Bonjour à vous!C'est dingue, j'ai exactement le MEME problème!J'ai utilisé ZHP Cleaner pour me débarasser de istartsurf, à§a a marché super!MAIS impossible de me connecter depuis à internet.J'ai pourtant essayé différentes manips mais rien à faire...Voici mon rapport ZHP CleanerPLIZE, HELP MI!!!
))~ ZHPCleaner v2015.3.6.109 by Nicolas Coolman (06/03/2015)~ Run by Arnaud (Administrator) (07/03/2015 18:51:22)~ Forum :
http://forum.nicolascoolman.fr~ Facebook :
https://www.facebook.com/nicolascoolman1~ State version : Version OK~ Type : Repair~ Report : C:\Users\Arnaud\Desktop\ZHPCleaner.txt~ Quarantine : C:\Users\Arnaud\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt~ UAC : Activate~ Boot Mode : Normal (Normal boot)~ Windows VISTA, 32-bit Service Pack 1 (Build 6001)---\\ Services (3)---\\ Browser internet (1)REPLACED Desktop: C:\Users\Public\Desktop\Mozilla Firefox.lnk [Bad :
http://www.istartsurf.com/?type=sc&ts=1 ... X97BTT0I5T] (Hijacker.Browser)---\\ Hosts file (1)~ The hosts file is legitimate (20)---\\ Scheduled automatic tasks. (0)~ No malicious items found.---\\ Explorer ( File, Folder) (8)MOVED file: C:\Program Files\AVG\AVG8\Toolbar\ToolbarBroker.exe [Copyright (C) 2011 - ToolbarB Application] (Toolbar.AVGSearch)MOVED file: C:\Windows\Prefetch\VOPACKAGE.EXE-FE68BC06.pf [ - ] (Adware.Downware)MOVED file: C:\Windows\system32\BDL.dll [BD Inc. - ] (Hijacker.Winsock)MOVED file: C:\Users\Arnaud\Downloads\SoftonicDownloader_pour_camstudio.exe [Copyright (C) 2014 - Application Setup] (PUP.Softonic)MOVED file: C:\Users\Arnaud\AppData\Local\Temp\vitruvian-installer-hardwareprofile-v0001 [ - ] (PUP.Vitruvian)MOVED file: C:\Users\Arnaud\AppData\Local\Temp\vitruvian-installer-install-v0003 [ - ] (PUP.Vitruvian)MOVED file: C:\Users\Arnaud\AppData\Local\Temp\vitruvian-installer-processes-v0002 [ - ] (PUP.Vitruvian)MOVED file: C:\Users\Arnaud\AppData\Local\Temp\vitruvian-installer-scheduledtasks-v0001 [ - ] (PUP.Vitruvian)---\\ Registry ( Key, Value, Data) (29)DELETED key^: HKLM\SYSTEM\CurrentControlSet\Services\AVG Security Toolbar Service [C:\Program Files\AVG\AVG8\Toolbar\ToolbarBroker.exe] (Toolbar.AVGSearch)DELETED key^: HKLM\SYSTEM\CurrentControlSet\Services\servervo [C:\Users\Arnaud\AppData\Roaming\VOPackage\VOsrv.exe (Not File) ] (Adware.Downware)DELETED key^: HKLM\SYSTEM\CurrentControlSet\Services\vToolbarUpdater18.3.0 [C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.3.0\ToolbarUpdater.exe (Not File) ] (Toolbar.AVGSearch)DELETED key*: HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\WSE_Astromenda [wscript /E:vbscript /B "C:\Users\Arnaud\AppData\Roaming\WSE_Astromenda\UpdateProc\bkup.dat"] (PUP.Astromenda)DELETED value: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\gmsd_fr_286 [] (PUP.CrossRider)DELETED value: HKLM\SOFTWARE\Mozilla\Firefox\Extensions\\avg@toolbar [C:\ProgramData\AVG Secure Search\FireFoxExt\18.3.0.885\] (Toolbar.AVGSearch)DELETED key*: HKLM\SOFTWARE\Classes\CLSID\{63EDCDD3-8AFC-4358-A90F-F7FB8F5C64FF}\InprocServer32 [C:\Program Files\AVG Secure Search\10.2.0.3\AVG Secure Search_toolbar.dll] (Toolbar.AVGSearch)DELETED key*: HKLM\SOFTWARE\Classes\CLSID\{BD5843ED-13C4-4EFF-ACE9-56CEE22BC087}\InprocServer32 [C:\Program Files\AVG Secure Search\9.0.0.18\AVG Secure Search_toolbar.dll] (Toolbar.AVGSearch)DELETED key*: HKLM\SOFTWARE\Classes\CLSID\{63EDCDD3-8AFC-4358-A90F-F7FB8F5C64FF} [BrowserWndAPI Class] (Toolbar.AVGSearch)DELETED key*: HKLM\SOFTWARE\Classes\CLSID\{BD5843ED-13C4-4EFF-ACE9-56CEE22BC087} [BrowserWndAPI Class] (Toolbar.AVGSearch)DELETED key*: HKEY_USERS\S-1-5-21-656708752-3475709246-1581579036-1002\Software\AVG Secure Search [] (Toolbar.AVGSearch)DELETED key*: HKEY_USERS\S-1-5-21-656708752-3475709246-1581579036-1002\Software\AVG Security Toolbar [] (Toolbar.AVGSearch)DELETED key*: HKEY_USERS\S-1-5-21-656708752-3475709246-1581579036-1002\Software\YahooPartnerToolbar [] (Toolbar.YahooPartner)DELETED key*: HKCU\Software\AppDataLow\Software\AVG Security Toolbar [] (Toolbar.AVGSearch)DELETED key*: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\gmsd_fr_286_is1 [] (PUP.CrossRider)DELETED key*: HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI [BrowserWndAPI Class] (AVGSearch)DELETED key*: HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj [AVG Security Toolbar] (AVGSearch)DELETED key*: HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1 [AVG Security Toolbar] (AVGSearch)DELETED key*: HKLM\SOFTWARE\Classes\AppID\SECMAN.DLL [] (Trojan.Camec)DELETED key*: HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1 [BrowserWndAPI Class] (Toolbar.AVGSearch)DELETED key*: HKLM\SOFTWARE\Classes\FinaleBinary [Finale Notation File] (Hijacker.Proxy)DELETED key*: HKLM\SOFTWARE\Classes\Search.PugiObj [AVG Security Toolbar] (Toolbar.AVGSearch)DELETED key*: HKLM\SOFTWARE\Classes\Search.PugiObj.1 [AVG Security Toolbar] (Toolbar.AVGSearch)DELETED key*: HKLM\SOFTWARE\Classes\CLSID\{02165322-C29B-4B1B-94A2-98A07A2CA741} [SaveImage Class] (PUP.SaveMass)DELETED key*: HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\VAIO Media Gateway Server [] (Adware.MediaPass)DELETED key*: HKLM\SOFTWARE\AVG Secure Search [] (Toolbar.AVGSearch)DELETED key*: HKLM\SOFTWARE\AVG Security Toolbar [] (Toolbar.AVGSearch)DELETED key*: HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A} [C:\Program Files\Common Files\AVG Secure Search\ScriptHelperInstaller\18.3.0] (Toolbar.AVGSearch)DELETED key*: HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Kujytuo [] (Virus.Kujytuo)---\\ Result of repair~ Repair carried out successfully~ Browser not found (Google Chrome)~ Browser not found (Opera Software)~ The system has been restarted.---\\ Statistics~ Items scanned : 71412~ Items found : 0~ Items repaired : 14End of clean at 19:05:07===================ZHPCleaner-[R]-07032015-19_05_07.txtZHPCleaner-
-07032015-17_57_42.txtZHPCleaner--07032015-18_33_49.txt