rien2negatif

re en fait je n'aiplus de messenger plus g le 7.5.Par contre g aussi un Atory messenger adblocker 3.0 dans la liste des mes programmes. la ligne que tu m'as demandé de fixer n'est plus là quand je scan avec hijacktis. j'utlise quand meme lopremover? merci

re pr msn plus on l'avait installé avec sponsors la premiere fois et donc reinstallé une deucxieme fois sans sponsors. Par contre je c pas où il est maintenant.. g fixé la ligne en question et je te pose mon rapport hijacktis la ligne 18 et 20 me semblent pas normales qu'est ce?? je v faire les scans en ligne et je te poste ça merci Logfile of HijackThis v1.99.1 Scan saved at 21:51:58, on 23/04/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\Messenger\msmsgs.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Sitecom\Sitecom Wireless Network PC Card 54G WL-112\Installer\WINXP\WLANUTL.exe C:\Program Files\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe C:\WINDOWS\system32\cisvc.exe C:\Program Files\ewido anti-malware\ewidoctrl.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\ZONELABS\vsmon.exe C:\WINDOWS\system32\cidaemon.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\hijackthis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.nwnlaevluvzarfybzkbqmnwqs.com/F...4In/24WXDEs.jpg R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - Global Startup: Sitecom WL-112 Utility.lnk = C:\Program Files\Sitecom\Sitecom Wireless Network PC Card 54G WL-112\Installer\WINXP\WLANUTL.exe O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O12 - Plugin for .mpeg: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin3.dll O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O20 - AppInit_DLLs: sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe

bonsoir regis je t'en prie ne sois pas desolé! ok g le rapport tcp: msnmsgr.exe:1228 TCP yoan:1965 by2m6-cs56.msgr.hotmail.com:1863 ESTABLISHED iexplore.exe:484 TCP yoan:2469 jarnacsrv.wanadoo.fr.wanadooportails.com:5644 ESTABLISHED avguard.exe:2040 TCP YOAN:18350 localhost:1110 ESTABLISHED AVGNT.EXE:1644 TCP YOAN:1110 localhost:18350 ESTABLISHED merci!!

bonsoir tjs ce probleme de connexion. g pas pu me servir de blacklight. G un cadre qui apparait sur des pages quand je surfe avec le message cliquer ici pour activer le controle. je fais un rapport tcpview et je le poste ici? merci

un petit truc en g dans mon bureau un doc text qui ne devrait en lieu plus sur je tiens à preciser que c pc n'est pas à moi mais à mon ami qui ni connait rien non plus et qui ne cherche pas à savoir. Il y a donc tout un tas de trucs dans ce pc dont je ne sais pas grand chose... le doc en question contient les parametres sans fil

re bonsoir regis56 g telechargé blbeta mais apres accepter la licence je trouve pas l'option scan through windows explorer et qiuand je scan ya 0 detections. pour la ligne 17 desolé mais je sais pas ce que c'est o fait aujourd'hui en me connectant mon pare feu était encore desactivé et cette fois l'exception coché etait infrastructure pu n p merci

Bonsoir!! Depuis votre aide les choses allaient mieux malgré ce pb de connexion wifi. Mais là g encore un ver je crois . Mon pare feu windows se desa<ctive tout seul et g trouvé updater.exe dans les exceptions! apres renseignement c un ver qui permet aussi le squattage de connexion à distance non? G tjs qqu'un qui m'envoie des mails malgré la mise à jour de ma liste rouge sur msn. Et en cliquant droit sur son mail, je nepeux pas me proscrire. Que faire? Je pense que la source de mon pb vient de là son pseudo est fidel m-therese. De plus c u_n contact que g eu en jouant à jarnac sur wanadoo.Hors je suis retourné joué à jarnac hier et quand g cliqué sur les icones habituelles pour jouer, il y avait un cadre supplementaire avec le message "cliquer ici pour activer ce controle". Et aprés g eu très peu de debit pr moi toute la soirée!! pour la connexion je suis chez alice avec 8 mega avec un modem adsl. y a un pc principal et là g un portable avec un carte sitecom wl112 merci bcp

salut regis56! voici ce que tu m'as demandé ps: kesako le WMI? merci Logfile of HijackThis v1.99.1 Scan saved at 21:49:24, on 17/04/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\Messenger\msmsgs.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Sitecom\Sitecom Wireless Network PC Card 54G WL-112\Installer\WINXP\WLANUTL.exe C:\WINDOWS\system32\cisvc.exe C:\Program Files\ewido anti-malware\ewidoctrl.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\ZONELABS\vsmon.exe C:\WINDOWS\system32\cidaemon.exe C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\AntiVir PersonalEdition Classic\sched.exe C:\WINDOWS\system32\NOTEPAD.EXE C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\notepad.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\hijackthis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.nwnlaevluvzarfybzkbqmnwqs.com/F...4In/24WXDEs.jpg R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - Global Startup: Sitecom WL-112 Utility.lnk = C:\Program Files\Sitecom\Sitecom Wireless Network PC Card 54G WL-112\Installer\WINXP\WLANUTL.exe O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O12 - Plugin for .mpeg: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin3.dll O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O20 - AppInit_DLLs: sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe

re bonsoir et encore merci pr toute l'aide que vous m'avez apporté g encore toute fois un pb de piratge de connexion je pense je viens de poster dans infections typiques c t peut etre une erreur je ne connais pasbien ce site désolé Où dois je m'adresser svp merci salut

bonsoir g besoin d'aide pr me debarasser de qq'un qui pirate ma connexion wifi. Qu'est ce que WMI? g eu une alerte de zonealarm pr WMI G trouvé des dossiers WMI qui viennent d'etre créer comme un fichier pf et ce doc bloc note qui suit: /cgi-bin/getmsg?msg=MSG1145292420.4&start=185458&len=72672&imgsafe=y&curmbox=F000000001&a=961a5bfe114d5cc256a18c56c58513573e9420cbce17b28606171e2c97105f82&curmbox=F000000001&a=961a5bfe114d5cc256a18c56c58513573e9420cbce17b28(Mon Apr 17 00:41:27 2006.13274998) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 16:40:38 2006.70826573) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 16:52:06 2006.71514622) : ESS unable to load consumer provider NTEventLogEventConsumer from provider subsystem: 0x80041013 (Mon Apr 17 16:52:07 2006.71514953) : Failed the first attempt to retrieve the sink to deliver an event to event consumer NTEventLogEventConsumer="SCM Event Log Consumer" with error code 80041013. WMI will reload and retry. (Mon Apr 17 16:54:52 2006.112682) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 16:54:55 2006.116277) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 16:54:56 2006.116898) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 16:54:57 2006.117899) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 16:55:04 2006.125540) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 16:55:12 2006.133221) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 17:03:09 2006.609666) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 17:07:34 2006.875048) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 17:10:26 2006.1046955) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 17:12:46 2006.1186976) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 17:13:09 2006.1209679) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 17:13:09 2006.1209839) : Failed to log an event: 1F (Mon Apr 17 17:13:09 2006.1209859) : Dropping event destined for event consumer NTEventLogEventConsumer="SCM Event Log Consumer" in namespace //./root/subscription (Mon Apr 17 17:13:10 2006.1211391) : Failed to deliver an event to event consumer NTEventLogEventConsumer="SCM Event Log Consumer" with error code 0x80041001. Dropping event. (Mon Apr 17 17:13:10 2006.1211391) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 17:13:10 2006.1211401) : Failed to log an event: 6B5 (Mon Apr 17 17:13:10 2006.1211401) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 17:13:10 2006.1211401) : Failed to log an event: 6B5 (Mon Apr 17 17:13:10 2006.1211451) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 17:13:10 2006.1211461) : Failed to log an event: 6B5 (Mon Apr 17 17:13:10 2006.1211461) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 17:13:10 2006.1211461) : Failed to log an event: 6B5 (Mon Apr 17 17:13:10 2006.1211461) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 17:13:10 2006.1211461) : Failed to log an event: 6B5 (Mon Apr 17 17:13:10 2006.1211461) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 17:13:10 2006.1211472) : Failed to log an event: 6B5 (Mon Apr 17 17:13:10 2006.1211472) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 17:13:10 2006.1211472) : Failed to log an event: 6B5 (Mon Apr 17 17:13:10 2006.1211472) : Dropping event destined for event consumer NTEventLogEventConsumer="SCM Event Log Consumer" in namespace //./root/subscription (Mon Apr 17 17:13:10 2006.1211472) : Dropping event destined for event consumer NTEventLogEventConsumer="SCM Event Log Consumer" in namespace //./root/subscription (Mon Apr 17 17:13:10 2006.1211472) : Dropping event destined for event consumer NTEventLogEventConsumer="SCM Event Log Consumer" in namespace //./root/subscription (Mon Apr 17 17:13:10 2006.1211472) : Dropping event destined for event consumer NTEventLogEventConsumer="SCM Event Log Consumer" in namespace //./root/subscription (Mon Apr 17 17:13:10 2006.1211472) : Dropping event destined for event consumer NTEventLogEventConsumer="SCM Event Log Consumer" in namespace //./root/subscription (Mon Apr 17 17:13:10 2006.1211482) : Dropping event destined for event consumer NTEventLogEventConsumer="SCM Event Log Consumer" in namespace //./root/subscription (Mon Apr 17 17:13:10 2006.1211482) : Dropping event destined for event consumer NTEventLogEventConsumer="SCM Event Log Consumer" in namespace //./root/subscription (Mon Apr 17 17:13:10 2006.1211482) : Failed to deliver an event to event consumer NTEventLogEventConsumer="SCM Event Log Consumer" with error code 0x80041001. Dropping event. (Mon Apr 17 17:13:11 2006.1211752) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 17:13:11 2006.1211752) : Failed to log an event: 6B5 (Mon Apr 17 17:13:11 2006.1211752) : Dropping event destined for event consumer NTEventLogEventConsumer="SCM Event Log Consumer" in namespace //./root/subscription (Mon Apr 17 17:13:11 2006.1211752) : Failed to deliver an event to event consumer NTEventLogEventConsumer="SCM Event Log Consumer" with error code 0x80041001. Dropping event. (Mon Apr 17 17:13:11 2006.1212193) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 17:13:11 2006.1212193) : Failed to log an event: 6B5 (Mon Apr 17 17:13:11 2006.1212203) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 17:13:11 2006.1212203) : Failed to log an event: 6B5 (Mon Apr 17 17:13:11 2006.1212203) : Dropping event destined for event consumer NTEventLogEventConsumer="SCM Event Log Consumer" in namespace //./root/subscription (Mon Apr 17 17:13:11 2006.1212203) : Dropping event destined for event consumer NTEventLogEventConsumer="SCM Event Log Consumer" in namespace //./root/subscription (Mon Apr 17 17:13:11 2006.1212203) : Failed to deliver an event to event consumer NTEventLogEventConsumer="SCM Event Log Consumer" with error code 0x80041001. Dropping event. (Mon Apr 17 17:13:11 2006.1212303) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 17:13:11 2006.1212303) : Failed to log an event: 6B5 (Mon Apr 17 17:13:11 2006.1212303) : Dropping event destined for event consumer NTEventLogEventConsumer="SCM Event Log Consumer" in namespace //./root/subscription (Mon Apr 17 17:13:11 2006.1212303) : Failed to deliver an event to event consumer NTEventLogEventConsumer="SCM Event Log Consumer" with error code 0x80041001. Dropping event. (Mon Apr 17 17:13:12 2006.1213174) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 17:13:12 2006.1213174) : Failed to log an event: 6B5 (Mon Apr 17 17:13:12 2006.1213174) : Dropping event destined for event consumer NTEventLogEventConsumer="SCM Event Log Consumer" in namespace //./root/subscription (Mon Apr 17 17:13:12 2006.1213174) : Failed to deliver an event to event consumer NTEventLogEventConsumer="SCM Event Log Consumer" with error code 0x80041001. Dropping event. (Mon Apr 17 17:13:12 2006.1213424) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 17:13:12 2006.1213424) : Failed to log an event: 6B5 (Mon Apr 17 17:13:12 2006.1213424) : Dropping event destined for event consumer NTEventLogEventConsumer="SCM Event Log Consumer" in namespace //./root/subscription (Mon Apr 17 17:13:12 2006.1213424) : Failed to deliver an event to event consumer NTEventLogEventConsumer="SCM Event Log Consumer" with error code 0x80041001. Dropping event. (Mon Apr 17 17:13:13 2006.1213595) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 17:13:13 2006.1213595) : Failed to log an event: 6B5 (Mon Apr 17 17:13:13 2006.1213595) : Dropping event destined for event consumer NTEventLogEventConsumer="SCM Event Log Consumer" in namespace //./root/subscription (Mon Apr 17 17:13:13 2006.1213595) : Failed to deliver an event to event consumer NTEventLogEventConsumer="SCM Event Log Consumer" with error code 0x80041001. Dropping event. (Mon Apr 17 17:13:13 2006.1213905) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 17:13:13 2006.1213905) : Failed to log an event: 6B5 (Mon Apr 17 17:13:13 2006.1213905) : Dropping event destined for event consumer NTEventLogEventConsumer="SCM Event Log Consumer" in namespace //./root/subscription (Mon Apr 17 17:13:13 2006.1213905) : Failed to deliver an event to event consumer NTEventLogEventConsumer="SCM Event Log Consumer" with error code 0x80041001. Dropping event. (Mon Apr 17 17:13:14 2006.1215037) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 17:13:14 2006.1215037) : Failed to log an event: 6B5 (Mon Apr 17 17:13:14 2006.1215037) : Dropping event destined for event consumer NTEventLogEventConsumer="SCM Event Log Consumer" in namespace //./root/subscription (Mon Apr 17 17:13:14 2006.1215037) : Failed to deliver an event to event consumer NTEventLogEventConsumer="SCM Event Log Consumer" with error code 0x80041001. Dropping event. (Mon Apr 17 17:13:14 2006.1215277) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 17:13:14 2006.1215277) : Failed to log an event: 6B5 (Mon Apr 17 17:13:14 2006.1215277) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 17:13:14 2006.1215277) : Failed to log an event: 6B5 (Mon Apr 17 17:13:14 2006.1215277) : Dropping event destined for event consumer NTEventLogEventConsumer="SCM Event Log Consumer" in namespace //./root/subscription (Mon Apr 17 17:13:14 2006.1215277) : Dropping event destined for event consumer NTEventLogEventConsumer="SCM Event Log Consumer" in namespace //./root/subscription (Mon Apr 17 17:13:14 2006.1215277) : Failed to deliver an event to event consumer NTEventLogEventConsumer="SCM Event Log Consumer" with error code 0x80041001. Dropping event. (Mon Apr 17 17:13:16 2006.1216709) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 17:13:16 2006.1216719) : Failed to log an event: 6B5 (Mon Apr 17 17:13:16 2006.1216719) : Dropping event destined for event consumer NTEventLogEventConsumer="SCM Event Log Consumer" in namespace //./root/subscription (Mon Apr 17 17:13:16 2006.1216719) : Failed to deliver an event to event consumer NTEventLogEventConsumer="SCM Event Log Consumer" with error code 0x80041001. Dropping event. (Mon Apr 17 17:13:16 2006.1217100) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 17:13:16 2006.1217100) : Failed to log an event: 6B5 (Mon Apr 17 17:13:16 2006.1217100) : Dropping event destined for event consumer NTEventLogEventConsumer="SCM Event Log Consumer" in namespace //./root/subscription (Mon Apr 17 17:13:16 2006.1217110) : Failed to deliver an event to event consumer NTEventLogEventConsumer="SCM Event Log Consumer" with error code 0x80041001. Dropping event. (Mon Apr 17 17:13:20 2006.1220745) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 17:13:20 2006.1220745) : Failed to log an event: 6B5 (Mon Apr 17 17:13:20 2006.1220745) : Dropping event destined for event consumer NTEventLogEventConsumer="SCM Event Log Consumer" in namespace //./root/subscription (Mon Apr 17 17:13:20 2006.1220745) : Failed to deliver an event to event consumer NTEventLogEventConsumer="SCM Event Log Consumer" with error code 0x80041001. Dropping event. (Mon Apr 17 17:13:20 2006.1220995) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 17:13:20 2006.1220995) : Failed to log an event: 6B5 (Mon Apr 17 17:13:20 2006.1220995) : Dropping event destined for event consumer NTEventLogEventConsumer="SCM Event Log Consumer" in namespace //./root/subscription (Mon Apr 17 17:13:20 2006.1220995) : Failed to deliver an event to event consumer NTEventLogEventConsumer="SCM Event Log Consumer" with error code 0x80041001. Dropping event. (Mon Apr 17 17:13:28 2006.1228857) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 17:13:28 2006.1228857) : Failed to log an event: 6B5 (Mon Apr 17 17:13:28 2006.1228857) : Dropping event destined for event consumer NTEventLogEventConsumer="SCM Event Log Consumer" in namespace //./root/subscription (Mon Apr 17 17:13:28 2006.1228857) : Failed to deliver an event to event consumer NTEventLogEventConsumer="SCM Event Log Consumer" with error code 0x80041001. Dropping event. (Mon Apr 17 20:21:54 2006.142534) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 20:21:57 2006.144868) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 20:22:01 2006.148803) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 20:22:01 2006.148803) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 20:22:14 2006.162163) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 20:22:29 2006.176974) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 20:41:08 2006.1295803) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 20:41:12 2006.1299718) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 20:41:26 2006.1314119) : NT Event Log Consumer: could not retrieve sid, 0x80041002 (Mon Apr 17 20:41:28 2006.1316002) : NT Event Log Consumer: could not retrieve sid, 0x80041002 606171e2c97105f82 que veut dire tout ça?? merci d'avance

re je viens de verifier mon msn ces deux contacts en question sont deja dans ma liste rouge et donc théoriquement devraient ne plus pouvoir m'envoyer de mails hors j'en justement reçu 5 nouveaux tout a l'heure avec 350 ko de pieces jointes!!

bonsoir gof merci pour cette mine d'or de renseignements, je vais avoir de quoi m'occuper un certain temps. Pour mon pb de wifi je verrais plus tard. Deja je vais pouvoir empecher l'auteur de ces mails infectieux de continuer à me harceler.. Merci pr tout a plus

salut merci pr l'aide ça va beaucoup mieux mais il me reste encore qques pbs g eu 2 contacts sur msn douteux dont un qui m'a envoyé un mail avec piece attaché contenant un virus. Il a fallu que je désinstalle la carte wifi pr recuperer ma connexion. Mais depuis g souvent des pbs avec ma connexion, si je laisse connecté que je suis pas là, au retour je plus naviguer mais ma carte tourne normalement avec un debit "bon" mais moi j'en profite pas! Maintenant ma carte désinstalle toute seule??!! et je suis obligé à chaque fois de reisntaller ma carte avec le cd d'install. G viré ces deux contacts de ma liste et bloqué mais je reçois tjs des mails d'elle que je supprime aussitot..Comment me debarasser de ces deux contatcs? et Comment reprendre le controle de ma connexion? g essayé de regarder un peu les astuces du forum sur la surveillance des ports etc...Mais je comprends pas tout et meme si je peux suivre une procédure je ne sais pas interpreter les resultats et encore moins resoudre ces pbs. De plus à chaque démarrage g un message d'alerte pr pare feu avg arreté, mais une fois que avg se lance le pare feu apparait actif...Puis je installer antivir comme antivirus à la place de avg? a t il un pare feu correct? g aussi testé eazycleaner et g 24 entrées caduques dans mon registre et je c pas ce que ça veut dire. Merci de votre attention et de votre aide précieuse qui m'a sauvé et instruit

salut mon pc se porte deja bcp mieux merci bcp voici le scan ewido en mode sans echec et un rapport hijackthis en mode sans echec aussi... --------------------------------------------------------- ewido anti-malware - Rapport de scan --------------------------------------------------------- + Créé le: 16:27:48, 15/04/2006 + Somme de contrôle: 4138A8C2 + Résultats du scan: HKU\S-1-5-21-1757981266-706699826-1708537768-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2178F3FB-2560-458F-BDEE-631E2FE0DFE4} -> Adware.WinAntiVirus : Nettoyer et sauvegarder C:\Documents and Settings\JAMAL\Cookies\jamal@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder ::Fin du rapport Logfile of HijackThis v1.99.1 Scan saved at 16:29:34, on 15/04/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Microsoft Office\Office10\WINWORD.EXE C:\WINDOWS\system32\ctfmon.exe C:\Program Files\hijackthis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.nwnlaevluvzarfybzkbqmnwqs.com/F...4In/24WXDEs.jpg R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - Global Startup: Sitecom WL-112 Utility.lnk = C:\Program Files\Sitecom\Sitecom Wireless Network PC Card 54G WL-112\Installer\WINXP\WLANUTL.exe O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O10 - Unknown file in Winsock LSP: c:\windows\system32\avgfwafu.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\avgfwafu.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\avgfwafu.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\avgfwafu.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\avgfwafu.dll O12 - Plugin for .mpeg: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin3.dll O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O20 - AppInit_DLLs: sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll sockspy.dll O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe O23 - Service: AVG Firewall (AVGFwSrv) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgfwsrv.exe O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe voila merci