Menu
Connexion Rencontres Yabiladies Islam Vidéos Forum News
GROS problème avec Internet Explorer...Merci de m'aider
Nana93 [ MP ]
2 septembre 2009 16:06
Salam walikoum à tout le monde !Welcome
Tout d'abord Mabrouk alikoum Ramadan.

En effet, quand je lance Internet Explorer aucune fenêtre ne s'ouvre, parfois elle s'ouvre puis ça se referme aussitot!! Perplexe
De plus, je suis parti voir dans le panneau de configuration et je me suis aperçu que même l'icône "Options Internet" a disparu !!

J'ai tout essayé normalement :
- Mis à jour avec IE 8
- Refaire l'installation en désinstallant et en installant...
....

Enfin bon rien a faire il ne veut pas se lancer !Grrr

Merci d'avance de m'apporter votre aide si ce problème vous est déjà arrivé...SOS
zilis [ MP ]
2 septembre 2009 17:08
As tu penser à installé Mozilla,qui est techniquement meilleurs que IE,plus rapide...
+++++++TANGER++++++++
hninatitude [ MP ]
2 septembre 2009 21:32
SAlamoualeykoum,

Penses à faire une réparation de ton navigateur internet, sinon Zilis t'a donné une bonne solution, Installer FireFox
lance_yien [ MP ]
3 septembre 2009 07:06
Salem,

C'est que l'option a été désactivée par une personne, Spybot S&D ou un malware. Pour le vérifier:

1- Installe HijackThis si tu ne l'as pas

* Cliquer ici: [www.trendsecure.com]
* Dans la fenêtre de téléchargement cliquer sur "télécharger le programme d'installation...".
* Choisir "Exécuter" et suivre les indications pour l'installation. Bien cocher la case "créer un

2- Lance hijackthis avec son icône sur le bureau ou depuis "démarrer" => "tous les prog" => Hijackthis (pour Vista clic-droit => "Exécuter en tant qu'Admin"Winking smiley et cliquer sur "Do a scan and save a log".

A la fin un fichier texte s'ouvre copie / colle son contenu dans ta prochaine réponse

a+
zilis [ MP ]
3 septembre 2009 10:43
C'est simple Grinning smiley
+++++++TANGER++++++++
Nana93 [ MP ]
3 septembre 2009 13:07
Citation
lance_yien a écrit:
Salem,

C'est que l'option a été désactivée par une personne, Spybot S&D ou un malware. Pour le vérifier:

1- Installe HijackThis si tu ne l'as pas

* Cliquer ici: [www.trendsecure.com]
* Dans la fenêtre de téléchargement cliquer sur "télécharger le programme d'installation...".
* Choisir "Exécuter" et suivre les indications pour l'installation. Bien cocher la case "créer un

2- Lance hijackthis avec son icône sur le bureau ou depuis "démarrer" => "tous les prog" => Hijackthis (pour Vista clic-droit => "Exécuter en tant qu'Admin"Winking smiley et cliquer sur "Do a scan and save a log".

A la fin un fichier texte s'ouvre copie / colle son contenu dans ta prochaine réponse

a+

Salam a tous !

Merci pour vos réponses!

Je ferais cette opération ce soir car la je suis au boulot et je te dirai ce qu'il en est.

Sinon Mozilla est déjà installé mais je veux quand même récupérer IE... et aussi savoir pour quoi il a disparu et qu'est ce qui s'est passé réellement!
Vous comprenez ?
lance_yien [ MP ]
3 septembre 2009 13:16
Citation
Nana93 a écrit:
...
Vous comprenez ?

C'est exactement le but recherché.

IE est utile au moins pour faire les mises à jour de Windows car Microsoft refuse de les faire avec FF ou tout autre navigateur.

a+
hninatitude [ MP ]
3 septembre 2009 14:54
Salamoualeykoum,

je donne une petite precision, il me semble et c'est à confirmer qu'il n'est pas possible de supprimer Internet explorer... La possibilité a été donne avec IE8 mais l'installation de la version précédente, si vous avez fais une mise a jour, demeure toujours dans votre pc... Donc vérifie bien dans ta liste de program... Peut être que l'icone a disparu du bureau et de la zone de lancement rapide... Mais il est toujours dans votre pc... à vérifier...
Nana93 [ MP ]
3 septembre 2009 15:43
Citation
hninatitude a écrit:
Salamoualeykoum,

je donne une petite precision, il me semble et c'est à confirmer qu'il n'est pas possible de supprimer Internet explorer... La possibilité a été donne avec IE8 mais l'installation de la version précédente, si vous avez fais une mise a jour, demeure toujours dans votre pc... Donc vérifie bien dans ta liste de program... Peut être que l'icone a disparu du bureau et de la zone de lancement rapide... Mais il est toujours dans votre pc... à vérifier...

Justement l'icone est toujours visible dans les programmes, le bureau et dans la zone de lancement rapide... mais le problème c'est que quand je souhaite lancer Internet Explorer, je clic soit dans l'un soit dans l'autre et rien ne se passe, dès fois la fenêtre s'ouvre et ça se referme aussitot !!
Et aussi, comme je l'ai indiqué dans mon message, l'icone "options internet" qui se trouve dans le Panneau de configuration a disparue aussi !!! Moody Smiley
lance_yien [ MP ]
3 septembre 2009 16:11
Tu peux envoyer le rapport que je t'ai demandé stp? je t'ai expliqué les raisons possibles de cette disparition et c'est avec ce rapport que je pourrai être plus précis
hninatitude [ MP ]
3 septembre 2009 16:14
Salamoualeykoum,

tien essai ça

[support.microsoft.com]

C'est pour repare IE7 ou IE8
Nana93 [ MP ]
5 septembre 2009 19:18
Citation
lance_yien a écrit:
Tu peux envoyer le rapport que je t'ai demandé stp? je t'ai expliqué les raisons possibles de cette disparition et c'est avec ce rapport que je pourrai être plus précis

Je te l'ai envoyé en MP...
lance_yien [ MP ]
6 septembre 2009 07:57
Salam,

ça aurait été mieux de le mettre ici à la vue de tous Smiling Smiley
pas grave, on continue quand même

==> Ton PC est gravement infecté parce qu'il n'est pas protégé.
La plus importante infection est par une variante de Backdoor.

==> Il y a des traces d'Internet Explorer PRO dans ta machine. Si tu l'as installé as-tu des problèmes lors de l'installation?

Je te propose de commencer par une désinfection et voir après pour IE, les mises à jour et les protections.
--

1- Cliquer ici: [downloads.andymanchesta.com] pour télécharger SDFix sur le Bureau.

- Fermer tout et démarrer en Mode sans échec (en tapotant la touche F8 au démarrage).
- Cliquer sur le nouveau fichier "sdfix.exe" puis sur "Exécuter" pour l'installer sans rien changer aux données par défaut

- Ouvrir le dossier "SDFix" qui vient d'être créé et cliquer sur "RunThis.bat" (".bat" peut ne pas apparaître selon l'affichage).

- Appuyer sur "Y" puis "Entrée" pour lancer le programme et suivre les indications.
- A l'annonce du "Finished", appuyer sur une touche pour finir et redémarrer en Mode normal.
Au retour sur le Bureau, le rapport "Report.txt" doit s'ouvrir automatiquement. Cliquer sur "Fichier" => "Enregistrer sous", cliquer sur "Bureau" à gauche et cliquer sur "Enregistrer" en bas à droite.

2- Cliquer ici: [www.malwarebytes.org] puis sur le bouton "Download now" et "Enregistrer" pour télécharger MBAM sur le Bureau (si tu l'as déjà lance-le et fais la Mise à jour)

Cliquer sur mbam-setup.exe pour lancer l'installation et suivre les indications en laissant tout par défaut jusqu'à l'apparition de ce message.

Quand l'installation est finie, cliquer sur Terminer sans rien changer et lancer le programme depuis son icône sur le bureau ou depuis "Démarrer" => "Tous les programmes" => "Malwarebytes' Anti-Malware" pour accéder à la fenêtre principale.

Dans l'onglet "Recherche" laisser la case "Exécuter un examen rapide" cochée et cliquer sur "Rechercher".

Patienter jusqu'à la fin (affichage d'un message). Cliquer sur OK, pour fermer ce message.

Cliquer sur "Afficher les résultats".

Cliquez sur "Supprimer la sélection".

Le programme procède alors au nettoyage. S'il vous demande de redémarrer le PC, ACCEPTER (c'est pour supprimer certains fichiers spécifiques).

A la fin un rapport s'affiche. Cliquer sur "Fichier" => "Enregistrer sous", cliquer sur "Bureau" à gauche et cliquer sur "Enregistrer" en bas à droite.

Copie/ Colle ici les 2 rapports avec un nouveau HijackThis.

Bon courage!
Nana93 [ MP ]
8 septembre 2009 20:15
Citation
lance_yien a écrit:
Salam,

ça aurait été mieux de le mettre ici à la vue de tous Smiling Smiley
pas grave, on continue quand même

Je te propose de commencer par une désinfection et voir après pour IE, les mises à jour et les protections.
--

Sala wa alikoum !
Je sais je sui toujours en retard !! et Merci encore infiniment...
Donc j'ai bien suivi tes instructions et voici les 3 rapports :

Rapporte SDFix 1/2


SDFix: Version 1.240
Run by Administrateur on 08/09/2009 at 19:19
Microsoft Windows XP [version 5.1.2600]
Running From: C:\SDFix
Checking Services :
Restoring Default Security Values
Restoring Default Hosts File
Rebooting
Checking Files :
Trojan Files Found:
C:\WINDOWS\AdobeR.exe - Deleted
C:\WINDOWS\expIorer.exe - Deleted
Could Not Remove C:\autorun.inf
Removing Temp Files
ADS Check :
Final Check :

catchme 0.3.1361.2 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, [www.gmer.net]
Rootkit scan 2009-09-08 19:25:27
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden services & system hive ...
scanning hidden registry entries ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden services: 0
hidden files: 0
Remaining Services :
Authorized Application Key Export:
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standar dprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2re s.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\VoipBuster.com\\VoipBuster\\VoipBuster.exe"="C:\\Program Files\\VoipBuster.com\\VoipBuster\\VoipBuster.exe:*:Enabled:VoipBuster"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:EnabledConfused smileykype"
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"="C:\\Program Files\\Windows Live\\Messenger\\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"C:\\Program Files\\Bonjour\\mDNSResponder.exe"="C:\\Program Files\\Bonjour\\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\\Program Files\\iTunes\\iTunes.exe"="C:\\Program Files\\iTunes\\iTunes.exe:*:Enabled:iTunes"
"C:\\Program Files\\IEPro\\MiniDM.exe"="C:\\Program Files\\IEPro\\MiniDM.exe:*:Enabled:MiniDM"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainp rofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2re s.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"="C:\\Program Files\\Windows Live\\Messenger\\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"

Remaining Files :

C:\autorun.inf Found

File Backups: - C:\SDFix\backups\backups.zip

Files with Hidden Attributes :


...à suivre
Nana93 [ MP ]
8 septembre 2009 22:05

Rapporte SDFix 2/2

Files with Hidden Attributes :

Mon 29 Jun 2009 108,855 ..SHR --- "C:\060ptrm.com"
Tue 31 Mar 2009 108,693 ..SHR --- "C:\0bcobed.exe"
Sat 14 Feb 2009 107,256 ..SHR --- "C:\0c2q.com"
Thu 18 Jun 2009 106,884 ..SHR --- "C:\0c9k.exe"
Thu 16 Apr 2009 109,249 ..SHR --- "C:\0xuc.com"
Tue 8 Sep 2009 116,142 ..SHR --- "C:\10nb.exe"
Sun 28 Jun 2009 110,278 ..SHR --- "C:\1mteolu9.com"
Thu 9 Apr 2009 110,321 ..SHR --- "C:\1ogf.exe"
Mon 3 Aug 2009 107,011 ..SHR --- "C:\22yj2fy1.exe"
Sat 13 Jun 2009 106,334 ..SHR --- "C:\28b6ry9r.exe"
Thu 28 May 2009 105,980 ..SHR --- "C:\2a.exe"
Tue 10 Feb 2009 109,006 ..SHR --- "C:\2aaxaiy.exe"
Thu 2 Jul 2009 108,110 ..SHR --- "C:\2nuk.com"
Tue 8 Sep 2009 115,578 ..SHR --- "C:\3c.exe"
Tue 3 Feb 2009 105,624 ..SHR --- "C:\3dohrt.com"
Thu 1 Jan 2009 125,488 ..SHR --- "C:\3fax.exe"
Mon 22 Dec 2008 122,443 ..SHR --- "C:\6j2j.com"
Thu 11 Jun 2009 104,655 ..SHR --- "C:\6phx.com"
Sat 6 Jun 2009 104,157 ..SHR --- "C:\8.exe"
Wed 17 Jun 2009 107,768 ..SHR --- "C:\8gig0ofk.com"
Wed 24 Jun 2009 106,448 ..SHR --- "C:\8paf1d.com"
Tue 16 Jun 2009 108,006 ..SHR --- "C:\8rcahp.exe"
Fri 12 Jun 2009 103,184 ..SHR --- "C:\9dlvtiil.exe"
Tue 23 Jun 2009 110,381 ..SHR --- "C:\9j.exe"
Sun 5 Jul 2009 111,488 ..SHR --- "C:\9kretct.exe"
Tue 3 Feb 2009 109,930 ..SHR --- "C:\a2h2.com"
Sun 5 Jul 2009 111,475 ..SHR --- "C:\aphqg.exe"
Tue 13 Jan 2009 107,692 ..SHR --- "C:\bd3q0qix.exe"
Thu 7 May 2009 107,719 ..SHR --- "C:\boyedt.com"
Thu 12 Mar 2009 107,190 ..SHR --- "C:\cb.exe"
Thu 2 Jul 2009 106,352 ..SHR --- "C:\cj1m.com"
Sat 4 Apr 2009 110,157 ..SHR --- "C:\cqxj.exe"
Tue 21 Jul 2009 108,497 ..SHR --- "C:\cv8j.exe"
Thu 5 Mar 2009 109,434 ..SHR --- "C:\dbrxubcw.com"
Mon 27 Apr 2009 106,709 ..SHR --- "C:\eyt.exe"
Sun 3 May 2009 108,194 ..SHR --- "C:\fbak.exe"
Thu 23 Apr 2009 109,601 ..SHR --- "C:\g1ljsm.com"
Thu 11 Jun 2009 104,826 ..SHR --- "C:\g6e.exe"
Sun 23 Aug 2009 111,687 ..SHR --- "C:\g8k.exe"
Thu 18 Jun 2009 104,274 ..SHR --- "C:\gbm6n.exe"
Sun 1 Mar 2009 108,843 ..SHR --- "C:\gi2ky.exe"
Tue 23 Jun 2009 106,209 ..SHR --- "C:\gkc6.com"
Tue 20 Jan 2009 108,869 ..SHR --- "C:\gy.exe"
Fri 30 Jan 2009 109,127 ..SHR --- "C:\hl80c6b1.com"
Fri 17 Apr 2009 108,169 ..SHR --- "C:\husyu8n.exe"
Fri 28 Aug 2009 113,233 ..SHR --- "C:\hx.exe"
Tue 17 Feb 2009 107,564 ..SHR --- "C:\hyetn1i.exe"
Sun 8 Mar 2009 108,446 ..SHR --- "C:\i.com"
Wed 2 Sep 2009 113,455 ..SHR --- "C:\i0yva6.exe"
Mon 15 Dec 2008 110,859 ..SHR --- "C:\iok.exe"
Sat 22 Aug 2009 108,871 ..SHR --- "C:\kgji.exe"
Mon 11 May 2009 107,662 ..SHR --- "C:\lc.exe"
Thu 20 Aug 2009 106,264 ..SHR --- "C:\lcw.exe"
Tue 17 Mar 2009 111,435 ..SHR --- "C:\luk1ylq.com"
Sun 6 Sep 2009 115,319 ..SHR --- "C:\m.exe"
Sun 16 Aug 2009 109,092 ..SHR --- "C:\m1eqos3.exe"
Thu 22 Jan 2009 104,636 ..SHR --- "C:\m6r8v.com"
Sat 27 Jun 2009 107,097 ..SHR --- "C:\ml.com"
Thu 12 Mar 2009 105,079 ..SHR --- "C:\mpstxgx.exe"
Tue 1 Sep 2009 112,442 ..SHR --- "C:\mt2.exe"
Mon 25 May 2009 106,104 ..SHR --- "C:\n68mqcra.exe"
Thu 16 Jul 2009 111,492 ..SHR --- "C:\nkbd1v.exe"
Sat 25 Apr 2009 106,749 ..SHR --- "C:\npee.com"
Wed 4 Mar 2009 107,724 ..SHR --- "C:\o.exe"
Wed 1 Apr 2009 108,083 ..SHR --- "C:\o3n9k.com"
Thu 12 Feb 2009 108,067 ..SHR --- "C:\opgde.exe"
Sat 11 Jul 2009 107,217 ..SHR --- "C:\p.exe"
Tue 1 Sep 2009 114,816 ..SHR --- "C:\p9dwwa61.exe"
Mon 31 Aug 2009 112,679 ..SHR --- "C:\pkkwng.exe"
Fri 20 Feb 2009 105,484 ..SHR --- "C:\pllq.exe"
Thu 5 Feb 2009 108,705 ..SHR --- "C:\pook.com"
Wed 18 Mar 2009 110,053 ..SHR --- "C:\q0dhfjf.exe"
Mon 29 Jun 2009 108,530 ..SHR --- "C:\qkjxl.exe"
Mon 16 Feb 2009 106,803 ..SHR --- "C:\qphdin.com"
Wed 29 Jul 2009 112,212 ..SHR --- "C:\qr.exe"
Sun 6 Sep 2009 114,404 ..SHR --- "C:\qv9qc9f.exe"
Mon 13 Apr 2009 109,163 ..SHR --- "C:\qwtb.com"
Fri 26 Jun 2009 107,097 ..SHR --- "C:\s.exe"
Tue 9 Jun 2009 101,528 ..SHR --- "C:\sm.exe"
Tue 13 Jan 2009 106,546 ..SHR --- "C:\t.exe"
Fri 28 Aug 2009 114,758 ..SHR --- "C:\t8s2x.exe"
Fri 16 Jan 2009 105,814 ..SHR --- "C:\tikett.exe"
Nana93 [ MP ]
8 septembre 2009 22:07

Rapporte SDFix
suite et fin ...

Fri 16 Jan 2009 105,814 ..SHR --- "C:\tikett.exe"
Thu 19 Feb 2009 104,256 ..SHR --- "C:\txfl1rhh.com"
Mon 9 Mar 2009 109,308 ..SHR --- "C:\u.com"
Tue 20 Jan 2009 104,634 ..SHR --- "C:\u26ufgv.exe"
Fri 30 Jan 2009 107,088 ..SHR --- "C:\u2by.exe"
Fri 30 Jan 2009 106,134 ..SHR --- "C:\uh.exe"
Sat 1 Aug 2009 109,308 ..SHR --- "C:\ukfbi3aw.exe"
Sat 14 Feb 2009 107,823 ..SHR --- "C:\ur0.com"
Wed 7 Jan 2009 124,426 ..SHR --- "C:\v9ug2p2.com"
Thu 15 Jan 2009 108,940 ..SHR --- "C:\ve.exe"
Fri 24 Apr 2009 106,749 ..SHR --- "C:\vwewav8.com"
Thu 14 May 2009 107,633 ..SHR --- "C:\w.com"
Fri 20 Feb 2009 106,970 ..SHR --- "C:\w2.com"
Fri 23 Jan 2009 107,882 ..SHR --- "C:\w98.com"
Sun 9 Aug 2009 108,311 ..SHR --- "C:\wbj.exe"
Thu 26 Feb 2009 103,663 ..SHR --- "C:\wxEye popping smiley0bt1.com"
Sat 17 Jan 2009 110,003 ..SHR --- "C:\x2csvg.exe"
Tue 23 Jun 2009 106,209 ..SHR --- "C:\xbvv6o.com"
Fri 9 Jan 2009 121,738 ..SHR --- "C:\xcisvxl.com"
Fri 13 Mar 2009 108,968 ..SHR --- "C:\xdw.com"
Fri 2 Jan 2009 125,007 ..SHR --- "C:\xqyl68.exe"
Tue 23 Jun 2009 105,255 ..SHR --- "C:\y6yol.exe"
Thu 13 Aug 2009 109,092 ..SHR --- "C:\y8.exe"
Wed 29 Apr 2009 105,774 ..SHR --- "C:\ymxf2.exe"
Thu 15 Jan 2009 107,606 ..SHR --- "C:\yq00tht.exe"
Mon 11 May 2009 107,662 ..SHR --- "C:\ysep1.exe"
Sat 22 Aug 2009 90,112 ..SHR --- "C:\WINDOWS\system32\ciuytr0.dll"
Tue 13 Jan 2009 90,112 ..SHR --- "C:\WINDOWS\system32\ciuytr1.dll"
Sat 10 Jan 2009 90,112 ..SHR --- "C:\WINDOWS\system32\ciuytr2.dll"
Tue 13 Jan 2009 129,536 ..SHR --- "C:\WINDOWS\system32\kavo1.dll"
Thu 23 Jul 2009 129,536 ..SHR --- "C:\WINDOWS\system32\mkfght0.dll"
Mon 2 Mar 2009 129,536 ..SHR --- "C:\WINDOWS\system32\mkfght1.dll"
Tue 8 Sep 2009 75,184 ..SHR --- "C:\WINDOWS\system32\nmdfgds0.dll"
Sun 6 Sep 2009 75,220 ..SHR --- "C:\WINDOWS\system32\nmdfgds1.dll"
Fri 21 Aug 2009 71,248 ..SHR --- "C:\WINDOWS\system32\nmdfgds2.dll"
Fri 26 Jun 2009 103,936 ..SHR --- "C:\WINDOWS\system32\nmdfgds3.dll"
Tue 8 Sep 2009 116,228 ..SHR --- "C:\WINDOWS\system32\olhrwef.exe"
Sun 5 Jul 2009 81,408 ..SHR --- "C:\WINDOWS\system32\otrewe1.dll"
Sat 22 Aug 2009 81,408 ..SHR --- "C:\WINDOWS\system32\tavo0.dll"
Tue 13 Jan 2009 81,408 ..SHR --- "C:\WINDOWS\system32\tavo1.dll"
Fri 2 Jan 2009 85,504 ..SHR --- "C:\WINDOWS\system32\vbsdfe0.dll"
Fri 2 Jan 2009 85,504 ..SHR --- "C:\WINDOWS\system32\vbsdfe1.dll"
Tue 8 Sep 2009 75,440 ..SHR --- "C:\Documents and Settings\Administrateur.XPSP2-5E795AAA8\Local Settings\Temp\cvasds0.dll"
Tue 8 Sep 2009 116,142 ..SHR --- "C:\Documents and Settings\Administrateur.XPSP2-5E795AAA8\Local Settings\Temp\herss.exe"

Finished!
Nana93 [ MP ]
8 septembre 2009 22:21
Rapport MBAM :

Malwarebytes' Anti-Malware 1.40
Version de la base de données: 2758
Windows 5.1.2600 Service Pack 2

08/09/2009 19:48:34
mbam-log-2009-09-08 (19-48-34).txt

Type de recherche: Examen rapide
Eléments examinés: 119556
Temps écoulé: 9 minute(s), 51 second(s)

Processus mémoire infecté(s): 1
Module(s) mémoire infecté(s): 2
Clé(s) du Registre infectée(s): 16
Valeur(s) du Registre infectée(s): 5
Elément(s) de données du Registre infecté(s): 1
Dossier(s) infecté(s): 4
Fichier(s) infecté(s): 172

Processus mémoire infecté(s):
C:\WINDOWS\AhnRpta.exe (Trojan.Backdoor) -> Unloaded process successfully.

Module(s) mémoire infecté(s):
C:\WINDOWS\system32\e8main0.dll (Spyware.OnlineGames) -> Delete on reboot.
C:\WINDOWS\system32\haozs1.dll (Spyware.OnlineGames) -> Delete on reboot.

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\arab-hood.arab-hood (Adware.Softomate) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a5947c19-1fd8-49bf-a9b3-ac4c7f83c091} (Adware.Softomate) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{a5947c19-1fd8-49bf-a9b3-ac4c7 f83c091} (Adware.Softomate) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a5947c19-1fd8-49bf-a9b3-ac4c7f83c091} (Adware.Softomate) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b7d3e479-cc68-42b5-a338-938ece35f419} (Adware.Softomate) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{b7d3e479-cc68-42b5-a338-938ec e35f419} (Adware.Softomate) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\arab-hood.arab-hood.3 (Adware.Softomate) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\arab-hood.ietoolbar (Adware.Softomate) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\arab-hood.ietoolbar.1 (Adware.Softomate) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{bb4c402f-882a-4526-8c08-51278ea437c1} (Spyware.OnlineGames) -> Delete on reboot.
HKEY_CLASSES_ROOT\CLSID\{c5f43bef-ce2f-46d8-afe6-a647bacd1f09} (Spyware.OnlineGames) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c5f43bef-ce2f-afe6-46d8-a647bacd1f09} (Spyware.OnlineGames) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\webmediaplayer (Adware.EGDAccess) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\MADOWN (Worm.Magania) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\WebMediaPlayer.exe (Adware.EGDAccess) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\WebMediaPlayer (Rogue.WebMedia) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{b7d3e479-cc68-42b5-a338-938ece35f419} (Adware.Softomate) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{b7d3e479-cc68-42b5-a338-938ece35f419} (Adware.Softomate) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\{bb4c402f-88 2a-4526-8c08-51278ea437c1} (Spyware.OnlineGames) -> Delete on reboot.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\{c5f43bef-ce 2f-46d8-afe6-a647bacd1f09} (Spyware.OnlineGames) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\cdoosoft (Spyware.OnlineGames) -> Quarantined and deleted successfully.
Nana93 [ MP ]
8 septembre 2009 22:28
Rapport MBAM : suite...

Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL \CheckedValue (Hijack.System.Hidden) -> Bad: (0) Good: (1) -> Quarantined and deleted successfully.

Dossier(s) infecté(s):
C:\Program Files\WebMediaPlayer (Adware.EGDAccess) -> Quarantined and deleted successfully.
C:\Program Files\WebMediaPlayer\resources (Adware.EGDAccess) -> Quarantined and deleted successfully.
C:\Program Files\WebMediaPlayer\skins (Adware.EGDAccess) -> Quarantined and deleted successfully.
C:\Program Files\WebMediaPlayer\updates (Adware.EGDAccess) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
C:\Documents and Settings\Administrateur.XPSP2-5E795AAA8\Local Settings\Application Data\qmfcwoioy_navps.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur.XPSP2-5E795AAA8\Local Settings\Application Data\qmfcwoioy_nav.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur.XPSP2-5E795AAA8\Local Settings\Application Data\qmfcwoioy.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur.XPSP2-5E795AAA8\Local Settings\Application Data\qmfcwoioy.exe (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Program Files\arabhood.com\tbu72\arabhood.dll (Adware.Softomate) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\e8main0.dll (Spyware.OnlineGames) -> Delete on reboot.
C:\WINDOWS\system32\haozs1.dll (Spyware.OnlineGames) -> Delete on reboot.
C:\0c9k.exe (Worm.AutoRun) -> Quarantined and deleted successfully.
C:\1f.bat (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\1ogf.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\1utbfd.bat (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\2.bat (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\28b6ry9r.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\2a.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\2fiy.bat (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\3.cmd (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\ej10fkdo.bat (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\em8tqm.cmd (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\eyt.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\g8k.exe (Worm.Magania) -> Quarantined and deleted successfully.
C:\gbm6n.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\gkc6.com (Trojan.Gamania) -> Quarantined and deleted successfully.
C:\gpcdt.cmd (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\gy.exe (Worm.AutoRun) -> Quarantined and deleted successfully.
C:\gyn.cmd (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\husyu8n.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\hx.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\t8s2x.exe (Worm.Magania) -> Quarantined and deleted successfully.
C:\nu.cmd (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\q0dhfjf.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\3ds.cmd (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\6phx.com (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\8.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\8gig0ofk.com (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\8paf1d.com (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\9dlvtiil.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\aphqg.exe (Worm.Magania) -> Quarantined and deleted successfully.
C:\uhoxajc.cmd (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\ukvr.bat (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\upw.bat (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\upx.bat (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\ur0.com (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\uvsqfgwd.cmd (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\vwewav8.com (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\w.com (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\w98.com (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\i.cmd (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\i0yva6.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\i6g6x.cmd (Spyware.OnlineGames) -> Quarantined and deleted successfully.
Nana93 [ MP ]
8 septembre 2009 22:30
Rapport MBAM : suite...

C:\icxpa.cmd (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\ix8bmwx.bat (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\j.cmd (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\jeorels.cmd (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\jm3cx96.bat (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\lc.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\lcw.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\luk1ylq.com (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\m0vnonh.bat (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\metdgv.bat (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\ml.com (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\mpstxgx.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\mt2.exe (Worm.Magania) -> Quarantined and deleted successfully.
C:\n68mqcra.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\nkbd1v.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\npee.com (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\x2tpc.cmd (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\xbvv6o.com (Trojan.Gamania) -> Quarantined and deleted successfully.
C:\xsia.bat (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\y6yol.exe (Worm.Magania) -> Quarantined and deleted successfully.
C:\yhh.bat (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\ymxf2.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\yq00tht.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\ysep1.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\boyedt.com (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\cb.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\dbrxubcw.com (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\qphdin.com (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\qv9qc9f.exe (Worm.Magania) -> Quarantined and deleted successfully.
C:\qwtb.com (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\rwj0.cmd (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\s.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\s39tg.cmd (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\sm.exe (Worm.AutoRun) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\mkfght0.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\mkfght1.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ciuytr0.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ciuytr1.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\nmdfgds3.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur.XPSP2-5E795AAA8\Local Settings\Temporary Internet Files\Content.IE5\VNO3DP7Z\ff[1].exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur.XPSP2-5E795AAA8\Local Settings\Temporary Internet Files\Content.IE5\VNO3DP7Z\cc[1].exe (Trojan.Dropper) -> Quarantined and deleted successfully.
C:\Program Files\WebMediaPlayer\Conditions générales.url (Adware.EGDAccess) -> Quarantined and deleted successfully.
C:\Program Files\WebMediaPlayer\Confidentialité.url (Adware.EGDAccess) -> Quarantined and deleted successfully.
C:\Program Files\WebMediaPlayer\sqlite3.dll (Adware.EGDAccess) -> Quarantined and deleted successfully.
C:\Program Files\WebMediaPlayer\uninst.exe (Adware.EGDAccess) -> Quarantined and deleted successfully.
C:\Program Files\WebMediaPlayer\WebMediaPlayer.exe (Adware.EGDAccess) -> Quarantined and deleted successfully.
C:\Program Files\WebMediaPlayer\Website.url (Adware.EGDAccess) -> Quarantined and deleted successfully.
C:\Program Files\WebMediaPlayer\resources\languages_v2.xml (Adware.EGDAccess) -> Quarantined and deleted successfully.
C:\Program Files\WebMediaPlayer\resources\webmedias (Adware.EGDAccess) -> Quarantined and deleted successfully.
C:\Program Files\WebMediaPlayer\skins\classic.skn (Adware.EGDAccess) -> Quarantined and deleted successfully.
C:\m.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\o.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\p.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\t.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\q8e6.bat (Trojan.Agent) -> Quarantined and deleted successfully.
C:\qoes.bat (Trojan.Agent) -> Quarantined and deleted successfully
C:\r120.bat (Trojan.Agent) -> Quarantined and deleted successfully
Nana93 [ MP ]
8 septembre 2009 22:33
Rapport MBAM : suite...

C:\ste8.bat (Trojan.Agent) -> Quarantined and deleted successfully.
C:\300y.cmd (Trojan.Agent) -> Quarantined and deleted successfully.
C:\32o3.cmd (Trojan.Agent) -> Quarantined and deleted successfully.
C:\cv22.cmd (Trojan.Agent) -> Quarantined and deleted successfully.
C:\minm.cmd (Trojan.Agent) -> Quarantined and deleted successfully.
C:\se11.cmd (Trojan.Agent) -> Quarantined and deleted successfully.
C:\30c0e.cmd (Trojan.Agent) -> Quarantined and deleted successfully.
C:\gfqgq.cmd (Trojan.Agent) -> Quarantined and deleted successfully.
C:\pchkh.cmd (Trojan.Agent) -> Quarantined and deleted successfully.
C:\yb12j.cmd (Trojan.Agent) -> Quarantined and deleted successfully.
C:\auq9bor.bat (Trojan.Agent) -> Quarantined and deleted successfully.
C:\mqhnawe.bat (Trojan.Agent) -> Quarantined and deleted successfully.
C:\060ptrm.com (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\0bcobed.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\0xuc.com (Trojan.Agent) -> Quarantined and deleted successfully.
C:\22yj2fy1.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\2aaxaiy.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\2nuk.com (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\86l2qw.bat (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\8rcahp.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\9kretct.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\a1agmur.cmd (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\autorun.inf (SuspectAutorun.Rootdrive.H) -> Quarantined and deleted successfully.
C:\bd3q0qix.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\cj1m.com (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\cqxj.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\fbak.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\g1ljsm.com (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\gi2ky.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\hkn6k.bat (Malware.Trace) -> Quarantined and deleted successfully.
C:\hyetn1i.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\i.com (Trojan.Agent) -> Quarantined and deleted successfully.
C:\iok.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\j60osk9.cmd (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\o3n9k.com (Trojan.Agent) -> Quarantined and deleted successfully.
C:\opgde.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\p9dwwa61.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\pook.com (Trojan.Agent) -> Quarantined and deleted successfully.
C:\q9.cmd (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\qkjxl.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\qr.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\txfl1rhh.com (Trojan.Agent) -> Quarantined and deleted successfully.
C:\u.com (Trojan.Agent) -> Quarantined and deleted successfully.
C:\ve.exe (Worm.AutoRun) -> Quarantined and deleted successfully.
C:\w2.com (Trojan.Agent) -> Quarantined and deleted successfully.
C:\wxEye popping smiley0bt1.com (Trojan.Agent) -> Quarantined and deleted successfully.
C:\x2csvg.exe (Worm.AutoRun) -> Quarantined and deleted successfully.
C:\xcisvxl.com (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\xdw.com (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\afmain0.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\afmain1.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ciuytr2.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\haozs0.dll (Worm.AutoRun) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\kavo1.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\nmdfgds0.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\nmdfgds1.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\nmdfgds2.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\olhrwef.exe (Trojan.Agent) -> Quarantined and deleted successfully.
Emission spécial MRE
2m Radio + Yabiladi.com
Facebook