Sujet Précédent Sujet Suivant

LIGNE 42 ZHP INFECTé logiciel favorit

jean luc -  
 Utilisateur anonyme -
Bonjour,
le rapport zeb help process me trouve en ligne 42 UNE INFECTION . C MIS LOGICIEL FAVORIT EN ROUGE C EST QUOI MRCI
A voir également:

17 réponses

Réponse 1 / 17
Utilisateur anonyme
 
bonsoir :

Désactive le contrôle des comptes utilisateurs (tu le réactiveras après ta désinfection):

- Vas dans "Démarrer" puis Panneau de configuration.
- Double Clique sur l'icône Comptes d'utilisateurs et sur Activer ou désactiver le contrôle des comptes d'utilisateurs.
- Clique sur Continuer.
- Décoche la case Utiliser le contrôle des comptes d'utilisateurs pour vous aider à protéger votre ordinateur.
- Valide par OK et redémarre.

Tuto : https://forum.malekal.com/viewtopic.php?f=59&t=6517

Télécharge maintenant Navilog1 depuis-ce lien :

http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe

Enregistrer la cible (du lien) sous... et enregistre-le sur ton bureau.
Ensuite double clique sur navilog1.exe pour lancer l'installation.
Une fois l'installation terminée, Fais un Clic-droit sur le raccourci Navilog1 présent sur ton bureau et choisis :

"Exécuter en tant qu'administrateur".

Au menu principal, Fais le choix 1
Laisse toi guider et patiente.
Patiente jusqu'au message :
*** Analyse Termine le ..... ***
Appuie sur une touche le blocnote va s'ouvrir.
Copie-colle l'intégralité du rapport dans une réponse.
Referme le blocnote
Le rapport fixnavi.txt est en outre sauvegardé a la racine du disque

Tuto : http://www.malekal.com/Adware.Magic_Control.php
0
Réponse 2 / 17
Lyonnais92 Messages postés 25708 Statut Contributeur sécurité 1 537
 
Bonjour,

probablement une infection navipromo.

Poste le rapport que tu as fait analyser par ZHP (pas l'analyse, le rapport d'origine)
0
Réponse 3 / 17
jean luc
 
Search Navipromo version 3.7.1 commencé le 30/01/2009 à 23:19:44,63

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!

Outil exécuté depuis C:\Program Files\navilog1

Mise à jour le 02.01.2009 à 19h00 par IL-MAFIOSO

Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Duo CPU T5800 @ 2.00GHz )
BIOS : InsydeH2O Version V1.11
USER : acer ( Administrator )
BOOT : Normal boot

Antivirus : AVG Anti-Virus Free 8.0 (Activated)

C:\ (Local Disk) - NTFS - Total:144 Go (Free:100 Go)
D:\ (Local Disk) - NTFS - Total:144 Go (Free:143 Go)
E:\ (CD or DVD)

Recherche executé en mode normal

*** Recherche Programmes installés ***

*** Recherche dossiers dans "C:\Windows" ***

*** Recherche dossiers dans "C:\Program Files" ***

*** Recherche dossiers dans "c:\progra~2\micros~1\windows\startm~1\programs" ***

*** Recherche dossiers dans "c:\progra~2\micros~1\windows\startm~1" ***

*** Recherche dossiers dans "C:\ProgramData" ***

*** Recherche dossiers dans "c:\users\acer\appdata\roaming\micros~1\windows\startm~1\programs" ***

*** Recherche dossiers dans "C:\Users\acer\AppData\Local\virtualstore\Program Files" ***

*** Recherche dossiers dans "C:\Users\acer\AppData\Local" ***

*** Recherche dossiers dans "C:\Users\acer\AppData\Roaming" ***

*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d'infos : http://www.gmer.net

*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!

* Recherche dans "C:\Windows\system32" *

* Recherche dans "C:\Users\acer\AppData\Local\Microsoft" *

* Recherche dans "C:\Users\acer\AppData\Local" *

*** Recherche fichiers ***

*** Recherche clés spécifiques dans le Registre ***
!! Les clés trouvées ne sont pas forcément infectées !!

*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Recherche nouveaux fichiers Instant Access :

2)Recherche Heuristique :

* Dans "C:\Windows\system32" :

* Dans "C:\Users\acer\AppData\Local\Microsoft" :

* Dans "C:\Users\acer\AppData\Local" :

3)Recherche Certificats :

Certificat Egroup absent !
Certificat Electronic-Group absent !
Certificat Montorgueil absent !
Certificat OOO-Favorit absent !
Certificat Sunny-Day-Design-Ltd absent !

4)Recherche autres dossiers et fichiers connus :

*** Analyse terminée le 30/01/2009 à 23:25:35,70 ***
0
Réponse 4 / 17
Utilisateur anonyme
 
bien fais ce qu a demandé Lyonnais stp
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 17
jean luc
 
comment mettre ce rapport ici ? en copier coller
0
Réponse 6 / 17
Utilisateur anonyme
 
CTRL + A pour tout selectionner

CTRL + C pour copier

CTRL + V pour coller
0
Réponse 7 / 17
jean luc
 
Zeb Help Process 2 by Nicolas Coolman - Rapport de synthèse du 31/01/2009 01:28:32

INFORMATION

INFECTION IDENTIFIEE
Liste disponible seulement en version Helper

PROCESSUS MALWARE (Rootkit, trojan, ver, spyware, adware,...)
O42 - Logiciel: Favorit

PROCESSUS SUPERFLU DU SYSTEME
O20 - Winlogon Notify: C:\Windows\System32\igfxdev.dll
O44 - LFC:Last File Created - C:\Windows\System32\igfxdev.dll -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxpers.exe -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\perfc009.dat -->30/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\perfc00C.dat -->30/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\perfh009.dat -->30/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\perfh00C.dat -->30/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\tmp.reg -->18/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\tmp.txt -->18/01/2009

PROTECTION DU SYSTEME (Antivirus, FireWall, Anti-Malwares)
Grisoft®AVG Internet Security Suite
Crawler®Spyware Terminator
Grisoft AVG Antivirus
Emsi Software®A-Squared Free Anti-malware
Grisoft AVG Anti-Rootkit
Grisoft AVG AntiSpyware
Online Armor Firewall
a-squared Free Antivirus
a-squared Hijacker
Grisoft AVG AntiRootkit
Spyware Terminator

RAPPORT SIMPLIFIE
C:\Windows\ehome\ehTray.exe
C:\
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKLM\..\policies\Explorer: [EnableShellExecuteHooks] Data="1"
O5 - control.ini: inetcpl.cpl=no
O15 - Trusted Zone: *
O20 - Winlogon Notify: C:\Windows\System32\igfxdev.dll
O41 - Driver: AlfaFF File System mini-filter (AlfaFF) - C:\WINDOWS\system32\Drivers\AlfaFF.sys
O41 - Driver: GDPkIcpt (GDPkIcpt) - C:\Windows\system32\drivers\PktIcpt.sys
O41 - Driver: G DATA WFP CD (gdwfpcd) - C:\WINDOWS\system32\drivers\gdwfpcd32.sys
O41 - Driver: G DATA Rootkit Detector Driver (GRD) - C:\Windows\system32\drivers\GRD.sys
O41 - Driver: AlfaFF File System mini-filter (AlfaFF) - C:\WINDOWS\system32\Drivers\AlfaFF.sys
O41 - Driver: GDPkIcpt (GDPkIcpt) - C:\Windows\system32\drivers\PktIcpt.sys
O41 - Driver: G DATA WFP CD (gdwfpcd) - C:\WINDOWS\system32\drivers\gdwfpcd32.sys
O41 - Driver: G DATA Rootkit Detector Driver (GRD) - C:\Windows\system32\drivers\GRD.sys
O41 - Driver: AlfaFF File System mini-filter (AlfaFF) - C:\WINDOWS\system32\Drivers\AlfaFF.sys
O41 - Driver: GDPkIcpt (GDPkIcpt) - C:\Windows\system32\drivers\PktIcpt.sys
O41 - Driver: G DATA WFP CD (gdwfpcd) - C:\WINDOWS\system32\drivers\gdwfpcd32.sys
O41 - Driver: G DATA Rootkit Detector Driver (GRD) - C:\Windows\system32\drivers\GRD.sys
O42 - Logiciel: Acer Bio Protection
AAA 6.0.00.17
O42 - Logiciel: Advanced SystemCare 3
O42 - Logiciel: Favorit
O42 - Logiciel: Revo Uninstaller 1.80
O42 - Logiciel: WIDCOMM Bluetooth Software 6.0.1.6400
O42 - Logiciel: Acer VCM
O42 - Logiciel: JMicron JMB38X Flash Media Controller
O42 - Logiciel: Acer Crystal Eye
O42 - Logiciel: Orion
O42 - Logiciel: Acer Crystal Eye Webcam 3.0.5.1
O42 - Logiciel: Ralink Wireless LAN Installation Program for VISTA v2.0.8.0
O44 - LFC:Last File Created - C:\Windows\System32\agent.log -->30/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\authuitu.dll -->11/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\BIN_STRSBW.SPT -->18/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\dummy019file -->18/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\ig4dev32.dll -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\ig4icd32.dll -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igcompkrng500.bin -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igd10umd32.dll -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igdumd32.dll -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igdumdx32.dll -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfcg500.bin -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfcg500m.bin -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxcfg.exe -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxCoIn_v1608.dll -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxcpl.cpl -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxdev.dll -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxdo.dll -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxexps.dll -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxpers.exe -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrara.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrchs.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrcht.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrcsy.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrdan.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrdeu.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrell.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrenu.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxresp.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrfin.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrfra.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrheb.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrhun.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrita.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrjpn.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrkor.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrnld.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrnor.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrplk.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrptb.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrptg.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrrus.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrsky.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrslv.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrsve.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrtha.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrtrk.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxTMM.dll -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igkrng500.bin -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\iglhxs32.vp -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igxpun.exe -->16/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\license.rtf -->06/11/2008
O44 - LFC:Last File Created - C:\Windows\System32\LogConfigTemp.xml -->30/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\perfc009.dat -->30/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\perfc00C.dat -->30/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\perfh009.dat -->30/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\perfh00C.dat -->30/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\tmp.reg -->18/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\tmp.txt -->18/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\Trace.txt -->04/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\TVWSetup.exe -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\drivers\gdwfpcd32.sys -->21/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\drivers\GRD.sys -->21/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\drivers\PktIcpt.sys -->21/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\A2FREE.EXE-86BF1460.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\A2HIJACKFREE.EXE-1AF24674.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AAVGAPI.EXE-1E366283.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgAppLaunch.db -->06/11/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgCx_S1_S-1-5-21-4153635103-241992502-2931499995-1000.snp.db -->21/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgCx_SC1.db -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgCx_SC1.db.trx -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgCx_SC2.db -->27/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgCx_SC3_6427C546.db -->16/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgGlFaultHistory.db -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgGlFgAppHistory.db -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgGlGlobalHistory.db -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-4153635103-241992502-2931499995-1000.db -->30/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-4153635103-241992502-2931499995-1000.db -->30/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgRobust.db -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\ALERTMODULE.EXE-45931BA6.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\ALERTMODULE.EXE-E4B297A5.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\ATBROKER.EXE-2E15A492.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AVGCFGEX.EXE-5D624885.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AVGCMGR.EXE-27FF3A49.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AVGEMC.EXE-42B06698.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AVGRSX.EXE-1D418725.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AVGSCANX.EXE-DB10FF75.pf -->30/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AVGUI.EXE-E729213A.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AVGUPD.EXE-96566824.pf -->30/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AVGUPD.EXE-ED364EA9.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AWC.EXE-C9EE81F1.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\BPERGT.EXE-9192E90A.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\CCLEANER.EXE-D4D76A60.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\CMD.EXE-4A81B364.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\COMPILEMOF.EXE-B5FEBDEB.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\CONSENT.EXE-531BD9EA.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\CONTROL.EXE-817F8F1D.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\DLLHOST.EXE-5E46FA0D.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\DLLHOST.EXE-6A473D35.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\DLLHOST.EXE-766398D2.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\DLLHOST.EXE-B2EB1806.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\DWM.EXE-6FFD3DA8.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\EHMSAS.EXE-2D3B2F21.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\EXPLORER.EXE-A80E4F97.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\FIXCFG.EXE-298258C9.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\FLASHUTIL10A.EXE-F38539B4.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\GLARY-UTILITIES_GLARY_UTILITI-144820AF.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\GMER.EXE-24C5C704.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\GOOGLEDESKTOP.EXE-C9B032BF.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\HIDCHK.EXE-353BD79D.pf -->30/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\IAANTMON.EXE-F38B17B6.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\ICARDAGT.EXE-E8A0563B.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\IEUSER.EXE-7C0FE221.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\IEXPLORE.EXE-908C99F8.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\IGFXCFG.EXE-B68F9666.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\IGFXEXT.EXE-D5F523DB.pf -->26/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\IGFXSRVC.EXE-96A493A4.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\INFOCARD.EXE-ECED8D38.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\INITIALIZE.EXE-7DCDC37F.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\INTEGRATOR.EXE-84638148.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\IS-GFTL8.TMP-33CB6F05.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\IZARC.EXE-432FE040.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\IZARC.EXE-B9F4341B.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\LMANAGER.EXE-9D025777.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\LOGONUI.EXE-09140401.pf -->30/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\MBAM.EXE-305FF92C.pf -->30/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\MOBSYNC.EXE-C5E2284F.pf -->30/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\MSIEXEC.EXE-A2D55CB6.pf -->26/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\MSINFO32.EXE-95097B65.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf -->30/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\OPERA.EXE-103FF2EC.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\PCSECURITYTEST.EXE-F67C75A1.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\PERFMON.EXE-E34F662B.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\PfSvPerfStats.bin -->30/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\PRESENTATIONSETTINGS.EXE-2F4708C9.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\REGSRVC.EXE-E4A04EBD.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\REGSVR32.EXE-8461DBEE.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\REVOUNINSTALLER.EXE-34C92DCE.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\RS_SERVICE.EXE-D1A7768F.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\RUNDLL32.EXE-230FC512.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\RUNDLL32.EXE-4598C04C.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\RUNDLL32.EXE-66D7E84C.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\RUNDLL32.EXE-955670CA.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\RUNDLL32.EXE-99E754C0.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\RUNDLL32.EXE-B28FBF56.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\RUNDLL32.EXE-FA9EDA22.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SCHTASKS.EXE-5CA45734.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SDCLT.EXE-E10B972A.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SHORTCUTSFIXER.EXE-6F83B17E.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SOP.EXE-4A4E3A64.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SPOOLSV.EXE-D1F6B8B6.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SPYWARETERMINATOR.EXE-2FF014AE.pf -->30/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SPYWARETERMINATORSHIELD.EXE-6798B02B.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SP_RSSER.EXE-E4E238C3.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SUP_DISKCHK.EXE-01B2400A.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SUP_DISKCLEANER.EXE-68C203BE.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SUP_SHORTCUTSFIXER.EXE-31DF1E1E.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SUP_SOFTINFO.EXE-8672BA35.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SUS_DRIVERBACKUP.EXE-A3C5896E.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SUS_PIEHELP.EXE-017EF0FF.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SUS_SYSTEMBACKUP.EXE-339D4A33.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SUT_CONTEXTMANAGER.EXE-633042E9.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SUT_DISKEXPLORER.EXE-AF2A2DCD.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SUT_STARTUPMANAGER.EXE-45135C8F.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SUT_WINMANAGER.EXE-6BED829E.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SVCHOST.EXE-61AE5AB6.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SVCHOST.EXE-7CFEDEA3.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SVCHOST.EXE-80F4A784.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SVCHOST.EXE-E2C2633A.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SYNTPHELPER.EXE-0A20AAC4.pf -->30/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SYSTEMPROPERTIESPERFORMANCE.E-9C40C7D4.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SYSTEMPROPERTIESPROTECTION.EX-64B3993D.pf -->26/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TASKENG.EXE-48D4E289.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TFGUI.EXE-CAB5CF47.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TFINSTALL.EXE-C03D3844.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TFINSTALL.TMP-00A9E32A.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TFINSTALL.TMP-0427AA70.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TFINSTALL.TMP-2641FBA6.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TFINSTALL.TMP-3E578D7D.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TFINSTALL.TMP-60321B46.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TFINSTALL.TMP-9FC9557B.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TFNOTICE.EXE-350B55C8.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TFSERVICE.EXE-17AE622B.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TFTRAY.EXE-D038BE6E.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TFUN.EXE-09DB4D1D.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TRACERPT.EXE-2EB7F471.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-3CC531E5.pf -->30/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TUPROGST.EXE-D76A9E80.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\UNINS000.EXE-FF5FCF3D.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\UNSECAPP.EXE-A02905A6.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\USERINIT.EXE-2257A3E7.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\VERCLSID.EXE-7C52E31C.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\VSSVC.EXE-B8AFC319.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WARREG_POPUP.EXE-FF52ACE4.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WEBUPDATE.EXE-3395CEAA.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WERCON.EXE-E36BD04E.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WERFAULT.EXE-E69F695A.pf -->30/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WERMGR.EXE-0F2AC88C.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WLLOGINPROXY.EXE-9E0DCEF8.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WMIADAP.EXE-F8DFDFA2.pf -->30/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WMIPRVSE.EXE-1628051C.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WMPNETWK.EXE-D9F2A96F.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\XAUDIO.EXE-D92946E9.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\XMLTEST.EXE-257D0DF2.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\ZHP2.EXE-2B098B11.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\_IU14D2N.TMP-DCF1AE99.pf -->25/01/2009
0
Réponse 8 / 17
jean luc
 
Zeb Help Process 2 by Nicolas Coolman - Rapport de synthèse du 31/01/2009 01:28:32

INFORMATION

INFECTION IDENTIFIEE
Liste disponible seulement en version Helper

PROCESSUS MALWARE (Rootkit, trojan, ver, spyware, adware,...)
O42 - Logiciel: Favorit

PROCESSUS SUPERFLU DU SYSTEME
O20 - Winlogon Notify: C:\Windows\System32\igfxdev.dll
O44 - LFC:Last File Created - C:\Windows\System32\igfxdev.dll -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxpers.exe -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\perfc009.dat -->30/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\perfc00C.dat -->30/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\perfh009.dat -->30/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\perfh00C.dat -->30/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\tmp.reg -->18/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\tmp.txt -->18/01/2009

PROTECTION DU SYSTEME (Antivirus, FireWall, Anti-Malwares)
Grisoft®AVG Internet Security Suite
Crawler®Spyware Terminator
Grisoft AVG Antivirus
Emsi Software®A-Squared Free Anti-malware
Grisoft AVG Anti-Rootkit
Grisoft AVG AntiSpyware
Online Armor Firewall
a-squared Free Antivirus
a-squared Hijacker
Grisoft AVG AntiRootkit
Spyware Terminator

RAPPORT SIMPLIFIE
C:\Windows\ehome\ehTray.exe
C:\
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKLM\..\policies\Explorer: [EnableShellExecuteHooks] Data="1"
O5 - control.ini: inetcpl.cpl=no
O15 - Trusted Zone: *
O20 - Winlogon Notify: C:\Windows\System32\igfxdev.dll
O41 - Driver: AlfaFF File System mini-filter (AlfaFF) - C:\WINDOWS\system32\Drivers\AlfaFF.sys
O41 - Driver: GDPkIcpt (GDPkIcpt) - C:\Windows\system32\drivers\PktIcpt.sys
O41 - Driver: G DATA WFP CD (gdwfpcd) - C:\WINDOWS\system32\drivers\gdwfpcd32.sys
O41 - Driver: G DATA Rootkit Detector Driver (GRD) - C:\Windows\system32\drivers\GRD.sys
O41 - Driver: AlfaFF File System mini-filter (AlfaFF) - C:\WINDOWS\system32\Drivers\AlfaFF.sys
O41 - Driver: GDPkIcpt (GDPkIcpt) - C:\Windows\system32\drivers\PktIcpt.sys
O41 - Driver: G DATA WFP CD (gdwfpcd) - C:\WINDOWS\system32\drivers\gdwfpcd32.sys
O41 - Driver: G DATA Rootkit Detector Driver (GRD) - C:\Windows\system32\drivers\GRD.sys
O41 - Driver: AlfaFF File System mini-filter (AlfaFF) - C:\WINDOWS\system32\Drivers\AlfaFF.sys
O41 - Driver: GDPkIcpt (GDPkIcpt) - C:\Windows\system32\drivers\PktIcpt.sys
O41 - Driver: G DATA WFP CD (gdwfpcd) - C:\WINDOWS\system32\drivers\gdwfpcd32.sys
O41 - Driver: G DATA Rootkit Detector Driver (GRD) - C:\Windows\system32\drivers\GRD.sys
O42 - Logiciel: Acer Bio Protection
AAA 6.0.00.17
O42 - Logiciel: Advanced SystemCare 3
O42 - Logiciel: Favorit
O42 - Logiciel: Revo Uninstaller 1.80
O42 - Logiciel: WIDCOMM Bluetooth Software 6.0.1.6400
O42 - Logiciel: Acer VCM
O42 - Logiciel: JMicron JMB38X Flash Media Controller
O42 - Logiciel: Acer Crystal Eye
O42 - Logiciel: Orion
O42 - Logiciel: Acer Crystal Eye Webcam 3.0.5.1
O42 - Logiciel: Ralink Wireless LAN Installation Program for VISTA v2.0.8.0
O44 - LFC:Last File Created - C:\Windows\System32\agent.log -->30/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\authuitu.dll -->11/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\BIN_STRSBW.SPT -->18/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\dummy019file -->18/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\ig4dev32.dll -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\ig4icd32.dll -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igcompkrng500.bin -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igd10umd32.dll -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igdumd32.dll -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igdumdx32.dll -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfcg500.bin -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfcg500m.bin -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxcfg.exe -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxCoIn_v1608.dll -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxcpl.cpl -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxdev.dll -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxdo.dll -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxexps.dll -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxpers.exe -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrara.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrchs.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrcht.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrcsy.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrdan.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrdeu.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrell.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrenu.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxresp.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrfin.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrfra.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrheb.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrhun.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrita.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrjpn.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrkor.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrnld.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrnor.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrplk.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrptb.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrptg.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrrus.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrsky.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrslv.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrsve.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrtha.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxrtrk.lrc -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igfxTMM.dll -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igkrng500.bin -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\iglhxs32.vp -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\igxpun.exe -->16/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\license.rtf -->06/11/2008
O44 - LFC:Last File Created - C:\Windows\System32\LogConfigTemp.xml -->30/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\perfc009.dat -->30/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\perfc00C.dat -->30/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\perfh009.dat -->30/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\perfh00C.dat -->30/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\tmp.reg -->18/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\tmp.txt -->18/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\Trace.txt -->04/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\TVWSetup.exe -->02/12/2008
O44 - LFC:Last File Created - C:\Windows\System32\drivers\gdwfpcd32.sys -->21/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\drivers\GRD.sys -->21/01/2009
O44 - LFC:Last File Created - C:\Windows\System32\drivers\PktIcpt.sys -->21/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\A2FREE.EXE-86BF1460.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\A2HIJACKFREE.EXE-1AF24674.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AAVGAPI.EXE-1E366283.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgAppLaunch.db -->06/11/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgCx_S1_S-1-5-21-4153635103-241992502-2931499995-1000.snp.db -->21/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgCx_SC1.db -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgCx_SC1.db.trx -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgCx_SC2.db -->27/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgCx_SC3_6427C546.db -->16/12/2008
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgGlFaultHistory.db -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgGlFgAppHistory.db -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgGlGlobalHistory.db -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-4153635103-241992502-2931499995-1000.db -->30/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-4153635103-241992502-2931499995-1000.db -->30/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgRobust.db -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\ALERTMODULE.EXE-45931BA6.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\ALERTMODULE.EXE-E4B297A5.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\ATBROKER.EXE-2E15A492.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AVGCFGEX.EXE-5D624885.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AVGCMGR.EXE-27FF3A49.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AVGEMC.EXE-42B06698.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AVGRSX.EXE-1D418725.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AVGSCANX.EXE-DB10FF75.pf -->30/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AVGUI.EXE-E729213A.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AVGUPD.EXE-96566824.pf -->30/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AVGUPD.EXE-ED364EA9.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AWC.EXE-C9EE81F1.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\BPERGT.EXE-9192E90A.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\CCLEANER.EXE-D4D76A60.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\CMD.EXE-4A81B364.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\COMPILEMOF.EXE-B5FEBDEB.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\CONSENT.EXE-531BD9EA.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\CONTROL.EXE-817F8F1D.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\DLLHOST.EXE-5E46FA0D.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\DLLHOST.EXE-6A473D35.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\DLLHOST.EXE-766398D2.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\DLLHOST.EXE-B2EB1806.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\DWM.EXE-6FFD3DA8.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\EHMSAS.EXE-2D3B2F21.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\EXPLORER.EXE-A80E4F97.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\FIXCFG.EXE-298258C9.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\FLASHUTIL10A.EXE-F38539B4.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\GLARY-UTILITIES_GLARY_UTILITI-144820AF.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\GMER.EXE-24C5C704.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\GOOGLEDESKTOP.EXE-C9B032BF.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\HIDCHK.EXE-353BD79D.pf -->30/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\IAANTMON.EXE-F38B17B6.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\ICARDAGT.EXE-E8A0563B.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\IEUSER.EXE-7C0FE221.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\IEXPLORE.EXE-908C99F8.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\IGFXCFG.EXE-B68F9666.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\IGFXEXT.EXE-D5F523DB.pf -->26/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\IGFXSRVC.EXE-96A493A4.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\INFOCARD.EXE-ECED8D38.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\INITIALIZE.EXE-7DCDC37F.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\INTEGRATOR.EXE-84638148.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\IS-GFTL8.TMP-33CB6F05.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\IZARC.EXE-432FE040.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\IZARC.EXE-B9F4341B.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\LMANAGER.EXE-9D025777.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\LOGONUI.EXE-09140401.pf -->30/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\MBAM.EXE-305FF92C.pf -->30/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\MOBSYNC.EXE-C5E2284F.pf -->30/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\MSIEXEC.EXE-A2D55CB6.pf -->26/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\MSINFO32.EXE-95097B65.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf -->30/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\OPERA.EXE-103FF2EC.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\PCSECURITYTEST.EXE-F67C75A1.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\PERFMON.EXE-E34F662B.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\PfSvPerfStats.bin -->30/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\PRESENTATIONSETTINGS.EXE-2F4708C9.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\REGSRVC.EXE-E4A04EBD.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\REGSVR32.EXE-8461DBEE.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\REVOUNINSTALLER.EXE-34C92DCE.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\RS_SERVICE.EXE-D1A7768F.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\RUNDLL32.EXE-230FC512.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\RUNDLL32.EXE-4598C04C.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\RUNDLL32.EXE-66D7E84C.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\RUNDLL32.EXE-955670CA.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\RUNDLL32.EXE-99E754C0.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\RUNDLL32.EXE-B28FBF56.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\RUNDLL32.EXE-FA9EDA22.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SCHTASKS.EXE-5CA45734.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SDCLT.EXE-E10B972A.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SHORTCUTSFIXER.EXE-6F83B17E.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SOP.EXE-4A4E3A64.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SPOOLSV.EXE-D1F6B8B6.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SPYWARETERMINATOR.EXE-2FF014AE.pf -->30/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SPYWARETERMINATORSHIELD.EXE-6798B02B.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SP_RSSER.EXE-E4E238C3.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SUP_DISKCHK.EXE-01B2400A.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SUP_DISKCLEANER.EXE-68C203BE.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SUP_SHORTCUTSFIXER.EXE-31DF1E1E.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SUP_SOFTINFO.EXE-8672BA35.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SUS_DRIVERBACKUP.EXE-A3C5896E.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SUS_PIEHELP.EXE-017EF0FF.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SUS_SYSTEMBACKUP.EXE-339D4A33.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SUT_CONTEXTMANAGER.EXE-633042E9.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SUT_DISKEXPLORER.EXE-AF2A2DCD.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SUT_STARTUPMANAGER.EXE-45135C8F.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SUT_WINMANAGER.EXE-6BED829E.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SVCHOST.EXE-61AE5AB6.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SVCHOST.EXE-7CFEDEA3.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SVCHOST.EXE-80F4A784.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SVCHOST.EXE-E2C2633A.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SYNTPHELPER.EXE-0A20AAC4.pf -->30/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SYSTEMPROPERTIESPERFORMANCE.E-9C40C7D4.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SYSTEMPROPERTIESPROTECTION.EX-64B3993D.pf -->26/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TASKENG.EXE-48D4E289.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TFGUI.EXE-CAB5CF47.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TFINSTALL.EXE-C03D3844.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TFINSTALL.TMP-00A9E32A.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TFINSTALL.TMP-0427AA70.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TFINSTALL.TMP-2641FBA6.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TFINSTALL.TMP-3E578D7D.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TFINSTALL.TMP-60321B46.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TFINSTALL.TMP-9FC9557B.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TFNOTICE.EXE-350B55C8.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TFSERVICE.EXE-17AE622B.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TFTRAY.EXE-D038BE6E.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TFUN.EXE-09DB4D1D.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TRACERPT.EXE-2EB7F471.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-3CC531E5.pf -->30/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TUPROGST.EXE-D76A9E80.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\UNINS000.EXE-FF5FCF3D.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\UNSECAPP.EXE-A02905A6.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\USERINIT.EXE-2257A3E7.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\VERCLSID.EXE-7C52E31C.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\VSSVC.EXE-B8AFC319.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WARREG_POPUP.EXE-FF52ACE4.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WEBUPDATE.EXE-3395CEAA.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WERCON.EXE-E36BD04E.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WERFAULT.EXE-E69F695A.pf -->30/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WERMGR.EXE-0F2AC88C.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WLLOGINPROXY.EXE-9E0DCEF8.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WMIADAP.EXE-F8DFDFA2.pf -->30/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WMIPRVSE.EXE-1628051C.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WMPNETWK.EXE-D9F2A96F.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\XAUDIO.EXE-D92946E9.pf -->29/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\XMLTEST.EXE-257D0DF2.pf -->25/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\ZHP2.EXE-2B098B11.pf -->31/01/2009
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\_IU14D2N.TMP-DCF1AE99.pf -->25/01/2009
0
Réponse 9 / 17
Utilisateur anonyme
 
une question :

as-tu acces aux options internet dans le panneau de configurations ?
0
Réponse 10 / 17
jean luc
 
OUI
0
Réponse 11 / 17
Utilisateur anonyme
 
tu as favorit dans ajout suppression de programmes ?
0
Réponse 12 / 17
jean luc
 
OUI G FAVORIT DANS AJOUT ET SUPPRES
SION
0
Réponse 13 / 17
Utilisateur anonyme
 
desinstalle-le si tu peux
0
Réponse 14 / 17
jean luc
 
IMPOSSIBLE
0
Réponse 15 / 17
Utilisateur anonyme
 
ok redemarre en mode sans echec et refais Navilog option 2

0
Réponse 16 / 17
jean luc
 
RESOLU GRACE REVO UNINSTALLER
0
Réponse 17 / 17
Utilisateur anonyme
 
Télécharge MalwareByte's :
http://www.malwarebytes.org/mbam.php ou ici :
http://www.malwarebytes.org/mbam/program/mbam-setup.exe

* Installe le ( choisis bien "francais" ; ne modifie pas les paramètres d'installe ) et mets le à jour .

(NB : S'il te manque "COMCTL32.OCX" lors de l'installe, alors télécharge le ici : https://www.malekal.com/tutorial-aboutbuster/ )

* Potasse le tuto pour te familiariser avec le prg :
https://forum.pcastuces.com/sujet.asp?f=31&s=3
( cela dis, il est très simple d'utilisation ).

! Déconnecte toi et ferme toutes applications en cours !

* Lance Malwarebyte's .

Fais un examen dit "Rapide" .

--> Laisse le programme travailler ( et ne rien faire d'autre avec le PC durant le scan ).
--> à la fin tu cliques sur "résultat" .
--> Vérifie que tous les objets infectés soient validés, puis clique sur " suppression " .

Note : si il faut redémarrer ton PC pour finir le nettoyage, fais le !

Poste le rapport sauvegardé après la suppression des objets infectés (dans l'onglet "rapport/log"de Malwarebytes, le dernier en date)

0