Pb windows rapport d'erreur ... appeler le 08.....
Lamine
-
Lamine -
Lamine -
Bonjour,
J'ai le meme probleme, une page s'ouvre pour me prevenir qu'un virus tente de recuperer mes donnees , et me propose d'appeler un 08 ..... voici les rapport FRST ....
http://pjjoint.malekal.com/files.php?id=20151008_z14k11m15f10h11
http://pjjoint.malekal.com/files.php?id=FRST_20151008_i11j12g12z5d13
merci pour votre aide !!
Cordialement
J'ai le meme probleme, une page s'ouvre pour me prevenir qu'un virus tente de recuperer mes donnees , et me propose d'appeler un 08 ..... voici les rapport FRST ....
http://pjjoint.malekal.com/files.php?id=20151008_z14k11m15f10h11
http://pjjoint.malekal.com/files.php?id=FRST_20151008_i11j12g12z5d13
merci pour votre aide !!
Cordialement
2 réponses
-
Salut,
Je regarde cela.
-
-
Voila j'ai fait toute la manip.... voici le fichier txt.
Fix result of Farbar Recovery Scan Tool (x64) Version:07-10-2015
Ran by admin (2015-10-08 17:28:36) Run:1
Running from C:\Users\admin\Desktop
Loaded Profiles: admin (Available Profiles: admin)
Boot Mode: Normal
==============================================
fixlist content:
R2 muridyvo; C:\Users\admin\AppData\Local\DD7C0F96-1444319916-1FDB-F815-DA0B4BD3EE56\qnso679A.tmp [193536 2015-10-07] () [File not signed]
R2 NetTcpHandler; C:\Users\admin\AppData\Roaming\NetService\netservice.exe [173088 2015-07-09] ()
S2 bocucule; C:\Program Files (x86)\DD7C0F96-1444072558-1FDB-F815-DA0B4BD3EE56\knsoB91C.tmpfs [X]
S2 lehicewu; C:\Program Files (x86)\DD7C0F96-1444072558-1FDB-F815-DA0B4BD3EE56\jnstE7DF.tmp [X]
2015-10-08 15:58 - 2015-10-08 15:58 - 00000000 ____D C:\Users\admin\AppData\Local\DD7C0F96-1444319916-1FDB-F815-DA0B4BD3EE56
2015-10-08 01:51 - 2015-10-08 01:51 - 00306296 _____ C:\Windows\Minidump\100815-39842-01.dmp
2015-10-06 22:51 - 2015-10-06 22:51 - 00613255 _____ (CMI Limited) C:\Users\admin\AppData\Local\nslDA22.tmp
2015-10-06 22:48 - 2015-10-07 22:52 - 00003240 _____ C:\Windows\System32\Tasks\runTask
2015-10-06 22:48 - 2015-10-07 22:52 - 00003144 _____ C:\Windows\System32\Tasks\updateTask
2015-10-06 22:48 - 2015-10-07 22:52 - 00000888 _____ C:\task.vbs
2015-10-05 22:03 - 2015-10-05 22:20 - 00000000 ____D C:\ProgramData\Boxore
2015-10-05 22:03 - 2015-10-05 22:04 - 00000000 ____D C:\Users\admin\AppData\Local\Boxore
2015-10-05 21:56 - 2015-10-05 21:56 - 00000000 ____D C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnyProtect PC Backup
2015-10-05 21:54 - 2015-10-05 21:54 - 00000875 _____ C:\Windows\SysWOW64\${LOGFILE}
2015-10-05 21:48 - 2015-10-05 22:12 - 00000008 _____ C:\END
2015-10-05 21:34 - 2015-10-05 21:34 - 00613255 _____ (CMI Limited) C:\Users\admin\AppData\Local\nsz6AC5.tmp
2015-10-05 21:34 - 2015-10-05 21:34 - 00000000 __SHD C:\Users\admin\AppData\Roaming\AnyProtectEx
2015-10-05 21:29 - 2015-10-05 22:20 - 00000000 ____D C:\Users\admin\AppData\Roaming\RunDir
2015-10-05 21:29 - 2015-10-05 21:29 - 00000000 ____D C:\Users\admin\AppData\Roaming\NetService
2015-10-05 21:17 - 2015-10-05 21:18 - 00000000 ____D C:\Users\admin\AppData\Local\DD7C0F96-1444079873-1FDB-F815-DA0B4BD3EE56
2015-10-05 21:16 - 2015-10-05 21:16 - 00000000 ____D C:\Users\admin\AppData\Local\Software
2015-10-05 21:13 - 2015-10-05 22:04 - 00000000 ____D C:\Users\admin\AppData\Roaming\WTools
2015-10-05 21:13 - 2015-10-05 21:13 - 00000078 _____ C:\Users\admin\AppData\Roaming\Selection Tools.installation.log
2015-10-05 21:12 - 2015-10-05 22:07 - 00000000 ____D C:\Users\admin\AppData\Roaming\Store
2015-10-05 21:12 - 2015-10-05 21:12 - 00000078 _____ C:\Users\admin\AppData\Roaming\WindApp.installation.log
2015-10-05 21:11 - 2015-10-05 21:54 - 00000000 ____D C:\Users\admin\AppData\Roaming\Nosibay
2015-10-05 21:11 - 2015-10-05 21:12 - 00005712 _____ C:\Users\admin\AppData\Roaming\Bubble Dock.installation.log
2015-10-05 21:09 - 2015-10-05 21:13 - 00001273 _____ C:\Users\admin\AppData\Roaming\Bubble Dock.boostrap.log
2015-10-05 21:09 - 2015-10-05 21:09 - 00000097 _____ C:\Users\admin\AppData\Roaming\WindApp.boostrap.log
2015-09-11 05:05 - 2015-06-08 21:08 - 00000000 ____D C:\Program Files (x86)\MiuiTab
2015-09-26 23:12 - 2013-07-21 12:34 - 00000000 ___HD C:\Users\admin\AppData\Local\GF0UpDPYJjC9
2012-11-08 04:20 - 2012-11-08 04:20 - 0000006 _____ () C:\Program Files (x86)\Common Files\WPVersion.txt
2015-10-05 21:09 - 2015-10-05 21:13 - 0001273 _____ () C:\Users\admin\AppData\Roaming\Bubble Dock.boostrap.log
2015-10-05 21:11 - 2015-10-05 21:12 - 0005712 _____ () C:\Users\admin\AppData\Roaming\Bubble Dock.installation.log
2015-10-05 21:13 - 2015-10-05 21:13 - 0000078 _____ () C:\Users\admin\AppData\Roaming\Selection Tools.installation.log
2015-10-05 21:09 - 2015-10-05 21:09 - 0000097 _____ () C:\Users\admin\AppData\Roaming\WindApp.boostrap.log
2015-10-05 21:12 - 2015-10-05 21:12 - 0000078 _____ () C:\Users\admin\AppData\Roaming\WindApp.installation.log
2015-10-06 22:51 - 2015-10-06 22:51 - 0613255 _____ (CMI Limited) C:\Users\admin\AppData\Local\nslDA22.tmp
2015-10-05 21:34 - 2015-10-05 21:34 - 0613255 _____ (CMI Limited) C:\Users\admin\AppData\Local\nsz6AC5.tmp
C:\Users\admin\x.exe
C:\Users\admin\AppData\Local\Temp\bc.exe
muridyvo => Service stopped successfully.
muridyvo => service removed successfully
NetTcpHandler => Unable to stop service.
NetTcpHandler => service removed successfully
bocucule => service removed successfully
lehicewu => service removed successfully
C:\Users\admin\AppData\Local\DD7C0F96-1444319916-1FDB-F815-DA0B4BD3EE56 => moved successfully
C:\Windows\Minidump\100815-39842-01.dmp => moved successfully
C:\Users\admin\AppData\Local\nslDA22.tmp => moved successfully
C:\Windows\System32\Tasks\runTask => moved successfully
C:\Windows\System32\Tasks\updateTask => moved successfully
C:\task.vbs => moved successfully
C:\ProgramData\Boxore => moved successfully
C:\Users\admin\AppData\Local\Boxore => moved successfully
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnyProtect PC Backup => moved successfully
C:\Windows\SysWOW64\${LOGFILE} => moved successfully
C:\END => moved successfully
C:\Users\admin\AppData\Local\nsz6AC5.tmp => moved successfully
C:\Users\admin\AppData\Roaming\AnyProtectEx => moved successfully
C:\Users\admin\AppData\Roaming\RunDir => moved successfully
C:\Users\admin\AppData\Roaming\NetService => moved successfully
C:\Users\admin\AppData\Local\DD7C0F96-1444079873-1FDB-F815-DA0B4BD3EE56 => moved successfully
C:\Users\admin\AppData\Local\Software => moved successfully
C:\Users\admin\AppData\Roaming\WTools => moved successfully
C:\Users\admin\AppData\Roaming\Selection Tools.installation.log => moved successfully
C:\Users\admin\AppData\Roaming\Store => moved successfully
C:\Users\admin\AppData\Roaming\WindApp.installation.log => moved successfully
C:\Users\admin\AppData\Roaming\Nosibay => moved successfully
C:\Users\admin\AppData\Roaming\Bubble Dock.installation.log => moved successfully
C:\Users\admin\AppData\Roaming\Bubble Dock.boostrap.log => moved successfully
C:\Users\admin\AppData\Roaming\WindApp.boostrap.log => moved successfully
C:\Program Files (x86)\MiuiTab => moved successfully
C:\Users\admin\AppData\Local\GF0UpDPYJjC9 => moved successfully
C:\Program Files (x86)\Common Files\WPVersion.txt => moved successfully
"C:\Users\admin\AppData\Roaming\Bubble Dock.boostrap.log" => File/Folder not found.
"C:\Users\admin\AppData\Roaming\Bubble Dock.installation.log" => File/Folder not found.
"C:\Users\admin\AppData\Roaming\Selection Tools.installation.log" => File/Folder not found.
"C:\Users\admin\AppData\Roaming\WindApp.boostrap.log" => File/Folder not found.
"C:\Users\admin\AppData\Roaming\WindApp.installation.log" => File/Folder not found.
"C:\Users\admin\AppData\Local\nslDA22.tmp" => File/Folder not found.
"C:\Users\admin\AppData\Local\nsz6AC5.tmp" => File/Folder not found.
C:\Users\admin\x.exe => moved successfully
C:\Users\admin\AppData\Local\Temp\bc.exe => moved successfully
The system needed a reboot..End of Fixlog 17:28:47
-
-
Je te conseille de désinstaller McAfee Security Scan, c'est avant tout un programme marketting proposé à l'installation d'Adobe Flash pour tenter de te proposer l'antivirus.
Désinstalle Ad-Aware Antivirus aussi.
Voici la correction à effectuer avec FRST.
Tu peux t'inspirer de cette note explicative avec des captures d'écran pour t'aider: https://www.malekal.com/tutoriel-farbar-recovery-scan-tool-frst/#fix
Ouvre le bloc-notes : Touche Windows + R, dans le champs executer, tape notepad et OK.
Copie/colle dedans ce qui suit :
R2 muridyvo; C:\Users\admin\AppData\Local\DD7C0F96-1444319916-1FDB-F815-DA0B4BD3EE56\qnso679A.tmp [193536 2015-10-07] () [File not signed]
R2 NetTcpHandler; C:\Users\admin\AppData\Roaming\NetService\netservice.exe [173088 2015-07-09] ()
S2 bocucule; C:\Program Files (x86)\DD7C0F96-1444072558-1FDB-F815-DA0B4BD3EE56\knsoB91C.tmpfs [X]
S2 lehicewu; C:\Program Files (x86)\DD7C0F96-1444072558-1FDB-F815-DA0B4BD3EE56\jnstE7DF.tmp [X]
2015-10-08 15:58 - 2015-10-08 15:58 - 00000000 ____D C:\Users\admin\AppData\Local\DD7C0F96-1444319916-1FDB-F815-DA0B4BD3EE56
2015-10-08 01:51 - 2015-10-08 01:51 - 00306296 _____ C:\Windows\Minidump\100815-39842-01.dmp
2015-10-06 22:51 - 2015-10-06 22:51 - 00613255 _____ (CMI Limited) C:\Users\admin\AppData\Local\nslDA22.tmp
2015-10-06 22:48 - 2015-10-07 22:52 - 00003240 _____ C:\Windows\System32\Tasks\runTask
2015-10-06 22:48 - 2015-10-07 22:52 - 00003144 _____ C:\Windows\System32\Tasks\updateTask
2015-10-06 22:48 - 2015-10-07 22:52 - 00000888 _____ C:\task.vbs
2015-10-05 22:03 - 2015-10-05 22:20 - 00000000 ____D C:\ProgramData\Boxore
2015-10-05 22:03 - 2015-10-05 22:04 - 00000000 ____D C:\Users\admin\AppData\Local\Boxore
2015-10-05 21:56 - 2015-10-05 21:56 - 00000000 ____D C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnyProtect PC Backup
2015-10-05 21:54 - 2015-10-05 21:54 - 00000875 _____ C:\Windows\SysWOW64\${LOGFILE}
2015-10-05 21:48 - 2015-10-05 22:12 - 00000008 _____ C:\END
2015-10-05 21:34 - 2015-10-05 21:34 - 00613255 _____ (CMI Limited) C:\Users\admin\AppData\Local\nsz6AC5.tmp
2015-10-05 21:34 - 2015-10-05 21:34 - 00000000 __SHD C:\Users\admin\AppData\Roaming\AnyProtectEx
2015-10-05 21:29 - 2015-10-05 22:20 - 00000000 ____D C:\Users\admin\AppData\Roaming\RunDir
2015-10-05 21:29 - 2015-10-05 21:29 - 00000000 ____D C:\Users\admin\AppData\Roaming\NetService
2015-10-05 21:17 - 2015-10-05 21:18 - 00000000 ____D C:\Users\admin\AppData\Local\DD7C0F96-1444079873-1FDB-F815-DA0B4BD3EE56
2015-10-05 21:16 - 2015-10-05 21:16 - 00000000 ____D C:\Users\admin\AppData\Local\Software
2015-10-05 21:13 - 2015-10-05 22:04 - 00000000 ____D C:\Users\admin\AppData\Roaming\WTools
2015-10-05 21:13 - 2015-10-05 21:13 - 00000078 _____ C:\Users\admin\AppData\Roaming\Selection Tools.installation.log
2015-10-05 21:12 - 2015-10-05 22:07 - 00000000 ____D C:\Users\admin\AppData\Roaming\Store
2015-10-05 21:12 - 2015-10-05 21:12 - 00000078 _____ C:\Users\admin\AppData\Roaming\WindApp.installation.log
2015-10-05 21:11 - 2015-10-05 21:54 - 00000000 ____D C:\Users\admin\AppData\Roaming\Nosibay
2015-10-05 21:11 - 2015-10-05 21:12 - 00005712 _____ C:\Users\admin\AppData\Roaming\Bubble Dock.installation.log
2015-10-05 21:09 - 2015-10-05 21:13 - 00001273 _____ C:\Users\admin\AppData\Roaming\Bubble Dock.boostrap.log
2015-10-05 21:09 - 2015-10-05 21:09 - 00000097 _____ C:\Users\admin\AppData\Roaming\WindApp.boostrap.log
2015-09-11 05:05 - 2015-06-08 21:08 - 00000000 ____D C:\Program Files (x86)\MiuiTab
2015-09-26 23:12 - 2013-07-21 12:34 - 00000000 ___HD C:\Users\admin\AppData\Local\GF0UpDPYJjC9
2012-11-08 04:20 - 2012-11-08 04:20 - 0000006 _____ () C:\Program Files (x86)\Common Files\WPVersion.txt
2015-10-05 21:09 - 2015-10-05 21:13 - 0001273 _____ () C:\Users\admin\AppData\Roaming\Bubble Dock.boostrap.log
2015-10-05 21:11 - 2015-10-05 21:12 - 0005712 _____ () C:\Users\admin\AppData\Roaming\Bubble Dock.installation.log
2015-10-05 21:13 - 2015-10-05 21:13 - 0000078 _____ () C:\Users\admin\AppData\Roaming\Selection Tools.installation.log
2015-10-05 21:09 - 2015-10-05 21:09 - 0000097 _____ () C:\Users\admin\AppData\Roaming\WindApp.boostrap.log
2015-10-05 21:12 - 2015-10-05 21:12 - 0000078 _____ () C:\Users\admin\AppData\Roaming\WindApp.installation.log
2015-10-06 22:51 - 2015-10-06 22:51 - 0613255 _____ (CMI Limited) C:\Users\admin\AppData\Local\nslDA22.tmp
2015-10-05 21:34 - 2015-10-05 21:34 - 0613255 _____ (CMI Limited) C:\Users\admin\AppData\Local\nsz6AC5.tmp
C:\Users\admin\x.exe
C:\Users\admin\AppData\Local\Temp\bc.exe
Une fois, le texte collé dans le bloc-note.
Menu Fichier puis Enregistrer sous.
A gauche, place toi sur le bureau.
Dans le champs en bas, nom du fichier mets : fixlist.txt
Clic sur Enregistrer - cela va créer un fichier fixlist.txt sur le bureau.
Relance FRST et clic sur le bouton Corriger / Fix
Selon comment un redémarrage est nécessaire (pas obligatoire).
Un fichier texte apparaît, copie/colle le contenu ici dans un nouveau message.
Redémarre l'ordinateur
puis réinitialise tes navigateurs:
==================================
Réinitialise tes navigateurs et ou manuellement reparamètre tes navigateurs WEB (page de démarrage, moteur de recherche etc) mais aussi supprimer/désactiver les extensions inutiles/parasites :- Firefox : https://www.malekal.com/reparer-firefox/?t=36057&start=
- Google Chrome : https://www.malekal.com/reparer-google-chrome/?t=35837&start=
- Internet Explorer et modules complémentaires / moteurs de recherche : https://forum.malekal.com/viewtopic.php?t=41399&start=
