High-Tech Santé Médecine Droit-Finances

IMPÔTS 2010

Agissez maintenant !

Rechercher : dans
Par :

Fenetres intempestives au demarrage de vista

Dernière réponse le 10 oct 2008 à 22:08:30 hec69, le 2 oct 2008 à 15:47:33 
 Signaler ce message aux modérateurs

Bonjour,
Au demarrage de vista deux fenêtres s'ouvrent (l'une après l'autre) et indiquent :
pour l'une "windows ne peux pas ouvrir le fichier "MeowCompComp.xoglOuu
pour l'autre " " " " " " " "VcSeek Delete.3adog
Je ne vois pas du tout ce que c'est.
merci

Configuration: Windows Vista
Firefox 3.0.3

Meilleures réponses pour « fenetres intempestives au demarrage de vista » dans :
Lancer des commandes en mode Administrateur sous Vista VoirComme dans les versions précédentes de Windows, le champ "Exécuter" présent dans le menu Démarrer de Windows Vista, permet d'exécuter des commandes du système. Par défaut, ces commandes sont exécutées en utilisant les privilèges de...
[Vista] Afficher la commande Exécuter du menu Démarrer VoirAfficher la commande "Exécuter" du menu Démarrer Lors de l'acquisition de votre nouveau système d'exploitation Vista, vous vous apercevrez que la commande "Exécuter", qui est assez coutumière et serviable chez son petit frère XP, n'existe...
Réparer le démarrage de Vista VoirVotre Vista ne veut plus démarrer ? ni en mode normal, ni en mode sans échec ? Voici, une petite astuce qui permet de réparer le démarrage de Vista : Démarrer votre PC avec le DVD de Vista. Si vous ne l'avez pas, vous pouvez le créer en...
Posez votre question Répondre

1

Destrio5, le 2 oct 2008 à 15:54:36

Salut,

- Télécharge HijackThis V 2.02 (HijackThis Installer) :
http://www.trendsecure.com/portal/en-US/threat_analytics/HJT­Install.exe

- Fais un double-clic sur HJTInstall.exe afin de lancer l'installation

- Clique sur Install ensuite sur I Accept

- Clique sur Do a scan system and save log file

- Le bloc-notes s'ouvrira, fais un copier-coller de tout son contenu ici dans ta prochaine réponse.

   
Répondre à Destrio5

2

hec69, le 2 oct 2008 à 16:25:01

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:22:14, on 02/10/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Securitoo\Common\FSM32.EXE
C:\Program Files\Securitoo\FSGUI\fsguidll.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\Search Settings\SearchSettings.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe
C:\Program Files\Lexmark 2300 Series\lxcgmon.exe
C:\Program Files\Lexmark 2300 Series\ezprint.exe
C:\Program Files\Windows SteadyState\Bubble.exe
C:\Windows\ehome\ehtray.exe
C:\Users\Meryl\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Windows\system32\conime.exe
C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Orange\Logiciel de Synchronisation Orange\Voxsync.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Orange\Logiciel de Synchronisation Orange\SyncManager.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\CPSHelpRunner.exe
C:\Program Files\mes données\OrangeDrvHome.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Meryl\Desktop\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.msn.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.lo.st
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb127\SearchSettings.dll
O1 - Hosts: ::1 localhost
O2 - BHO: IE7Pro - {00011268-E188-40DF-A514-835FCD78B1BF} - C:\Program Files\IEPro\iepro.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\EoRezo\EoAdv\EOREZO~1.DLL
O2 - BHO: DealioBHO Class - {6A87B991-A31F-4130-AE72-6D0C294BF082} - C:\Program Files\Dealio\kb127\Dealio.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: ooVoo Toolbar - {A057A204-BACC-4D26-8087-36EE87E26986} - C:\PROGRA~1\OOVOOT~1\OOVOOT~1.DLL
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dll
O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb127\SearchSettings.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Dealio - {E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F} - C:\Program Files\Dealio\kb127\Dealio.dll
O3 - Toolbar: ooVoo Toolbar - {A057A204-BACC-4D26-8087-36EE87E26986} - C:\PROGRA~1\OOVOOT~1\OOVOOT~1.DLL
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Securitoo\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Securitoo\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [toolbar_eula_launcher] C:\Program Files\Packard Bell\GOOGLE_EULA\EULALauncher.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [SearchSettings] C:\Program Files\Search Settings\SearchSettings.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [lxcgmon.exe] "C:\Program Files\Lexmark 2300 Series\lxcgmon.exe"
O4 - HKLM\..\Run: [LXCGCATS] rundll32 C:\Windows\system32\spool\DRIVERS\W32X86\3\LXCGtime.dll,_RunDLLEntry@16
O4 - HKLM\..\Run: [Logoff] C:\Program Files\Windows SteadyState\SCTUINotify.exe
O4 - HKLM\..\Run: [EzPrint] "C:\Program Files\Lexmark 2300 Series\ezprint.exe"
O4 - HKLM\..\Run: [Bubble] C:\Program Files\Windows SteadyState\Bubble.exe
O4 - HKLM\..\Run: [au] C:\Program Files\Dealio\DealioAU.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Google Update] "C:\Users\Meryl\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [oovoo.exe] C:\Program Files\ooVoo\ooVoo.exe /minimized
O4 - HKCU\..\Run: [nurb fork] "C:\ProgramData\MeowCompComp.xogl0uu"
O4 - HKCU\..\Run: [MODE FREE BIRD SURF] "C:\ProgramData\Vc Seek Delete.3yadog"
O4 - HKCU\..\Run: [ISUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-18\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'Default user')
O4 - Global Startup: Logiciel de Synchronisation Orange.lnk = ?
O9 - Extra button: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll
O9 - Extra 'Tools' menuitem: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\Program Files\Dealio\kb127\Dealio.dll
O9 - Extra 'Tools' menuitem: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\Program Files\Dealio\kb127\Dealio.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O13 - Gopher Prefix:
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ATK Hotkey\ASLDRSrv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\Securitoo\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C:\Program Files\Securitoo\FSAUA\program\fsaua.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\Securitoo\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Securitoo\Common\FSMA32.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: lxcg_device - - C:\Windows\system32\lxcgcoms.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: TeamViewer 3 (TeamViewer) - TeamViewer GmbH - C:\Program Files\TeamViewer3\TeamViewer_Service.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
End of file - 10899 bytes

   
Répondre à hec69

3

Destrio5, le 2 oct 2008 à 16:26:24

---> Désactive l'UAC le temps de la désinfection :
http://www.commentcamarche.net/faq/sujet 8343 vista desactiver l uac

---> Télécharge Lop S&D sur ton Bureau
http://eric.71.mespages.googlepages.com/LopSD.exe
---> Double-clique dessus pour lancer l'installation
---> Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
---> Séléctionne la langue souhaitée, puis choisis l'option 1 (Recherche)
---> Patiente jusqu'à la fin du scan
---> Poste le rapport généré (C:\lopR.txt)

   
Répondre à Destrio5

4

hec69, le 2 oct 2008 à 16:39:34

--------------------\\ Lop S&D 4.2.4-4 XP/Vista

Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : AMD Turion(tm) 64 X2 Mobile Technology TL-56 )
BIOS : Default System BIOS
USER : Meryl ( Administrator )
BOOT : Normal boot
Antivirus : AntiVirus Firewall 7.03 7.03 (Activated)
Firewall : AntiVirus Firewall 7.03 7.03 (Activated)
C:\ (Local Disk) - NTFS - Total : 141 Go Free : 95 Go
D:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 19-09-2008|22:20 )
Option : [1] ( 02/10/2008|16:35 )

[ UAC => 0 ]

--------------------\\ Listing des dossiers dans Local

[05/09/2007|12:00] C:\Users\Meryl\AppData\Local\Adobe
[10/04/2008|15:48] C:\Users\Meryl\AppData\Local\Apple
[10/04/2008|17:04] C:\Users\Meryl\AppData\Local\Apple Computer
[29/08/2007|10:12] C:\Users\Meryl\AppData\Local\Application Data
[02/10/2008|15:57] C:\Users\Meryl\AppData\Local\ApplicationHistory
[08/10/2007|19:47] C:\Users\Meryl\AppData\Local\Apps
[29/08/2007|10:16] C:\Users\Meryl\AppData\Local\ATI
[26/07/2008|08:58] C:\Users\Meryl\AppData\Local\Auchan Photog‚nie
[15/04/2008|22:16] C:\Users\Meryl\AppData\Local\d3d9caps.dat
[23/08/2008|16:26] C:\Users\Meryl\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[17/11/2007|00:43] C:\Users\Meryl\AppData\Local\eMule
[29/08/2007|10:16] C:\Users\Meryl\AppData\Local\fusioncache.dat
[06/09/2008|13:35] C:\Users\Meryl\AppData\Local\GDIPFONTCACHEV1.DAT
[02/10/2008|15:56] C:\Users\Meryl\AppData\Local\Google
[29/08/2007|10:12] C:\Users\Meryl\AppData\Local\Historique
[02/10/2008|15:52] C:\Users\Meryl\AppData\Local\IconCache.db
[31/08/2008|08:54] C:\Users\Meryl\AppData\Local\Microsoft
[15/03/2008|22:46] C:\Users\Meryl\AppData\Local\Microsoft Games
[26/09/2007|10:16] C:\Users\Meryl\AppData\Local\Microsoft Help
[04/09/2007|15:50] C:\Users\Meryl\AppData\Local\MicroVision Applications
[01/10/2007|17:33] C:\Users\Meryl\AppData\Local\MigWiz
[29/08/2007|12:00] C:\Users\Meryl\AppData\Local\Mozilla
[29/08/2007|15:07] C:\Users\Meryl\AppData\Local\Packard Bell
[02/10/2008|16:34] C:\Users\Meryl\AppData\Local\Temp
[29/08/2007|10:12] C:\Users\Meryl\AppData\Local\Temporary Internet Files
[27/08/2008|09:12] C:\Users\Meryl\AppData\Local\Thunderbird
[17/12/2007|12:10] C:\Users\Meryl\AppData\Local\VirtualStore
[13/12/2007|16:55] C:\Users\Meryl\AppData\Local\Windows Collaboration
[06/03/2008|11:00] C:\Users\Meryl\AppData\Local\Windows Live Writer

--------------------\\ Tâches planifiées dans C:\Windows\tasks

[02/10/2008 13:56][--a------] C:\Windows\tasks\GoogleUpdateTaskUser.job
[02/10/2008 15:54][--a------] C:\Windows\tasks\GlaryInitialize.job
[02/10/2008 16:00][--a------] C:\Windows\tasks\Maintenance en 1 clic.job
[02/10/2008 16:32][--a------] C:\Windows\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[02/10/2008 16:30][--a------] C:\Windows\tasks\Extension de garantie.job
[02/10/2008 15:54][--ah-----] C:\Windows\tasks\SA.DAT
[02/10/2008 15:53][--a------] C:\Windows\tasks\SCHEDLGU.TXT

--------------------\\ Listing des dossiers dans C:\ProgramData

[07/02/2008|12:00] C:\ProgramData\Adobe
[18/04/2008|14:48] C:\ProgramData\Apple
[10/04/2008|15:48] C:\ProgramData\Apple Computer
[02/11/2006|15:02] C:\ProgramData\Application Data
[25/07/2007|16:26] C:\ProgramData\Atheros
[12/09/2007|15:38] C:\ProgramData\ATI
[18/08/2008|14:00] C:\ProgramData\beep axis mode free
[29/08/2007|10:08] C:\ProgramData\Bureau
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[05/09/2007|13:28] C:\ProgramData\Ezprint
[30/11/2007|22:59] C:\ProgramData\ezsid.dat
[14/07/2008|19:13] C:\ProgramData\ezsidmv.dat
[06/05/2008|22:38] C:\ProgramData\Fast Dupe Meta.isfe5qc
[29/08/2007|10:08] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[18/08/2008|18:07] C:\ProgramData\Fighters
[29/09/2008|15:33] C:\ProgramData\F-Secure
[29/09/2008|15:30] C:\ProgramData\fssg
[29/08/2007|12:07] C:\ProgramData\Google
[25/07/2007|16:37] C:\ProgramData\InstallShield
[24/06/2008|15:41] C:\ProgramData\Kaspersky Lab Setup Files
[29/08/2007|10:08] C:\ProgramData\Menu D‚marrer
[09/07/2008|15:11] C:\ProgramData\MeowCompComp.ckywawm
[28/03/2008|13:05] C:\ProgramData\MeowCompComp.hi62i
[27/05/2008|08:31] C:\ProgramData\MeowCompComp.mj04h
[06/05/2008|22:37] C:\ProgramData\MeowCompComp.p2pfn
[23/07/2008|06:54] C:\ProgramData\MeowCompComp.sn7zhh
[23/07/2008|06:54] C:\ProgramData\MeowCompComp.xogl0uu
[03/09/2007|00:10] C:\ProgramData\Messenger Plus!
[31/07/2008|20:25] C:\ProgramData\Microsoft
[10/09/2008|10:06] C:\ProgramData\Microsoft Help
[29/08/2007|10:08] C:\ProgramData\ModŠles
[17/12/2007|11:33] C:\ProgramData\muvee Technologies
[02/10/2008|12:28] C:\ProgramData\ntuser.pol
[18/08/2008|17:59] C:\ProgramData\oncedart
[30/04/2008|00:51] C:\ProgramData\Roxio
[30/07/2008|13:07] C:\ProgramData\Skyline
[14/07/2008|19:12] C:\ProgramData\Skype
[02/10/2008|12:21] C:\ProgramData\Sonic
[24/06/2008|15:46] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|15:02] C:\ProgramData\Start Menu
[31/01/2008|18:50] C:\ProgramData\Suivi-Secu
[28/04/2008|10:23] C:\ProgramData\TEMP
[02/11/2006|15:02] C:\ProgramData\Templates
[01/08/2008|17:11] C:\ProgramData\TuneUp Software
[23/07/2008|06:54] C:\ProgramData\Vc Seek Delete.3yadog
[17/12/2007|12:00] C:\ProgramData\Windows Genuine Advantage
[09/09/2008|00:00] C:\ProgramData\WindowsSearch
[03/09/2008|18:52] C:\ProgramData\WLInstaller
[02/12/2007|14:56] C:\ProgramData\Yahoo!
[02/12/2007|15:05] C:\ProgramData\Yahoo! Companion

--------------------\\ Listing des dossiers dans C:\Program Files

[07/07/2008|12:56] C:\Program Files\Adobe
[30/08/2007|22:58] C:\Program Files\Adverts
[21/09/2008|15:15] C:\Program Files\aMSN
[18/04/2008|14:48] C:\Program Files\Apple Software Update
[17/12/2007|11:41] C:\Program Files\ArcSoft
[25/07/2007|16:26] C:\Program Files\Atheros
[25/07/2007|16:20] C:\Program Files\ATI
[25/07/2007|16:23] C:\Program Files\ATI Technologies
[25/07/2007|16:19] C:\Program Files\ATK Hotkey
[26/07/2008|08:58] C:\Program Files\Auchan Photog‚nie
[04/09/2007|15:30] C:\Program Files\Axon Data
[24/06/2008|17:08] C:\Program Files\Circle Developement
[05/09/2008|10:09] C:\Program Files\Common Files
[22/06/2008|12:40] C:\Program Files\Cryptainer LE
[28/04/2008|10:09] C:\Program Files\CyberMUT
[28/04/2008|10:03] C:\Program Files\Dealio
[16/09/2007|18:54] C:\Program Files\DIFX
[17/12/2007|11:31] C:\Program Files\DV5X9
[25/09/2008|11:54] C:\Program Files\EoRezo
[29/08/2007|10:08] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[22/08/2008|13:25] C:\Program Files\Fighters
[09/01/2008|21:13] C:\Program Files\GiveMeTac 1.1
[02/09/2008|22:02] C:\Program Files\Glary Utilities
[12/06/2008|19:11] C:\Program Files\Google
[25/07/2007|16:31] C:\Program Files\HDReg
[04/06/2008|17:12] C:\Program Files\IEPro
[04/09/2008|12:55] C:\Program Files\inKline Global
[06/09/2008|13:52] C:\Program Files\InstallShield Installation Information
[30/05/2008|09:44] C:\Program Files\Internet Explorer
[29/08/2007|15:49] C:\Program Files\Inventel
[06/07/2008|12:41] C:\Program Files\ISDecisions
[18/10/2007|10:34] C:\Program Files\Java
[20/12/2007|10:55] C:\Program Files\Lexmark 2300 Series
[11/10/2007|21:51] C:\Program Files\LimeWire
[30/12/2007|12:11] C:\Program Files\Logiciel Photo Orange
[02/10/2008|10:04] C:\Program Files\Lx_cats
[02/10/2008|15:52] C:\Program Files\mes donn‚es
[28/03/2008|13:04] C:\Program Files\Messenger Plus! Live
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[29/08/2007|10:31] C:\Program Files\Microsoft Office
[18/07/2008|00:22] C:\Program Files\Microsoft Silverlight
[02/10/2007|14:01] C:\Program Files\Microsoft SQL Server Compact Edition
[05/09/2008|10:09] C:\Program Files\Microsoft Visual Studio
[05/09/2008|10:10] C:\Program Files\Microsoft Works
[29/08/2007|10:31] C:\Program Files\Microsoft.NET
[03/09/2008|19:39] C:\Program Files\Mindscape
[30/05/2008|09:44] C:\Program Files\Movie Maker
[02/10/2008|12:57] C:\Program Files\Mozilla Firefox
[02/11/2006|14:37] C:\Program Files\MSBuild
[26/07/2008|09:21] C:\Program Files\MSN Messenger
[29/08/2007|12:17] C:\Program Files\MSXML 4.0
[17/12/2007|11:34] C:\Program Files\muvee Technologies
[31/08/2007|23:08] C:\Program Files\My Company Name
[18/12/2007|21:09] C:\Program Files\Navilog1
[02/09/2008|21:01] C:\Program Files\ooVoo
[03/09/2008|20:28] C:\Program Files\oovooToolbar
[06/09/2008|13:52] C:\Program Files\Orange
[25/09/2007|00:57] C:\Program Files\OrangeHSS
[04/10/2007|11:34] C:\Program Files\Packard Bell
[15/01/2008|11:53] C:\Program Files\Picasa2
[18/04/2008|15:02] C:\Program Files\QuickTime
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[26/09/2007|16:31] C:\Program Files\RegCleaner
[21/06/2008|17:28] C:\Program Files\Rohos
[25/07/2007|16:36] C:\Program Files\Roxio
[28/04/2008|10:03] C:\Program Files\Search Settings
[29/09/2008|15:35] C:\Program Files\Securitoo
[30/07/2008|13:07] C:\Program Files\Skyline
[29/09/2008|21:06] C:\Program Files\Skype
[01/08/2008|21:47] C:\Program Files\SoundSpectrum
[24/06/2008|15:48] C:\Program Files\Spybot - Search & Destroy
[11/06/2008|11:03] C:\Program Files\Spyware-Secure
[25/07/2007|16:25] C:\Program Files\Synaptics
[02/09/2008|20:56] C:\Program Files\TeamViewer3
[23/07/2008|12:55] C:\Program Files\TrueCrypt
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[04/09/2008|16:07] C:\Program Files\Unlocker
[23/08/2008|16:07] C:\Program Files\VideoLAN
[18/08/2008|21:13] C:\Program Files\VIRUSfighter
[03/09/2008|20:31] C:\Program Files\WebcamMax
[30/05/2008|09:44] C:\Program Files\Windows Calendar
[30/05/2008|09:44] C:\Program Files\Windows Collaboration
[30/05/2008|09:44] C:\Program Files\Windows Defender
[30/05/2008|09:44] C:\Program Files\Windows Journal
[03/09/2008|23:36] C:\Program Files\Windows Live
[31/08/2008|08:13] C:\Program Files\Windows Live Safety Center
[12/07/2008|15:06] C:\Program Files\Windows Live SkyDrive
[05/11/2007|19:18] C:\Program Files\Windows Live Toolbar
[17/08/2008|13:29] C:\Program Files\Windows Mail
[30/05/2008|09:44] C:\Program Files\Windows Media Player
[29/08/2007|10:08] C:\Program Files\Windows NT
[30/05/2008|09:44] C:\Program Files\Windows Photo Gallery
[30/05/2008|09:44] C:\Program Files\Windows Sidebar
[31/07/2008|20:25] C:\Program Files\Windows SteadyState
[25/09/2008|13:46] C:\Program Files\WinRAR
[31/12/2007|18:01] C:\Program Files\WinSesame
[25/07/2007|16:27] C:\Program Files\X10 Hardware
[02/12/2007|15:31] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Common Files

[07/02/2008|12:01] C:\Program Files\Common Files\Adobe
[18/04/2008|14:56] C:\Program Files\Common Files\Apple
[17/12/2007|11:41] C:\Program Files\Common Files\ArcSoft
[05/09/2008|10:09] C:\Program Files\Common Files\DESIGNER
[29/08/2007|15:59] C:\Program Files\Common Files\France Telecom
[30/08/2007|21:23] C:\Program Files\Common Files\InstallShield
[31/08/2007|21:25] C:\Program Files\Common Files\Java
[05/09/2008|10:10] C:\Program Files\Common Files\microsoft shared
[17/12/2007|11:34] C:\Program Files\Common Files\muvee Technologies
[17/12/2007|12:49] C:\Program Files\Common Files\NSV
[25/07/2007|16:36] C:\Program Files\Common Files\Roxio Shared
[02/12/2007|15:31] C:\Program Files\Common Files\Scanner
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[14/07/2008|19:12] C:\Program Files\Common Files\Skype
[25/07/2007|16:36] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[25/07/2007|16:36] C:\Program Files\Common Files\SureThing Shared
[05/09/2008|10:05] C:\Program Files\Common Files\System
[12/11/2007|19:00] C:\Program Files\Common Files\WindowsLiveInstaller
[01/08/2008|17:11] C:\Program Files\Common Files\Wise Installation Wizard
[25/07/2007|16:27] C:\Program Files\Common Files\X10

--------------------\\ Process

( 85 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

C:\ProgramData\MeowCompComp.hi62i
C:\ProgramData\MeowCompComp.mj04h
C:\ProgramData\MeowCompComp.p2pfn
C:\ProgramData\MeowCompComp.sn7zhh
C:\ProgramData\Vc Seek Delete.3yadog
C:\ProgramData\Fast Dupe Meta.isfe5qc
C:\ProgramData\MeowCompComp.ckywawm
C:\ProgramData\MeowCompComp.xogl0uu

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\ProgramData\beep axis mode free
C:\ProgramData\beep axis mode free\Platform Send.0xe
C:\Program Files\Adverts
C:\Program Files\Circle Developement

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"nurb fork"="\"C:\\ProgramData\\MeowCompComp.xogl0uu\""
"MODE FREE BIRD SURF"="\"C:\\ProgramData\\Vc Seek Delete.3yadog\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-10-02 16:36:14
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 8

--------------------\\ Recherche d'autres infections

--------------------\\ ROGUES ..

C:\PROGRA~1\Spyware-Secure


Aucune autre infection trouvée !

[F:384][D:41]-> C:\Users\Meryl\AppData\Local\Temp
[F:162][D:1]-> C:\Users\Meryl\AppData\Roaming\MICROS~1\Windows\Cookies
[F:909][D:6]-> C:\Users\Meryl\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:34][D:5]-> C:\$Recycle.Bin

1 - "C:\Lop SD\LopR_1.txt" - 02/10/2008|16:38 - Option : [1]

--------------------\\ Fin du rapport a 16:38:50
[ UAC => 1 ]

   
Répondre à hec69

5

Destrio5, le 2 oct 2008 à 16:41:31

---> Relance Lop S&D
---> Choisis cette fois-ci l'option 2 (Suppression)
---> Ne ferme pas la fenêtre lors de la suppression !
---> Poste le rapport généré (C:\lopR.txt)

   
Répondre à Destrio5

6

hec69, le 2 oct 2008 à 17:04:18

--------------------\\ Lop S&D 4.2.4-4 XP/Vista

Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : AMD Turion(tm) 64 X2 Mobile Technology TL-56 )
BIOS : Default System BIOS
USER : Meryl ( Administrator )
BOOT : Normal boot
Antivirus : AntiVirus Firewall 7.03 7.03 (Activated)
Firewall : AntiVirus Firewall 7.03 7.03 (Activated)
C:\ (Local Disk) - NTFS - Total : 141 Go Free : 95 Go
D:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 19-09-2008|22:20 )
Option : [2] ( 02/10/2008|16:59 )

[ UAC => 1 ]


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\ProgramData\beep axis mode free\Platform Send.0xe
Supprime! - C:\ProgramData\MeowCompComp.hi62i
Supprime! - C:\ProgramData\MeowCompComp.mj04h
Supprime! - C:\ProgramData\MeowCompComp.p2pfn
Supprime! - C:\ProgramData\MeowCompComp.sn7zhh
Supprime! - C:\ProgramData\Vc Seek Delete.3yadog
Supprime! - C:\ProgramData\Fast Dupe Meta.isfe5qc
Supprime! - C:\ProgramData\MeowCompComp.ckywawm
Supprime! - C:\ProgramData\MeowCompComp.xogl0uu
Supprime! - C:\ProgramData\beep axis mode free
Supprime! - C:\Program Files\Adverts
Supprime! - C:\Program Files\Circle Developement
-
[ Fichier Hosts ] .. Restaure!

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans Local

[05/09/2007|12:00] C:\Users\Meryl\AppData\Local\Adobe
[10/04/2008|15:48] C:\Users\Meryl\AppData\Local\Apple
[10/04/2008|17:04] C:\Users\Meryl\AppData\Local\Apple Computer
[29/08/2007|10:12] C:\Users\Meryl\AppData\Local\Application Data
[02/10/2008|15:57] C:\Users\Meryl\AppData\Local\ApplicationHistory
[08/10/2007|19:47] C:\Users\Meryl\AppData\Local\Apps
[29/08/2007|10:16] C:\Users\Meryl\AppData\Local\ATI
[26/07/2008|08:58] C:\Users\Meryl\AppData\Local\Auchan Photog‚nie
[15/04/2008|22:16] C:\Users\Meryl\AppData\Local\d3d9caps.dat
[23/08/2008|16:26] C:\Users\Meryl\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[17/11/2007|00:43] C:\Users\Meryl\AppData\Local\eMule
[29/08/2007|10:16] C:\Users\Meryl\AppData\Local\fusioncache.dat
[06/09/2008|13:35] C:\Users\Meryl\AppData\Local\GDIPFONTCACHEV1.DAT
[02/10/2008|15:56] C:\Users\Meryl\AppData\Local\Google
[29/08/2007|10:12] C:\Users\Meryl\AppData\Local\Historique
[02/10/2008|15:52] C:\Users\Meryl\AppData\Local\IconCache.db
[31/08/2008|08:54] C:\Users\Meryl\AppData\Local\Microsoft
[15/03/2008|22:46] C:\Users\Meryl\AppData\Local\Microsoft Games
[26/09/2007|10:16] C:\Users\Meryl\AppData\Local\Microsoft Help
[04/09/2007|15:50] C:\Users\Meryl\AppData\Local\MicroVision Applications
[01/10/2007|17:33] C:\Users\Meryl\AppData\Local\MigWiz
[29/08/2007|12:00] C:\Users\Meryl\AppData\Local\Mozilla
[29/08/2007|15:07] C:\Users\Meryl\AppData\Local\Packard Bell
[02/10/2008|16:59] C:\Users\Meryl\AppData\Local\Temp
[29/08/2007|10:12] C:\Users\Meryl\AppData\Local\Temporary Internet Files
[27/08/2008|09:12] C:\Users\Meryl\AppData\Local\Thunderbird
[17/12/2007|12:10] C:\Users\Meryl\AppData\Local\VirtualStore
[13/12/2007|16:55] C:\Users\Meryl\AppData\Local\Windows Collaboration
[06/03/2008|11:00] C:\Users\Meryl\AppData\Local\Windows Live Writer

--------------------\\ Tâches planifiées dans C:\Windows\tasks

[02/10/2008 13:56][--a------] C:\Windows\tasks\GoogleUpdateTaskUser.job
[02/10/2008 15:54][--a------] C:\Windows\tasks\GlaryInitialize.job
[02/10/2008 16:00][--a------] C:\Windows\tasks\Maintenance en 1 clic.job
[02/10/2008 16:32][--a------] C:\Windows\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[02/10/2008 16:30][--a------] C:\Windows\tasks\Extension de garantie.job
[02/10/2008 15:54][--ah-----] C:\Windows\tasks\SA.DAT
[02/10/2008 15:53][--a------] C:\Windows\tasks\SCHEDLGU.TXT

--------------------\\ Listing des dossiers dans C:\ProgramData

[07/02/2008|12:00] C:\ProgramData\Adobe
[18/04/2008|14:48] C:\ProgramData\Apple
[10/04/2008|15:48] C:\ProgramData\Apple Computer
[02/11/2006|15:02] C:\ProgramData\Application Data
[25/07/2007|16:26] C:\ProgramData\Atheros
[12/09/2007|15:38] C:\ProgramData\ATI
[29/08/2007|10:08] C:\ProgramData\Bureau
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[05/09/2007|13:28] C:\ProgramData\Ezprint
[30/11/2007|22:59] C:\ProgramData\ezsid.dat
[14/07/2008|19:13] C:\ProgramData\ezsidmv.dat
[29/08/2007|10:08] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[18/08/2008|18:07] C:\ProgramData\Fighters
[29/09/2008|15:33] C:\ProgramData\F-Secure
[29/09/2008|15:30] C:\ProgramData\fssg
[29/08/2007|12:07] C:\ProgramData\Google
[25/07/2007|16:37] C:\ProgramData\InstallShield
[24/06/2008|15:41] C:\ProgramData\Kaspersky Lab Setup Files
[29/08/2007|10:08] C:\ProgramData\Menu D‚marrer
[03/09/2007|00:10] C:\ProgramData\Messenger Plus!
[31/07/2008|20:25] C:\ProgramData\Microsoft
[10/09/2008|10:06] C:\ProgramData\Microsoft Help
[29/08/2007|10:08] C:\ProgramData\ModŠles
[17/12/2007|11:33] C:\ProgramData\muvee Technologies
[02/10/2008|12:28] C:\ProgramData\ntuser.pol
[18/08/2008|17:59] C:\ProgramData\oncedart
[30/04/2008|00:51] C:\ProgramData\Roxio
[30/07/2008|13:07] C:\ProgramData\Skyline
[14/07/2008|19:12] C:\ProgramData\Skype
[02/10/2008|12:21] C:\ProgramData\Sonic
[24/06/2008|15:46] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|15:02] C:\ProgramData\Start Menu
[31/01/2008|18:50] C:\ProgramData\Suivi-Secu
[28/04/2008|10:23] C:\ProgramData\TEMP
[02/11/2006|15:02] C:\ProgramData\Templates
[01/08/2008|17:11] C:\ProgramData\TuneUp Software
[17/12/2007|12:00] C:\ProgramData\Windows Genuine Advantage
[09/09/2008|00:00] C:\ProgramData\WindowsSearch
[03/09/2008|18:52] C:\ProgramData\WLInstaller
[02/12/2007|14:56] C:\ProgramData\Yahoo!
[02/12/2007|15:05] C:\ProgramData\Yahoo! Companion

--------------------\\ Listing des dossiers dans C:\Program Files

[07/07/2008|12:56] C:\Program Files\Adobe
[21/09/2008|15:15] C:\Program Files\aMSN
[18/04/2008|14:48] C:\Program Files\Apple Software Update
[17/12/2007|11:41] C:\Program Files\ArcSoft
[25/07/2007|16:26] C:\Program Files\Atheros
[25/07/2007|16:20] C:\Program Files\ATI
[25/07/2007|16:23] C:\Program Files\ATI Technologies
[25/07/2007|16:19] C:\Program Files\ATK Hotkey
[26/07/2008|08:58] C:\Program Files\Auchan Photog‚nie
[04/09/2007|15:30] C:\Program Files\Axon Data
[05/09/2008|10:09] C:\Program Files\Common Files
[22/06/2008|12:40] C:\Program Files\Cryptainer LE
[28/04/2008|10:09] C:\Program Files\CyberMUT
[28/04/2008|10:03] C:\Program Files\Dealio
[16/09/2007|18:54] C:\Program Files\DIFX
[17/12/2007|11:31] C:\Program Files\DV5X9
[25/09/2008|11:54] C:\Program Files\EoRezo
[29/08/2007|10:08] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[22/08/2008|13:25] C:\Program Files\Fighters
[09/01/2008|21:13] C:\Program Files\GiveMeTac 1.1
[02/09/2008|22:02] C:\Program Files\Glary Utilities
[12/06/2008|19:11] C:\Program Files\Google
[25/07/2007|16:31] C:\Program Files\HDReg
[04/06/2008|17:12] C:\Program Files\IEPro
[04/09/2008|12:55] C:\Program Files\inKline Global
[06/09/2008|13:52] C:\Program Files\InstallShield Installation Information
[30/05/2008|09:44] C:\Program Files\Internet Explorer
[29/08/2007|15:49] C:\Program Files\Inventel
[06/07/2008|12:41] C:\Program Files\ISDecisions
[18/10/2007|10:34] C:\Program Files\Java
[20/12/2007|10:55] C:\Program Files\Lexmark 2300 Series
[11/10/2007|21:51] C:\Program Files\LimeWire
[30/12/2007|12:11] C:\Program Files\Logiciel Photo Orange
[02/10/2008|10:04] C:\Program Files\Lx_cats
[02/10/2008|15:52] C:\Program Files\mes donn‚es
[28/03/2008|13:04] C:\Program Files\Messenger Plus! Live
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[29/08/2007|10:31] C:\Program Files\Microsoft Office
[18/07/2008|00:22] C:\Program Files\Microsoft Silverlight
[02/10/2007|14:01] C:\Program Files\Microsoft SQL Server Compact Edition
[05/09/2008|10:09] C:\Program Files\Microsoft Visual Studio
[05/09/2008|10:10] C:\Program Files\Microsoft Works
[29/08/2007|10:31] C:\Program Files\Microsoft.NET
[03/09/2008|19:39] C:\Program Files\Mindscape
[30/05/2008|09:44] C:\Program Files\Movie Maker
[02/10/2008|12:57] C:\Program Files\Mozilla Firefox
[02/11/2006|14:37] C:\Program Files\MSBuild
[26/07/2008|09:21] C:\Program Files\MSN Messenger
[29/08/2007|12:17] C:\Program Files\MSXML 4.0
[17/12/2007|11:34] C:\Program Files\muvee Technologies
[31/08/2007|23:08] C:\Program Files\My Company Name
[18/12/2007|21:09] C:\Program Files\Navilog1
[02/09/2008|21:01] C:\Program Files\ooVoo
[03/09/2008|20:28] C:\Program Files\oovooToolbar
[06/09/2008|13:52] C:\Program Files\Orange
[25/09/2007|00:57] C:\Program Files\OrangeHSS
[04/10/2007|11:34] C:\Program Files\Packard Bell
[15/01/2008|11:53] C:\Program Files\Picasa2
[18/04/2008|15:02] C:\Program Files\QuickTime
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[26/09/2007|16:31] C:\Program Files\RegCleaner
[21/06/2008|17:28] C:\Program Files\Rohos
[25/07/2007|16:36] C:\Program Files\Roxio
[28/04/2008|10:03] C:\Program Files\Search Settings
[29/09/2008|15:35] C:\Program Files\Securitoo
[30/07/2008|13:07] C:\Program Files\Skyline
[29/09/2008|21:06] C:\Program Files\Skype
[01/08/2008|21:47] C:\Program Files\SoundSpectrum
[24/06/2008|15:48] C:\Program Files\Spybot - Search & Destroy
[11/06/2008|11:03] C:\Program Files\Spyware-Secure
[25/07/2007|16:25] C:\Program Files\Synaptics
[02/09/2008|20:56] C:\Program Files\TeamViewer3
[23/07/2008|12:55] C:\Program Files\TrueCrypt
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[04/09/2008|16:07] C:\Program Files\Unlocker
[23/08/2008|16:07] C:\Program Files\VideoLAN
[18/08/2008|21:13] C:\Program Files\VIRUSfighter
[03/09/2008|20:31] C:\Program Files\WebcamMax
[30/05/2008|09:44] C:\Program Files\Windows Calendar
[30/05/2008|09:44] C:\Program Files\Windows Collaboration
[30/05/2008|09:44] C:\Program Files\Windows Defender
[30/05/2008|09:44] C:\Program Files\Windows Journal
[03/09/2008|23:36] C:\Program Files\Windows Live
[31/08/2008|08:13] C:\Program Files\Windows Live Safety Center
[12/07/2008|15:06] C:\Program Files\Windows Live SkyDrive
[05/11/2007|19:18] C:\Program Files\Windows Live Toolbar
[17/08/2008|13:29] C:\Program Files\Windows Mail
[30/05/2008|09:44] C:\Program Files\Windows Media Player
[29/08/2007|10:08] C:\Program Files\Windows NT
[30/05/2008|09:44] C:\Program Files\Windows Photo Gallery
[30/05/2008|09:44] C:\Program Files\Windows Sidebar
[31/07/2008|20:25] C:\Program Files\Windows SteadyState
[25/09/2008|13:46] C:\Program Files\WinRAR
[31/12/2007|18:01] C:\Program Files\WinSesame
[25/07/2007|16:27] C:\Program Files\X10 Hardware
[02/12/2007|15:31] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Common Files

[07/02/2008|12:01] C:\Program Files\Common Files\Adobe
[18/04/2008|14:56] C:\Program Files\Common Files\Apple
[17/12/2007|11:41] C:\Program Files\Common Files\ArcSoft
[05/09/2008|10:09] C:\Program Files\Common Files\DESIGNER
[29/08/2007|15:59] C:\Program Files\Common Files\France Telecom
[30/08/2007|21:23] C:\Program Files\Common Files\InstallShield
[31/08/2007|21:25] C:\Program Files\Common Files\Java
[05/09/2008|10:10] C:\Program Files\Common Files\microsoft shared
[17/12/2007|11:34] C:\Program Files\Common Files\muvee Technologies
[17/12/2007|12:49] C:\Program Files\Common Files\NSV
[25/07/2007|16:36] C:\Program Files\Common Files\Roxio Shared
[02/12/2007|15:31] C:\Program Files\Common Files\Scanner
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[14/07/2008|19:12] C:\Program Files\Common Files\Skype
[25/07/2007|16:36] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[25/07/2007|16:36] C:\Program Files\Common Files\SureThing Shared
[05/09/2008|10:05] C:\Program Files\Common Files\System
[12/11/2007|19:00] C:\Program Files\Common Files\WindowsLiveInstaller
[01/08/2008|17:11] C:\Program Files\Common Files\Wise Installation Wizard
[25/07/2007|16:27] C:\Program Files\Common Files\X10

--------------------\\ Process

( 84 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-10-02 16:59:53
Windows 5.1.2600 Service Pack 2 NTFS
detected NTDLL code modification:
ZwEnumerateKey, ZwQueryKey, ZwOpenKey, ZwClose, ZwEnumerateValueKey, ZwQueryValueKey, ZwOpenFile, ZwQueryDirectoryFile, ZwQuerySystemInformation
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 8

--------------------\\ Recherche d'autres infections

--------------------\\ ROGUES ..

C:\PROGRA~1\Spyware-Secure


Aucune autre infection trouvée !

[F:384][D:42]-> C:\Users\Meryl\AppData\Local\Temp
[F:162][D:1]-> C:\Users\Meryl\AppData\Roaming\MICROS~1\Windows\Cookies
[F:909][D:6]-> C:\Users\Meryl\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:36][D:5]-> C:\$Recycle.Bin

1 - "C:\Lop SD\LopR_1.txt" - 02/10/2008|16:38 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 02/10/2008|17:02 - Option : [2]

--------------------\\ Fin du rapport a 17:02:20
[ UAC => 1 ]

   
Répondre à hec69

7

Destrio5, le 2 oct 2008 à 17:07:07

---> Supprime Lop S&D

---> Fais un scan rapide avec MBAM, supprime tout ce qu'il trouve et poste le rapport :
http://www.download.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.htm

   
Répondre à Destrio5

8

hec69, le 2 oct 2008 à 21:41:13

Merci de me suivre
Rst ce la dernière manip?
merci

   
Répondre à hec69

9

Destrio5, le 2 oct 2008 à 21:44:24

On verra.

   
Répondre à Destrio5

10

hec69, le 2 oct 2008 à 21:59:10

Malwarebytes' Anti-Malware 1.28
Version de la base de données: 1225
Windows 6.0.6001 Service Pack 1
Je n'ai pas encore supprimé car il n'y a pas de outon supprimer

02/10/2008 21:54:34
mbam-log-2008-10-02 (21-54-09).txt

Type de recherche: Examen rapide
Eléments examinés: 45837
Temps écoulé: 5 minute(s), 39 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 1
Fichier(s) infecté(s): 10

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
C:\Program Files\Spyware-Secure (Rogue.Spyware-Secure) -> No action taken.

Fichier(s) infecté(s):
C:\Users\Meryl\AppData\Local\Temp\4AfwU29E.exe.part (Trojan.Dropper) -> No action taken.
C:\Users\Meryl\AppData\Local\Temp\hdyw32Vs.exe.part (Trojan.Dropper) -> No action taken.
C:\Users\Meryl\AppData\Local\Temp\jrGRaSW_.exe.part (Trojan.Dropper) -> No action taken.
C:\Users\Meryl\AppData\Local\Temp\K317POOK.exe.part (Trojan.Dropper) -> No action taken.
C:\Users\Meryl\AppData\Local\Temp\ndMIPzxC.exe.part (Trojan.Dropper) -> No action taken.
C:\Users\Meryl\AppData\Local\Temp\OmllE7S4.exe.part (Trojan.Dropper) -> No action taken.
C:\Users\Meryl\AppData\Local\Temp\PMbCyQqX.exe.part (Trojan.Dropper) -> No action taken.
C:\Users\Meryl\AppData\Local\Temp\tfvNesk4.exe.part (Trojan.Dropper) -> No action taken.
C:\Program Files\Spyware-Secure\language (Rogue.Spyware-Secure) -> No action taken.
C:\Program Files\Spyware-Secure\uninst.exe (Rogue.Spyware-Secure) -> No action taken.

   
Répondre à hec69

11

Destrio5, le 2 oct 2008 à 22:07:50
  • +1

Supprimer la sélection.

   
Répondre à Destrio5

12

hec69, le 2 oct 2008 à 22:13:11

Reglé entre temps

   
Répondre à hec69

13

Destrio5, le 2 oct 2008 à 22:17:28
  • +1

Vu les infections qu'il a trouvé, je te conseille de faire un scan complet avec MBAM mais en mode sans échec.

   
Répondre à Destrio5

14

hec69, le 2 oct 2008 à 22:25:00

Je ne sais pas trop faire en mode sans echec

   
Répondre à hec69

15

Destrio5, le 2 oct 2008 à 22:39:38
   
Répondre à Destrio5

16

hec69, le 2 oct 2008 à 22:55:03

OK et merci encore pour ton suivi
Pour se soir je vais en rester là et pour ma je reprendrais demain matin, espérant que tu souhaites continuer de m'aider.
Bonne soiréee

   
Répondre à hec69

17

Destrio5, le 2 oct 2008 à 23:23:31
  • +1

Je serai là demain.

   
Répondre à Destrio5

19

hec, le 3 oct 2008 à 11:57:07

Re bonjour,

Le scan est négatif (pas d'infection) en mode sans echec.
Toutefois, mes fameuses fenetres intempestives du début (sujet de ma demande initiale) n'apparaissent plus.

   
Répondre à hec

18

hec69, le 3 oct 2008 à 10:51:52

Bonjour

Je vais faire un scan avec mawlwrebyres en mode sans echec, . Y a t'il un rapport a te transmettre?
merci

   
Répondre à hec69

20

Destrio5, le 3 oct 2008 à 12:56:21

---> Relance MBAM, va dans Quarantaine et supprime tout

---> Télécharge Toolbar-S&D (Team IDN) sur ton Bureau.
http://eric.71.mespages.googlepages.com/ToolBarSD.exe

* Lance l'installation du programme en exécutant le fichier téléchargé.
* Double-clique maintenant sur le raccourci de Toolbar-S&D.
* Sélectionne la langue souhaitée en tapant la lettre de ton choix puis en validant avec la touche Entrée.
* Choisis maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.
* Poste le rapport généré. (C:\TB.txt)

   
Répondre à Destrio5
72 réponses 1234 Suivant
Posez votre question Répondre
Ils ont besoin de votre aide