Publicités intempestives
PHIL59
-
E..T Messages postés 6565 Statut Contributeur -
E..T Messages postés 6565 Statut Contributeur -
Bonjour,
Depuis quelque temps,je suis pollué par de la publicité pour des sites de ventes,loto,PMU,etc.lorsque je suis sur INTERNET avec internet explorer ou firefox.Il suffit de les supprimer pour continuer mes recherches mais cela est perturbant.Pouvez vous m'aider.
J'ai copier/coller le rapport édité par "Hijack this" Merci
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:15:24, on 18/10/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal
Running processes:
C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\rundll32.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Acer\Empowering Technology\SysMonitor.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Windows\WindowsMobile\wmdc.exe
C:\Program Files\Common Files\logishrd\LComMgr\Communications_Helper.exe
C:\Program Files\Logitech\QuickCam\Quickcam.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Search Settings\SearchSettings.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Spyware Doctor\pctsTray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Users\PHILIPPE\AppData\Local\wecme.exe
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Spyware Doctor\pctsAuxs.exe
C:\Program Files\Spyware Doctor\pctsSvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Windows\system32\svchost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Windows\system32\conime.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://us.rd.yahoo.com/customize/ie/defaults/su/ymj/*https://fr.yahoo.com/?p=us
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60264
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60264
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaults/sb/ymj/*http://www.yahoo.com/ext/search/search.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.com/customize/ie/defaults/sp/ymj/*https://fr.yahoo.com/?p=us
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60264
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Windows\system32\ActiveToolBand.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb125\SearchSettings.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: (no name) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] C:\Acer\Empowering Technology\SysMonitor.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
O4 - HKLM\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdc.exe
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SearchSettings] C:\Program Files\Search Settings\SearchSettings.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ISTray] "C:\Program Files\Spyware Doctor\pctsTray.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [wecme] "c:\users\philippe\appdata\local\wecme.exe" wecme
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~4.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~4.0_0\bin\ssv.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Crawler Screensaver - {CDAFD956-97BE-443D-8EF7-F4F094EB5766} - C:\Program Files\Crawler\SSaver\CSSaver.exe (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: {6B75345B-AA36-438A-BBE6-4078B4C6984D} (HpProductDetection Class) - http://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - (no file)
O23 - Service: ePerformance Service (AcerMemUsageCheckService) - Unknown owner - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: eDSService.exe (eDataSecurity Service) - HiTRSUT - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Planificateur LiveUpdate automatique - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing)
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
Depuis quelque temps,je suis pollué par de la publicité pour des sites de ventes,loto,PMU,etc.lorsque je suis sur INTERNET avec internet explorer ou firefox.Il suffit de les supprimer pour continuer mes recherches mais cela est perturbant.Pouvez vous m'aider.
J'ai copier/coller le rapport édité par "Hijack this" Merci
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:15:24, on 18/10/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal
Running processes:
C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\rundll32.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Acer\Empowering Technology\SysMonitor.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Windows\WindowsMobile\wmdc.exe
C:\Program Files\Common Files\logishrd\LComMgr\Communications_Helper.exe
C:\Program Files\Logitech\QuickCam\Quickcam.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Search Settings\SearchSettings.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Spyware Doctor\pctsTray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Users\PHILIPPE\AppData\Local\wecme.exe
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Spyware Doctor\pctsAuxs.exe
C:\Program Files\Spyware Doctor\pctsSvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Windows\system32\svchost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Windows\system32\conime.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://us.rd.yahoo.com/customize/ie/defaults/su/ymj/*https://fr.yahoo.com/?p=us
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60264
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60264
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaults/sb/ymj/*http://www.yahoo.com/ext/search/search.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.com/customize/ie/defaults/sp/ymj/*https://fr.yahoo.com/?p=us
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60264
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Windows\system32\ActiveToolBand.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb125\SearchSettings.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: (no name) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] C:\Acer\Empowering Technology\SysMonitor.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
O4 - HKLM\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdc.exe
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SearchSettings] C:\Program Files\Search Settings\SearchSettings.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ISTray] "C:\Program Files\Spyware Doctor\pctsTray.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [wecme] "c:\users\philippe\appdata\local\wecme.exe" wecme
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~4.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~4.0_0\bin\ssv.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Crawler Screensaver - {CDAFD956-97BE-443D-8EF7-F4F094EB5766} - C:\Program Files\Crawler\SSaver\CSSaver.exe (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: {6B75345B-AA36-438A-BBE6-4078B4C6984D} (HpProductDetection Class) - http://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - (no file)
O23 - Service: ePerformance Service (AcerMemUsageCheckService) - Unknown owner - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: eDSService.exe (eDataSecurity Service) - HiTRSUT - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Planificateur LiveUpdate automatique - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing)
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
A voir également:
- Publicités intempestives
- Supprimer les publicités - Guide
- Comment bloquer les publicités sur youtube - Accueil - Streaming
- Future engineer solution saison 1 episode 7 les publicités - Forum Python
- Publicités intempestives - Forum Virus
- Dailymotion bloqueur de publicités détecté ✓ - Forum Google Chrome
4 réponses
Salut,
Désactive l'UAC >> http://www.laboratoire-microsoft.org/tips-23933-desactiver-uac-vista.html
Démarrer, puis Panneau de configuration.
Choisis l'affichage classique sur la gauche et double-clique sur Comptes d'utilisateurs.
Cliques ensuite sur désactiver le contrôle des comptes d'utilisateurs.
On le réactivera à la fin de la désinfection.
Fais ce qui suit :
* Télécharge MalwareByte's Anti-Malware (by RubbeR DuckY) :
*http://www.commentcamarche.net/telecharger/telecharger 34055379 malwarebyte s anti malware
* Installe le programme sur le bureau :
S'il te manque "COMCTL32.OCX" lors de l'installation, alors télécharges le ici : https://www.malekal.com/tutorial-aboutbuster/
* Fais les mises à jour (clic sur Mises à jour puis Recherche de mises à jour)
* Démarre en mode sans échec
Comment faire >> https://www.micro-astuce.com/depannage/demarrer-mode-sans-echec.php
Redémarres l’ordinateur
Dès le chargement du BIOS, commences à appuyer sur la touche F8 de ton clavier,i jusqu'au ou le menu des options avancées de Windows apparait.
Sélectionne "Mode sans échec" dans le menu puis appuyez sur Entrée.
* Lance MalwareByte's Anti-Malware, clique sur Exécuter un examen complet puis Rechercher et sélectionnez tous tes disques durs
* // !! \\ Une fois le scan terminé, Si des elements on ete trouvés > cliques sur supprimer la selection. (si un message te demande de redémarrer le PC, accepte.)
* Un rapport sera généré, poste le ici.
@++
Désactive l'UAC >> http://www.laboratoire-microsoft.org/tips-23933-desactiver-uac-vista.html
Démarrer, puis Panneau de configuration.
Choisis l'affichage classique sur la gauche et double-clique sur Comptes d'utilisateurs.
Cliques ensuite sur désactiver le contrôle des comptes d'utilisateurs.
On le réactivera à la fin de la désinfection.
Fais ce qui suit :
* Télécharge MalwareByte's Anti-Malware (by RubbeR DuckY) :
*http://www.commentcamarche.net/telecharger/telecharger 34055379 malwarebyte s anti malware
* Installe le programme sur le bureau :
S'il te manque "COMCTL32.OCX" lors de l'installation, alors télécharges le ici : https://www.malekal.com/tutorial-aboutbuster/
* Fais les mises à jour (clic sur Mises à jour puis Recherche de mises à jour)
* Démarre en mode sans échec
Comment faire >> https://www.micro-astuce.com/depannage/demarrer-mode-sans-echec.php
Redémarres l’ordinateur
Dès le chargement du BIOS, commences à appuyer sur la touche F8 de ton clavier,i jusqu'au ou le menu des options avancées de Windows apparait.
Sélectionne "Mode sans échec" dans le menu puis appuyez sur Entrée.
* Lance MalwareByte's Anti-Malware, clique sur Exécuter un examen complet puis Rechercher et sélectionnez tous tes disques durs
* // !! \\ Une fois le scan terminé, Si des elements on ete trouvés > cliques sur supprimer la selection. (si un message te demande de redémarrer le PC, accepte.)
* Un rapport sera généré, poste le ici.
@++
Ok va dans Malwarebytes' Anti-Malware sur l'onglet quarantaine et supprime tout.
Télécharge >> Lop S&D.exe << puis enregistres-le sur ton Bureau .
double-clic sur le fichier LopSD.exe suffira à lancer l'installation
Accepte le contat de licence
Créer le répertoire de destination, accepte en cliquant sur oui
Un raccourci sera créé sur ton Bureau.
Double clic dessus.
Choisis la langue f pour Français puis valide par Entrée.
Choisis l'option Recherche en saisissant 1 valides par Entrée.
Ton bureau va disparaitre c'est normal.
Patiente le temps du scan
A la fin du scan un rapport sera généré et s'ouvrira automatiquement dans le Bloc-Notes.
Copies-colles le contenu de ce rapport ici.
>>On le trouve aussi en %systemdrive%\LopR.txt
@++
Télécharge >> Lop S&D.exe << puis enregistres-le sur ton Bureau .
double-clic sur le fichier LopSD.exe suffira à lancer l'installation
Accepte le contat de licence
Créer le répertoire de destination, accepte en cliquant sur oui
Un raccourci sera créé sur ton Bureau.
Double clic dessus.
Choisis la langue f pour Français puis valide par Entrée.
Choisis l'option Recherche en saisissant 1 valides par Entrée.
Ton bureau va disparaitre c'est normal.
Patiente le temps du scan
A la fin du scan un rapport sera généré et s'ouvrira automatiquement dans le Bloc-Notes.
Copies-colles le contenu de ce rapport ici.
>>On le trouve aussi en %systemdrive%\LopR.txt
@++
Tout c'est encore bien passé
Voici le rapport
--------------------\\ Lop S&D 4.2.4-5 XP/Vista
Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 4000+ )
BIOS : )Phoenix - Award WorkstationBIOS v6.00PG
USER : PHILIPPE ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 081017-1] 4.8.1229 (Activated)
C:\ (Local Disk) - NTFS - Total : 111 Go Free : 70 Go
D:\ (Local Disk) - NTFS - Total : 111 Go Free : 103 Go
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)
"C:\Lop SD" ( MAJ : 02-10-2008|23:42 )
Option : [1] ( 18/10/2008|13:08 )
[ UAC => 0 ]
--------------------\\ Listing des dossiers dans Local
[01/01/2008|21:14] C:\Users\PHILIPPE\AppData\Local\Adobe
[09/10/2008|16:14] C:\Users\PHILIPPE\AppData\Local\Apple
[10/10/2008|18:27] C:\Users\PHILIPPE\AppData\Local\Apple Computer
[01/10/2007|15:19] C:\Users\PHILIPPE\AppData\Local\Application Data
[18/10/2008|13:04] C:\Users\PHILIPPE\AppData\Local\ApplicationHistory
[18/10/2008|12:11] C:\Users\PHILIPPE\AppData\Local\bjgnjxfd.bat
[08/02/2008|16:13] C:\Users\PHILIPPE\AppData\Local\CutePDF Writer
[18/05/2008|15:12] C:\Users\PHILIPPE\AppData\Local\d3d9caps.dat
[22/08/2008|13:47] C:\Users\PHILIPPE\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[17/10/2008|22:41] C:\Users\PHILIPPE\AppData\Local\fusioncache.dat
[18/07/2008|20:11] C:\Users\PHILIPPE\AppData\Local\GDIPFONTCACHEV1.DAT
[10/09/2008|20:14] C:\Users\PHILIPPE\AppData\Local\Google
[01/10/2007|15:19] C:\Users\PHILIPPE\AppData\Local\Historique
[18/10/2008|13:03] C:\Users\PHILIPPE\AppData\Local\IconCache.db
[07/10/2007|17:48] C:\Users\PHILIPPE\AppData\Local\MCE Deluxe Suite
[17/10/2008|20:23] C:\Users\PHILIPPE\AppData\Local\Microsoft
[04/10/2007|20:17] C:\Users\PHILIPPE\AppData\Local\Microsoft Games
[25/02/2008|21:17] C:\Users\PHILIPPE\AppData\Local\Microsoft Help
[20/07/2008|22:06] C:\Users\PHILIPPE\AppData\Local\MigWiz
[17/10/2008|20:21] C:\Users\PHILIPPE\AppData\Local\Mozilla
[10/01/2008|19:17] C:\Users\PHILIPPE\AppData\Local\Musicmatch
[14/12/2007|15:59] C:\Users\PHILIPPE\AppData\Local\Paint.NET
[07/10/2007|17:48] C:\Users\PHILIPPE\AppData\Local\PowerCinema
[13/02/2008|20:35] C:\Users\PHILIPPE\AppData\Local\Shareaza
[18/10/2008|13:07] C:\Users\PHILIPPE\AppData\Local\Temp
[01/10/2007|15:19] C:\Users\PHILIPPE\AppData\Local\Temporary Internet Files
[20/10/2007|17:34] C:\Users\PHILIPPE\AppData\Local\VirtualStore
[19/10/2007|01:32] C:\Users\PHILIPPE\AppData\Local\WindowsUpdate
[03/12/2007|13:33] C:\Users\PHILIPPE\AppData\Local\Yahoo
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[05/09/2008 16:31][--a------] C:\Windows\tasks\Norton Security Scan.job
[18/10/2008 12:52][--a------] C:\Windows\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[17/10/2008 20:00][--a------] C:\Windows\tasks\Norton Internet Security - Analyse systŠme complŠte - PHILIPPE.job
[18/10/2008 13:04][--ah-----] C:\Windows\tasks\SA.DAT
[18/10/2008 13:03][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[16/04/2007|18:07] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[10/10/2008|18:18] C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[07/02/2008|17:40] C:\ProgramData\Adobe
[09/10/2008|16:13] C:\ProgramData\Apple
[10/10/2008|18:14] C:\ProgramData\Apple Computer
[02/11/2006|15:02] C:\ProgramData\Application Data
[17/10/2008|18:53] C:\ProgramData\avg8
[09/01/2008|17:52] C:\ProgramData\AVS4YOU
[20/12/2007|20:14] C:\ProgramData\AWEM
[01/10/2007|15:16] C:\ProgramData\Bureau
[01/10/2007|18:30] C:\ProgramData\CanonBJ
[07/10/2007|17:48] C:\ProgramData\CyberLink
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[08/02/2008|14:49] C:\ProgramData\DVD Shrink
[11/01/2008|22:13] C:\ProgramData\eMule
[01/10/2007|17:15] C:\ProgramData\eSobi
[01/10/2007|15:16] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[03/01/2008|17:24] C:\ProgramData\Google
[18/10/2008|12:51] C:\ProgramData\Google Updater
[17/10/2008|20:13] C:\ProgramData\Grisoft
[22/10/2007|15:22] C:\ProgramData\Gtek
[08/10/2008|19:03] C:\ProgramData\Lavasoft
[08/12/2007|12:04] C:\ProgramData\LightScribe
[12/11/2007|12:57] C:\ProgramData\Logishrd
[12/11/2007|12:53] C:\ProgramData\Logitech
[18/10/2008|12:04] C:\ProgramData\Malwarebytes
[01/10/2007|15:16] C:\ProgramData\Menu D‚marrer
[17/10/2008|20:21] C:\ProgramData\Microsoft
[25/02/2008|21:17] C:\ProgramData\Microsoft Help
[01/10/2007|15:16] C:\ProgramData\ModŠles
[01/01/2008|19:22] C:\ProgramData\Mozilla
[31/01/2008|13:03] C:\ProgramData\MSScanAppDataDir
[21/11/2007|20:14] C:\ProgramData\NtiDvdCopy
[03/12/2007|13:30] C:\ProgramData\ntuser.dat
[03/12/2007|13:30] C:\ProgramData\ntuser.dat.LOG1
[03/12/2007|13:30] C:\ProgramData\ntuser.dat.LOG2
[03/12/2007|13:30] C:\ProgramData\ntuser.dat{4b01ed11-a184-11dc-a7f9-0019210daa0c}.TM.blf
[03/12/2007|13:30] C:\ProgramData\ntuser.dat{4b01ed11-a184-11dc-a7f9-0019210daa0c}.TMContainer00000000000000000001.regtrans-ms
[03/12/2007|13:30] C:\ProgramData\ntuser.dat{4b01ed11-a184-11dc-a7f9-0019210daa0c}.TMContainer00000000000000000002.regtrans-ms
[03/12/2007|13:30] C:\ProgramData\ntuser.dat{4b01ed21-a184-11dc-a7f9-0019210daa0c}.TM.blf
[03/12/2007|13:30] C:\ProgramData\ntuser.dat{4b01ed21-a184-11dc-a7f9-0019210daa0c}.TMContainer00000000000000000001.regtrans-ms
[03/12/2007|13:30] C:\ProgramData\ntuser.dat{4b01ed21-a184-11dc-a7f9-0019210daa0c}.TMContainer00000000000000000002.regtrans-ms
[03/09/2008|08:54] C:\ProgramData\NVIDIA
[09/10/2008|21:39] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|15:02] C:\ProgramData\Start Menu
[31/01/2008|16:20] C:\ProgramData\Symantec
[18/10/2008|13:04] C:\ProgramData\TEMP
[02/11/2006|15:02] C:\ProgramData\Templates
[04/05/2008|21:41] C:\ProgramData\WinZip
[07/12/2007|11:43] C:\ProgramData\WLInstaller
[03/12/2007|13:33] C:\ProgramData\YAHOO
[03/12/2007|13:31] C:\ProgramData\Yahoo!
[04/10/2007|09:42] C:\ProgramData\Yahoo! Companion
[16/10/2008|17:40] C:\ProgramData\ZoomBrowser
--------------------\\ Listing des dossiers dans C:\Program Files
[13/01/2008|20:10] C:\Program Files\AC3Filter
[23/06/2007|04:44] C:\Program Files\Acer Inc
[16/04/2007|17:46] C:\Program Files\Acer Zone
[07/02/2008|17:47] C:\Program Files\Acro Software
[29/06/2008|19:58] C:\Program Files\Adobe
[16/10/2008|18:11] C:\Program Files\adslTV
[30/12/2007|15:26] C:\Program Files\Alwil Software
[09/10/2008|16:14] C:\Program Files\Apple Software Update
[17/10/2008|18:44] C:\Program Files\AVG
[13/01/2008|20:08] C:\Program Files\AviSynth 2.5
[13/01/2008|12:24] C:\Program Files\AVS4YOU
[10/10/2008|18:15] C:\Program Files\Bonjour
[12/12/2007|20:23] C:\Program Files\Bubble Match
[10/02/2008|19:34] C:\Program Files\Burn4Free
[11/02/2008|18:14] C:\Program Files\Canon
[11/11/2007|21:26] C:\Program Files\CCleaner
[13/01/2008|13:45] C:\Program Files\CDex_150
[17/10/2008|22:34] C:\Program Files\Common Files
[16/04/2007|17:45] C:\Program Files\CyberLink
[09/01/2008|17:16] C:\Program Files\directx
[16/01/2008|11:07] C:\Program Files\DVD Shrink
[02/10/2008|22:52] C:\Program Files\eMule
[08/08/2008|18:39] C:\Program Files\ESBUnitConv Pro TRIAL
[01/10/2007|15:16] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[15/10/2008|14:20] C:\Program Files\Free Audio Pack
[11/12/2007|21:08] C:\Program Files\GabbaSoft
[13/01/2008|20:08] C:\Program Files\Gabest
[20/12/2007|20:13] C:\Program Files\GamesBar
[11/07/2008|11:41] C:\Program Files\Google
[07/02/2008|17:48] C:\Program Files\GPLGS
[15/03/2008|19:27] C:\Program Files\GraphCalc
[17/10/2008|20:13] C:\Program Files\Grisoft
[21/10/2007|12:35] C:\Program Files\HP
[22/10/2007|15:22] C:\Program Files\HPScanjet
[01/11/2007|16:47] C:\Program Files\illiminable
[20/03/2008|22:26] C:\Program Files\InstallShield Installation Information
[17/10/2008|22:31] C:\Program Files\Internet Explorer
[01/10/2008|15:58] C:\Program Files\IObit
[10/10/2008|18:17] C:\Program Files\iPod
[10/10/2008|18:18] C:\Program Files\iTunes
[08/08/2008|11:26] C:\Program Files\Java
[10/01/2008|18:12] C:\Program Files\KC Softwares
[29/09/2008|18:31] C:\Program Files\LimeWire
[12/11/2007|12:53] C:\Program Files\Logitech
[09/04/2008|16:21] C:\Program Files\MGrenda
[19/10/2007|01:43] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[20/12/2007|20:06] C:\Program Files\Microsoft Games
[09/09/2008|19:14] C:\Program Files\Microsoft Office
[21/08/2008|19:07] C:\Program Files\Microsoft Silverlight
[03/12/2007|11:55] C:\Program Files\Microsoft SQL Server Compact Edition
[09/09/2008|19:14] C:\Program Files\Microsoft Works
[31/01/2008|12:54] C:\Program Files\Microsoft.NET
[20/03/2008|20:33] C:\Program Files\Movie Maker
[18/10/2008|13:06] C:\Program Files\Mozilla Firefox
[10/01/2008|16:57] C:\Program Files\Mp3DirectCut
[02/11/2006|14:37] C:\Program Files\MSBuild
[19/10/2007|10:18] C:\Program Files\MSN Games
[18/10/2007|19:35] C:\Program Files\MSXML 4.0
[20/03/2008|22:26] C:\Program Files\Navman
[16/04/2007|17:41] C:\Program Files\NewTech Infosystems
[06/10/2008|12:16] C:\Program Files\Norton Security Scan
[24/09/2008|11:19] C:\Program Files\Photoc
[10/10/2008|18:15] C:\Program Files\QuickTime
[16/04/2007|17:31] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[31/12/2007|16:32] C:\Program Files\Search Settings
[13/02/2008|20:35] C:\Program Files\Shareaza
[09/02/2008|15:56] C:\Program Files\SpeedFan
[09/10/2008|18:41] C:\Program Files\Spybot - Search & Destroy
[17/10/2008|11:35] C:\Program Files\Spyware Doctor
[03/02/2008|20:45] C:\Program Files\Sun
[18/10/2008|11:14] C:\Program Files\Trend Micro
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[10/01/2008|16:01] C:\Program Files\VirtualDubMOD
[01/11/2007|16:48] C:\Program Files\VistaCodecPack
[03/02/2008|21:45] C:\Program Files\vso
[20/03/2008|20:33] C:\Program Files\Windows Calendar
[20/03/2008|20:33] C:\Program Files\Windows Collaboration
[20/03/2008|20:33] C:\Program Files\Windows Defender
[20/03/2008|20:33] C:\Program Files\Windows Journal
[27/02/2008|19:31] C:\Program Files\Windows Live
[05/02/2008|11:31] C:\Program Files\Windows Live Favorites
[01/12/2007|11:56] C:\Program Files\Windows Live Toolbar
[14/10/2008|19:49] C:\Program Files\Windows Mail
[20/03/2008|20:33] C:\Program Files\Windows Media Player
[01/10/2007|15:16] C:\Program Files\Windows NT
[20/03/2008|20:33] C:\Program Files\Windows Photo Gallery
[20/03/2008|20:33] C:\Program Files\Windows Sidebar
[01/06/2008|19:25] C:\Program Files\WinRAR
[04/05/2008|21:41] C:\Program Files\WinZip
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[07/02/2008|17:40] C:\Program Files\Common Files\Adobe
[10/10/2008|18:14] C:\Program Files\Common Files\Apple
[13/01/2008|12:24] C:\Program Files\Common Files\AVSMedia
[17/10/2008|22:57] C:\Program Files\Common Files\BitDefender
[11/02/2008|18:10] C:\Program Files\Common Files\Canon
[12/04/2008|13:28] C:\Program Files\Common Files\DESIGNER
[16/04/2007|17:44] C:\Program Files\Common Files\InstallShield
[21/10/2007|11:50] C:\Program Files\Common Files\Java
[16/04/2007|17:40] C:\Program Files\Common Files\LightScribe
[19/11/2007|12:12] C:\Program Files\Common Files\logishrd
[13/04/2008|12:38] C:\Program Files\Common Files\microsoft shared
[17/10/2008|22:34] C:\Program Files\Common Files\MSSoap
[16/04/2007|17:40] C:\Program Files\Common Files\muvee Technologies
[16/04/2007|17:41] C:\Program Files\Common Files\NewTech Infosystems
[15/01/2008|18:46] C:\Program Files\Common Files\PX Storage Engine
[14/01/2008|17:14] C:\Program Files\Common Files\Real
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[03/12/2007|13:29] C:\Program Files\Common Files\SureThing Shared
[06/10/2008|12:18] C:\Program Files\Common Files\Symantec Shared
[20/03/2008|20:33] C:\Program Files\Common Files\System
[03/12/2007|11:52] C:\Program Files\Common Files\WindowsLiveInstaller
--------------------\\ Process
( 76 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-10-18 13:09:14
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 10
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
C:\Users\PHILIPPE\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\GRRWVHKD\download-AVG-Anti-Spyware-7-5-1-43-serial-crack-serial-keygen-rapidshare[1].htm
[F:7][D:7]-> C:\Users\PHILIPPE\AppData\Local\Temp
[F:9][D:1]-> C:\Users\PHILIPPE\AppData\Roaming\MICROS~1\Windows\Cookies
[F:123][D:5]-> C:\Users\PHILIPPE\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:27][D:9]-> C:\$Recycle.Bin
1 - "C:\Lop SD\LopR_1.txt" - 18/10/2008|13:11 - Option : [1]
--------------------\\ Fin du rapport a 13:11:44
[ UAC => 1 ]
Voici le rapport
--------------------\\ Lop S&D 4.2.4-5 XP/Vista
Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 4000+ )
BIOS : )Phoenix - Award WorkstationBIOS v6.00PG
USER : PHILIPPE ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 081017-1] 4.8.1229 (Activated)
C:\ (Local Disk) - NTFS - Total : 111 Go Free : 70 Go
D:\ (Local Disk) - NTFS - Total : 111 Go Free : 103 Go
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)
"C:\Lop SD" ( MAJ : 02-10-2008|23:42 )
Option : [1] ( 18/10/2008|13:08 )
[ UAC => 0 ]
--------------------\\ Listing des dossiers dans Local
[01/01/2008|21:14] C:\Users\PHILIPPE\AppData\Local\Adobe
[09/10/2008|16:14] C:\Users\PHILIPPE\AppData\Local\Apple
[10/10/2008|18:27] C:\Users\PHILIPPE\AppData\Local\Apple Computer
[01/10/2007|15:19] C:\Users\PHILIPPE\AppData\Local\Application Data
[18/10/2008|13:04] C:\Users\PHILIPPE\AppData\Local\ApplicationHistory
[18/10/2008|12:11] C:\Users\PHILIPPE\AppData\Local\bjgnjxfd.bat
[08/02/2008|16:13] C:\Users\PHILIPPE\AppData\Local\CutePDF Writer
[18/05/2008|15:12] C:\Users\PHILIPPE\AppData\Local\d3d9caps.dat
[22/08/2008|13:47] C:\Users\PHILIPPE\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[17/10/2008|22:41] C:\Users\PHILIPPE\AppData\Local\fusioncache.dat
[18/07/2008|20:11] C:\Users\PHILIPPE\AppData\Local\GDIPFONTCACHEV1.DAT
[10/09/2008|20:14] C:\Users\PHILIPPE\AppData\Local\Google
[01/10/2007|15:19] C:\Users\PHILIPPE\AppData\Local\Historique
[18/10/2008|13:03] C:\Users\PHILIPPE\AppData\Local\IconCache.db
[07/10/2007|17:48] C:\Users\PHILIPPE\AppData\Local\MCE Deluxe Suite
[17/10/2008|20:23] C:\Users\PHILIPPE\AppData\Local\Microsoft
[04/10/2007|20:17] C:\Users\PHILIPPE\AppData\Local\Microsoft Games
[25/02/2008|21:17] C:\Users\PHILIPPE\AppData\Local\Microsoft Help
[20/07/2008|22:06] C:\Users\PHILIPPE\AppData\Local\MigWiz
[17/10/2008|20:21] C:\Users\PHILIPPE\AppData\Local\Mozilla
[10/01/2008|19:17] C:\Users\PHILIPPE\AppData\Local\Musicmatch
[14/12/2007|15:59] C:\Users\PHILIPPE\AppData\Local\Paint.NET
[07/10/2007|17:48] C:\Users\PHILIPPE\AppData\Local\PowerCinema
[13/02/2008|20:35] C:\Users\PHILIPPE\AppData\Local\Shareaza
[18/10/2008|13:07] C:\Users\PHILIPPE\AppData\Local\Temp
[01/10/2007|15:19] C:\Users\PHILIPPE\AppData\Local\Temporary Internet Files
[20/10/2007|17:34] C:\Users\PHILIPPE\AppData\Local\VirtualStore
[19/10/2007|01:32] C:\Users\PHILIPPE\AppData\Local\WindowsUpdate
[03/12/2007|13:33] C:\Users\PHILIPPE\AppData\Local\Yahoo
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[05/09/2008 16:31][--a------] C:\Windows\tasks\Norton Security Scan.job
[18/10/2008 12:52][--a------] C:\Windows\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[17/10/2008 20:00][--a------] C:\Windows\tasks\Norton Internet Security - Analyse systŠme complŠte - PHILIPPE.job
[18/10/2008 13:04][--ah-----] C:\Windows\tasks\SA.DAT
[18/10/2008 13:03][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[16/04/2007|18:07] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[10/10/2008|18:18] C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[07/02/2008|17:40] C:\ProgramData\Adobe
[09/10/2008|16:13] C:\ProgramData\Apple
[10/10/2008|18:14] C:\ProgramData\Apple Computer
[02/11/2006|15:02] C:\ProgramData\Application Data
[17/10/2008|18:53] C:\ProgramData\avg8
[09/01/2008|17:52] C:\ProgramData\AVS4YOU
[20/12/2007|20:14] C:\ProgramData\AWEM
[01/10/2007|15:16] C:\ProgramData\Bureau
[01/10/2007|18:30] C:\ProgramData\CanonBJ
[07/10/2007|17:48] C:\ProgramData\CyberLink
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[08/02/2008|14:49] C:\ProgramData\DVD Shrink
[11/01/2008|22:13] C:\ProgramData\eMule
[01/10/2007|17:15] C:\ProgramData\eSobi
[01/10/2007|15:16] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[03/01/2008|17:24] C:\ProgramData\Google
[18/10/2008|12:51] C:\ProgramData\Google Updater
[17/10/2008|20:13] C:\ProgramData\Grisoft
[22/10/2007|15:22] C:\ProgramData\Gtek
[08/10/2008|19:03] C:\ProgramData\Lavasoft
[08/12/2007|12:04] C:\ProgramData\LightScribe
[12/11/2007|12:57] C:\ProgramData\Logishrd
[12/11/2007|12:53] C:\ProgramData\Logitech
[18/10/2008|12:04] C:\ProgramData\Malwarebytes
[01/10/2007|15:16] C:\ProgramData\Menu D‚marrer
[17/10/2008|20:21] C:\ProgramData\Microsoft
[25/02/2008|21:17] C:\ProgramData\Microsoft Help
[01/10/2007|15:16] C:\ProgramData\ModŠles
[01/01/2008|19:22] C:\ProgramData\Mozilla
[31/01/2008|13:03] C:\ProgramData\MSScanAppDataDir
[21/11/2007|20:14] C:\ProgramData\NtiDvdCopy
[03/12/2007|13:30] C:\ProgramData\ntuser.dat
[03/12/2007|13:30] C:\ProgramData\ntuser.dat.LOG1
[03/12/2007|13:30] C:\ProgramData\ntuser.dat.LOG2
[03/12/2007|13:30] C:\ProgramData\ntuser.dat{4b01ed11-a184-11dc-a7f9-0019210daa0c}.TM.blf
[03/12/2007|13:30] C:\ProgramData\ntuser.dat{4b01ed11-a184-11dc-a7f9-0019210daa0c}.TMContainer00000000000000000001.regtrans-ms
[03/12/2007|13:30] C:\ProgramData\ntuser.dat{4b01ed11-a184-11dc-a7f9-0019210daa0c}.TMContainer00000000000000000002.regtrans-ms
[03/12/2007|13:30] C:\ProgramData\ntuser.dat{4b01ed21-a184-11dc-a7f9-0019210daa0c}.TM.blf
[03/12/2007|13:30] C:\ProgramData\ntuser.dat{4b01ed21-a184-11dc-a7f9-0019210daa0c}.TMContainer00000000000000000001.regtrans-ms
[03/12/2007|13:30] C:\ProgramData\ntuser.dat{4b01ed21-a184-11dc-a7f9-0019210daa0c}.TMContainer00000000000000000002.regtrans-ms
[03/09/2008|08:54] C:\ProgramData\NVIDIA
[09/10/2008|21:39] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|15:02] C:\ProgramData\Start Menu
[31/01/2008|16:20] C:\ProgramData\Symantec
[18/10/2008|13:04] C:\ProgramData\TEMP
[02/11/2006|15:02] C:\ProgramData\Templates
[04/05/2008|21:41] C:\ProgramData\WinZip
[07/12/2007|11:43] C:\ProgramData\WLInstaller
[03/12/2007|13:33] C:\ProgramData\YAHOO
[03/12/2007|13:31] C:\ProgramData\Yahoo!
[04/10/2007|09:42] C:\ProgramData\Yahoo! Companion
[16/10/2008|17:40] C:\ProgramData\ZoomBrowser
--------------------\\ Listing des dossiers dans C:\Program Files
[13/01/2008|20:10] C:\Program Files\AC3Filter
[23/06/2007|04:44] C:\Program Files\Acer Inc
[16/04/2007|17:46] C:\Program Files\Acer Zone
[07/02/2008|17:47] C:\Program Files\Acro Software
[29/06/2008|19:58] C:\Program Files\Adobe
[16/10/2008|18:11] C:\Program Files\adslTV
[30/12/2007|15:26] C:\Program Files\Alwil Software
[09/10/2008|16:14] C:\Program Files\Apple Software Update
[17/10/2008|18:44] C:\Program Files\AVG
[13/01/2008|20:08] C:\Program Files\AviSynth 2.5
[13/01/2008|12:24] C:\Program Files\AVS4YOU
[10/10/2008|18:15] C:\Program Files\Bonjour
[12/12/2007|20:23] C:\Program Files\Bubble Match
[10/02/2008|19:34] C:\Program Files\Burn4Free
[11/02/2008|18:14] C:\Program Files\Canon
[11/11/2007|21:26] C:\Program Files\CCleaner
[13/01/2008|13:45] C:\Program Files\CDex_150
[17/10/2008|22:34] C:\Program Files\Common Files
[16/04/2007|17:45] C:\Program Files\CyberLink
[09/01/2008|17:16] C:\Program Files\directx
[16/01/2008|11:07] C:\Program Files\DVD Shrink
[02/10/2008|22:52] C:\Program Files\eMule
[08/08/2008|18:39] C:\Program Files\ESBUnitConv Pro TRIAL
[01/10/2007|15:16] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[15/10/2008|14:20] C:\Program Files\Free Audio Pack
[11/12/2007|21:08] C:\Program Files\GabbaSoft
[13/01/2008|20:08] C:\Program Files\Gabest
[20/12/2007|20:13] C:\Program Files\GamesBar
[11/07/2008|11:41] C:\Program Files\Google
[07/02/2008|17:48] C:\Program Files\GPLGS
[15/03/2008|19:27] C:\Program Files\GraphCalc
[17/10/2008|20:13] C:\Program Files\Grisoft
[21/10/2007|12:35] C:\Program Files\HP
[22/10/2007|15:22] C:\Program Files\HPScanjet
[01/11/2007|16:47] C:\Program Files\illiminable
[20/03/2008|22:26] C:\Program Files\InstallShield Installation Information
[17/10/2008|22:31] C:\Program Files\Internet Explorer
[01/10/2008|15:58] C:\Program Files\IObit
[10/10/2008|18:17] C:\Program Files\iPod
[10/10/2008|18:18] C:\Program Files\iTunes
[08/08/2008|11:26] C:\Program Files\Java
[10/01/2008|18:12] C:\Program Files\KC Softwares
[29/09/2008|18:31] C:\Program Files\LimeWire
[12/11/2007|12:53] C:\Program Files\Logitech
[09/04/2008|16:21] C:\Program Files\MGrenda
[19/10/2007|01:43] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[20/12/2007|20:06] C:\Program Files\Microsoft Games
[09/09/2008|19:14] C:\Program Files\Microsoft Office
[21/08/2008|19:07] C:\Program Files\Microsoft Silverlight
[03/12/2007|11:55] C:\Program Files\Microsoft SQL Server Compact Edition
[09/09/2008|19:14] C:\Program Files\Microsoft Works
[31/01/2008|12:54] C:\Program Files\Microsoft.NET
[20/03/2008|20:33] C:\Program Files\Movie Maker
[18/10/2008|13:06] C:\Program Files\Mozilla Firefox
[10/01/2008|16:57] C:\Program Files\Mp3DirectCut
[02/11/2006|14:37] C:\Program Files\MSBuild
[19/10/2007|10:18] C:\Program Files\MSN Games
[18/10/2007|19:35] C:\Program Files\MSXML 4.0
[20/03/2008|22:26] C:\Program Files\Navman
[16/04/2007|17:41] C:\Program Files\NewTech Infosystems
[06/10/2008|12:16] C:\Program Files\Norton Security Scan
[24/09/2008|11:19] C:\Program Files\Photoc
[10/10/2008|18:15] C:\Program Files\QuickTime
[16/04/2007|17:31] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[31/12/2007|16:32] C:\Program Files\Search Settings
[13/02/2008|20:35] C:\Program Files\Shareaza
[09/02/2008|15:56] C:\Program Files\SpeedFan
[09/10/2008|18:41] C:\Program Files\Spybot - Search & Destroy
[17/10/2008|11:35] C:\Program Files\Spyware Doctor
[03/02/2008|20:45] C:\Program Files\Sun
[18/10/2008|11:14] C:\Program Files\Trend Micro
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[10/01/2008|16:01] C:\Program Files\VirtualDubMOD
[01/11/2007|16:48] C:\Program Files\VistaCodecPack
[03/02/2008|21:45] C:\Program Files\vso
[20/03/2008|20:33] C:\Program Files\Windows Calendar
[20/03/2008|20:33] C:\Program Files\Windows Collaboration
[20/03/2008|20:33] C:\Program Files\Windows Defender
[20/03/2008|20:33] C:\Program Files\Windows Journal
[27/02/2008|19:31] C:\Program Files\Windows Live
[05/02/2008|11:31] C:\Program Files\Windows Live Favorites
[01/12/2007|11:56] C:\Program Files\Windows Live Toolbar
[14/10/2008|19:49] C:\Program Files\Windows Mail
[20/03/2008|20:33] C:\Program Files\Windows Media Player
[01/10/2007|15:16] C:\Program Files\Windows NT
[20/03/2008|20:33] C:\Program Files\Windows Photo Gallery
[20/03/2008|20:33] C:\Program Files\Windows Sidebar
[01/06/2008|19:25] C:\Program Files\WinRAR
[04/05/2008|21:41] C:\Program Files\WinZip
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[07/02/2008|17:40] C:\Program Files\Common Files\Adobe
[10/10/2008|18:14] C:\Program Files\Common Files\Apple
[13/01/2008|12:24] C:\Program Files\Common Files\AVSMedia
[17/10/2008|22:57] C:\Program Files\Common Files\BitDefender
[11/02/2008|18:10] C:\Program Files\Common Files\Canon
[12/04/2008|13:28] C:\Program Files\Common Files\DESIGNER
[16/04/2007|17:44] C:\Program Files\Common Files\InstallShield
[21/10/2007|11:50] C:\Program Files\Common Files\Java
[16/04/2007|17:40] C:\Program Files\Common Files\LightScribe
[19/11/2007|12:12] C:\Program Files\Common Files\logishrd
[13/04/2008|12:38] C:\Program Files\Common Files\microsoft shared
[17/10/2008|22:34] C:\Program Files\Common Files\MSSoap
[16/04/2007|17:40] C:\Program Files\Common Files\muvee Technologies
[16/04/2007|17:41] C:\Program Files\Common Files\NewTech Infosystems
[15/01/2008|18:46] C:\Program Files\Common Files\PX Storage Engine
[14/01/2008|17:14] C:\Program Files\Common Files\Real
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[03/12/2007|13:29] C:\Program Files\Common Files\SureThing Shared
[06/10/2008|12:18] C:\Program Files\Common Files\Symantec Shared
[20/03/2008|20:33] C:\Program Files\Common Files\System
[03/12/2007|11:52] C:\Program Files\Common Files\WindowsLiveInstaller
--------------------\\ Process
( 76 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-10-18 13:09:14
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 10
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
C:\Users\PHILIPPE\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\GRRWVHKD\download-AVG-Anti-Spyware-7-5-1-43-serial-crack-serial-keygen-rapidshare[1].htm
[F:7][D:7]-> C:\Users\PHILIPPE\AppData\Local\Temp
[F:9][D:1]-> C:\Users\PHILIPPE\AppData\Roaming\MICROS~1\Windows\Cookies
[F:123][D:5]-> C:\Users\PHILIPPE\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:27][D:9]-> C:\$Recycle.Bin
1 - "C:\Lop SD\LopR_1.txt" - 18/10/2008|13:11 - Option : [1]
--------------------\\ Fin du rapport a 13:11:44
[ UAC => 1 ]
Ouep,
Refais la même chose mais la tu choisis le choix 2
Laisse travailler le pc
Une fois le nettoyage fini ,une recherche sera relancée et un rapport
s'ouvrira automatiquement dans le Bloc-Notes.
Copies-colles le contenu de ce rapport sur le forum.
------------------------------------------------------------------------------------------------------------------------------
------------------------------------------------------------------------------------------------------------------------------
Ensuite télécharge Navilog1 depuis-ce lien :
http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe
Enregistrer la cible (du lien) sous... et enregistre-le sur ton bureau.
Ensuite double clique sur navilog1.exe pour lancer l'installation.
Une fois l'installation terminée, le fix s'exécutera automatiquement.
(Si ce n'est pas le cas, double-clique sur le raccourci Navilog1 présent sur le bureau).
Au menu principal, Fais le choix 1
Laisse toi guider et patiente.
Patiente jusqu'au message :
*** Analyse Termine le ..... *** >>>>> Le fix peut durer une dizaine de minutes ;)
Appuie sur une touche le bloc note va s'ouvrir.
Copie-colle le rapport ici.
@++
Refais la même chose mais la tu choisis le choix 2
Laisse travailler le pc
Une fois le nettoyage fini ,une recherche sera relancée et un rapport
s'ouvrira automatiquement dans le Bloc-Notes.
Copies-colles le contenu de ce rapport sur le forum.
------------------------------------------------------------------------------------------------------------------------------
------------------------------------------------------------------------------------------------------------------------------
Ensuite télécharge Navilog1 depuis-ce lien :
http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe
Enregistrer la cible (du lien) sous... et enregistre-le sur ton bureau.
Ensuite double clique sur navilog1.exe pour lancer l'installation.
Une fois l'installation terminée, le fix s'exécutera automatiquement.
(Si ce n'est pas le cas, double-clique sur le raccourci Navilog1 présent sur le bureau).
Au menu principal, Fais le choix 1
Laisse toi guider et patiente.
Patiente jusqu'au message :
*** Analyse Termine le ..... *** >>>>> Le fix peut durer une dizaine de minutes ;)
Appuie sur une touche le bloc note va s'ouvrir.
Copie-colle le rapport ici.
@++
Je pianote depuis plus d'une heure sur INTERNET et pas une seule pubs intempestives (auparavant,1 pub tous les 10 mn).Ton opération aurait t'elle fait son effet!
Je poste les 2 rapports
--------------------\\ Lop S&D 4.2.4-5 XP/Vista
Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 4000+ )
BIOS : )Phoenix - Award WorkstationBIOS v6.00PG
USER : PHILIPPE ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 081017-1] 4.8.1229 (Activated)
C:\ (Local Disk) - NTFS - Total : 111 Go Free : 70 Go
D:\ (Local Disk) - NTFS - Total : 111 Go Free : 103 Go
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)
"C:\Lop SD" ( MAJ : 02-10-2008|23:42 )
Option : [2] ( 18/10/2008|13:31 )
[ UAC => 1 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
-
[ Fichier Hosts ] .. Restaure!
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans Local
[01/01/2008|21:14] C:\Users\PHILIPPE\AppData\Local\Adobe
[09/10/2008|16:14] C:\Users\PHILIPPE\AppData\Local\Apple
[10/10/2008|18:27] C:\Users\PHILIPPE\AppData\Local\Apple Computer
[01/10/2007|15:19] C:\Users\PHILIPPE\AppData\Local\Application Data
[18/10/2008|13:04] C:\Users\PHILIPPE\AppData\Local\ApplicationHistory
[18/10/2008|12:11] C:\Users\PHILIPPE\AppData\Local\bjgnjxfd.bat
[08/02/2008|16:13] C:\Users\PHILIPPE\AppData\Local\CutePDF Writer
[18/05/2008|15:12] C:\Users\PHILIPPE\AppData\Local\d3d9caps.dat
[22/08/2008|13:47] C:\Users\PHILIPPE\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[17/10/2008|22:41] C:\Users\PHILIPPE\AppData\Local\fusioncache.dat
[18/07/2008|20:11] C:\Users\PHILIPPE\AppData\Local\GDIPFONTCACHEV1.DAT
[10/09/2008|20:14] C:\Users\PHILIPPE\AppData\Local\Google
[01/10/2007|15:19] C:\Users\PHILIPPE\AppData\Local\Historique
[18/10/2008|13:03] C:\Users\PHILIPPE\AppData\Local\IconCache.db
[07/10/2007|17:48] C:\Users\PHILIPPE\AppData\Local\MCE Deluxe Suite
[17/10/2008|20:23] C:\Users\PHILIPPE\AppData\Local\Microsoft
[04/10/2007|20:17] C:\Users\PHILIPPE\AppData\Local\Microsoft Games
[25/02/2008|21:17] C:\Users\PHILIPPE\AppData\Local\Microsoft Help
[20/07/2008|22:06] C:\Users\PHILIPPE\AppData\Local\MigWiz
[17/10/2008|20:21] C:\Users\PHILIPPE\AppData\Local\Mozilla
[10/01/2008|19:17] C:\Users\PHILIPPE\AppData\Local\Musicmatch
[14/12/2007|15:59] C:\Users\PHILIPPE\AppData\Local\Paint.NET
[07/10/2007|17:48] C:\Users\PHILIPPE\AppData\Local\PowerCinema
[13/02/2008|20:35] C:\Users\PHILIPPE\AppData\Local\Shareaza
[18/10/2008|13:31] C:\Users\PHILIPPE\AppData\Local\Temp
[01/10/2007|15:19] C:\Users\PHILIPPE\AppData\Local\Temporary Internet Files
[20/10/2007|17:34] C:\Users\PHILIPPE\AppData\Local\VirtualStore
[19/10/2007|01:32] C:\Users\PHILIPPE\AppData\Local\WindowsUpdate
[03/12/2007|13:33] C:\Users\PHILIPPE\AppData\Local\Yahoo
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[05/09/2008 16:31][--a------] C:\Windows\tasks\Norton Security Scan.job
[18/10/2008 12:52][--a------] C:\Windows\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[17/10/2008 20:00][--a------] C:\Windows\tasks\Norton Internet Security - Analyse systŠme complŠte - PHILIPPE.job
[18/10/2008 13:04][--ah-----] C:\Windows\tasks\SA.DAT
[18/10/2008 13:03][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[16/04/2007|18:07] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[10/10/2008|18:18] C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[07/02/2008|17:40] C:\ProgramData\Adobe
[09/10/2008|16:13] C:\ProgramData\Apple
[10/10/2008|18:14] C:\ProgramData\Apple Computer
[02/11/2006|15:02] C:\ProgramData\Application Data
[17/10/2008|18:53] C:\ProgramData\avg8
[09/01/2008|17:52] C:\ProgramData\AVS4YOU
[20/12/2007|20:14] C:\ProgramData\AWEM
[01/10/2007|15:16] C:\ProgramData\Bureau
[01/10/2007|18:30] C:\ProgramData\CanonBJ
[07/10/2007|17:48] C:\ProgramData\CyberLink
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[08/02/2008|14:49] C:\ProgramData\DVD Shrink
[11/01/2008|22:13] C:\ProgramData\eMule
[01/10/2007|17:15] C:\ProgramData\eSobi
[01/10/2007|15:16] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[03/01/2008|17:24] C:\ProgramData\Google
[18/10/2008|12:51] C:\ProgramData\Google Updater
[17/10/2008|20:13] C:\ProgramData\Grisoft
[22/10/2007|15:22] C:\ProgramData\Gtek
[08/10/2008|19:03] C:\ProgramData\Lavasoft
[08/12/2007|12:04] C:\ProgramData\LightScribe
[12/11/2007|12:57] C:\ProgramData\Logishrd
[12/11/2007|12:53] C:\ProgramData\Logitech
[18/10/2008|12:04] C:\ProgramData\Malwarebytes
[01/10/2007|15:16] C:\ProgramData\Menu D‚marrer
[17/10/2008|20:21] C:\ProgramData\Microsoft
[25/02/2008|21:17] C:\ProgramData\Microsoft Help
[01/10/2007|15:16] C:\ProgramData\ModŠles
[01/01/2008|19:22] C:\ProgramData\Mozilla
[31/01/2008|13:03] C:\ProgramData\MSScanAppDataDir
[21/11/2007|20:14] C:\ProgramData\NtiDvdCopy
[03/12/2007|13:30] C:\ProgramData\ntuser.dat
[03/12/2007|13:30] C:\ProgramData\ntuser.dat.LOG1
[03/12/2007|13:30] C:\ProgramData\ntuser.dat.LOG2
[03/12/2007|13:30] C:\ProgramData\ntuser.dat{4b01ed11-a184-11dc-a7f9-0019210daa0c}.TM.blf
[03/12/2007|13:30] C:\ProgramData\ntuser.dat{4b01ed11-a184-11dc-a7f9-0019210daa0c}.TMContainer00000000000000000001.regtrans-ms
[03/12/2007|13:30] C:\ProgramData\ntuser.dat{4b01ed11-a184-11dc-a7f9-0019210daa0c}.TMContainer00000000000000000002.regtrans-ms
[03/12/2007|13:30] C:\ProgramData\ntuser.dat{4b01ed21-a184-11dc-a7f9-0019210daa0c}.TM.blf
[03/12/2007|13:30] C:\ProgramData\ntuser.dat{4b01ed21-a184-11dc-a7f9-0019210daa0c}.TMContainer00000000000000000001.regtrans-ms
[03/12/2007|13:30] C:\ProgramData\ntuser.dat{4b01ed21-a184-11dc-a7f9-0019210daa0c}.TMContainer00000000000000000002.regtrans-ms
[03/09/2008|08:54] C:\ProgramData\NVIDIA
[09/10/2008|21:39] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|15:02] C:\ProgramData\Start Menu
[31/01/2008|16:20] C:\ProgramData\Symantec
[18/10/2008|13:04] C:\ProgramData\TEMP
[02/11/2006|15:02] C:\ProgramData\Templates
[04/05/2008|21:41] C:\ProgramData\WinZip
[07/12/2007|11:43] C:\ProgramData\WLInstaller
[03/12/2007|13:33] C:\ProgramData\YAHOO
[03/12/2007|13:31] C:\ProgramData\Yahoo!
[04/10/2007|09:42] C:\ProgramData\Yahoo! Companion
[16/10/2008|17:40] C:\ProgramData\ZoomBrowser
--------------------\\ Listing des dossiers dans C:\Program Files
[13/01/2008|20:10] C:\Program Files\AC3Filter
[23/06/2007|04:44] C:\Program Files\Acer Inc
[16/04/2007|17:46] C:\Program Files\Acer Zone
[07/02/2008|17:47] C:\Program Files\Acro Software
[29/06/2008|19:58] C:\Program Files\Adobe
[16/10/2008|18:11] C:\Program Files\adslTV
[30/12/2007|15:26] C:\Program Files\Alwil Software
[09/10/2008|16:14] C:\Program Files\Apple Software Update
[17/10/2008|18:44] C:\Program Files\AVG
[13/01/2008|20:08] C:\Program Files\AviSynth 2.5
[13/01/2008|12:24] C:\Program Files\AVS4YOU
[10/10/2008|18:15] C:\Program Files\Bonjour
[12/12/2007|20:23] C:\Program Files\Bubble Match
[10/02/2008|19:34] C:\Program Files\Burn4Free
[11/02/2008|18:14] C:\Program Files\Canon
[11/11/2007|21:26] C:\Program Files\CCleaner
[13/01/2008|13:45] C:\Program Files\CDex_150
[17/10/2008|22:34] C:\Program Files\Common Files
[16/04/2007|17:45] C:\Program Files\CyberLink
[09/01/2008|17:16] C:\Program Files\directx
[16/01/2008|11:07] C:\Program Files\DVD Shrink
[02/10/2008|22:52] C:\Program Files\eMule
[08/08/2008|18:39] C:\Program Files\ESBUnitConv Pro TRIAL
[01/10/2007|15:16] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[15/10/2008|14:20] C:\Program Files\Free Audio Pack
[11/12/2007|21:08] C:\Program Files\GabbaSoft
[13/01/2008|20:08] C:\Program Files\Gabest
[20/12/2007|20:13] C:\Program Files\GamesBar
[11/07/2008|11:41] C:\Program Files\Google
[07/02/2008|17:48] C:\Program Files\GPLGS
[15/03/2008|19:27] C:\Program Files\GraphCalc
[17/10/2008|20:13] C:\Program Files\Grisoft
[21/10/2007|12:35] C:\Program Files\HP
[22/10/2007|15:22] C:\Program Files\HPScanjet
[01/11/2007|16:47] C:\Program Files\illiminable
[20/03/2008|22:26] C:\Program Files\InstallShield Installation Information
[17/10/2008|22:31] C:\Program Files\Internet Explorer
[01/10/2008|15:58] C:\Program Files\IObit
[10/10/2008|18:17] C:\Program Files\iPod
[10/10/2008|18:18] C:\Program Files\iTunes
[08/08/2008|11:26] C:\Program Files\Java
[10/01/2008|18:12] C:\Program Files\KC Softwares
[29/09/2008|18:31] C:\Program Files\LimeWire
[12/11/2007|12:53] C:\Program Files\Logitech
[09/04/2008|16:21] C:\Program Files\MGrenda
[19/10/2007|01:43] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[20/12/2007|20:06] C:\Program Files\Microsoft Games
[09/09/2008|19:14] C:\Program Files\Microsoft Office
[21/08/2008|19:07] C:\Program Files\Microsoft Silverlight
[03/12/2007|11:55] C:\Program Files\Microsoft SQL Server Compact Edition
[09/09/2008|19:14] C:\Program Files\Microsoft Works
[31/01/2008|12:54] C:\Program Files\Microsoft.NET
[20/03/2008|20:33] C:\Program Files\Movie Maker
[18/10/2008|13:13] C:\Program Files\Mozilla Firefox
[10/01/2008|16:57] C:\Program Files\Mp3DirectCut
[02/11/2006|14:37] C:\Program Files\MSBuild
[19/10/2007|10:18] C:\Program Files\MSN Games
[18/10/2007|19:35] C:\Program Files\MSXML 4.0
[20/03/2008|22:26] C:\Program Files\Navman
[16/04/2007|17:41] C:\Program Files\NewTech Infosystems
[06/10/2008|12:16] C:\Program Files\Norton Security Scan
[24/09/2008|11:19] C:\Program Files\Photoc
[10/10/2008|18:15] C:\Program Files\QuickTime
[16/04/2007|17:31] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[31/12/2007|16:32] C:\Program Files\Search Settings
[13/02/2008|20:35] C:\Program Files\Shareaza
[09/02/2008|15:56] C:\Program Files\SpeedFan
[09/10/2008|18:41] C:\Program Files\Spybot - Search & Destroy
[17/10/2008|11:35] C:\Program Files\Spyware Doctor
[03/02/2008|20:45] C:\Program Files\Sun
[18/10/2008|11:14] C:\Program Files\Trend Micro
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[10/01/2008|16:01] C:\Program Files\VirtualDubMOD
[01/11/2007|16:48] C:\Program Files\VistaCodecPack
[03/02/2008|21:45] C:\Program Files\vso
[20/03/2008|20:33] C:\Program Files\Windows Calendar
[20/03/2008|20:33] C:\Program Files\Windows Collaboration
[20/03/2008|20:33] C:\Program Files\Windows Defender
[20/03/2008|20:33] C:\Program Files\Windows Journal
[27/02/2008|19:31] C:\Program Files\Windows Live
[05/02/2008|11:31] C:\Program Files\Windows Live Favorites
[01/12/2007|11:56] C:\Program Files\Windows Live Toolbar
[14/10/2008|19:49] C:\Program Files\Windows Mail
[20/03/2008|20:33] C:\Program Files\Windows Media Player
[01/10/2007|15:16] C:\Program Files\Windows NT
[20/03/2008|20:33] C:\Program Files\Windows Photo Gallery
[20/03/2008|20:33] C:\Program Files\Windows Sidebar
[01/06/2008|19:25] C:\Program Files\WinRAR
[04/05/2008|21:41] C:\Program Files\WinZip
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[07/02/2008|17:40] C:\Program Files\Common Files\Adobe
[10/10/2008|18:14] C:\Program Files\Common Files\Apple
[13/01/2008|12:24] C:\Program Files\Common Files\AVSMedia
[17/10/2008|22:57] C:\Program Files\Common Files\BitDefender
[11/02/2008|18:10] C:\Program Files\Common Files\Canon
[12/04/2008|13:28] C:\Program Files\Common Files\DESIGNER
[16/04/2007|17:44] C:\Program Files\Common Files\InstallShield
[21/10/2007|11:50] C:\Program Files\Common Files\Java
[16/04/2007|17:40] C:\Program Files\Common Files\LightScribe
[19/11/2007|12:12] C:\Program Files\Common Files\logishrd
[13/04/2008|12:38] C:\Program Files\Common Files\microsoft shared
[17/10/2008|22:34] C:\Program Files\Common Files\MSSoap
[16/04/2007|17:40] C:\Program Files\Common Files\muvee Technologies
[16/04/2007|17:41] C:\Program Files\Common Files\NewTech Infosystems
[15/01/2008|18:46] C:\Program Files\Common Files\PX Storage Engine
[14/01/2008|17:14] C:\Program Files\Common Files\Real
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[03/12/2007|13:29] C:\Program Files\Common Files\SureThing Shared
[06/10/2008|12:18] C:\Program Files\Common Files\Symantec Shared
[20/03/2008|20:33] C:\Program Files\Common Files\System
[03/12/2007|11:52] C:\Program Files\Common Files\WindowsLiveInstaller
--------------------\\ Process
( 78 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-10-18 13:32:14
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 10
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
C:\Users\PHILIPPE\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\GRRWVHKD\download-AVG-Anti-Spyware-7-5-1-43-serial-crack-serial-keygen-rapidshare[1].htm
[F:7][D:7]-> C:\Users\PHILIPPE\AppData\Local\Temp
[F:9][D:1]-> C:\Users\PHILIPPE\AppData\Roaming\MICROS~1\Windows\Cookies
[F:130][D:5]-> C:\Users\PHILIPPE\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:27][D:9]-> C:\$Recycle.Bin
1 - "C:\Lop SD\LopR_1.txt" - 18/10/2008|13:11 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 18/10/2008|13:34 - Option : [2]
--------------------\\ Fin du rapport a 13:34:32
[ UAC => 1 ]
Search Navipromo version 3.6.6 commencé le 18/10/2008 à 13:38:55,64
!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!
Outil exécuté depuis C:\Program Files\navilog1
Session actuelle : "PHILIPPE"
Mise à jour le 29.09.2008 à 17h30 par IL-MAFIOSO
Microsoft Windows Vista 6.0.6001
Internet Explorer : 7.0.6001.18000
Système de fichiers : NTFS
Recherche executé en mode normal
*** Recherche Programmes installés ***
*** Recherche dossiers dans "C:\Windows" ***
*** Recherche dossiers dans "C:\Program Files" ***
*** Recherche dossiers dans "c:\progra~2\micros~1\windows\startm~1\programs" ***
*** Recherche dossiers dans "c:\progra~2\micros~1\windows\startm~1" ***
*** Recherche dossiers dans "C:\ProgramData" ***
*** Recherche dossiers dans "c:\users\philippe\appdata\roaming\micros~1\windows\startm~1\programs" ***
*** Recherche dossiers dans "C:\Users\PHILIPPE\AppData\Local\virtualstore\Program Files" ***
*** Recherche dossiers dans "C:\Users\PHILIPPE\AppData\Roaming" ***
*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d'infos : http://www.gmer.net
*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!
* Recherche dans "C:\Windows\system32" *
* Recherche dans "C:\Users\PHILIPPE\AppData\Local\Microsoft" *
* Recherche dans "C:\Users\PHILIPPE\AppData\Local\virtualstore\windows\system32" *
* Recherche dans "C:\Users\PHILIPPE\AppData\Local" *
*** Recherche fichiers ***
*** Recherche clés spécifiques dans le Registre ***
HKEY_CURRENT_USER\Software\Lanconfig trouvé !
*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)
1)Recherche nouveaux fichiers Instant Access :
2)Recherche Heuristique :
* Dans "C:\Windows\system32" :
* Dans "C:\Users\PHILIPPE\AppData\Local\Microsoft" :
* Dans "C:\Users\PHILIPPE\AppData\Local\virtualstore\windows\system32" :
* Dans "C:\Users\PHILIPPE\AppData\Local" :
3)Recherche Certificats :
Certificat Egroup trouvé !
Certificat Electronic-Group trouvé !
Certificat Montorgueil absent !
Certificat OOO-Favorit trouvé !
Certificat Sunny-Day-Design-Ltd absent !
4)Recherche fichiers connus :
*** Analyse terminée le 18/10/2008 à 13:50:02,45 ***
Je poste les 2 rapports
--------------------\\ Lop S&D 4.2.4-5 XP/Vista
Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 4000+ )
BIOS : )Phoenix - Award WorkstationBIOS v6.00PG
USER : PHILIPPE ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 081017-1] 4.8.1229 (Activated)
C:\ (Local Disk) - NTFS - Total : 111 Go Free : 70 Go
D:\ (Local Disk) - NTFS - Total : 111 Go Free : 103 Go
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)
"C:\Lop SD" ( MAJ : 02-10-2008|23:42 )
Option : [2] ( 18/10/2008|13:31 )
[ UAC => 1 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
-
[ Fichier Hosts ] .. Restaure!
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans Local
[01/01/2008|21:14] C:\Users\PHILIPPE\AppData\Local\Adobe
[09/10/2008|16:14] C:\Users\PHILIPPE\AppData\Local\Apple
[10/10/2008|18:27] C:\Users\PHILIPPE\AppData\Local\Apple Computer
[01/10/2007|15:19] C:\Users\PHILIPPE\AppData\Local\Application Data
[18/10/2008|13:04] C:\Users\PHILIPPE\AppData\Local\ApplicationHistory
[18/10/2008|12:11] C:\Users\PHILIPPE\AppData\Local\bjgnjxfd.bat
[08/02/2008|16:13] C:\Users\PHILIPPE\AppData\Local\CutePDF Writer
[18/05/2008|15:12] C:\Users\PHILIPPE\AppData\Local\d3d9caps.dat
[22/08/2008|13:47] C:\Users\PHILIPPE\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[17/10/2008|22:41] C:\Users\PHILIPPE\AppData\Local\fusioncache.dat
[18/07/2008|20:11] C:\Users\PHILIPPE\AppData\Local\GDIPFONTCACHEV1.DAT
[10/09/2008|20:14] C:\Users\PHILIPPE\AppData\Local\Google
[01/10/2007|15:19] C:\Users\PHILIPPE\AppData\Local\Historique
[18/10/2008|13:03] C:\Users\PHILIPPE\AppData\Local\IconCache.db
[07/10/2007|17:48] C:\Users\PHILIPPE\AppData\Local\MCE Deluxe Suite
[17/10/2008|20:23] C:\Users\PHILIPPE\AppData\Local\Microsoft
[04/10/2007|20:17] C:\Users\PHILIPPE\AppData\Local\Microsoft Games
[25/02/2008|21:17] C:\Users\PHILIPPE\AppData\Local\Microsoft Help
[20/07/2008|22:06] C:\Users\PHILIPPE\AppData\Local\MigWiz
[17/10/2008|20:21] C:\Users\PHILIPPE\AppData\Local\Mozilla
[10/01/2008|19:17] C:\Users\PHILIPPE\AppData\Local\Musicmatch
[14/12/2007|15:59] C:\Users\PHILIPPE\AppData\Local\Paint.NET
[07/10/2007|17:48] C:\Users\PHILIPPE\AppData\Local\PowerCinema
[13/02/2008|20:35] C:\Users\PHILIPPE\AppData\Local\Shareaza
[18/10/2008|13:31] C:\Users\PHILIPPE\AppData\Local\Temp
[01/10/2007|15:19] C:\Users\PHILIPPE\AppData\Local\Temporary Internet Files
[20/10/2007|17:34] C:\Users\PHILIPPE\AppData\Local\VirtualStore
[19/10/2007|01:32] C:\Users\PHILIPPE\AppData\Local\WindowsUpdate
[03/12/2007|13:33] C:\Users\PHILIPPE\AppData\Local\Yahoo
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[05/09/2008 16:31][--a------] C:\Windows\tasks\Norton Security Scan.job
[18/10/2008 12:52][--a------] C:\Windows\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[17/10/2008 20:00][--a------] C:\Windows\tasks\Norton Internet Security - Analyse systŠme complŠte - PHILIPPE.job
[18/10/2008 13:04][--ah-----] C:\Windows\tasks\SA.DAT
[18/10/2008 13:03][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[16/04/2007|18:07] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[10/10/2008|18:18] C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[07/02/2008|17:40] C:\ProgramData\Adobe
[09/10/2008|16:13] C:\ProgramData\Apple
[10/10/2008|18:14] C:\ProgramData\Apple Computer
[02/11/2006|15:02] C:\ProgramData\Application Data
[17/10/2008|18:53] C:\ProgramData\avg8
[09/01/2008|17:52] C:\ProgramData\AVS4YOU
[20/12/2007|20:14] C:\ProgramData\AWEM
[01/10/2007|15:16] C:\ProgramData\Bureau
[01/10/2007|18:30] C:\ProgramData\CanonBJ
[07/10/2007|17:48] C:\ProgramData\CyberLink
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[08/02/2008|14:49] C:\ProgramData\DVD Shrink
[11/01/2008|22:13] C:\ProgramData\eMule
[01/10/2007|17:15] C:\ProgramData\eSobi
[01/10/2007|15:16] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[03/01/2008|17:24] C:\ProgramData\Google
[18/10/2008|12:51] C:\ProgramData\Google Updater
[17/10/2008|20:13] C:\ProgramData\Grisoft
[22/10/2007|15:22] C:\ProgramData\Gtek
[08/10/2008|19:03] C:\ProgramData\Lavasoft
[08/12/2007|12:04] C:\ProgramData\LightScribe
[12/11/2007|12:57] C:\ProgramData\Logishrd
[12/11/2007|12:53] C:\ProgramData\Logitech
[18/10/2008|12:04] C:\ProgramData\Malwarebytes
[01/10/2007|15:16] C:\ProgramData\Menu D‚marrer
[17/10/2008|20:21] C:\ProgramData\Microsoft
[25/02/2008|21:17] C:\ProgramData\Microsoft Help
[01/10/2007|15:16] C:\ProgramData\ModŠles
[01/01/2008|19:22] C:\ProgramData\Mozilla
[31/01/2008|13:03] C:\ProgramData\MSScanAppDataDir
[21/11/2007|20:14] C:\ProgramData\NtiDvdCopy
[03/12/2007|13:30] C:\ProgramData\ntuser.dat
[03/12/2007|13:30] C:\ProgramData\ntuser.dat.LOG1
[03/12/2007|13:30] C:\ProgramData\ntuser.dat.LOG2
[03/12/2007|13:30] C:\ProgramData\ntuser.dat{4b01ed11-a184-11dc-a7f9-0019210daa0c}.TM.blf
[03/12/2007|13:30] C:\ProgramData\ntuser.dat{4b01ed11-a184-11dc-a7f9-0019210daa0c}.TMContainer00000000000000000001.regtrans-ms
[03/12/2007|13:30] C:\ProgramData\ntuser.dat{4b01ed11-a184-11dc-a7f9-0019210daa0c}.TMContainer00000000000000000002.regtrans-ms
[03/12/2007|13:30] C:\ProgramData\ntuser.dat{4b01ed21-a184-11dc-a7f9-0019210daa0c}.TM.blf
[03/12/2007|13:30] C:\ProgramData\ntuser.dat{4b01ed21-a184-11dc-a7f9-0019210daa0c}.TMContainer00000000000000000001.regtrans-ms
[03/12/2007|13:30] C:\ProgramData\ntuser.dat{4b01ed21-a184-11dc-a7f9-0019210daa0c}.TMContainer00000000000000000002.regtrans-ms
[03/09/2008|08:54] C:\ProgramData\NVIDIA
[09/10/2008|21:39] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|15:02] C:\ProgramData\Start Menu
[31/01/2008|16:20] C:\ProgramData\Symantec
[18/10/2008|13:04] C:\ProgramData\TEMP
[02/11/2006|15:02] C:\ProgramData\Templates
[04/05/2008|21:41] C:\ProgramData\WinZip
[07/12/2007|11:43] C:\ProgramData\WLInstaller
[03/12/2007|13:33] C:\ProgramData\YAHOO
[03/12/2007|13:31] C:\ProgramData\Yahoo!
[04/10/2007|09:42] C:\ProgramData\Yahoo! Companion
[16/10/2008|17:40] C:\ProgramData\ZoomBrowser
--------------------\\ Listing des dossiers dans C:\Program Files
[13/01/2008|20:10] C:\Program Files\AC3Filter
[23/06/2007|04:44] C:\Program Files\Acer Inc
[16/04/2007|17:46] C:\Program Files\Acer Zone
[07/02/2008|17:47] C:\Program Files\Acro Software
[29/06/2008|19:58] C:\Program Files\Adobe
[16/10/2008|18:11] C:\Program Files\adslTV
[30/12/2007|15:26] C:\Program Files\Alwil Software
[09/10/2008|16:14] C:\Program Files\Apple Software Update
[17/10/2008|18:44] C:\Program Files\AVG
[13/01/2008|20:08] C:\Program Files\AviSynth 2.5
[13/01/2008|12:24] C:\Program Files\AVS4YOU
[10/10/2008|18:15] C:\Program Files\Bonjour
[12/12/2007|20:23] C:\Program Files\Bubble Match
[10/02/2008|19:34] C:\Program Files\Burn4Free
[11/02/2008|18:14] C:\Program Files\Canon
[11/11/2007|21:26] C:\Program Files\CCleaner
[13/01/2008|13:45] C:\Program Files\CDex_150
[17/10/2008|22:34] C:\Program Files\Common Files
[16/04/2007|17:45] C:\Program Files\CyberLink
[09/01/2008|17:16] C:\Program Files\directx
[16/01/2008|11:07] C:\Program Files\DVD Shrink
[02/10/2008|22:52] C:\Program Files\eMule
[08/08/2008|18:39] C:\Program Files\ESBUnitConv Pro TRIAL
[01/10/2007|15:16] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[15/10/2008|14:20] C:\Program Files\Free Audio Pack
[11/12/2007|21:08] C:\Program Files\GabbaSoft
[13/01/2008|20:08] C:\Program Files\Gabest
[20/12/2007|20:13] C:\Program Files\GamesBar
[11/07/2008|11:41] C:\Program Files\Google
[07/02/2008|17:48] C:\Program Files\GPLGS
[15/03/2008|19:27] C:\Program Files\GraphCalc
[17/10/2008|20:13] C:\Program Files\Grisoft
[21/10/2007|12:35] C:\Program Files\HP
[22/10/2007|15:22] C:\Program Files\HPScanjet
[01/11/2007|16:47] C:\Program Files\illiminable
[20/03/2008|22:26] C:\Program Files\InstallShield Installation Information
[17/10/2008|22:31] C:\Program Files\Internet Explorer
[01/10/2008|15:58] C:\Program Files\IObit
[10/10/2008|18:17] C:\Program Files\iPod
[10/10/2008|18:18] C:\Program Files\iTunes
[08/08/2008|11:26] C:\Program Files\Java
[10/01/2008|18:12] C:\Program Files\KC Softwares
[29/09/2008|18:31] C:\Program Files\LimeWire
[12/11/2007|12:53] C:\Program Files\Logitech
[09/04/2008|16:21] C:\Program Files\MGrenda
[19/10/2007|01:43] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[20/12/2007|20:06] C:\Program Files\Microsoft Games
[09/09/2008|19:14] C:\Program Files\Microsoft Office
[21/08/2008|19:07] C:\Program Files\Microsoft Silverlight
[03/12/2007|11:55] C:\Program Files\Microsoft SQL Server Compact Edition
[09/09/2008|19:14] C:\Program Files\Microsoft Works
[31/01/2008|12:54] C:\Program Files\Microsoft.NET
[20/03/2008|20:33] C:\Program Files\Movie Maker
[18/10/2008|13:13] C:\Program Files\Mozilla Firefox
[10/01/2008|16:57] C:\Program Files\Mp3DirectCut
[02/11/2006|14:37] C:\Program Files\MSBuild
[19/10/2007|10:18] C:\Program Files\MSN Games
[18/10/2007|19:35] C:\Program Files\MSXML 4.0
[20/03/2008|22:26] C:\Program Files\Navman
[16/04/2007|17:41] C:\Program Files\NewTech Infosystems
[06/10/2008|12:16] C:\Program Files\Norton Security Scan
[24/09/2008|11:19] C:\Program Files\Photoc
[10/10/2008|18:15] C:\Program Files\QuickTime
[16/04/2007|17:31] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[31/12/2007|16:32] C:\Program Files\Search Settings
[13/02/2008|20:35] C:\Program Files\Shareaza
[09/02/2008|15:56] C:\Program Files\SpeedFan
[09/10/2008|18:41] C:\Program Files\Spybot - Search & Destroy
[17/10/2008|11:35] C:\Program Files\Spyware Doctor
[03/02/2008|20:45] C:\Program Files\Sun
[18/10/2008|11:14] C:\Program Files\Trend Micro
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[10/01/2008|16:01] C:\Program Files\VirtualDubMOD
[01/11/2007|16:48] C:\Program Files\VistaCodecPack
[03/02/2008|21:45] C:\Program Files\vso
[20/03/2008|20:33] C:\Program Files\Windows Calendar
[20/03/2008|20:33] C:\Program Files\Windows Collaboration
[20/03/2008|20:33] C:\Program Files\Windows Defender
[20/03/2008|20:33] C:\Program Files\Windows Journal
[27/02/2008|19:31] C:\Program Files\Windows Live
[05/02/2008|11:31] C:\Program Files\Windows Live Favorites
[01/12/2007|11:56] C:\Program Files\Windows Live Toolbar
[14/10/2008|19:49] C:\Program Files\Windows Mail
[20/03/2008|20:33] C:\Program Files\Windows Media Player
[01/10/2007|15:16] C:\Program Files\Windows NT
[20/03/2008|20:33] C:\Program Files\Windows Photo Gallery
[20/03/2008|20:33] C:\Program Files\Windows Sidebar
[01/06/2008|19:25] C:\Program Files\WinRAR
[04/05/2008|21:41] C:\Program Files\WinZip
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[07/02/2008|17:40] C:\Program Files\Common Files\Adobe
[10/10/2008|18:14] C:\Program Files\Common Files\Apple
[13/01/2008|12:24] C:\Program Files\Common Files\AVSMedia
[17/10/2008|22:57] C:\Program Files\Common Files\BitDefender
[11/02/2008|18:10] C:\Program Files\Common Files\Canon
[12/04/2008|13:28] C:\Program Files\Common Files\DESIGNER
[16/04/2007|17:44] C:\Program Files\Common Files\InstallShield
[21/10/2007|11:50] C:\Program Files\Common Files\Java
[16/04/2007|17:40] C:\Program Files\Common Files\LightScribe
[19/11/2007|12:12] C:\Program Files\Common Files\logishrd
[13/04/2008|12:38] C:\Program Files\Common Files\microsoft shared
[17/10/2008|22:34] C:\Program Files\Common Files\MSSoap
[16/04/2007|17:40] C:\Program Files\Common Files\muvee Technologies
[16/04/2007|17:41] C:\Program Files\Common Files\NewTech Infosystems
[15/01/2008|18:46] C:\Program Files\Common Files\PX Storage Engine
[14/01/2008|17:14] C:\Program Files\Common Files\Real
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[03/12/2007|13:29] C:\Program Files\Common Files\SureThing Shared
[06/10/2008|12:18] C:\Program Files\Common Files\Symantec Shared
[20/03/2008|20:33] C:\Program Files\Common Files\System
[03/12/2007|11:52] C:\Program Files\Common Files\WindowsLiveInstaller
--------------------\\ Process
( 78 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-10-18 13:32:14
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 10
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
C:\Users\PHILIPPE\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\GRRWVHKD\download-AVG-Anti-Spyware-7-5-1-43-serial-crack-serial-keygen-rapidshare[1].htm
[F:7][D:7]-> C:\Users\PHILIPPE\AppData\Local\Temp
[F:9][D:1]-> C:\Users\PHILIPPE\AppData\Roaming\MICROS~1\Windows\Cookies
[F:130][D:5]-> C:\Users\PHILIPPE\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:27][D:9]-> C:\$Recycle.Bin
1 - "C:\Lop SD\LopR_1.txt" - 18/10/2008|13:11 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 18/10/2008|13:34 - Option : [2]
--------------------\\ Fin du rapport a 13:34:32
[ UAC => 1 ]
Search Navipromo version 3.6.6 commencé le 18/10/2008 à 13:38:55,64
!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!
Outil exécuté depuis C:\Program Files\navilog1
Session actuelle : "PHILIPPE"
Mise à jour le 29.09.2008 à 17h30 par IL-MAFIOSO
Microsoft Windows Vista 6.0.6001
Internet Explorer : 7.0.6001.18000
Système de fichiers : NTFS
Recherche executé en mode normal
*** Recherche Programmes installés ***
*** Recherche dossiers dans "C:\Windows" ***
*** Recherche dossiers dans "C:\Program Files" ***
*** Recherche dossiers dans "c:\progra~2\micros~1\windows\startm~1\programs" ***
*** Recherche dossiers dans "c:\progra~2\micros~1\windows\startm~1" ***
*** Recherche dossiers dans "C:\ProgramData" ***
*** Recherche dossiers dans "c:\users\philippe\appdata\roaming\micros~1\windows\startm~1\programs" ***
*** Recherche dossiers dans "C:\Users\PHILIPPE\AppData\Local\virtualstore\Program Files" ***
*** Recherche dossiers dans "C:\Users\PHILIPPE\AppData\Roaming" ***
*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d'infos : http://www.gmer.net
*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!
* Recherche dans "C:\Windows\system32" *
* Recherche dans "C:\Users\PHILIPPE\AppData\Local\Microsoft" *
* Recherche dans "C:\Users\PHILIPPE\AppData\Local\virtualstore\windows\system32" *
* Recherche dans "C:\Users\PHILIPPE\AppData\Local" *
*** Recherche fichiers ***
*** Recherche clés spécifiques dans le Registre ***
HKEY_CURRENT_USER\Software\Lanconfig trouvé !
*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)
1)Recherche nouveaux fichiers Instant Access :
2)Recherche Heuristique :
* Dans "C:\Windows\system32" :
* Dans "C:\Users\PHILIPPE\AppData\Local\Microsoft" :
* Dans "C:\Users\PHILIPPE\AppData\Local\virtualstore\windows\system32" :
* Dans "C:\Users\PHILIPPE\AppData\Local" :
3)Recherche Certificats :
Certificat Egroup trouvé !
Certificat Electronic-Group trouvé !
Certificat Montorgueil absent !
Certificat OOO-Favorit trouvé !
Certificat Sunny-Day-Design-Ltd absent !
4)Recherche fichiers connus :
*** Analyse terminée le 18/10/2008 à 13:50:02,45 ***
Bijour ou bonsoir ;-)))
J'espère que mon grog a porté ses fruits .
Relance Navilog
# Sur le menu, choisis Désinfection automatique l'option 2
# Le fix va se mettre à travailler... sois patient!
# Cliques simplement sur OK si des fenêtres apparaissent.
Un rapport va être généré >> Envoi le
>>> Si ton bureau ne réapparait pas après le fix ce n'est rien ! <<<
Fais CTRL+ALT+SUPP pour ouvrir le gestionnaire de tâches.
Puis rends-toi à l'onglet "processus". Clique en haut à gauche sur fichiers et choisis "exécuter"
Tape explorer et valide. Celà te fera apparaitre ton bureau.
Et envoi un nouveau rapport hijackthis ;-)
@++
J'espère que mon grog a porté ses fruits .
Relance Navilog
# Sur le menu, choisis Désinfection automatique l'option 2
# Le fix va se mettre à travailler... sois patient!
# Cliques simplement sur OK si des fenêtres apparaissent.
Un rapport va être généré >> Envoi le
>>> Si ton bureau ne réapparait pas après le fix ce n'est rien ! <<<
Fais CTRL+ALT+SUPP pour ouvrir le gestionnaire de tâches.
Puis rends-toi à l'onglet "processus". Clique en haut à gauche sur fichiers et choisis "exécuter"
Tape explorer et valide. Celà te fera apparaitre ton bureau.
Et envoi un nouveau rapport hijackthis ;-)
@++
Voici le rapport généré par MALWARE
Malwarebytes' Anti-Malware 1.29
Version de la base de données: 1282
Windows 6.0.6001 Service Pack 1
18/10/2008 12:41:47
mbam-log-2008-10-18 (12-41-47).txt
Type de recherche: Examen complet (C:\|D:\|)
Eléments examinés: 144394
Temps écoulé: 24 minute(s), 16 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 4
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
C:\Users\PHILIPPE\Local Settings\Application Data\wecme_navps.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Users\PHILIPPE\Local Settings\Application Data\wecme_nav.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Users\PHILIPPE\Local Settings\Application Data\wecme.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Users\PHILIPPE\Local Settings\Application Data\wecme.exe (Adware.Navipromo.H) -> Quarantined and deleted successfully.
Encore merci