, Advanced System Protector, et une extension Chrome qui refuse de partir (Deeal, avec deux "e" vivi).J'ai passé plusieurs fois :- Adwcleaner (qui les détecte)- Malwarebytes (qui les détecte)- Spybot (ne détecte rien)Mais un reboot et à§a revient automatiquement. J'ai donc besoin d'aide !Voici le lien pour mon rapport ZHP :http://pjjoint.malekal.com/files.php?id ... 5t9i7o10Et mon rapport Hijackthis :http://pjjoint.malekal.com/files.php?id ... y6l14Merci pour votre aide.
Code : Tout sélectionner
3) Colle-les lignes dans ZHPFix4) Lances le nettoyage de ZHPFIx5) Postes un nouveau rapport de ZHPDiag.NB : Tutoriel pour ZHPFixhttp://www.nicolascoolman.fr/tutoriaux/A+Script ZHPFixFirewallRazEmptyPrefetchEmptyTempEmptyFlash[MD5.E754386A083BCB72A4EC7CC1869B715B] - (.Systweak - Advanced System Protector.) -- C:\Program Files (x86)\Advanced System Protector\AdvancedSystemProtector.exe [6598384] [PID.3472]P2 - FPN: [HKCU] [bebomedia.com/OfferMosquitoIEHelper] - (...) -- C:\Users\Pupuce\AppData\Local\ext_offermosquitopOfferMosquitoIEHelper.dll (.not file.)R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <-loopback>;localhost;127.0.0.1O2 - BHO: Deeal [64Bits] - {70C53538-9F82-42BC-A327-74F7A46E700C} . (.Deeal - ScriptHost.) -- C:\Program Files (x86)\Deeal\ScriptHost.dllO4 - GS\Desktop [Public]: Advanced System Protector.lnk . (.Systweak - Advanced System Protector.) -- C:\Program Files (x86)\Advanced System Protector\AdvancedSystemProtector.exeO4 - GS\Desktop [Public]: System Speedup.lnk . (.System Speedup - System Speedup.) -- C:\Program Files (x86)\System Speedup\SystemSpeedup.exe[MD5.00000000000000000000000000000000] [APT] [Advanced System Protector] (...) -- C:\Program Files (x86)\RegClean Pro\SystweakASP.exe (.not file.) [0][MD5.E754386A083BCB72A4EC7CC1869B715B] [APT] [Advanced System Protector_startup] (.Systweak.) -- C:\Program Files (x86)\Advanced System Protector\AdvancedSystemProtector.exe [6598384][MD5.02D5B7F0AC2CA0EA954CA21E9C3A010F] [APT] [System Speedup] (.System Speedup.) -- C:\Program Files (x86)\System Speedup\SystemSpeedup.exe [7833176][MD5.02D5B7F0AC2CA0EA954CA21E9C3A010F] [APT] [System Speedup_DEFAULT] (.System Speedup.) -- C:\Program Files (x86)\System Speedup\SystemSpeedup.exe [7833176][MD5.02D5B7F0AC2CA0EA954CA21E9C3A010F] [APT] [System Speedup_UPDATES] (.System Speedup.) -- C:\Program Files (x86)\System Speedup\SystemSpeedup.exe [7833176][MD5.00000000000000000000000000000000] [APT] [TaskUserUpdate_wp] (...) -- C:\Users\Pupuce\AppData\Roaming\~uvbrcwn.exe (.not file.) [0][MD5.BD2B3806854FEE15E76CB2CE662028DA] [APT] [WIN-fdfEfEfAfC] (...) -- C:\Users\Pupuce\AppData\Roaming\~zqjekqy.exe [667648][MD5.00000000000000000000000000000000] [APT] [{70F71889-0BD0-47F2-AB5B-DCAFB25334D5}] (...) -- C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.8.3.8\GUninstaller.exe (.not file.) [0]O39 - APT: System Speedup_DEFAULT - (.System Speedup.) -- C:\Windows\Tasks\System Speedup_DEFAULT.job [286]O39 - APT: System Speedup_DEFAULT - (.System Speedup.) -- C:\Windows\System32\Tasks\System Speedup_DEFAULT [286]O39 - APT: System Speedup_UPDATES - (.System Speedup.) -- C:\Windows\Tasks\System Speedup_UPDATES.job [294]O39 - APT: System Speedup_UPDATES - (.System Speedup.) -- C:\Windows\System32\Tasks\System Speedup_UPDATES [294]O42 - Logiciel: Advanced System Protector - (.Systweak Software.) [HKLM][64Bits] -- 00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~B9F029BF_is1O42 - Logiciel: Deeal - (.Kreapixel inc..) [HKLM][64Bits] -- DeealO42 - Logiciel: Pricora 12.0 - (.Corporate Inc.) [HKLM][64Bits] -- Pricora 12.0O42 - Logiciel: System Speedup - (.systemspeedup.com.) [HKLM][64Bits] -- System Speedup_is1[HKCU\Software\Ad-Aware Search Protection][HKCU\Software\Snoozer][HKCU\Software\System Speedup][HKLM\Software\Wow6432Node\System Speedup]C:\Program Files (x86)\Advanced System ProtectorC:\Program Files (x86)\DeealC:\Program Files (x86)\System SpeedupC:\ProgramData\InstallMateC:\Users\Pupuce\AppData\Roaming\betadeealC:\Users\Pupuce\AppData\Roaming\System SpeedupO44 - LFC:[MD5.13014E17D8DB6432FAB9BB94E01BDBF2] - 30/06/2014 - 21:25:39 ---A- . (.System Speedup - System Speedup.) -- C:\Windows\System32\roboot64.exe [19544]O61 - LFC: 27/06/2014 - 23:11:06 ---A- . (...) -- C:\Users\Pupuce\AppData\Roaming\Microsoft\~gbgwxgo.exe [429568]O61 - LFC: 30/06/2014 - 23:11:08 ---A- . (...) -- C:\Users\Pupuce\AppData\Roaming\~zqjekqy.exe [667648][MD5.98161DC6255C6BE7FFA89BEA634E2A6E] [SPRF][13/06/2014] (...) -- C:\ProgramData\uninstall_Deeal.exe [431104][MD5.BD2B3806854FEE15E76CB2CE662028DA] [SPRF][30/06/2014] (.Pas de propriétaire - betadeeal service scheduler.) -- C:\Users\Pupuce\AppData\Roaming\~zqjekqy.exe [667648][MD5.A5959FE9E949828B97F2111F1BFB704F] [SPRF][08/12/2012] (.Unity Technologies ApS - Unity Web Player Installer.) -- C:\Users\Pupuce\Desktop\UnityWebPlayer.exe [643896][MD5.5D7E6E5BBA302C89942F10B19DC59956] [WIS][27/12/2013] (.Kreapixel - Webplayer.) -- C:\Windows\Installer\1476f3f.msi [21504]HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASAPI32HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCSHKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\20120702IminentSetup_RASAPI32HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\20120702IminentSetup_RASMANCSHKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASMANCSHKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\FREEzeFrogSA_RASAPI32HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\FREEzeFrogSA_RASMANCSHKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Install_BubbleDock_RASAPI32HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Install_BubbleDock_RASMANCSHKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\pdfforgeToolbar-stub-1_RASAPI32HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\pdfforgeToolbar-stub-1_RASMANCSHKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SearchSettings_RASAPI32HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SearchSettings_RASMANCS[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{70C53538-9F82-42BC-A327-74F7A46E700C}][HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~B9F029BF_is1][HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Deeal][HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pricora 12.0][HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\System Speedup_is1][HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375][HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5][HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\00E944CB89111313EAF35A0553F547F9][HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\53F55AF3F4049ED3FA6EA6F88E414E24][HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E4BF4B11615E03C97732FD581AB607][HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CE3DDAB2D152683FBCEB4866BCD2B0F][HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AF6CE16AFEA5C9A39B766468A8B35C21][HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FB1E44269B58F433A8C8E671E37CFDCF]C:\Program Files (x86)\Advanced System Protector\AdvancedSystemProtector.exeC:\Program Files (x86)\System Speedup\SystemSpeedup.exeC:\Windows\Tasks\System Speedup_DEFAULT.jobC:\Windows\System32\Tasks\System Speedup_DEFAULTC:\Windows\Tasks\System Speedup_UPDATES.jobC:\Windows\System32\Tasks\System Speedup_UPDATESC:\ProgramData\uninstall_Deeal.exeC:\Users\Pupuce\AppData\Roaming\~zqjekqy.exeC:\Users\Pupuce\Desktop\UnityWebPlayer.exeC:\Windows\Installer\1476f3f.msi