michka
-
Compteur de contenus
174 -
Inscription
-
Dernière visite
Tout ce qui a été posté par michka
-
bonjour j'ai un probleme avec un ordi Packard bell qui tourne sous Millenium.Quand j'essaye de me servir de ma clé il me dit qu'il me manque le fichier "USBNTMAP.SYS" mais j'ai du mal a le trouver sur internet j'y etait presque sur driversguide.com mais finalement je n'arrive pas a le recuperer.Merci de m'indiquer ou je peux trouver ce petit fichier
-
bonjour j'ai eu (mais je n'ai plus) un modem routeur linksis qui fonctionnait tres bien.J'habite une maison tout etait installé à l'etage et je n'ai jamais eu de probleme de wifi meme dans le jardin.En plus ils ont une hotline tres efficace et relativement sympa.Linksis c'est good
-
c est parti
-
pardon je savais pas mais comment je fais?
-
en fait je crois qu il etait caché ds un crack pour un prog recuperé sur emule mais je suis surpris que mon antivirus l'ait laissé entré il ne m a prevenu de sa presence qu'apres que j' ai ouvert le crack en question donc quand il etait la et c etait trop tard
-
je vais suivre tes conseils merci encore a+
-
: a plus tard mon heros
-
t'es mon heros Queruak ou que tu sois je te bennis.J'ai fait tout comme tu disais et oh miracle ca marche .Je peux enfin remettre la photo de mon bébé sur mon bureau.MERCI; Merci aussi a ts ceux qui m'ont aidé c'est a dire Stonangel ilp001 (meme si ca participation fut breve) Megataupe Pour finir j'ai une petite question a force de telecharger des antispyware et des protections dans ts les sens je ne sais pas trop quoi garder je me retrouve avec tt ca: spywareblaster xp antispy a2 free ad aware cw shreeder ewido microsoft antispyware spy bot S&D the cleaner clearprog kill box silent runners mon antivirus AVG free et le pare feux Windows. ( dois je garder celui ci ou un autre pare feux est il reccommandé? Merci encore je vous aime
-
vraiment jai fait ce que tu dis mais je ne trouve pas wp.bmp voici le new rapport de silentrunners "Silent Runners.vbs", revision 36, http://www.silentrunners.org/ Operating System: Windows XP SP2 Output limited to non-default values, except where indicated by "{++}" Startup items buried in registry: --------------------------------- HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ {++} "NBJ" = ""C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"" ["Ahead Software AG"] "Spamihilator" = ""C:\Program Files\Spamihilator\spamihilator.exe"" ["Michel Krämer"] "Skype" = ""C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized" [file not found] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ {++} "CHotkey" = "mHotkey.exe" ["Chicony"] "Apoint" = "C:\Program Files\Apoint2K\Apoint.exe" ["Alps Electric Co., Ltd."] "ATIModeChange" = "Ati2mdxx.exe" ["ATI Technologies, Inc."] "ATIPTA" = "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" ["ATI Technologies, Inc."] "NeroFilterCheck" = "C:\WINDOWS\system32\NeroCheck.exe" ["Ahead Software Gmbh"] "SoundMan" = "SOUNDMAN.EXE" ["Realtek Semiconductor Corp."] "QuickTime Task" = ""C:\Program Files\QuickTime\qttask.exe" -atboottime" ["Apple Computer, Inc."] "Xanadu" = "C:\Program Files\Foreignword\Xanadu\Xanadu.exe" [file not found] "AVG7_CC" = "C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP" ["GRISOFT, s.r.o."] "AVG7_EMC" = "C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe" ["GRISOFT, s.r.o."] "gcasServ" = ""C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"" [MS] "tcactive" = "C:\Program Files\The Cleaner\tca.exe" ["MooSoft Development"] "tcmonitor" = "C:\Program Files\The Cleaner\tcm.exe" ["MooSoft Development"] HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}\(Default) = "AcroIEHlprObj Class" [from CLSID] -> {CLSID}\InProcServer32\(Default) = "C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll" ["Adobe Systems Incorporated"] {AA58ED58-01DD-4d91-8333-CF10577473F7}\(Default) = "Google Toolbar Helper" [from CLSID] -> {CLSID}\InProcServer32\(Default) = "c:\program files\google\googletoolbar2.dll" ["Google Inc."] HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\ "{42071714-76d4-11d1-8b24-00a0c9068ff3}" = "Extension Affichage Panorama du Panneau de configuration" -> {CLSID}\InProcServer32\(Default) = "deskpan.dll" [file not found] "{88895560-9AA2-1069-930E-00AA0030EBC8}" = "Extension icône HyperTerminal" -> {CLSID}\InProcServer32\(Default) = "C:\WINDOWS\System32\hticons.dll" ["Hilgraeve, Inc."] "{640167b4-59b0-47a6-b335-a6b3c0695aea}" = "Portable Media Devices" -> {CLSID}\InProcServer32\(Default) = "C:\WINDOWS\System32\Audiodev.dll" [MS] "{cc86590a-b60a-48e6-996b-41d25ed39a1e}" = "Portable Media Devices Menu" -> {CLSID}\InProcServer32\(Default) = "C:\WINDOWS\System32\Audiodev.dll" [MS] "{9F97547E-4609-42C5-AE0C-81C61FFAEBC3}" = "AVG7 Shell Extension" -> {CLSID}\InProcServer32\(Default) = "C:\Program Files\Grisoft\AVG Free\avgse.dll" ["GRISOFT, s.r.o."] "{9F97547E-460A-42C5-AE0C-81C61FFAEBC3}" = "AVG7 Find Extension" -> {CLSID}\InProcServer32\(Default) = "C:\Program Files\Grisoft\AVG Free\avgse.dll" ["GRISOFT, s.r.o."] "{B41DB860-8EE4-11D2-9906-E49FADC173CA}" = "WinRAR shell extension" -> {CLSID}\InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" [null data] "{42042206-2D85-11D3-8CFF-005004838597}" = "Microsoft Office HTML Icon Handler" -> {CLSID}\InProcServer32\(Default) = "C:\Program Files\Microsoft Office\OFFICE11\msohev.dll" [MS] "{AB77609F-2178-4E6F-9C4B-44AC179D937A}" = "a² Context Menu Shell Extension" -> {CLSID}\InProcServer32\(Default) = "C:\PROGRA~1\A2FREE~1\A2CONT~1.DLL" [null data] HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\ INFECTION WARNING! "{9EF34FF2-3396-4527-9D27-04C8C1C67806}" = "Microsoft AntiSpyware Service Hook" -> {CLSID}\InProcServer32\(Default) = "C:\Program Files\Microsoft AntiSpyware\shellextension.dll" [MS] INFECTION WARNING! "{54D9498B-CF93-414F-8984-8CE7FDE0D391}" = "ewido shell guard" -> {CLSID}\InProcServer32\(Default) = "C:\Program Files\ewido\security suite\shellhook.dll" ["TODO: <Firmenname>"] HKLM\Software\Classes\PROTOCOLS\Filter\ INFECTION WARNING! text/xml\CLSID = "{807553E5-5146-11D5-A672-00B0D022E945}" -> {CLSID}\InProcServer32\(Default) = "C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\MSOXMLMF.DLL" [MS] Enabled Screen Saver: --------------------- HKCU\Control Panel\Desktop\ "SCRNSAVE.EXE" = "C:\WINDOWS\System32\BUTTER~1.SCR" (Butterfly Oasis Screensaver.scr) ["GAIN Publishing"] Enabled Wallpaper and Active Desktop: ------------------------------------- Active Desktop is disabled. HKCU\Control Panel\Desktop\ "Wallpaper" = "C:\wp.bmp" Winsock2 Service Provider DLLs: ------------------------------- Namespace Service Providers HKLM\System\CurrentControlSet\Services\Winsock2\Parameters\NameSpace_Catalog5\Catalog_Entries\ {++} 000000000001\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS] 000000000002\LibraryPath = "%SystemRoot%\System32\winrnr.dll" [MS] 000000000003\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS] Transport Service Providers HKLM\System\CurrentControlSet\Services\Winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\ {++} 0000000000##\PackedCatalogItem (contains) DLL [Company Name], (at) ## range: %SystemRoot%\system32\mswsock.dll [MS], 01 - 03, 06 - 22 %SystemRoot%\system32\rsvpsp.dll [MS], 04 - 05 Toolbars, Explorer Bars, Extensions: ------------------------------------ Toolbars HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\ "{4982D40A-C53B-4615-B15B-B5B5E98D167C}" -> {CLSID}\(Default) = "AOL Toolbar" -> {CLSID}\InProcServer32\(Default) = "C:\Program Files\AOL Toolbar\toolbar.dll" [file not found] "{2318C2B1-4965-11D4-9B18-009027A5CD4F}" -> {CLSID}\(Default) = "&Google" -> {CLSID}\InProcServer32\(Default) = "c:\program files\google\googletoolbar2.dll" ["Google Inc."] HKLM\Software\Microsoft\Internet Explorer\Toolbar\ "{2318C2B1-4965-11D4-9B18-009027A5CD4F}" -> {CLSID}\(Default) = "&Google" -> {CLSID}\InProcServer32\(Default) = "c:\program files\google\googletoolbar2.dll" ["Google Inc."]
-
voila j'refait tourner killbox il me dit a la premiere utilisation que les fichiers ont ete supp et quand je le relance une seconde fois il "pending file rename operation registry data has been removed by external process"
-
j'ai fait ce que tu m as dit j'ai uitilise killbox comme tu disais de le faire mais...je vais le refaire tourner une fois
-
je n'ai pas trouve aujourd'hui "wp.bmp" ni "msole.exe" ni ""popuper.exe" mais je crois avoir supprimé wp.bmp il y a un jour ou deux (je crois me souvenir que qqu un m'avait dit de le faire) ce qui expliquerait le fait que je ne le trouve pas.Quant aux 2 autres je ne sais plus si je les ai deja supp mais je ne crois pas
-
les differenres recherches n'ont rien trouvees, j' ai vidé le dossier Prefetch j'ai vide la corbeille mais rien ne peut changer comme fond de bureau
-
je ne vois pas mon rapport apparaitre ca fait pourtant 2 fois que je le mets. Je dois y aller je reviendrais tt a l'heure
-
voila qui est fait voici le resultat "Silent Runners.vbs", revision 36, http://www.silentrunners.org/ Operating System: Windows XP SP2 Output limited to non-default values, except where indicated by "{++}" Startup items buried in registry: --------------------------------- HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ {++} "NBJ" = ""C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"" ["Ahead Software AG"] "Spamihilator" = ""C:\Program Files\Spamihilator\spamihilator.exe"" ["Michel Krämer"] "Skype" = ""C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized" [file not found] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ {++} "CHotkey" = "mHotkey.exe" ["Chicony"] "Apoint" = "C:\Program Files\Apoint2K\Apoint.exe" ["Alps Electric Co., Ltd."] "ATIModeChange" = "Ati2mdxx.exe" ["ATI Technologies, Inc."] "ATIPTA" = "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" ["ATI Technologies, Inc."] "NeroFilterCheck" = "C:\WINDOWS\system32\NeroCheck.exe" ["Ahead Software Gmbh"] "SoundMan" = "SOUNDMAN.EXE" ["Realtek Semiconductor Corp."] "QuickTime Task" = ""C:\Program Files\QuickTime\qttask.exe" -atboottime" ["Apple Computer, Inc."] "Xanadu" = "C:\Program Files\Foreignword\Xanadu\Xanadu.exe" [file not found] "AVG7_CC" = "C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP" ["GRISOFT, s.r.o."] "AVG7_EMC" = "C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe" ["GRISOFT, s.r.o."] "gcasServ" = ""C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"" [MS] "tcactive" = "C:\Program Files\The Cleaner\tca.exe" ["MooSoft Development"] "tcmonitor" = "C:\Program Files\The Cleaner\tcm.exe" ["MooSoft Development"] HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}\(Default) = "AcroIEHlprObj Class" [from CLSID] -> {CLSID}\InProcServer32\(Default) = "C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll" ["Adobe Systems Incorporated"] {AA58ED58-01DD-4d91-8333-CF10577473F7}\(Default) = "Google Toolbar Helper" [from CLSID] -> {CLSID}\InProcServer32\(Default) = "c:\program files\google\googletoolbar2.dll" ["Google Inc."] HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\ "{42071714-76d4-11d1-8b24-00a0c9068ff3}" = "Extension Affichage Panorama du Panneau de configuration" -> {CLSID}\InProcServer32\(Default) = "deskpan.dll" [file not found] "{88895560-9AA2-1069-930E-00AA0030EBC8}" = "Extension icône HyperTerminal" -> {CLSID}\InProcServer32\(Default) = "C:\WINDOWS\System32\hticons.dll" ["Hilgraeve, Inc."] "{640167b4-59b0-47a6-b335-a6b3c0695aea}" = "Portable Media Devices" -> {CLSID}\InProcServer32\(Default) = "C:\WINDOWS\System32\Audiodev.dll" [MS] "{cc86590a-b60a-48e6-996b-41d25ed39a1e}" = "Portable Media Devices Menu" -> {CLSID}\InProcServer32\(Default) = "C:\WINDOWS\System32\Audiodev.dll" [MS] "{9F97547E-4609-42C5-AE0C-81C61FFAEBC3}" = "AVG7 Shell Extension" -> {CLSID}\InProcServer32\(Default) = "C:\Program Files\Grisoft\AVG Free\avgse.dll" ["GRISOFT, s.r.o."] "{9F97547E-460A-42C5-AE0C-81C61FFAEBC3}" = "AVG7 Find Extension" -> {CLSID}\InProcServer32\(Default) = "C:\Program Files\Grisoft\AVG Free\avgse.dll" ["GRISOFT, s.r.o."] "{B41DB860-8EE4-11D2-9906-E49FADC173CA}" = "WinRAR shell extension" -> {CLSID}\InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" [null data] "{42042206-2D85-11D3-8CFF-005004838597}" = "Microsoft Office HTML Icon Handler" -> {CLSID}\InProcServer32\(Default) = "C:\Program Files\Microsoft Office\OFFICE11\msohev.dll" [MS] "{AB77609F-2178-4E6F-9C4B-44AC179D937A}" = "a² Context Menu Shell Extension" -> {CLSID}\InProcServer32\(Default) = "C:\PROGRA~1\A2FREE~1\A2CONT~1.DLL" [null data] HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\ INFECTION WARNING! "{9EF34FF2-3396-4527-9D27-04C8C1C67806}" = "Microsoft AntiSpyware Service Hook" -> {CLSID}\InProcServer32\(Default) = "C:\Program Files\Microsoft AntiSpyware\shellextension.dll" [MS] INFECTION WARNING! "{54D9498B-CF93-414F-8984-8CE7FDE0D391}" = "ewido shell guard" -> {CLSID}\InProcServer32\(Default) = "C:\Program Files\ewido\security suite\shellhook.dll" ["TODO: <Firmenname>"] HKLM\Software\Classes\PROTOCOLS\Filter\ INFECTION WARNING! text/xml\CLSID = "{807553E5-5146-11D5-A672-00B0D022E945}" -> {CLSID}\InProcServer32\(Default) = "C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\MSOXMLMF.DLL" [MS] Enabled Screen Saver: --------------------- HKCU\Control Panel\Desktop\ "SCRNSAVE.EXE" = "C:\WINDOWS\System32\BUTTER~1.SCR" (Butterfly Oasis Screensaver.scr) ["GAIN Publishing"] Enabled Wallpaper and Active Desktop: ------------------------------------- Active Desktop is disabled. HKCU\Control Panel\Desktop\ "Wallpaper" = "C:\wp.bmp" Winsock2 Service Provider DLLs: ------------------------------- Namespace Service Providers HKLM\System\CurrentControlSet\Services\Winsock2\Parameters\NameSpace_Catalog5\Catalog_Entries\ {++} 000000000001\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS] 000000000002\LibraryPath = "%SystemRoot%\System32\winrnr.dll" [MS] 000000000003\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS] Transport Service Providers HKLM\System\CurrentControlSet\Services\Winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\ {++} 0000000000##\PackedCatalogItem (contains) DLL [Company Name], (at) ## range: %SystemRoot%\system32\mswsock.dll [MS], 01 - 03, 06 - 22 %SystemRoot%\system32\rsvpsp.dll [MS], 04 - 05 Toolbars, Explorer Bars, Extensions: ------------------------------------ Toolbars HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\ "{4982D40A-C53B-4615-B15B-B5B5E98D167C}" -> {CLSID}\(Default) = "AOL Toolbar" -> {CLSID}\InProcServer32\(Default) = "C:\Program Files\AOL Toolbar\toolbar.dll" [file not found] "{2318C2B1-4965-11D4-9B18-009027A5CD4F}" -> {CLSID}\(Default) = "&Google" -> {CLSID}\InProcServer32\(Default) = "c:\program files\google\googletoolbar2.dll" ["Google Inc."] HKLM\Software\Microsoft\Internet Explorer\Toolbar\ "{2318C2B1-4965-11D4-9B18-009027A5CD4F}" -> {CLSID}\(Default) = "&Google" -> {CLSID}\InProcServer32\(Default) = "c:\program files\google\googletoolbar2.dll" ["Google Inc."] Dormant Explorer Bars in "View, Explorer Bar" menu HKLM\Software\Classes\CLSID\{FF059E31-CC5A-4E2E-BF3B-96E929D65503}\ (Default) = "&Rechercher" Implemented Categories\{00021493-0000-0000-C000-000000000046}\ [vertical bar] InProcServer32\(Default) = "C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL" [MS] Extensions (Tools menu items, main toolbar menu buttons) HKLM\Software\Microsoft\Internet Explorer\Extensions\ {4982D40A-C53B-4615-B15B-B5B5E98D167C}\ "ButtonText" = "AOL Toolbar" "MenuText" = "AOL Toolbar" {5CC384BB-1326-11D5-F4AE-00C04923F885}\ "ButtonText" = "Xanadu" "Exec" = "C:\Program Files\Foreignword\Xanadu\XanaduLaunch.exe" [file not found] {92780B25-18CC-41C8-B9BE-3C9C571A8263}\ "ButtonText" = "Recherche" {FB5F1910-F110-11D2-BB9E-00C04F795683}\ "ButtonText" = "Messenger" "MenuText" = "Windows Messenger" "Exec" = "C:\Program Files\Messenger\msmsgs.exe" [MS] Running Services (Display Name, Service Name, Path {Service DLL}): ------------------------------------------------------------------ Ati HotKey Poller, Ati HotKey Poller, "C:\WINDOWS\System32\Ati2evxx.exe" ["ATI Technologies Inc."] AVG7 Alert Manager Server, Avg7Alrt, "C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe" ["GRISOFT, s.r.o."] AVG7 Update Service, Avg7UpdSvc, "C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe" ["GRISOFT, s.r.o."] Event Log Watch, LogWatch, "C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe" ["Computer Associates"] ewido security suite control, ewido security suite control, "C:\Program Files\ewido\security suite\ewidoctrl.exe" ["ewido networks"] ewido security suite guard, ewido security suite guard, "C:\Program Files\ewido\security suite\ewidoguard.exe" ["ewido networks"] SmartLinkService, SLService, "slserv.exe" [" "] Windows User Mode Driver Framework, UMWdf, "C:\WINDOWS\system32\wdfmgr.exe" [MS] ---------- This report excludes default entries except where indicated. To see *everywhere* the script checks and *everything* it finds, launch it from a command prompt or a shortcut with the -all parameter. ----------
-
INSTALLED SOFTWARE (106) - STEFMICHEL - 03/05/2005 12:35:18 a-squared Free 1.6 Ver: 1.6 Ad-Aware SE Personal Adobe Acrobat - Reader 6.0.2 Update Ver: 6.0.2 Installed: 18/10/2004 Adobe Reader 6.0.1 - Français Ver: 006.000.001 Installed: 18/10/2004 ALPS Touch Pad Driver AOL (France) AOL Toolbar Archiveur WinRAR ASAPI Update Athlon 64 Processor Driver Ver: 1.1.0.14 ATI - Utilitaire de désinstallation du logiciel Ver: 6.14.10.1007 ATI Control Panel Ver: 6.14.10.5088 ATI Display Driver Ver: 7.981-040127m-013764C AutoUpdate Ver: 1.0 AVG Free Edition AVIcodec (remove only) Butterfly Oasis Screensaver CA Licensing Ver: 1.52 Installed: 17/06/2004 ClearProg 1.4.1 Final Ver: 1.4.1 Final CMM PC Camera Ver: 1.00.000 Correctif Windows XP - KB834707 Ver: 20040929.110854 Correctif Windows XP - KB867282 Ver: 20050127.090417 Correctif Windows XP - KB873333 Ver: 20050114.005213 Correctif Windows XP - KB873339 Ver: 20041117.092459 Correctif Windows XP - KB885250 Ver: 20050118.202711 Correctif Windows XP - KB885835 Ver: 20041027.181713 Correctif Windows XP - KB885836 Ver: 20041028.173203 Correctif Windows XP - KB886185 Ver: 20041021.090540 Correctif Windows XP - KB887472 Ver: 20041014.162858 Correctif Windows XP - KB887742 Ver: 20041103.095002 Correctif Windows XP - KB888113 Ver: 20041116.131036 Correctif Windows XP - KB888302 Ver: 20041207.111426 Correctif Windows XP - KB890047 Ver: 20041221.124506 Correctif Windows XP - KB890175 Ver: 20041201.233338 Correctif Windows XP - KB890859 Ver: 1 Correctif Windows XP - KB890923 Ver: 1 Correctif Windows XP - KB891781 Ver: 20050110.165439 Correctif Windows XP - KB893066 Ver: 1 Correctif Windows XP - KB893086 Ver: 1 Cucusoft AVI to DVD/VCD/SVCD/MPEG Converter Pro 4.17 DivX Codec DivX Player Ver: 2.6 DivX Pro Trial Ver: 5.2.1 DVD Decrypter (Remove Only) DVD Shrink 3.2 DVD TO MP3 RIPPER version 3.0.0.3 EBP Comptes Bancaires 2004 eMule ewido security suite Extension HighMAT pour l'Assistant Graver un CD de Microsoft Windows XP Ver: 1.1.1905.1 Installed: 17/06/2004 Google Toolbar for Internet Explorer HijackThis 1.99.1 Ver: 1.99.1 Home Cinema Informations sur votre PC Installed: 17/06/2004 Kit de connexion ADSL Ver: 3.30.000 Learn2 Player (Uninstall Only) Lecteur Windows Media 10 Micro Application - Faire-Part Microsoft .NET Framework (French) Ver: 1.0.3705 Installed: 12/02/2005 Microsoft .NET Framework (French) v1.0.3705 Microsoft .NET Framework 1.0 Hotfix (KB886906) Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Ver: 1.1.4322 Installed: 12/02/2005 Microsoft .NET Framework 1.1 French Language Pack Ver: 1.1.4322 Installed: 17/06/2004 Microsoft .NET Framework 1.1 Hotfix (KB886903) Microsoft AntiSpyware Ver: 1.0 Installed: 08/03/2005 Microsoft AutoRoute Express Europe 2000 Ver: 7.0.24.0700 Microsoft Data Access Components KB870669 Microsoft Office Professional Edition 2003 Ver: 11.0.6361.0 Installed: 24/04/2005 Microsoft Return of Arcade Microsoft Works Ver: 08.04.0702 Installed: 10/12/2004 MSN Messenger 6.1 Ver: 6.1.0207 Installed: 17/06/2004 Multimedia / Internet Keyboard Driver VerR8.15 MUSICMATCH® Jukebox Nero Suite Outlook Express Launcher 2.2 Palm Desktop Ver: 4.1.0410 Installed: 12/04/2005 PixDiscount 2.00 PowerDVD PowerProducer QuickTime Realtek AC'97 Audio REALTEK Gigabit and Fast Ethernet NIC Driver Ver: 1.10 Shockwave Flash Smart Link 56K Modem Spamihilator Spybot - Search & Destroy 1.3 Ver: 1.3 SpywareBlaster v3.3 Ver: 3.3.0 Steinberg WaveLab v4.00c The Cleaner Ver: 4.1 Tiscali Internet Ver: 1.0.0.18 Installed: 10/12/2004 Utilitaire de sauvegarde Windows Ver: 5.1 Installed: 17/06/2004 Viewpoint Media Player Visionneuse Journal Windows Microsoft Ver: 1.5.2315.3 Installed: 17/06/2004 W83L528D Driver Install WebFldrs XP Ver: 9.50.6513 Installed: 17/06/2004 Windows Installer 3.1 (KB893803) Ver: 3.1 Windows Media Connect Windows Media Connect Ver: 1.0.0.0 Installed: 22/11/2004 Windows Media Format Runtime Windows Movie Maker 2.0 Ver: 2.0.0000 Installed: 25/04/2005 Windows XP Service Pack 2 Ver: 20040819.151636 xp-AntiSpy 3.94 Ver: 3.94 XviD MPEG-4 Video Codec Ver: XviD-1.0.3-20122004 ZoneAlarm Ver: 5.1.039.004 € Convertisseur v1.2
-
me revoila INSTALLED SOFTWARE (106) - STEFMICHEL - 03/05/2005 12:27:41 a-squared Free 1.6 Ver: 1.6 Ad-Aware SE Personal Adobe Acrobat - Reader 6.0.2 Update Ver: 6.0.2 Installed: 18/10/2004 Adobe Reader 6.0.1 - Français Ver: 006.000.001 Installed: 18/10/2004 ALPS Touch Pad Driver AOL (France) AOL Toolbar Archiveur WinRAR ASAPI Update Athlon 64 Processor Driver Ver: 1.1.0.14 ATI - Utilitaire de désinstallation du logiciel Ver: 6.14.10.1007 ATI Control Panel Ver: 6.14.10.5088 ATI Display Driver Ver: 7.981-040127m-013764C AutoUpdate Ver: 1.0 AVG Free Edition AVIcodec (remove only) Butterfly Oasis Screensaver CA Licensing Ver: 1.52 Installed: 17/06/2004 ClearProg 1.4.1 Final Ver: 1.4.1 Final CMM PC Camera Ver: 1.00.000 Correctif Windows XP - KB834707 Ver: 20040929.110854 Correctif Windows XP - KB867282 Ver: 20050127.090417 Correctif Windows XP - KB873333 Ver: 20050114.005213 Correctif Windows XP - KB873339 Ver: 20041117.092459 Correctif Windows XP - KB885250 Ver: 20050118.202711 Correctif Windows XP - KB885835 Ver: 20041027.181713 Correctif Windows XP - KB885836 Ver: 20041028.173203 Correctif Windows XP - KB886185 Ver: 20041021.090540 Correctif Windows XP - KB887472 Ver: 20041014.162858 Correctif Windows XP - KB887742 Ver: 20041103.095002 Correctif Windows XP - KB888113 Ver: 20041116.131036 Correctif Windows XP - KB888302 Ver: 20041207.111426 Correctif Windows XP - KB890047 Ver: 20041221.124506 Correctif Windows XP - KB890175 Ver: 20041201.233338 Correctif Windows XP - KB890859 Ver: 1 Correctif Windows XP - KB890923 Ver: 1 Correctif Windows XP - KB891781 Ver: 20050110.165439 Correctif Windows XP - KB893066 Ver: 1 Correctif Windows XP - KB893086 Ver: 1 Cucusoft AVI to DVD/VCD/SVCD/MPEG Converter Pro 4.17 DivX Codec DivX Player Ver: 2.6 DivX Pro Trial Ver: 5.2.1 DVD Decrypter (Remove Only) DVD Shrink 3.2 DVD TO MP3 RIPPER version 3.0.0.3 EBP Comptes Bancaires 2004 eMule ewido security suite Extension HighMAT pour l'Assistant Graver un CD de Microsoft Windows XP Ver: 1.1.1905.1 Installed: 17/06/2004 Google Toolbar for Internet Explorer HijackThis 1.99.1 Ver: 1.99.1 Home Cinema Informations sur votre PC Installed: 17/06/2004 Kit de connexion ADSL Ver: 3.30.000 Learn2 Player (Uninstall Only) Lecteur Windows Media 10 Micro Application - Faire-Part Microsoft .NET Framework (French) Ver: 1.0.3705 Installed: 12/02/2005 Microsoft .NET Framework (French) v1.0.3705 Microsoft .NET Framework 1.0 Hotfix (KB886906) Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Ver: 1.1.4322 Installed: 12/02/2005 Microsoft .NET Framework 1.1 French Language Pack Ver: 1.1.4322 Installed: 17/06/2004 Microsoft .NET Framework 1.1 Hotfix (KB886903) Microsoft AntiSpyware Ver: 1.0 Installed: 08/03/2005 Microsoft AutoRoute Express Europe 2000 Ver: 7.0.24.0700 Microsoft Data Access Components KB870669 Microsoft Office Professional Edition 2003 Ver: 11.0.6361.0 Installed: 24/04/2005 Microsoft Return of Arcade Microsoft Works Ver: 08.04.0702 Installed: 10/12/2004 MSN Messenger 6.1 Ver: 6.1.0207 Installed: 17/06/2004 Multimedia / Internet Keyboard Driver VerR8.15 MUSICMATCH® Jukebox Nero Suite Outlook Express Launcher 2.2 Palm Desktop Ver: 4.1.0410 Installed: 12/04/2005 PixDiscount 2.00 PowerDVD PowerProducer QuickTime Realtek AC'97 Audio REALTEK Gigabit and Fast Ethernet NIC Driver Ver: 1.10 Shockwave Flash Smart Link 56K Modem Spamihilator Spybot - Search & Destroy 1.3 Ver: 1.3 SpywareBlaster v3.3 Ver: 3.3.0 Steinberg WaveLab v4.00c The Cleaner Ver: 4.1 Tiscali Internet Ver: 1.0.0.18 Installed: 10/12/2004 Utilitaire de sauvegarde Windows Ver: 5.1 Installed: 17/06/2004 Viewpoint Media Player Visionneuse Journal Windows Microsoft Ver: 1.5.2315.3 Installed: 17/06/2004 W83L528D Driver Install WebFldrs XP Ver: 9.50.6513 Installed: 17/06/2004 Windows Installer 3.1 (KB893803) Ver: 3.1 Windows Media Connect Windows Media Connect Ver: 1.0.0.0 Installed: 22/11/2004 Windows Media Format Runtime Windows Movie Maker 2.0 Ver: 2.0.0000 Installed: 25/04/2005 Windows XP Service Pack 2 Ver: 20040819.151636 xp-AntiSpy 3.94 Ver: 3.94 XviD MPEG-4 Video Codec Ver: XviD-1.0.3-20122004 ZoneAlarm Ver: 5.1.039.004 € Convertisseur v1.2
-
ca y est j 'ai trouvé je fais ca et je reviens de suite
-
salut queruak je suis alle sur le site de billsway mais je ne vois pas ou le lancer!!il s'excuse...
-
je ne sais pas ce que ca va donner mais j'ai toujours un ecran de bureau tout bleu (mais il peut aussi etre d'une autre couleur)dont je n'arrive pas a me debarrasser j'ai beau faire propriete et ce qui suit je ne peux pas le personnaliser?????
-
salut megataupe comme je ne savais pas quel rapport d'analyse envoyer puisqu il en propose plusieurs je t'envoie les 3 j'ai aussi at un scan et supprime ce qui le derangeait donc le rapport de demarrage --------------------------------------------------------- ewido security suite - Rapport de démarrage --------------------------------------------------------- + Créé le: 10:41:14, 03/05/2005 + Somme de contrôle: CE492AC Reg\HKLM\Run CHotkey mHotkey.exe Reg\HKLM\Run Apoint C:\Program Files\Apoint2K\Apoint.exe Reg\HKLM\Run ATIModeChange Ati2mdxx.exe Reg\HKLM\Run ATIPTA C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe Reg\HKLM\Run NeroFilterCheck C:\WINDOWS\system32\NeroCheck.exe Reg\HKLM\Run SoundMan SOUNDMAN.EXE Reg\HKLM\Run QuickTime Task "C:\Program Files\QuickTime\qttask.exe" -atboottime Reg\HKLM\Run Xanadu C:\Program Files\Foreignword\Xanadu\Xanadu.exe Reg\HKLM\Run AVG7_CC C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP Reg\HKLM\Run AVG7_EMC C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe Reg\HKLM\Run gcasServ "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe" Reg\HKLM\Run tcactive C:\Program Files\The Cleaner\tca.exe Reg\HKLM\Run tcmonitor C:\Program Files\The Cleaner\tcm.exe Reg\HKCU\Run NBJ "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe" Reg\HKCU\Run Spamihilator "C:\Program Files\Spamihilator\spamihilator.exe" Reg\HKCU\Run Skype "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized voici le rapport de connection --------------------------------------------------------- ewido security suite - Rapport de connection --------------------------------------------------------- + Créé le: 10:46:12, 03/05/2005 + Somme de contrôle: F98099E7 TCP 0.0.0.0:135 0.0.0.0:0 LISTENING TCP 0.0.0.0:445 0.0.0.0:0 LISTENING TCP 84.99.171.240:135 84.97.160.200:1776 TIME_WAIT TCP 84.99.171.240:135 84.99.5.153:3334 TIME_WAIT TCP 84.99.171.240:135 84.99.5.153:3346 TIME_WAIT TCP 84.99.171.240:135 84.99.33.41:2478 TIME_WAIT TCP 84.99.171.240:135 84.99.33.41:2489 TIME_WAIT TCP 84.99.171.240:135 84.99.42.187:3561 TIME_WAIT TCP 84.99.171.240:135 84.99.54.163:1651 ESTABLISHED TCP 84.99.171.240:135 84.99.212.105:2970 TIME_WAIT TCP 84.99.171.240:135 84.99.212.105:2994 TIME_WAIT TCP 84.99.171.240:135 84.99.224.139:3687 TIME_WAIT TCP 84.99.171.240:135 84.99.224.139:3905 TIME_WAIT TCP 84.99.171.240:135 84.99.227.169:1048 TIME_WAIT TCP 84.99.171.240:135 84.99.227.169:1078 TIME_WAIT TCP 84.99.171.240:135 84.99.233.144:2839 TIME_WAIT TCP 84.99.171.240:135 84.99.241.159:1768 TIME_WAIT TCP 84.99.171.240:135 84.99.241.159:1782 TIME_WAIT TCP 84.99.171.240:135 84.99.241.159:1790 TIME_WAIT TCP 84.99.171.240:135 84.99.241.159:1800 TIME_WAIT TCP 84.99.171.240:445 84.99.40.2:4170 ESTABLISHED TCP 127.0.0.1:110 0.0.0.0:0 LISTENING TCP 127.0.0.1:143 0.0.0.0:0 LISTENING TCP 127.0.0.1:993 0.0.0.0:0 LISTENING TCP 127.0.0.1:995 0.0.0.0:0 LISTENING TCP 127.0.0.1:10110 0.0.0.0:0 LISTENING TCP 169.254.101.116:139 0.0.0.0:0 LISTENING UDP 0.0.0.0:445 UDP 0.0.0.0:500 UDP 0.0.0.0:1032 UDP 0.0.0.0:1051 UDP 0.0.0.0:4500 UDP 84.99.171.240:123 UDP 84.99.171.240:1900 UDP 127.0.0.1:123 UDP 127.0.0.1:1104 UDP 127.0.0.1:1900 UDP 169.254.101.116:123 UDP 169.254.101.116:137 UDP 169.254.101.116:138 UDP 169.254.101.116:1900 et enfin le rapport de processus --------------------------------------------------------- ewido security suite - Rapport des processus --------------------------------------------------------- + Créé le: 10:47:00, 03/05/2005 + Somme de contrôle: 857EDA31 0: System Process 4: System Process 168: C:\WINDOWS\system32\spoolsv.exe 316: C:\WINDOWS\system32\wdfmgr.exe 440: C:\Program Files\The Cleaner\tcm.exe 448: C:\Program Files\Apoint2K\Apntex.exe 460: C:\Program Files\ewido\security suite\securitysuite.exe 604: C:\WINDOWS\mHotkey.exe 636: C:\Program Files\Apoint2K\Apoint.exe 664: C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe 704: C:\WINDOWS\SOUNDMAN.EXE 732: C:\Program Files\QuickTime\qttask.exe 788: C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe 796: C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe 804: C:\Program Files\Microsoft AntiSpyware\gcasServ.exe 812: \SystemRoot\System32\smss.exe 828: C:\Program Files\The Cleaner\tca.exe 864: \??\C:\WINDOWS\system32\csrss.exe 868: C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe 888: \??\C:\WINDOWS\system32\winlogon.exe 936: C:\WINDOWS\system32\services.exe 948: C:\WINDOWS\system32\lsass.exe 980: C:\WINDOWS\system32\slserv.exe 1100: C:\WINDOWS\System32\Ati2evxx.exe 1132: C:\WINDOWS\system32\svchost.exe 1140: C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe 1204: C:\WINDOWS\system32\svchost.exe 1264: C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe 1352: C:\WINDOWS\System32\svchost.exe 1384: C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe 1456: C:\WINDOWS\system32\NOTEPAD.EXE 1460: C:\WINDOWS\System32\svchost.exe 1504: C:\WINDOWS\System32\svchost.exe 1564: C:\Program Files\Spamihilator\spamihilator.exe 1620: C:\WINDOWS\System32\svchost.exe 1824: C:\Program Files\Internet Explorer\iexplore.exe 2032: C:\WINDOWS\Explorer.EXE 2072: C:\Program Files\ewido\security suite\ewidoguard.exe 2820: C:\Program Files\ewido\security suite\ewidoctrl.exe
-
j'ai tout fait voici mon new log Logfile of HijackThis v1.99.1 Scan saved at 10:14:33, on 03/05/2005 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\mHotkey.exe C:\Program Files\Apoint2K\Apoint.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\QuickTime\qttask.exe C:\Program Files\Apoint2K\Apntex.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\Program Files\Microsoft AntiSpyware\gcasServ.exe C:\Program Files\The Cleaner\tca.exe C:\Program Files\The Cleaner\tcm.exe C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe C:\Program Files\Spamihilator\spamihilator.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe C:\WINDOWS\system32\slserv.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Internet Explorer\iexplore.exe C:\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.neuf.fr/ R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.neuf.fr/ R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O4 - HKLM\..\Run: [CHotkey] mHotkey.exe O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Xanadu] C:\Program Files\Foreignword\Xanadu\Xanadu.exe O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe" O4 - HKLM\..\Run: [tcactive] C:\Program Files\The Cleaner\tca.exe O4 - HKLM\..\Run: [tcmonitor] C:\Program Files\The Cleaner\tcm.exe O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe" O4 - HKCU\..\Run: [spamihilator] "C:\Program Files\Spamihilator\spamihilator.exe" O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MI1933~1\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html O9 - Extra button: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll (file missing) O9 - Extra 'Tools' menuitem: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll (file missing) O9 - Extra button: Xanadu - {5CC384BB-1326-11D5-F4AE-00C04923F885} - C:\Program Files\Foreignword\Xanadu\XanaduLaunch.exe (file missing) O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: teleir_cert - https://static.ir.dgi.minefi.gouv.fr/secure...teleir_cert.cab O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=36467&clcid=0x409 O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5co...b?1098086073234 O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2004061...all/xscan53.cab O16 - DPF: {80DD2229-B8E4-4C77-B72F-F22972D723EA} (AvxScanOnline Control) - http://www.bitdefender.com/scan/Msie/bitdefender.cab O16 - DPF: {A3009861-330C-4E10-822B-39D16EC8829D} (CRAVOnline Object) - http://www.ravantivirus.com/scan/ravonline.cab O16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} (ASquaredScanForm Element) - http://www.windowsecurity.com/trojanscan/axscan.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{78B0ADAA-F114-410A-8BDA-067DCCBD678B}: NameServer = 80.118.196.41 80.118.192.111 O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: Client de licence CA (CA_LIC_CLNT) - Computer Associates - C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmt.exe O23 - Service: Serveur de licence CA (CA_LIC_SRVR) - Computer Associates - C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmtd.exe O23 - Service: Event Log Watch (LogWatch) - Computer Associates - C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
-
je dois y aller (c est trop long a faire pour ce sois)mais je fais ca demain et je te tiens au jus en attendant merci de ton aidetiens au courrant
-
salut StonangelLogfile of HijackThis v1.99.1 Scan saved at 22:26:12, on 02/05/2005 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe C:\WINDOWS\system32\slserv.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\mHotkey.exe C:\Program Files\Apoint2K\Apoint.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\QuickTime\qttask.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\Program Files\Apoint2K\Apntex.exe C:\Program Files\Microsoft AntiSpyware\gcasServ.exe C:\Program Files\The Cleaner\tca.exe C:\Program Files\The Cleaner\tcm.exe C:\Program Files\Spamihilator\spamihilator.exe C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe C:\WINDOWS\system32\ntvdm.exe C:\Program Files\Internet Explorer\iexplore.exe C:\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.neuf.fr/ R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.neuf.fr/ R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll (file missing) O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O4 - HKLM\..\Run: [CHotkey] mHotkey.exe O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Xanadu] C:\Program Files\Foreignword\Xanadu\Xanadu.exe O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe" O4 - HKLM\..\Run: [tcactive] C:\Program Files\The Cleaner\tca.exe O4 - HKLM\..\Run: [tcmonitor] C:\Program Files\The Cleaner\tcm.exe O4 - HKLM\..\Run: [sys004] C:\WINDOWS\system32\sys004.exe O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe" O4 - HKCU\..\Run: [spamihilator] "C:\Program Files\Spamihilator\spamihilator.exe" O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MI1933~1\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html O9 - Extra button: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll (file missing) O9 - Extra 'Tools' menuitem: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll (file missing) O9 - Extra button: Xanadu - {5CC384BB-1326-11D5-F4AE-00C04923F885} - C:\Program Files\Foreignword\Xanadu\XanaduLaunch.exe (file missing) O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: teleir_cert - https://static.ir.dgi.minefi.gouv.fr/secure...teleir_cert.cab O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=36467&clcid=0x409 O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5co...b?1098086073234 O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2004061...all/xscan53.cab O16 - DPF: {80DD2229-B8E4-4C77-B72F-F22972D723EA} (AvxScanOnline Control) - http://www.bitdefender.com/scan/Msie/bitdefender.cab O16 - DPF: {A3009861-330C-4E10-822B-39D16EC8829D} (CRAVOnline Object) - http://www.ravantivirus.com/scan/ravonline.cab O16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} (ASquaredScanForm Element) - http://www.windowsecurity.com/trojanscan/axscan.cab O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: Client de licence CA (CA_LIC_CLNT) - Computer Associates - C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmt.exe O23 - Service: Serveur de licence CA (CA_LIC_SRVR) - Computer Associates - C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmtd.exe O23 - Service: Event Log Watch (LogWatch) - Computer Associates - C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
-
bonjour a ts j'ai 1 gros probleme.ca fait 8 jours que je cavale apres un trojan istbar.gen mais je n'arrive pas à m'en debarasser.il m'aime que voulez vous! J'ai fait tout ce qui est preconise dans ces cas là( ad aware,spybot,a2free;clearprog;spywareblaster,the cleaner plus qques antivirus en ligne ) mais rien n'y fait Mon antivirus AVG free reconnait parfois des choses et les elimine comme d'ailleurs les outils cites plus haut mais ce putain de trojan revient tout le temps. Merci de m'aider j'ai un log d'hijackthis pret a etre etudier si qq un a la tps