Fenetre intempestive
Résolu
sarah30000
Messages postés
181
Statut
Membre
-
rislou71 Messages postés 1500 Statut Membre -
rislou71 Messages postés 1500 Statut Membre -
Bonjour,
J'ai des fenetre qui s'ouvre depuis que j'ai arreté la wifi de mon ordinateur
J'ai des fenetr publicitaire ainsi qu'une fenetre windows securité qui s'ouvrent sans cesse.
Quelqu'un ourais m'expliqué comment stopé cela
Merci
J'ai des fenetre qui s'ouvre depuis que j'ai arreté la wifi de mon ordinateur
J'ai des fenetr publicitaire ainsi qu'une fenetre windows securité qui s'ouvrent sans cesse.
Quelqu'un ourais m'expliqué comment stopé cela
Merci
A voir également:
- Fenetre intempestive
- Mcafee fenetre intempestive - Accueil - Piratage
- Fenetre windows - Guide
- Fenêtre hors écran windows 11 - Guide
- Fenetre de navigation privée - Guide
- Forcer fermeture fenetre windows - Guide
13 réponses
Télécharge Lop S&D : https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
# Double-cliquer sur Lop S&D.exe pour lancer l'installation,
# Puis double-cliquer sur le raccourci Lop S&D présent sur le Bureau, (Pour les utilisateurs de Vista cliquez-droit sur le raccourci LopSD présent sur le Bureau et choisissez "Exécuter en tant qu'administrateur" pour lancer LopSD)
/!\ Attention Désactivez les protections résidentes : Antivirus, antispywares, controleurs d'intégrité, etc... pour que l'outil puisse s'exécuter correctement.
# Séléctionner la langue souhaitée , puis choisir l'Option 1 (Recherche)
# Le scan prend moins d'une minute,
# A l'issue du scan, le bloc notes va s'ouvrir avec le résultat de la recherche,
# Enregistrer le rapport LopR.txt sur le Bureau ou dans "Mes Documents" pour le retrouver facilement, sinon il sauvegardé automatiquement à la racine de la partition système : C:\LopR.txt
TUTO en images : http://www.malekal.com/tutorial_Lop_SD.php
# Double-cliquer sur Lop S&D.exe pour lancer l'installation,
# Puis double-cliquer sur le raccourci Lop S&D présent sur le Bureau, (Pour les utilisateurs de Vista cliquez-droit sur le raccourci LopSD présent sur le Bureau et choisissez "Exécuter en tant qu'administrateur" pour lancer LopSD)
/!\ Attention Désactivez les protections résidentes : Antivirus, antispywares, controleurs d'intégrité, etc... pour que l'outil puisse s'exécuter correctement.
# Séléctionner la langue souhaitée , puis choisir l'Option 1 (Recherche)
# Le scan prend moins d'une minute,
# A l'issue du scan, le bloc notes va s'ouvrir avec le résultat de la recherche,
# Enregistrer le rapport LopR.txt sur le Bureau ou dans "Mes Documents" pour le retrouver facilement, sinon il sauvegardé automatiquement à la racine de la partition système : C:\LopR.txt
TUTO en images : http://www.malekal.com/tutorial_Lop_SD.php
Voila le rapport pouvez vous m'aidez ?
--------------------\\ Lop S&D 4.2.3-7 XP/Vista
Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) Dual CPU T2370 @ 1.73GHz )
BIOS : Default System BIOS
USER : Sarah ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 080830-0] 4.8.1229 (Activated)
"C:\Lop SD" ( MAJ : 30-08-2008|19:45 )
Option : [1] ( 30/08/2008|23:42 )
[ UAC => 1 ]
--------------------\\ Listing des dossiers dans Local
[20/07/2008|15:02] C:\Users\Sarah\AppData\Local\Adobe
[17/07/2008|20:14] C:\Users\Sarah\AppData\Local\Application Data
[26/08/2008|22:08] C:\Users\Sarah\AppData\Local\Ares
[17/07/2008|23:35] C:\Users\Sarah\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[23/08/2008|10:15] C:\Users\Sarah\AppData\Local\eMule
[08/08/2008|18:55] C:\Users\Sarah\AppData\Local\GDIPFONTCACHEV1.DAT
[17/07/2008|23:07] C:\Users\Sarah\AppData\Local\Google
[17/07/2008|20:14] C:\Users\Sarah\AppData\Local\Historique
[30/08/2008|23:28] C:\Users\Sarah\AppData\Local\hyrrcv.bat
[30/08/2008|23:42] C:\Users\Sarah\AppData\Local\hyrrcv.dat
[22/08/2008|19:07] C:\Users\Sarah\AppData\Local\hyrrcv.exe
[22/08/2008|19:07] C:\Users\Sarah\AppData\Local\hyrrcv_nav.dat
[30/08/2008|23:42] C:\Users\Sarah\AppData\Local\hyrrcv_navps.dat
[29/08/2008|20:34] C:\Users\Sarah\AppData\Local\IconCache.db
[21/08/2008|20:07] C:\Users\Sarah\AppData\Local\Microsoft
[26/07/2008|19:50] C:\Users\Sarah\AppData\Local\Microsoft Games
[08/08/2008|18:55] C:\Users\Sarah\AppData\Local\Scansoft
[30/08/2008|23:38] C:\Users\Sarah\AppData\Local\Temp
[23/08/2008|10:15] C:\Users\Sarah\AppData\Local\TempDIR
[17/07/2008|20:14] C:\Users\Sarah\AppData\Local\Temporary Internet Files
[17/07/2008|20:20] C:\Users\Sarah\AppData\Local\Toshiba
[17/07/2008|20:21] C:\Users\Sarah\AppData\Local\VirtualStore
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[17/07/2008 23:27][--a------] C:\Windows\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[30/08/2008 23:28][--ah-----] C:\Windows\tasks\SA.DAT
[30/08/2008 18:44][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[28/07/2008|12:15] C:\ProgramData\Adobe
[02/11/2006|15:02] C:\ProgramData\Application Data
[08/08/2008|18:41] C:\ProgramData\Brother
[17/07/2008|20:11] C:\ProgramData\Bureau
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[23/08/2008|10:15] C:\ProgramData\eMule
[17/07/2008|20:11] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[25/02/2008|13:02] C:\ProgramData\Google
[08/08/2008|18:45] C:\ProgramData\InstallShield
[10/08/2008|12:01] C:\ProgramData\McAfee
[17/07/2008|20:11] C:\ProgramData\Menu D‚marrer
[18/08/2008|20:52] C:\ProgramData\Messenger Plus!
[21/07/2008|21:25] C:\ProgramData\Microsoft
[17/07/2008|20:11] C:\ProgramData\ModŠles
[08/08/2008|18:45] C:\ProgramData\ScanSoft
[02/11/2006|15:02] C:\ProgramData\Start Menu
[13/08/2008|22:52] C:\ProgramData\TEMP
[02/11/2006|15:02] C:\ProgramData\Templates
[17/07/2008|20:20] C:\ProgramData\TOSHIBA
[17/07/2008|20:15] C:\ProgramData\ToshibaEurope
[25/02/2008|12:49] C:\ProgramData\Ulead Systems
[17/07/2008|23:21] C:\ProgramData\WLInstaller
--------------------\\ Listing des dossiers dans C:\Program Files
[28/07/2008|12:16] C:\Program Files\Adobe
[17/07/2008|23:11] C:\Program Files\Alwil Software
[26/08/2008|22:08] C:\Program Files\Ares
[08/08/2008|19:00] C:\Program Files\Brother
[17/07/2008|21:09] C:\Program Files\Camera Assistant Software for Toshiba
[10/08/2008|12:01] C:\Program Files\Common Files
[21/01/2008|04:43] C:\Program Files\desktop.ini
[24/08/2008|21:11] C:\Program Files\eChanblard
[24/08/2008|21:12] C:\Program Files\eMule
[13/08/2008|23:03] C:\Program Files\EoRezo
[17/07/2008|20:11] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[25/02/2008|13:04] C:\Program Files\Google
[25/02/2008|13:05] C:\Program Files\IDM
[08/08/2008|19:00] C:\Program Files\InstallShield Installation Information
[17/07/2008|21:09] C:\Program Files\Intel
[21/01/2008|04:35] C:\Program Files\Internet Explorer
[25/02/2008|12:50] C:\Program Files\InterVideo
[10/08/2008|11:38] C:\Program Files\Java
[13/08/2008|23:03] C:\Program Files\LimeWire
[17/07/2008|20:17] C:\Program Files\ltmoh
[18/08/2008|20:44] C:\Program Files\Messenger Plus! Live
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[28/07/2008|16:01] C:\Program Files\Microsoft Office
[27/08/2008|22:45] C:\Program Files\Microsoft Silverlight
[17/07/2008|23:28] C:\Program Files\Microsoft SQL Server Compact Edition
[21/01/2008|04:35] C:\Program Files\Movie Maker
[02/11/2006|14:37] C:\Program Files\MSBuild
[25/02/2008|12:11] C:\Program Files\MSXML 4.0
[25/02/2008|13:04] C:\Program Files\myphotobook
[17/07/2008|20:26] C:\Program Files\Neuf
[08/08/2008|18:46] C:\Program Files\Nuance
[25/02/2008|13:03] C:\Program Files\Picasa2
[08/08/2008|19:00] C:\Program Files\Reallusion
[17/07/2008|20:19] C:\Program Files\Realtek
[17/07/2008|20:17] C:\Program Files\REALTEK RTL8187B Wireless LAN Driver
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[13/08/2008|22:55] C:\Program Files\Registry Mechanic
[08/08/2008|18:44] C:\Program Files\ScanSoft
[10/08/2008|11:38] C:\Program Files\Sun
[25/02/2008|12:31] C:\Program Files\Synaptics
[17/07/2008|21:14] C:\Program Files\TOSHIBA
[25/02/2008|12:46] C:\Program Files\Ulead Systems
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[21/01/2008|04:35] C:\Program Files\Windows Calendar
[21/01/2008|04:35] C:\Program Files\Windows Collaboration
[21/01/2008|04:35] C:\Program Files\Windows Defender
[21/01/2008|04:35] C:\Program Files\Windows Journal
[25/07/2008|08:12] C:\Program Files\Windows Live
[17/07/2008|23:27] C:\Program Files\Windows Live Favorites
[17/07/2008|23:27] C:\Program Files\Windows Live Toolbar
[15/08/2008|08:28] C:\Program Files\Windows Mail
[25/02/2008|12:49] C:\Program Files\Windows Media Components
[21/01/2008|04:35] C:\Program Files\Windows Media Player
[28/07/2008|15:59] C:\Program Files\Windows Messaging
[17/07/2008|20:11] C:\Program Files\Windows NT
[21/01/2008|04:35] C:\Program Files\Windows Photo Gallery
[21/01/2008|04:35] C:\Program Files\Windows Sidebar
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[28/07/2008|12:15] C:\Program Files\Common Files\Adobe
[08/08/2008|18:44] C:\Program Files\Common Files\InstallShield
[25/02/2008|12:14] C:\Program Files\Common Files\Java
[28/07/2008|16:01] C:\Program Files\Common Files\microsoft shared
[08/08/2008|18:44] C:\Program Files\Common Files\ScanSoft Shared
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[21/01/2008|04:35] C:\Program Files\Common Files\System
[25/02/2008|12:53] C:\Program Files\Common Files\Toshiba Shared
[25/02/2008|12:50] C:\Program Files\Common Files\Ulead Systems
[17/07/2008|23:25] C:\Program Files\Common Files\WindowsLiveInstaller
--------------------\\ Process
( 65 Processus )
iexplore.exe ~ [PID:2732]
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-08-30 23:42:50
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------\\ Recherche d'autres infections
C:\Users\Sarah\AppData\Local\hyrrcv.bat
C:\Users\Sarah\AppData\Local\hyrrcv.dat
C:\Users\Sarah\AppData\Local\hyrrcv.exe
C:\Users\Sarah\AppData\Local\hyrrcv_nav.dat
C:\Users\Sarah\AppData\Local\hyrrcv_navps.dat
[b]==> EGDACCESS <==/b
[F:814][D:177]-> C:\Users\Sarah\AppData\Local\Temp
[F:15][D:1]-> C:\Users\Sarah\AppData\Roaming\MICROS~1\Windows\Cookies
[F:80][D:10]-> C:\Users\Sarah\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:25][D:2]-> C:\$Recycle.Bin
--------------------\\ Fin du rapport a 23:44:23
[ UAC => 1 ]
--------------------\\ Lop S&D 4.2.3-7 XP/Vista
Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) Dual CPU T2370 @ 1.73GHz )
BIOS : Default System BIOS
USER : Sarah ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 080830-0] 4.8.1229 (Activated)
"C:\Lop SD" ( MAJ : 30-08-2008|19:45 )
Option : [1] ( 30/08/2008|23:42 )
[ UAC => 1 ]
--------------------\\ Listing des dossiers dans Local
[20/07/2008|15:02] C:\Users\Sarah\AppData\Local\Adobe
[17/07/2008|20:14] C:\Users\Sarah\AppData\Local\Application Data
[26/08/2008|22:08] C:\Users\Sarah\AppData\Local\Ares
[17/07/2008|23:35] C:\Users\Sarah\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[23/08/2008|10:15] C:\Users\Sarah\AppData\Local\eMule
[08/08/2008|18:55] C:\Users\Sarah\AppData\Local\GDIPFONTCACHEV1.DAT
[17/07/2008|23:07] C:\Users\Sarah\AppData\Local\Google
[17/07/2008|20:14] C:\Users\Sarah\AppData\Local\Historique
[30/08/2008|23:28] C:\Users\Sarah\AppData\Local\hyrrcv.bat
[30/08/2008|23:42] C:\Users\Sarah\AppData\Local\hyrrcv.dat
[22/08/2008|19:07] C:\Users\Sarah\AppData\Local\hyrrcv.exe
[22/08/2008|19:07] C:\Users\Sarah\AppData\Local\hyrrcv_nav.dat
[30/08/2008|23:42] C:\Users\Sarah\AppData\Local\hyrrcv_navps.dat
[29/08/2008|20:34] C:\Users\Sarah\AppData\Local\IconCache.db
[21/08/2008|20:07] C:\Users\Sarah\AppData\Local\Microsoft
[26/07/2008|19:50] C:\Users\Sarah\AppData\Local\Microsoft Games
[08/08/2008|18:55] C:\Users\Sarah\AppData\Local\Scansoft
[30/08/2008|23:38] C:\Users\Sarah\AppData\Local\Temp
[23/08/2008|10:15] C:\Users\Sarah\AppData\Local\TempDIR
[17/07/2008|20:14] C:\Users\Sarah\AppData\Local\Temporary Internet Files
[17/07/2008|20:20] C:\Users\Sarah\AppData\Local\Toshiba
[17/07/2008|20:21] C:\Users\Sarah\AppData\Local\VirtualStore
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[17/07/2008 23:27][--a------] C:\Windows\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[30/08/2008 23:28][--ah-----] C:\Windows\tasks\SA.DAT
[30/08/2008 18:44][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[28/07/2008|12:15] C:\ProgramData\Adobe
[02/11/2006|15:02] C:\ProgramData\Application Data
[08/08/2008|18:41] C:\ProgramData\Brother
[17/07/2008|20:11] C:\ProgramData\Bureau
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[23/08/2008|10:15] C:\ProgramData\eMule
[17/07/2008|20:11] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[25/02/2008|13:02] C:\ProgramData\Google
[08/08/2008|18:45] C:\ProgramData\InstallShield
[10/08/2008|12:01] C:\ProgramData\McAfee
[17/07/2008|20:11] C:\ProgramData\Menu D‚marrer
[18/08/2008|20:52] C:\ProgramData\Messenger Plus!
[21/07/2008|21:25] C:\ProgramData\Microsoft
[17/07/2008|20:11] C:\ProgramData\ModŠles
[08/08/2008|18:45] C:\ProgramData\ScanSoft
[02/11/2006|15:02] C:\ProgramData\Start Menu
[13/08/2008|22:52] C:\ProgramData\TEMP
[02/11/2006|15:02] C:\ProgramData\Templates
[17/07/2008|20:20] C:\ProgramData\TOSHIBA
[17/07/2008|20:15] C:\ProgramData\ToshibaEurope
[25/02/2008|12:49] C:\ProgramData\Ulead Systems
[17/07/2008|23:21] C:\ProgramData\WLInstaller
--------------------\\ Listing des dossiers dans C:\Program Files
[28/07/2008|12:16] C:\Program Files\Adobe
[17/07/2008|23:11] C:\Program Files\Alwil Software
[26/08/2008|22:08] C:\Program Files\Ares
[08/08/2008|19:00] C:\Program Files\Brother
[17/07/2008|21:09] C:\Program Files\Camera Assistant Software for Toshiba
[10/08/2008|12:01] C:\Program Files\Common Files
[21/01/2008|04:43] C:\Program Files\desktop.ini
[24/08/2008|21:11] C:\Program Files\eChanblard
[24/08/2008|21:12] C:\Program Files\eMule
[13/08/2008|23:03] C:\Program Files\EoRezo
[17/07/2008|20:11] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[25/02/2008|13:04] C:\Program Files\Google
[25/02/2008|13:05] C:\Program Files\IDM
[08/08/2008|19:00] C:\Program Files\InstallShield Installation Information
[17/07/2008|21:09] C:\Program Files\Intel
[21/01/2008|04:35] C:\Program Files\Internet Explorer
[25/02/2008|12:50] C:\Program Files\InterVideo
[10/08/2008|11:38] C:\Program Files\Java
[13/08/2008|23:03] C:\Program Files\LimeWire
[17/07/2008|20:17] C:\Program Files\ltmoh
[18/08/2008|20:44] C:\Program Files\Messenger Plus! Live
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[28/07/2008|16:01] C:\Program Files\Microsoft Office
[27/08/2008|22:45] C:\Program Files\Microsoft Silverlight
[17/07/2008|23:28] C:\Program Files\Microsoft SQL Server Compact Edition
[21/01/2008|04:35] C:\Program Files\Movie Maker
[02/11/2006|14:37] C:\Program Files\MSBuild
[25/02/2008|12:11] C:\Program Files\MSXML 4.0
[25/02/2008|13:04] C:\Program Files\myphotobook
[17/07/2008|20:26] C:\Program Files\Neuf
[08/08/2008|18:46] C:\Program Files\Nuance
[25/02/2008|13:03] C:\Program Files\Picasa2
[08/08/2008|19:00] C:\Program Files\Reallusion
[17/07/2008|20:19] C:\Program Files\Realtek
[17/07/2008|20:17] C:\Program Files\REALTEK RTL8187B Wireless LAN Driver
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[13/08/2008|22:55] C:\Program Files\Registry Mechanic
[08/08/2008|18:44] C:\Program Files\ScanSoft
[10/08/2008|11:38] C:\Program Files\Sun
[25/02/2008|12:31] C:\Program Files\Synaptics
[17/07/2008|21:14] C:\Program Files\TOSHIBA
[25/02/2008|12:46] C:\Program Files\Ulead Systems
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[21/01/2008|04:35] C:\Program Files\Windows Calendar
[21/01/2008|04:35] C:\Program Files\Windows Collaboration
[21/01/2008|04:35] C:\Program Files\Windows Defender
[21/01/2008|04:35] C:\Program Files\Windows Journal
[25/07/2008|08:12] C:\Program Files\Windows Live
[17/07/2008|23:27] C:\Program Files\Windows Live Favorites
[17/07/2008|23:27] C:\Program Files\Windows Live Toolbar
[15/08/2008|08:28] C:\Program Files\Windows Mail
[25/02/2008|12:49] C:\Program Files\Windows Media Components
[21/01/2008|04:35] C:\Program Files\Windows Media Player
[28/07/2008|15:59] C:\Program Files\Windows Messaging
[17/07/2008|20:11] C:\Program Files\Windows NT
[21/01/2008|04:35] C:\Program Files\Windows Photo Gallery
[21/01/2008|04:35] C:\Program Files\Windows Sidebar
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[28/07/2008|12:15] C:\Program Files\Common Files\Adobe
[08/08/2008|18:44] C:\Program Files\Common Files\InstallShield
[25/02/2008|12:14] C:\Program Files\Common Files\Java
[28/07/2008|16:01] C:\Program Files\Common Files\microsoft shared
[08/08/2008|18:44] C:\Program Files\Common Files\ScanSoft Shared
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[21/01/2008|04:35] C:\Program Files\Common Files\System
[25/02/2008|12:53] C:\Program Files\Common Files\Toshiba Shared
[25/02/2008|12:50] C:\Program Files\Common Files\Ulead Systems
[17/07/2008|23:25] C:\Program Files\Common Files\WindowsLiveInstaller
--------------------\\ Process
( 65 Processus )
iexplore.exe ~ [PID:2732]
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-08-30 23:42:50
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------\\ Recherche d'autres infections
C:\Users\Sarah\AppData\Local\hyrrcv.bat
C:\Users\Sarah\AppData\Local\hyrrcv.dat
C:\Users\Sarah\AppData\Local\hyrrcv.exe
C:\Users\Sarah\AppData\Local\hyrrcv_nav.dat
C:\Users\Sarah\AppData\Local\hyrrcv_navps.dat
[b]==> EGDACCESS <==/b
[F:814][D:177]-> C:\Users\Sarah\AppData\Local\Temp
[F:15][D:1]-> C:\Users\Sarah\AppData\Roaming\MICROS~1\Windows\Cookies
[F:80][D:10]-> C:\Users\Sarah\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:25][D:2]-> C:\$Recycle.Bin
--------------------\\ Fin du rapport a 23:44:23
[ UAC => 1 ]
Ok maintenant :
Télécharge HijackThis V2.02
http://www.commentcamarche.net/telecharger/telecharger 159 hijackthis
Utilisation :
o Installe le
o Choisis l'option "do a system scan and save a logfile"; un rapport va être généré…
Copier/coller le rapport dans le bloc note et envoie le moi
A tte
Télécharge HijackThis V2.02
http://www.commentcamarche.net/telecharger/telecharger 159 hijackthis
Utilisation :
o Installe le
o Choisis l'option "do a system scan and save a logfile"; un rapport va être généré…
Copier/coller le rapport dans le bloc note et envoie le moi
A tte
Voila
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:55:50, on 30/08/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
C:\Program Files\ltmoh\ltmoh.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Users\Sarah\AppData\Local\hyrrcv.exe
C:\Users\Sarah\AppData\Roaming\Microsoft\Live Search\Notification-LiveSearch.exe
C:\Users\Sarah\AppData\Roaming\Microsoft\Live Search\Mise-a-jour-LiveSearch.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\conime.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\windows defender\MSASCui.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Windows\system32\SearchFilterHost.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://actus.sfr.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://actus.sfr.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://recherche.neuf.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://actus.sfr.fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
O4 - HKCU\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [hyrrcv] "c:\users\sarah\appdata\local\hyrrcv.exe" hyrrcv
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files\TOSHIBA\TRDCReminder\TRDCReminder.exe (User 'Default user')
O4 - Startup: Outil de notification Live Search.lnk = C:\Users\Sarah\AppData\Roaming\Microsoft\Live Search\Notification-LiveSearch.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll
O9 - Extra button: eBay - Achetez, Vendez - {76577871-04EC-495E-A12B-91F7C3600AFA} - https://www.ebay.fr (file missing)
O9 - Extra button: Amazon.fr - {8A918C1D-E123-4E36-B562-5C1519E434CE} - https://www.amazon.fr/exec/obidos/subst/home/home.html/262-6263521-6325360?_encoding=UTF8&link_code=hom&tag=Toshibafrbholink-21 (file missing)
O13 - Gopher Prefix:
O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-24-0.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - C:\Program Files\Ares\chatServer.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - c:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA SMART Log Service - TOSHIBA Corporation - c:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:55:50, on 30/08/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
C:\Program Files\ltmoh\ltmoh.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Users\Sarah\AppData\Local\hyrrcv.exe
C:\Users\Sarah\AppData\Roaming\Microsoft\Live Search\Notification-LiveSearch.exe
C:\Users\Sarah\AppData\Roaming\Microsoft\Live Search\Mise-a-jour-LiveSearch.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\conime.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\windows defender\MSASCui.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Windows\system32\SearchFilterHost.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://actus.sfr.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://actus.sfr.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://recherche.neuf.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://actus.sfr.fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
O4 - HKCU\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [hyrrcv] "c:\users\sarah\appdata\local\hyrrcv.exe" hyrrcv
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files\TOSHIBA\TRDCReminder\TRDCReminder.exe (User 'Default user')
O4 - Startup: Outil de notification Live Search.lnk = C:\Users\Sarah\AppData\Roaming\Microsoft\Live Search\Notification-LiveSearch.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll
O9 - Extra button: eBay - Achetez, Vendez - {76577871-04EC-495E-A12B-91F7C3600AFA} - https://www.ebay.fr (file missing)
O9 - Extra button: Amazon.fr - {8A918C1D-E123-4E36-B562-5C1519E434CE} - https://www.amazon.fr/exec/obidos/subst/home/home.html/262-6263521-6325360?_encoding=UTF8&link_code=hom&tag=Toshibafrbholink-21 (file missing)
O13 - Gopher Prefix:
O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-24-0.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - C:\Program Files\Ares\chatServer.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - c:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA SMART Log Service - TOSHIBA Corporation - c:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
--------------------\\ Lop S&D 4.2.3-7 XP/Vista
Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) Dual CPU T2370 @ 1.73GHz )
BIOS : Default System BIOS
USER : Sarah ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 080830-0] 4.8.1229 (Activated)
"C:\Lop SD" ( MAJ : 30-08-2008|19:45 )
Option : [2] ( 31/08/2008| 0:17 )
[ UAC => 1 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
-
[ Fichier Hosts ] .. Restaure!
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans Local
[20/07/2008|15:02] C:\Users\Sarah\AppData\Local\Adobe
[17/07/2008|20:14] C:\Users\Sarah\AppData\Local\Application Data
[26/08/2008|22:08] C:\Users\Sarah\AppData\Local\Ares
[17/07/2008|23:35] C:\Users\Sarah\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[23/08/2008|10:15] C:\Users\Sarah\AppData\Local\eMule
[08/08/2008|18:55] C:\Users\Sarah\AppData\Local\GDIPFONTCACHEV1.DAT
[17/07/2008|23:07] C:\Users\Sarah\AppData\Local\Google
[17/07/2008|20:14] C:\Users\Sarah\AppData\Local\Historique
[30/08/2008|23:28] C:\Users\Sarah\AppData\Local\hyrrcv.bat
[31/08/2008|00:17] C:\Users\Sarah\AppData\Local\hyrrcv.dat
[22/08/2008|19:07] C:\Users\Sarah\AppData\Local\hyrrcv.exe
[22/08/2008|19:07] C:\Users\Sarah\AppData\Local\hyrrcv_nav.dat
[31/08/2008|00:17] C:\Users\Sarah\AppData\Local\hyrrcv_navps.dat
[29/08/2008|20:34] C:\Users\Sarah\AppData\Local\IconCache.db
[21/08/2008|20:07] C:\Users\Sarah\AppData\Local\Microsoft
[26/07/2008|19:50] C:\Users\Sarah\AppData\Local\Microsoft Games
[08/08/2008|18:55] C:\Users\Sarah\AppData\Local\Scansoft
[31/08/2008|00:17] C:\Users\Sarah\AppData\Local\Temp
[23/08/2008|10:15] C:\Users\Sarah\AppData\Local\TempDIR
[17/07/2008|20:14] C:\Users\Sarah\AppData\Local\Temporary Internet Files
[17/07/2008|20:20] C:\Users\Sarah\AppData\Local\Toshiba
[17/07/2008|20:21] C:\Users\Sarah\AppData\Local\VirtualStore
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[17/07/2008 23:27][--a------] C:\Windows\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[30/08/2008 23:28][--ah-----] C:\Windows\tasks\SA.DAT
[30/08/2008 18:44][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[28/07/2008|12:15] C:\ProgramData\Adobe
[02/11/2006|15:02] C:\ProgramData\Application Data
[08/08/2008|18:41] C:\ProgramData\Brother
[17/07/2008|20:11] C:\ProgramData\Bureau
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[23/08/2008|10:15] C:\ProgramData\eMule
[17/07/2008|20:11] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[25/02/2008|13:02] C:\ProgramData\Google
[08/08/2008|18:45] C:\ProgramData\InstallShield
[10/08/2008|12:01] C:\ProgramData\McAfee
[17/07/2008|20:11] C:\ProgramData\Menu D‚marrer
[18/08/2008|20:52] C:\ProgramData\Messenger Plus!
[21/07/2008|21:25] C:\ProgramData\Microsoft
[17/07/2008|20:11] C:\ProgramData\ModŠles
[08/08/2008|18:45] C:\ProgramData\ScanSoft
[02/11/2006|15:02] C:\ProgramData\Start Menu
[13/08/2008|22:52] C:\ProgramData\TEMP
[02/11/2006|15:02] C:\ProgramData\Templates
[17/07/2008|20:20] C:\ProgramData\TOSHIBA
[17/07/2008|20:15] C:\ProgramData\ToshibaEurope
[25/02/2008|12:49] C:\ProgramData\Ulead Systems
[17/07/2008|23:21] C:\ProgramData\WLInstaller
--------------------\\ Listing des dossiers dans C:\Program Files
[28/07/2008|12:16] C:\Program Files\Adobe
[17/07/2008|23:11] C:\Program Files\Alwil Software
[26/08/2008|22:08] C:\Program Files\Ares
[08/08/2008|19:00] C:\Program Files\Brother
[17/07/2008|21:09] C:\Program Files\Camera Assistant Software for Toshiba
[10/08/2008|12:01] C:\Program Files\Common Files
[21/01/2008|04:43] C:\Program Files\desktop.ini
[24/08/2008|21:11] C:\Program Files\eChanblard
[24/08/2008|21:12] C:\Program Files\eMule
[13/08/2008|23:03] C:\Program Files\EoRezo
[17/07/2008|20:11] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[25/02/2008|13:04] C:\Program Files\Google
[25/02/2008|13:05] C:\Program Files\IDM
[08/08/2008|19:00] C:\Program Files\InstallShield Installation Information
[17/07/2008|21:09] C:\Program Files\Intel
[21/01/2008|04:35] C:\Program Files\Internet Explorer
[25/02/2008|12:50] C:\Program Files\InterVideo
[10/08/2008|11:38] C:\Program Files\Java
[13/08/2008|23:03] C:\Program Files\LimeWire
[17/07/2008|20:17] C:\Program Files\ltmoh
[18/08/2008|20:44] C:\Program Files\Messenger Plus! Live
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[28/07/2008|16:01] C:\Program Files\Microsoft Office
[27/08/2008|22:45] C:\Program Files\Microsoft Silverlight
[17/07/2008|23:28] C:\Program Files\Microsoft SQL Server Compact Edition
[21/01/2008|04:35] C:\Program Files\Movie Maker
[02/11/2006|14:37] C:\Program Files\MSBuild
[25/02/2008|12:11] C:\Program Files\MSXML 4.0
[25/02/2008|13:04] C:\Program Files\myphotobook
[17/07/2008|20:26] C:\Program Files\Neuf
[08/08/2008|18:46] C:\Program Files\Nuance
[25/02/2008|13:03] C:\Program Files\Picasa2
[08/08/2008|19:00] C:\Program Files\Reallusion
[17/07/2008|20:19] C:\Program Files\Realtek
[17/07/2008|20:17] C:\Program Files\REALTEK RTL8187B Wireless LAN Driver
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[13/08/2008|22:55] C:\Program Files\Registry Mechanic
[08/08/2008|18:44] C:\Program Files\ScanSoft
[10/08/2008|11:38] C:\Program Files\Sun
[25/02/2008|12:31] C:\Program Files\Synaptics
[17/07/2008|21:14] C:\Program Files\TOSHIBA
[30/08/2008|23:55] C:\Program Files\Trend Micro
[25/02/2008|12:46] C:\Program Files\Ulead Systems
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[21/01/2008|04:35] C:\Program Files\Windows Calendar
[21/01/2008|04:35] C:\Program Files\Windows Collaboration
[21/01/2008|04:35] C:\Program Files\Windows Defender
[21/01/2008|04:35] C:\Program Files\Windows Journal
[25/07/2008|08:12] C:\Program Files\Windows Live
[17/07/2008|23:27] C:\Program Files\Windows Live Favorites
[17/07/2008|23:27] C:\Program Files\Windows Live Toolbar
[15/08/2008|08:28] C:\Program Files\Windows Mail
[25/02/2008|12:49] C:\Program Files\Windows Media Components
[21/01/2008|04:35] C:\Program Files\Windows Media Player
[28/07/2008|15:59] C:\Program Files\Windows Messaging
[17/07/2008|20:11] C:\Program Files\Windows NT
[21/01/2008|04:35] C:\Program Files\Windows Photo Gallery
[21/01/2008|04:35] C:\Program Files\Windows Sidebar
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[28/07/2008|12:15] C:\Program Files\Common Files\Adobe
[08/08/2008|18:44] C:\Program Files\Common Files\InstallShield
[25/02/2008|12:14] C:\Program Files\Common Files\Java
[28/07/2008|16:01] C:\Program Files\Common Files\microsoft shared
[08/08/2008|18:44] C:\Program Files\Common Files\ScanSoft Shared
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[21/01/2008|04:35] C:\Program Files\Common Files\System
[25/02/2008|12:53] C:\Program Files\Common Files\Toshiba Shared
[25/02/2008|12:50] C:\Program Files\Common Files\Ulead Systems
[17/07/2008|23:25] C:\Program Files\Common Files\WindowsLiveInstaller
--------------------\\ Process
( 65 Processus )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-08-31 00:17:57
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------\\ Recherche d'autres infections
C:\Users\Sarah\AppData\Local\hyrrcv.bat
C:\Users\Sarah\AppData\Local\hyrrcv.dat
C:\Users\Sarah\AppData\Local\hyrrcv.exe
C:\Users\Sarah\AppData\Local\hyrrcv_nav.dat
C:\Users\Sarah\AppData\Local\hyrrcv_navps.dat
[b]==> EGDACCESS <==/b
[F:815][D:177]-> C:\Users\Sarah\AppData\Local\Temp
[F:51][D:1]-> C:\Users\Sarah\AppData\Roaming\MICROS~1\Windows\Cookies
[F:81][D:10]-> C:\Users\Sarah\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:25][D:2]-> C:\$Recycle.Bin
--------------------\\ Fin du rapport a 0:19:38
[ UAC => 1 ]
Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) Dual CPU T2370 @ 1.73GHz )
BIOS : Default System BIOS
USER : Sarah ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 080830-0] 4.8.1229 (Activated)
"C:\Lop SD" ( MAJ : 30-08-2008|19:45 )
Option : [2] ( 31/08/2008| 0:17 )
[ UAC => 1 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
-
[ Fichier Hosts ] .. Restaure!
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans Local
[20/07/2008|15:02] C:\Users\Sarah\AppData\Local\Adobe
[17/07/2008|20:14] C:\Users\Sarah\AppData\Local\Application Data
[26/08/2008|22:08] C:\Users\Sarah\AppData\Local\Ares
[17/07/2008|23:35] C:\Users\Sarah\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[23/08/2008|10:15] C:\Users\Sarah\AppData\Local\eMule
[08/08/2008|18:55] C:\Users\Sarah\AppData\Local\GDIPFONTCACHEV1.DAT
[17/07/2008|23:07] C:\Users\Sarah\AppData\Local\Google
[17/07/2008|20:14] C:\Users\Sarah\AppData\Local\Historique
[30/08/2008|23:28] C:\Users\Sarah\AppData\Local\hyrrcv.bat
[31/08/2008|00:17] C:\Users\Sarah\AppData\Local\hyrrcv.dat
[22/08/2008|19:07] C:\Users\Sarah\AppData\Local\hyrrcv.exe
[22/08/2008|19:07] C:\Users\Sarah\AppData\Local\hyrrcv_nav.dat
[31/08/2008|00:17] C:\Users\Sarah\AppData\Local\hyrrcv_navps.dat
[29/08/2008|20:34] C:\Users\Sarah\AppData\Local\IconCache.db
[21/08/2008|20:07] C:\Users\Sarah\AppData\Local\Microsoft
[26/07/2008|19:50] C:\Users\Sarah\AppData\Local\Microsoft Games
[08/08/2008|18:55] C:\Users\Sarah\AppData\Local\Scansoft
[31/08/2008|00:17] C:\Users\Sarah\AppData\Local\Temp
[23/08/2008|10:15] C:\Users\Sarah\AppData\Local\TempDIR
[17/07/2008|20:14] C:\Users\Sarah\AppData\Local\Temporary Internet Files
[17/07/2008|20:20] C:\Users\Sarah\AppData\Local\Toshiba
[17/07/2008|20:21] C:\Users\Sarah\AppData\Local\VirtualStore
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[17/07/2008 23:27][--a------] C:\Windows\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[30/08/2008 23:28][--ah-----] C:\Windows\tasks\SA.DAT
[30/08/2008 18:44][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[28/07/2008|12:15] C:\ProgramData\Adobe
[02/11/2006|15:02] C:\ProgramData\Application Data
[08/08/2008|18:41] C:\ProgramData\Brother
[17/07/2008|20:11] C:\ProgramData\Bureau
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[23/08/2008|10:15] C:\ProgramData\eMule
[17/07/2008|20:11] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[25/02/2008|13:02] C:\ProgramData\Google
[08/08/2008|18:45] C:\ProgramData\InstallShield
[10/08/2008|12:01] C:\ProgramData\McAfee
[17/07/2008|20:11] C:\ProgramData\Menu D‚marrer
[18/08/2008|20:52] C:\ProgramData\Messenger Plus!
[21/07/2008|21:25] C:\ProgramData\Microsoft
[17/07/2008|20:11] C:\ProgramData\ModŠles
[08/08/2008|18:45] C:\ProgramData\ScanSoft
[02/11/2006|15:02] C:\ProgramData\Start Menu
[13/08/2008|22:52] C:\ProgramData\TEMP
[02/11/2006|15:02] C:\ProgramData\Templates
[17/07/2008|20:20] C:\ProgramData\TOSHIBA
[17/07/2008|20:15] C:\ProgramData\ToshibaEurope
[25/02/2008|12:49] C:\ProgramData\Ulead Systems
[17/07/2008|23:21] C:\ProgramData\WLInstaller
--------------------\\ Listing des dossiers dans C:\Program Files
[28/07/2008|12:16] C:\Program Files\Adobe
[17/07/2008|23:11] C:\Program Files\Alwil Software
[26/08/2008|22:08] C:\Program Files\Ares
[08/08/2008|19:00] C:\Program Files\Brother
[17/07/2008|21:09] C:\Program Files\Camera Assistant Software for Toshiba
[10/08/2008|12:01] C:\Program Files\Common Files
[21/01/2008|04:43] C:\Program Files\desktop.ini
[24/08/2008|21:11] C:\Program Files\eChanblard
[24/08/2008|21:12] C:\Program Files\eMule
[13/08/2008|23:03] C:\Program Files\EoRezo
[17/07/2008|20:11] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[25/02/2008|13:04] C:\Program Files\Google
[25/02/2008|13:05] C:\Program Files\IDM
[08/08/2008|19:00] C:\Program Files\InstallShield Installation Information
[17/07/2008|21:09] C:\Program Files\Intel
[21/01/2008|04:35] C:\Program Files\Internet Explorer
[25/02/2008|12:50] C:\Program Files\InterVideo
[10/08/2008|11:38] C:\Program Files\Java
[13/08/2008|23:03] C:\Program Files\LimeWire
[17/07/2008|20:17] C:\Program Files\ltmoh
[18/08/2008|20:44] C:\Program Files\Messenger Plus! Live
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[28/07/2008|16:01] C:\Program Files\Microsoft Office
[27/08/2008|22:45] C:\Program Files\Microsoft Silverlight
[17/07/2008|23:28] C:\Program Files\Microsoft SQL Server Compact Edition
[21/01/2008|04:35] C:\Program Files\Movie Maker
[02/11/2006|14:37] C:\Program Files\MSBuild
[25/02/2008|12:11] C:\Program Files\MSXML 4.0
[25/02/2008|13:04] C:\Program Files\myphotobook
[17/07/2008|20:26] C:\Program Files\Neuf
[08/08/2008|18:46] C:\Program Files\Nuance
[25/02/2008|13:03] C:\Program Files\Picasa2
[08/08/2008|19:00] C:\Program Files\Reallusion
[17/07/2008|20:19] C:\Program Files\Realtek
[17/07/2008|20:17] C:\Program Files\REALTEK RTL8187B Wireless LAN Driver
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[13/08/2008|22:55] C:\Program Files\Registry Mechanic
[08/08/2008|18:44] C:\Program Files\ScanSoft
[10/08/2008|11:38] C:\Program Files\Sun
[25/02/2008|12:31] C:\Program Files\Synaptics
[17/07/2008|21:14] C:\Program Files\TOSHIBA
[30/08/2008|23:55] C:\Program Files\Trend Micro
[25/02/2008|12:46] C:\Program Files\Ulead Systems
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[21/01/2008|04:35] C:\Program Files\Windows Calendar
[21/01/2008|04:35] C:\Program Files\Windows Collaboration
[21/01/2008|04:35] C:\Program Files\Windows Defender
[21/01/2008|04:35] C:\Program Files\Windows Journal
[25/07/2008|08:12] C:\Program Files\Windows Live
[17/07/2008|23:27] C:\Program Files\Windows Live Favorites
[17/07/2008|23:27] C:\Program Files\Windows Live Toolbar
[15/08/2008|08:28] C:\Program Files\Windows Mail
[25/02/2008|12:49] C:\Program Files\Windows Media Components
[21/01/2008|04:35] C:\Program Files\Windows Media Player
[28/07/2008|15:59] C:\Program Files\Windows Messaging
[17/07/2008|20:11] C:\Program Files\Windows NT
[21/01/2008|04:35] C:\Program Files\Windows Photo Gallery
[21/01/2008|04:35] C:\Program Files\Windows Sidebar
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[28/07/2008|12:15] C:\Program Files\Common Files\Adobe
[08/08/2008|18:44] C:\Program Files\Common Files\InstallShield
[25/02/2008|12:14] C:\Program Files\Common Files\Java
[28/07/2008|16:01] C:\Program Files\Common Files\microsoft shared
[08/08/2008|18:44] C:\Program Files\Common Files\ScanSoft Shared
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[21/01/2008|04:35] C:\Program Files\Common Files\System
[25/02/2008|12:53] C:\Program Files\Common Files\Toshiba Shared
[25/02/2008|12:50] C:\Program Files\Common Files\Ulead Systems
[17/07/2008|23:25] C:\Program Files\Common Files\WindowsLiveInstaller
--------------------\\ Process
( 65 Processus )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-08-31 00:17:57
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------\\ Recherche d'autres infections
C:\Users\Sarah\AppData\Local\hyrrcv.bat
C:\Users\Sarah\AppData\Local\hyrrcv.dat
C:\Users\Sarah\AppData\Local\hyrrcv.exe
C:\Users\Sarah\AppData\Local\hyrrcv_nav.dat
C:\Users\Sarah\AppData\Local\hyrrcv_navps.dat
[b]==> EGDACCESS <==/b
[F:815][D:177]-> C:\Users\Sarah\AppData\Local\Temp
[F:51][D:1]-> C:\Users\Sarah\AppData\Roaming\MICROS~1\Windows\Cookies
[F:81][D:10]-> C:\Users\Sarah\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:25][D:2]-> C:\$Recycle.Bin
--------------------\\ Fin du rapport a 0:19:38
[ UAC => 1 ]
Salut les nautes pour les pubs :
Télécharge Navilog1 depuis-ce lien :
http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe
Enregistrer la cible (du lien) sous... et enregistre-le sur ton bureau.
Ensuite double clique sur navilog1.exe pour lancer l'installation.
Une fois l'installation terminée, le fix s'exécutera automatiquement.
(Si ce n'est pas le cas, double-clique sur le raccourci Navilog1 présent sur le bureau).
Au menu principal, Fais le choix 1
Laisse toi guider et patiente.
Patiente jusqu'au message :
*** Analyse Termine le ..... ***
Appuie sur une touche le bloc note va s'ouvrir.
Copie-colle le rapport ici.
@++
Télécharge Navilog1 depuis-ce lien :
http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe
Enregistrer la cible (du lien) sous... et enregistre-le sur ton bureau.
Ensuite double clique sur navilog1.exe pour lancer l'installation.
Une fois l'installation terminée, le fix s'exécutera automatiquement.
(Si ce n'est pas le cas, double-clique sur le raccourci Navilog1 présent sur le bureau).
Au menu principal, Fais le choix 1
Laisse toi guider et patiente.
Patiente jusqu'au message :
*** Analyse Termine le ..... ***
Appuie sur une touche le bloc note va s'ouvrir.
Copie-colle le rapport ici.
@++
elle m'avais envoyé un message perso en me demandant pk je lui repondais pas je lui est que je regardait son rapport et ensuite et bien on a continuer sur boite perso c'est pour ça que tu demande : Ah et où ??
ciao le topic es ferme les rapport st tous ds ma boite perso dc ca ser a rien de continuer sur le topic...
merci kan mm ciao
ciao le topic es ferme les rapport st tous ds ma boite perso dc ca ser a rien de continuer sur le topic...
merci kan mm ciao
