Beaucoup de pub rapoor hijackthis - Page 5

Précédent
  • 1
  • 2
  • 3
  • 4
  • 5
Réponse 81 / 87
-weeman- Messages postés 257 Statut Membre 24
 
-----------------------[ Lop S&D 4.2.2-0 XP/Vista ]---------------------

[ Windows 'Longhorn' (NT 6.0) Workstation Build 6001, Service Pack 1 ]
[ USER : cedric ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 08/07/2008 | 18:07:15,82 ] [ PC : PC-DE-CEDRIC ]
[ MAJ : 06-07-2008 | 10:55 ]
[ UAC => 0 ]

-------------[ Listing des dossiers dans Roaming ]------------

[28/05/2008|12:46] C:\Users\cedric\AppData\Roaming\Adobe\After Effects
[28/05/2008|12:42] C:\Users\cedric\AppData\Roaming\Adobe\Workflow
[28/05/2008|12:42] C:\Users\cedric\AppData\Roaming\Adobe\XMP
[28/05/2008|12:41] C:\Users\cedric\AppData\Roaming\Adobe\CameraRaw
[21/02/2008|01:03] C:\Users\cedric\AppData\Roaming\Adobe\Linguistics
[21/02/2008|01:02] C:\Users\cedric\AppData\Roaming\Adobe\Acrobat
[07/02/2008|23:12] C:\Users\cedric\AppData\Roaming\Adobe\Flash Player

[21/05/2008|15:10] C:\Users\cedric\AppData\Roaming\Blender Foundation\Blender

[23/01/2008|19:59] C:\Users\cedric\AppData\Roaming\CyberLink\PowerDVD
[23/01/2008|19:58] C:\Users\cedric\AppData\Roaming\CyberLink\PowerCinema
[23/01/2008|19:29] C:\Users\cedric\AppData\Roaming\CyberLink\MediaCache
[23/01/2008|19:29] C:\Users\cedric\AppData\Roaming\CyberLink\MagicSports

[28/05/2008|12:40] C:\Users\cedric\AppData\Roaming\EoRezo\eoDesktop
[28/05/2008|12:40] C:\Users\cedric\AppData\Roaming\EoRezo\db

[09/05/2008|18:59] C:\Users\cedric\AppData\Roaming\Google\Local Search History
[01/02/2008|10:57] C:\Users\cedric\AppData\Roaming\Google\GoogleEarth

[23/01/2008|19:28] C:\Users\cedric\AppData\Roaming\Identities\{4A9283C3-6591-4558-A957-F5FD52B64B98}

[25/01/2008|19:01] C:\Users\cedric\AppData\Roaming\InstallShield\UpdateService

[29/06/2008|08:08] C:\Users\cedric\AppData\Roaming\LimeWire\promotion
[04/03/2008|22:09] C:\Users\cedric\AppData\Roaming\LimeWire\.AppSpecialShare
[04/03/2008|22:09] C:\Users\cedric\AppData\Roaming\LimeWire\xml
[04/03/2008|22:09] C:\Users\cedric\AppData\Roaming\LimeWire\themes

[01/02/2008|14:45] C:\Users\cedric\AppData\Roaming\Macromedia\Flash Player

[06/07/2008|20:58] C:\Users\cedric\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware

[01/07/2008|14:31] C:\Users\cedric\AppData\Roaming\Microsoft\Windows Photo Gallery
[12/06/2008|12:33] C:\Users\cedric\AppData\Roaming\Microsoft\Windows Media Encoder
[11/06/2008|19:03] C:\Users\cedric\AppData\Roaming\Microsoft\Network
[10/06/2008|10:35] C:\Users\cedric\AppData\Roaming\Microsoft\MMC
[12/05/2008|12:03] C:\Users\cedric\AppData\Roaming\Microsoft\MSN Messenger
[08/05/2008|18:29] C:\Users\cedric\AppData\Roaming\Microsoft\Internet Explorer
[07/05/2008|17:38] C:\Users\cedric\AppData\Roaming\Microsoft\Templates
[07/05/2008|17:38] C:\Users\cedric\AppData\Roaming\Microsoft\QuickStyles
[01/05/2008|13:45] C:\Users\cedric\AppData\Roaming\Microsoft\UProof
[24/04/2008|01:39] C:\Users\cedric\AppData\Roaming\Microsoft\CLR Security Config
[23/04/2008|23:59] C:\Users\cedric\AppData\Roaming\Microsoft\VCExpress
[23/04/2008|23:59] C:\Users\cedric\AppData\Roaming\Microsoft\MSDN
[10/03/2008|01:03] C:\Users\cedric\AppData\Roaming\Microsoft\Office
[08/03/2008|13:44] C:\Users\cedric\AppData\Roaming\Microsoft\Windows Live Call
[08/03/2008|13:44] C:\Users\cedric\AppData\Roaming\Microsoft\IdentityCRL
[23/02/2008|11:11] C:\Users\cedric\AppData\Roaming\Microsoft\eHome
[20/02/2008|14:58] C:\Users\cedric\AppData\Roaming\Microsoft\Speech
[06/02/2008|15:13] C:\Users\cedric\AppData\Roaming\Microsoft\HTML Help
[05/02/2008|20:39] C:\Users\cedric\AppData\Roaming\Microsoft\Crypto
[29/01/2008|21:26] C:\Users\cedric\AppData\Roaming\Microsoft\Word
[29/01/2008|19:45] C:\Users\cedric\AppData\Roaming\Microsoft\Proof
[29/01/2008|19:40] C:\Users\cedric\AppData\Roaming\Microsoft\Document Building Blocks
[23/01/2008|19:39] C:\Users\cedric\AppData\Roaming\Microsoft\Works
[23/01/2008|19:38] C:\Users\cedric\AppData\Roaming\Microsoft\Excel
[23/01/2008|19:38] C:\Users\cedric\AppData\Roaming\Microsoft\AddIns
[23/01/2008|19:30] C:\Users\cedric\AppData\Roaming\Microsoft\Windows
[23/01/2008|19:29] C:\Users\cedric\AppData\Roaming\Microsoft\SystemCertificates
[23/01/2008|19:28] C:\Users\cedric\AppData\Roaming\Microsoft\Protect
[23/01/2008|19:21] C:\Users\cedric\AppData\Roaming\Microsoft\Credentials

[19/06/2008|19:45] C:\Users\cedric\AppData\Roaming\Mozilla\Extensions
[19/06/2008|19:45] C:\Users\cedric\AppData\Roaming\Mozilla\Firefox

[13/05/2008|15:30] C:\Users\cedric\AppData\Roaming\Notepad++\plugins

[29/03/2008|15:16] C:\Users\cedric\AppData\Roaming\Packard Bell\Setup my PC
[24/01/2008|14:01] C:\Users\cedric\AppData\Roaming\Packard Bell\Smart Restore
[23/01/2008|19:53] C:\Users\cedric\AppData\Roaming\Packard Bell\InfoCentre

[28/01/2008|21:17] C:\Users\cedric\AppData\Roaming\Roxio\MediaManager9
[25/01/2008|19:06] C:\Users\cedric\AppData\Roaming\Roxio\RoxioCentral
[25/01/2008|19:06] C:\Users\cedric\AppData\Roaming\Roxio\RoxioCentral33

[31/01/2008|18:58] C:\Users\cedric\AppData\Roaming\Symantec\Cleanup

[23/01/2008|19:47] C:\Users\cedric\AppData\Roaming\Talkback\MozillaOrg

[09/05/2008|19:33] C:\Users\cedric\AppData\Roaming\vlc\cache

----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------

[07/07/2008 20:14][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{73703F0F-BAFC-4892-ABAC-EC81530CB50E}.job
[08/07/2008 18:00][--a------] C:\Windows\tasks\Extension de garantie.job
[08/07/2008 18:00][--a------] C:\Windows\tasks\Recovery DVD Creator.job
[08/07/2008 15:52][--ah-----] C:\Windows\tasks\SA.DAT
[08/07/2008 15:52][--a------] C:\Windows\tasks\SCHEDLGU.TXT

------[ Listing des dossiers dans C:\ProgramData ]------

[08/12/2007|19:46] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[28/05/2008|12:50] C:\ProgramData\Adobe
[28/05/2008|00:47] C:\ProgramData\Adobe Systems
[02/11/2006|15:02] C:\ProgramData\Application Data
[08/07/2008|14:07] C:\ProgramData\avg8
[23/01/2008|19:17] C:\ProgramData\Bureau
[14/03/2008|02:00] C:\ProgramData\CyberLink
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[05/05/2008|00:19] C:\ProgramData\EmailNotifier
[29/02/2008|20:48] C:\ProgramData\eMule
[23/01/2008|19:17] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[08/12/2007|19:32] C:\ProgramData\Google
[03/07/2008|20:16] C:\ProgramData\Grisoft
[08/12/2007|19:31] C:\ProgramData\InstallShield
[06/07/2008|20:58] C:\ProgramData\Malwarebytes
[23/01/2008|19:17] C:\ProgramData\Menu D‚marrer
[26/02/2008|19:56] C:\ProgramData\Messenger Plus!
[10/06/2008|10:32] C:\ProgramData\Microsoft
[03/07/2008|19:15] C:\ProgramData\Microsoft Help
[23/01/2008|19:17] C:\ProgramData\ModŠles
[07/07/2008|19:09] C:\ProgramData\ntuser.pol
[08/05/2008|21:05] C:\ProgramData\NVIDIA
[21/03/2008|22:37] C:\ProgramData\Roxio
[19/02/2008|19:37] C:\ProgramData\Skype
[08/12/2007|19:31] C:\ProgramData\Sonic
[08/07/2008|16:36] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|15:02] C:\ProgramData\Start Menu
[06/02/2008|03:35] C:\ProgramData\Symantec
[21/03/2008|22:11] C:\ProgramData\TEMP
[02/11/2006|15:02] C:\ProgramData\Templates
[31/01/2008|16:21] C:\ProgramData\WLInstaller

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[08/12/2007|19:46] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[02/07/2008|12:24] C:\Program Files\Adobe
[06/02/2008|14:05] C:\Program Files\Alwil Software
[08/07/2008|14:07] C:\Program Files\AVG
[21/05/2008|15:10] C:\Program Files\Blender Foundation
[03/07/2008|19:15] C:\Program Files\Common Files
[08/12/2007|19:33] C:\Program Files\CyberLink
[09/04/2008|20:55] C:\Program Files\DebugMode
[08/05/2008|19:14] C:\Program Files\desktop.ini
[23/02/2008|11:13] C:\Program Files\DivX
[29/06/2008|01:46] C:\Program Files\eMule
[28/05/2008|12:52] C:\Program Files\EoRezo
[23/01/2008|19:17] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[08/02/2008|16:05] C:\Program Files\Google
[08/07/2008|15:44] C:\Program Files\GRISOFT
[08/12/2007|19:22] C:\Program Files\HDReg
[23/04/2008|23:08] C:\Program Files\InstallShield Installation Information
[28/05/2008|12:39] C:\Program Files\Internet Explorer
[31/01/2008|15:44] C:\Program Files\Inventel
[02/04/2008|06:50] C:\Program Files\Java
[02/03/2008|02:46] C:\Program Files\LG Electronics
[06/06/2008|11:14] C:\Program Files\LimeWire
[06/07/2008|20:58] C:\Program Files\Malwarebytes' Anti-Malware
[04/04/2008|19:48] C:\Program Files\Messenger Plus! Live
[31/01/2008|16:57] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[26/01/2008|18:42] C:\Program Files\Microsoft Games
[08/12/2007|19:44] C:\Program Files\Microsoft Office
[23/04/2008|23:55] C:\Program Files\Microsoft SDKs
[20/05/2008|12:55] C:\Program Files\Microsoft Silverlight
[03/07/2008|19:15] C:\Program Files\Microsoft Visual Studio 9.0
[08/12/2007|19:44] C:\Program Files\Microsoft Works
[08/12/2007|19:44] C:\Program Files\Microsoft.NET
[08/05/2008|19:08] C:\Program Files\Movie Maker
[08/07/2008|16:08] C:\Program Files\Mozilla Firefox
[02/11/2006|14:37] C:\Program Files\MSBuild
[31/01/2008|16:52] C:\Program Files\MSXML 4.0
[07/07/2008|17:15] C:\Program Files\Navilog1
[30/06/2008|19:05] C:\Program Files\Notepad++
[29/03/2008|15:16] C:\Program Files\Packard Bell
[23/03/2008|20:29] C:\Program Files\Philips
[08/12/2007|19:17] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[08/12/2007|19:31] C:\Program Files\Roxio
[08/12/2007|19:24] C:\Program Files\Seagate
[08/07/2008|16:33] C:\Program Files\Spybot - Search & Destroy
[06/07/2008|16:18] C:\Program Files\Trend Micro
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[02/06/2008|17:19] C:\Program Files\Valve
[05/03/2008|19:57] C:\Program Files\VideoLAN
[05/05/2008|00:19] C:\Program Files\Visicom Media
[08/05/2008|19:08] C:\Program Files\Windows Calendar
[08/05/2008|19:08] C:\Program Files\Windows Collaboration
[08/05/2008|19:08] C:\Program Files\Windows Defender
[08/05/2008|19:08] C:\Program Files\Windows Journal
[31/01/2008|16:34] C:\Program Files\Windows Live
[08/07/2008|18:07] C:\Program Files\Windows Live Safety Center
[11/06/2008|22:58] C:\Program Files\Windows Mail
[08/02/2008|16:09] C:\Program Files\Windows Media Components
[08/05/2008|19:08] C:\Program Files\Windows Media Player
[23/01/2008|19:17] C:\Program Files\Windows NT
[08/05/2008|19:08] C:\Program Files\Windows Photo Gallery
[08/05/2008|19:08] C:\Program Files\Windows Sidebar
[14/05/2008|11:51] C:\Program Files\World of Warcraft

------[ Listing des dossiers dans C:\Program Files\Common Files ]------

[28/05/2008|12:50] C:\Program Files\Common Files\Adobe
[28/05/2008|00:44] C:\Program Files\Common Files\Adobe Systems Shared
[01/02/2008|14:16] C:\Program Files\Common Files\Blizzard Entertainment
[08/12/2007|19:44] C:\Program Files\Common Files\DESIGNER
[08/12/2007|19:33] C:\Program Files\Common Files\InstallShield
[04/03/2008|22:06] C:\Program Files\Common Files\Java
[08/07/2008|14:07] C:\Program Files\Common Files\microsoft shared
[08/12/2007|19:31] C:\Program Files\Common Files\Roxio Shared
[19/04/2008|19:33] C:\Program Files\Common Files\ServerExten
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[08/12/2007|19:31] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[10/06/2008|15:38] C:\Program Files\Common Files\Steam
[08/12/2007|19:31] C:\Program Files\Common Files\SureThing Shared
[23/04/2008|21:07] C:\Program Files\Common Files\SWF Studio
[06/02/2008|03:35] C:\Program Files\Common Files\Symantec Shared
[08/05/2008|19:08] C:\Program Files\Common Files\System
[31/01/2008|16:34] C:\Program Files\Common Files\WindowsLiveInstaller
[08/12/2007|19:23] C:\Program Files\Common Files\Wise Installation Wizard

---------------------------[ Process ]--------------------------

... 55

... OK !

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

Aucun fichier / dossier Lop trouvé !

----------------------[ Verification du Registre ]----------------------

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-08 18:07:46
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

C:\Users\cedric\AppData\Local\gssccas.dat
C:\Users\cedric\AppData\Local\gssccas.exe
C:\Users\cedric\AppData\Local\gssccas_nav.dat
C:\Users\cedric\AppData\Local\gssccas_navps.dat
[b]! EGDACCESS !/b

[F:55][D:8]-> C:\Users\cedric\AppData\Local\Temp
[F:347][D:1]-> C:\Users\cedric\AppData\Roaming\MICROS~1\Windows\Cookies
[F:698][D:6]-> C:\Users\cedric\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:10][D:3]-> C:\$Recycle.Bin

[ UAC => 1 ]

--------------------[ Fin du rapport a 18:08:23,50 ]----------------------
0
Réponse 82 / 87
^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   3 280
 
Le rapport Navilog option 2

!!!

0
Réponse 83 / 87
-weeman- Messages postés 257 Statut Membre 24
 
Search Navipromo version 3.6.0 commencé le 08/07/2008 à 18:14:02,44

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!

Outil exécuté depuis C:\Program Files\navilog1
Session actuelle : "cedric"

Mise à jour le 27.06.2008 à 23h00 par IL-MAFIOSO

Microsoft Windows Vista 6.0.6001
Internet Explorer : 7.0.6001.18000
Système de fichiers : NTFS

Recherche executé en mode normal

*** Recherche Programmes installés ***

*** Recherche dossiers dans "C:\Windows" ***

*** Recherche dossiers dans "C:\Program Files" ***

*** Recherche dossiers dans "C:\ProgramData" ***

*** Recherche dossiers dans "c:\progra~2\micros~1\windows\startm~1\programs" ***

*** Recherche dossiers dans "c:\users\cedric\appdata\roaming\micros~1\windows\startm~1\programs" ***

*** Recherche dossiers dans "C:\Users\cedric\AppData\Local\virtualstore\Program Files" ***

*** Recherche dossiers dans "C:\Users\cedric\AppData\Roaming" ***

*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d'infos : http://www.gmer.net

Aucun Fichier trouvé

*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!

* Recherche dans "C:\Windows\system32" *

* Recherche dans "C:\Users\cedric\AppData\Local\Microsoft" *

* Recherche dans "C:\Users\cedric\AppData\Local\virtualstore\windows\system32" *

* Recherche dans "C:\Users\cedric\AppData\Local" *

Fichiers trouvés :

gssccas.exe trouvé !
gssccas.dat trouvé !
gssccas_nav.dat trouvé !
gssccas_navps.dat trouvé !

*** Recherche fichiers ***

*** Recherche clés spécifiques dans le Registre ***

HKEY_CURRENT_USER\Software\Lanconfig trouvé !

*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Recherche nouveaux fichiers Instant Access :

2)Recherche Heuristique :

* Dans "C:\Windows\system32" :

* Dans "C:\Users\cedric\AppData\Local\Microsoft" :

* Dans "C:\Users\cedric\AppData\Local\virtualstore\windows\system32" :

* Dans "C:\Users\cedric\AppData\Local" :

gssccas.dat trouvé !
gssccas_nav.dat trouvé !
gssccas_navps.dat trouvé !

3)Recherche Certificats :

Certificat Egroup trouvé !
Certificat Electronic-Group trouvé !
Certificat OOO-Favorit trouvé !
Certificat Sunny-Day-Design-Ltd absent !

4)Recherche fichiers connus :

*** Analyse terminée le 08/07/2008 à 18:24:48,96 ***
0
Réponse 84 / 87
fiat500 Messages postés 2681 Statut Membre 82
 
tkt ^^marie ^^ on a tous fais par msn a la webcam
0
^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   3 280
 
Je ne sais pas de quoi tu parles,

MAIS en attendant son PC est toujours vérolé.

Si tu l'as aidé sur msn, ben je me fais grave du soucis pour lui ;;))
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 85 / 87
fiat500 Messages postés 2681 Statut Membre 82
 
non tkt on as tous fais navilog malwarebytes avg spybot scan en ligne lop sd ! il a plus rien on a supprimer navilog et lop sd
0
Réponse 86 / 87
-weeman- Messages postés 257 Statut Membre 24
 
oui je nes plus 1 virus mon ordi na plus de pub est marche super bien
encor merci fiat (toi aussi marie).
0
Réponse 87 / 87
fiat500 Messages postés 2681 Statut Membre 82
 
de rien
0
Précédent
  • 1
  • 2
  • 3
  • 4
  • 5

Discussions similaires

Ouvrir un fichier .pub sans Publisher
baissaoui -
baissaoui -

0 réponse
Ouvrir document Publisher sans Publisher
Curtis Hayes -
Curtis Hayes -

7 réponses
Lire, afficher, exécuter un fichier *.pub sans Publisher
jeannoellaurenti -
informatique_fujitsu -

1 réponse
retrouver un spot publicitaire radio ?
solpauale -
Jennifer -

5 réponses
lire un fichier .pub
xycoco -
Valou -

38 réponses