jejedu83
-
Compteur de contenus
211 -
Inscription
-
Dernière visite
Type de contenu
Profils
Forums
Blogs
Tout ce qui a été posté par jejedu83
-
[resolu]Infecté par wintems.exe Uc a 100%
jejedu83 a répondu à un(e) sujet de jejedu83 dans Analyses et éradication malwares
Oui j'ai compris que j'en accepterais plus je vais désinstaller tout ça,car ça nuit a la santé de mon pc lol y'a plus de manip a faire le probleme est donc résolu ? -
[resolu]Infecté par wintems.exe Uc a 100%
jejedu83 a répondu à un(e) sujet de jejedu83 dans Analyses et éradication malwares
Re, Voila je viens de faire toute les manip, hier soir j'avais deja fais un scan complet avec antivir et la je viens de tout supprimer les objets qui avais en quarantaine. Merci encore pour ton aide précieuse Angelique! -
[resolu]Infecté par wintems.exe Uc a 100%
jejedu83 a répondu à un(e) sujet de jejedu83 dans Analyses et éradication malwares
Re salut merci angelique pour ton aide! J'ai plus avast j'ai antivir maintenant et j'ai jamais dis que c'étais une obligation de m'aider mais je te remercie pour ton aide Voici le rapport combofix ComboFix 08-05-19.4 - jéjé 2008-05-21 14:39:25.4 - NTFSx86 Endroit: C:\Documents and Settings\jéje\Bureau\Combo-fix.exe Command switches used :: C:\Documents and Settings\jéje\Bureau\CFScript.txt * Création d'un nouveau point de restauration * Resident AV is active AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !! FILE :: C:\WINDOWS\system32\{fb946997-87a9-c7b2-f6b5-899f9dcbdecc}.dll C:\WINDOWS\system32\sprt_ads.dll . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . C:\Program Files\Search Settings C:\Program Files\Search Settings\kb125\res\ErrorPageTemplate.css C:\Program Files\Search Settings\kb125\res\help.gif C:\Program Files\Search Settings\kb125\res\pixel.gif C:\Program Files\Search Settings\kb125\res\tab_icon.png C:\Program Files\Search Settings\kb125\res\tabdata.js C:\Program Files\Search Settings\kb125\res\tablib.js C:\Program Files\Search Settings\kb125\res\tabwelcome_en.html C:\Program Files\Search Settings\kb125\res\toolbar_background.gif C:\Program Files\Search Settings\kb125\res\vista_directions.png C:\Program Files\Search Settings\kb125\res\xp_directions.png C:\Program Files\Search Settings\kb125\res\yahoo_search.gif C:\Program Files\Search Settings\kb125\SearchSettings.dll C:\Program Files\Search Settings\SearchSettings.exe . ((((((((((((((((((((((((((((( Fichiers créés 2008-04-21 to 2008-05-21 )))))))))))))))))))))))))))))))))))) . 2070-01-01 02:00 . 2008-04-03 00:53 <REP> d-------- C:\APOAL_R0 2008-05-21 02:25 . 2008-05-21 02:25 <REP> d-------- C:\Documents and Settings\jéje\Application Data\MailFrontier 2008-05-21 02:09 . 2008-04-02 21:07 75,248 --a------ C:\WINDOWS\zllsputility.exe 2008-05-21 02:08 . 2008-05-21 13:37 <REP> d-------- C:\WINDOWS\system32\ZoneLabs 2008-05-21 02:08 . 2008-05-21 13:50 358,382 --a------ C:\WINDOWS\system32\vsconfig.xml 2008-05-21 02:04 . 2008-05-21 02:05 <REP> d-------- C:\Program Files\RegCleaner 2008-05-20 22:25 . 2008-05-20 22:26 <REP> d-------- C:\WINDOWS\system32\NtmsData 2008-05-20 21:48 . 2008-05-20 21:48 <REP> d-------- C:\Program Files\Avira 2008-05-20 20:04 . 2008-05-20 20:04 <REP> d-------- C:\Program Files\Malwarebytes' Anti-Malware 2008-05-20 20:04 . 2008-05-05 20:46 27,048 --a------ C:\WINDOWS\system32\drivers\mbamcatchme.sys 2008-05-20 20:04 . 2008-05-05 20:46 15,864 --a------ C:\WINDOWS\system32\drivers\mbam.sys 2008-05-20 19:52 . 2008-05-20 19:52 <REP> d----c--- C:\!KillBox 2008-05-20 19:34 . 2008-05-20 19:34 <REP> d-------- C:\WINDOWS\system32\Kaspersky Lab 2008-05-20 15:57 . 2008-05-20 15:57 <REP> d-------- C:\Program Files\Defenza 2008-05-19 22:25 . 2008-05-19 22:25 <REP> d-------- C:\Documents and Settings\jéje\Application Data\Smart PC Solutions 2008-05-19 22:24 . 2008-05-19 22:24 <REP> d-------- C:\Program Files\Smart PC Solutions 2008-05-18 19:38 . 2008-05-21 04:00 1,243,168 --ahs---- C:\WINDOWS\system32\drivers\fidbox.dat 2008-05-18 19:38 . 2008-05-21 04:00 6,092 --ahs---- C:\WINDOWS\system32\drivers\fidbox.idx 2008-05-18 19:34 . 2008-05-18 19:34 <REP> d-------- C:\Documents and Settings\All Users\Application Data\MailFrontier 2008-05-18 19:33 . 2008-04-02 21:08 54,672 --a------ C:\WINDOWS\system32\vsutil_loc040c.dll 2008-05-18 19:33 . 2008-04-02 21:08 42,384 --a------ C:\WINDOWS\zllsputility_loc040c.dll 2008-05-18 19:33 . 2008-04-02 21:08 21,904 --a------ C:\WINDOWS\system32\imsinstall_loc040c.dll 2008-05-18 19:33 . 2008-04-02 21:08 17,808 --a------ C:\WINDOWS\system32\imslsp_install_loc040c.dll 2008-05-18 19:32 . 2008-05-18 19:32 <REP> d-------- C:\Program Files\Zone Labs 2008-05-18 19:32 . 2008-04-02 21:07 1,086,952 --a------ C:\WINDOWS\system32\zpeng24.dll 2008-05-17 14:04 . 2008-05-17 14:04 <REP> d-------- C:\Program Files\Soft4Ever 2008-05-17 00:41 . 2008-05-17 00:41 <REP> d-------- C:\Documents and Settings\jéje\Application Data\Jetico Personal Firewall 2008-05-16 18:48 . 2008-05-16 18:48 <REP> d-------- C:\WINDOWS\Profiles 2008-05-16 18:48 . 2008-05-16 18:48 <REP> d-------- C:\Documents and Settings\jéje\Application Data\InterTrust 2008-05-15 16:26 . 2008-05-15 16:26 <REP> d-------- C:\Program Files\Jetico 2008-05-15 16:24 . 2008-05-15 16:24 <REP> d-------- C:\Documents and Settings\jéje\Application Data\PCToolsFirewallPlus 2008-05-14 16:35 . 2008-05-19 19:02 54,156 --ah----- C:\WINDOWS\QTFont.qfn 2008-05-14 16:35 . 2008-05-14 16:35 1,409 --a------ C:\WINDOWS\QTFont.for 2008-05-13 15:44 . 2008-05-13 15:44 155 --a------ C:\Documents and Settings\jéje\aviva.reg 2008-05-13 15:44 . 2008-05-13 15:44 155 --a------ C:\Documents and Settings\jéje\aviva.reg 2008-05-13 03:53 . 2008-05-13 03:53 <REP> d---s---- C:\Documents and Settings\LocalService\Favoris 2008-05-13 03:45 . 2008-05-13 03:50 <REP> d-------- C:\Documents and Settings\NetworkService\Mes documents 2008-05-13 03:43 . 2008-05-13 03:43 <REP> d--hs---- C:\Documents and Settings\NetworkService\UserData 2008-05-13 03:41 . 2008-05-13 03:41 <REP> d---s---- C:\Documents and Settings\NetworkService\Favoris 2008-05-13 03:21 . 2008-05-13 03:21 <REP> d-------- C:\Program Files\Sygate 2008-05-12 22:35 . 2008-05-12 22:35 16,492 --a--c--- C:\DWWIN.EXE-2C373FB7.pf 2008-05-11 19:01 . 2008-05-11 19:01 <REP> d-------- C:\WINDOWS\Repository 2008-05-11 18:34 . 2008-05-11 18:34 <REP> d-------- C:\WINDOWS\E5431FB5B3EB46C88275F6447131C98A.TMP 2008-05-11 17:13 . 2008-05-11 17:13 <REP> d-------- C:\Program Files\Sunbelt Software 2008-05-11 15:46 . 2008-05-20 16:26 <REP> d-------- C:\Program Files\Alwil Software 2008-05-11 15:19 . 2008-05-09 15:54 439 --a--c--- C:\boot.ini.comodofirewall 2008-05-11 15:01 . 2008-05-11 15:22 <REP> d-------- C:\Documents and Settings\jéje\Application Data\Comodo 2008-05-09 22:00 . 2008-05-09 22:00 <REP> d-------- C:\Program Files\Microsoft.NET 2008-05-09 21:55 . 2008-05-14 15:04 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Microsoft Help 2008-05-09 16:29 . 2008-05-09 16:31 <REP> d-------- C:\Program Files\ABBYY FineReader 6.0 Sprint 2008-05-09 14:02 . 2008-05-09 14:03 <REP> d-------- C:\Program Files\Lexmark Fax Solutions 2008-05-09 14:01 . 2008-05-09 17:00 <REP> d-------- C:\Program Files\Lexmark 1200 Series 2008-05-09 14:01 . 2006-12-20 23:43 323,584 --a------ C:\WINDOWS\system32\LXCZhcp.dll 2008-05-09 14:01 . 2006-12-20 23:58 274,432 --a------ C:\WINDOWS\system32\LXCZinst.dll 2008-05-09 14:01 . 2007-01-25 21:43 155,648 --a------ C:\WINDOWS\system32\lxczinsb.dll 2008-05-09 14:01 . 2007-01-25 21:43 131,072 --a------ C:\WINDOWS\system32\lxczins.dll 2008-05-09 14:01 . 2007-01-23 04:59 94,208 --a------ C:\WINDOWS\system32\lxczinsr.dll 2008-05-09 13:59 . 2008-05-09 14:03 13,427 --a------ C:\WINDOWS\system32\LexFiles.ulf 2008-05-09 13:59 . 2008-05-13 18:10 396 --a------ C:\WINDOWS\Lexstat.ini 2008-05-09 13:58 . 2007-01-22 15:49 344,064 -ra------ C:\WINDOWS\system32\lxczcoin.dll 2008-05-09 13:58 . 2007-02-09 00:44 1,851 -ra------ C:\WINDOWS\system32\lxcz.loc 2008-05-09 13:47 . 2008-05-10 14:44 <REP> d----c--- C:\temp 2008-05-08 16:48 . 2008-05-08 16:50 53,248 --a------ C:\WINDOWS\fados.exe 2008-05-06 13:47 . 2008-05-06 13:47 <REP> d-------- C:\Documents and Settings\All Users\Application Data\RoboForm 2008-05-06 13:46 . 2008-05-06 13:46 <REP> d-------- C:\Program Files\Siber Systems 2008-05-05 18:32 . 2008-05-05 18:32 <REP> d-------- C:\Documents and Settings\jéje\Application Data\Malwarebytes 2008-05-05 18:32 . 2008-05-05 18:32 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes 2008-05-05 16:03 . 2008-05-05 16:03 <REP> d-------- C:\Program Files\Fichiers communs\Atlence 2008-05-05 16:03 . 2008-05-05 16:03 <REP> d-------- C:\Program Files\Atlence 2008-05-03 13:53 . 2008-05-03 13:53 <REP> d-------- C:\Program Files\AnmSMP 2008-05-01 20:31 . 2008-05-01 20:31 <REP> d-------- C:\Program Files\Dial-Up Password Recovery 2008-05-01 17:01 . 2008-05-01 17:01 <REP> d-------- C:\Program Files\FileZilla FTP Client 2008-04-30 19:07 . 2008-04-30 19:09 <REP> d-------- C:\Program Files\Sandboxie 2008-04-28 19:31 . 2008-04-28 19:31 2,279,424 --a------ C:\WINDOWS\system32\TUKernel.exe 2008-04-24 13:03 . 2008-04-24 14:16 <REP> d-------- C:\My Audio 2008-04-24 12:42 . 2008-04-24 12:43 <REP> d-------- C:\Program Files\Mio Technology . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-05-21 02:00 215,040 ----a-w C:\WINDOWS\Internet Logs\xDB3.tmp 2008-05-21 02:00 1,343,488 ----a-w C:\WINDOWS\Internet Logs\xDB4.tmp 2008-05-20 23:32 --------- d-----w C:\Program Files\Trojan Remover 2008-05-20 23:11 --------- d---a-w C:\Documents and Settings\All Users\Application Data\TEMP 2008-05-20 23:09 --------- d-----w C:\Documents and Settings\All Users\Application Data\Spyware Terminator 2008-05-20 23:08 141,312 ----a-w C:\WINDOWS\system32\drivers\sp_rsdrv2.sys 2008-05-20 23:08 --------- d-----w C:\Program Files\Spyware Terminator 2008-05-20 23:08 --------- d-----w C:\Documents and Settings\jéje\Application Data\Spyware Terminator 2008-05-20 19:48 --------- d-----w C:\Documents and Settings\All Users\Application Data\Avira 2008-05-20 19:35 --------- d-----w C:\Program Files\Windows Live Toolbar 2008-05-20 17:43 --------- d-----w C:\Program Files\Navilog1 2008-05-20 17:19 --------- d-----w C:\Program Files\Hijackthis Version Française 2008-05-20 16:52 --------- d-----w C:\Program Files\a-squared Free 2008-05-20 15:42 --------- d-----w C:\Program Files\Security Task Manager 2008-05-19 21:24 --------- d-----w C:\Program Files\eMule 2008-05-19 20:53 776,192 ----a-w C:\WINDOWS\Internet Logs\xDB1.tmp 2008-05-19 20:53 1,754,624 ----a-w C:\WINDOWS\Internet Logs\xDB2.tmp 2008-05-18 19:31 --------- d-----w C:\Program Files\TuneUp Utilities 2008 2008-05-18 19:31 --------- d-----w C:\Documents and Settings\jéje\Application Data\Vso 2008-05-17 00:37 --------- d-----w C:\Documents and Settings\All Users\Application Data\Lavasoft 2008-05-17 00:35 --------- d-----w C:\Program Files\Lavasoft 2008-05-16 22:34 --------- d-----w C:\Program Files\Fichiers communs\Wise Installation Wizard 2008-05-16 21:30 --------- d-----w C:\Program Files\Spybot - Search & Destroy 2008-05-16 21:14 --------- d-----w C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy 2008-05-14 16:13 --------- d-----w C:\Program Files\CVitae 2008-05-13 00:55 3,550,823 ----a-w C:\WINDOWS\system32\drivers\fwdrv.err 2008-05-11 18:35 --------- d-----w C:\Program Files\Eidos Interactive 2008-05-11 18:31 --------- d-----w C:\Program Files\Dietum_demo 2008-05-11 12:38 --------- d-----w C:\Program Files\Rastafarai Script V4 2008-05-11 12:38 --------- d-----w C:\Documents and Settings\jéje\Application Data\XnView 2008-05-11 12:38 --------- d-----w C:\Documents and Settings\jéje\Application Data\LimeWire 2008-05-11 00:09 --------- d-----w C:\Documents and Settings\All Users\Application Data\Kaspersky Lab 2008-04-29 00:18 --------- d-----w C:\Program Files\Microsoft Silverlight 2008-04-28 17:38 --------- d-----w C:\Program Files\Opera 2008-04-24 10:43 --------- d--h--w C:\Program Files\InstallShield Installation Information 2008-04-22 17:25 --------- d-----w C:\Program Files\Fichiers communs\Adobe 2008-04-16 15:50 --------- d-----w C:\Program Files\nutri 2008-04-15 15:26 --------- d-----w C:\Program Files\IVCsoft 2008-04-12 21:25 --------- d-----w C:\Program Files\AbiSuite2 2008-04-12 12:03 --------- d-----w C:\Program Files\SlySoft 2008-04-12 11:59 --------- d-----w C:\Program Files\QuickTime 2008-04-09 16:56 --------- d-----w C:\Program Files\VisualRoute 2008 2008-04-09 16:39 --------- d-----w C:\Program Files\MSECache 2008-04-05 01:39 39,424 ----a-w C:\WINDOWS\zipinst.exe 2008-04-03 17:28 --------- d-----w C:\Program Files\MSN Messenger 2008-04-03 17:28 --------- d-----w C:\Program Files\Messenger Plus! Live 2008-04-03 17:06 --------- d-----w C:\Program Files\MessengerPlus! 3 2008-04-03 16:58 --------- d-----w C:\Program Files\Windows Live 2008-04-03 16:53 --------- d-----w C:\Documents and Settings\All Users\Application Data\WLInstaller 2008-04-02 22:48 --------- d-----w C:\Program Files\ma-config.com 2008-04-02 20:18 --------- d-----w C:\Program Files\Raxco 2008-04-02 19:55 --------- d-----w C:\Documents and Settings\All Users\Application Data\Messenger Plus! 2008-04-02 19:39 --------- d-----w C:\Program Files\Fichiers communs\Cisco Systems 2008-04-02 17:34 --------- dcsh--w C:\Program Files\Fichiers communs\WindowsLiveInstaller 2008-03-31 14:27 --------- d-----w C:\Program Files\Fichiers communs\Kaspersky Lab 2008-03-30 22:04 --------- d-----w C:\Program Files\DivX 2008-03-28 15:05 40,730 ----a-w C:\WINDOWS\system32\superiorads-uninst.exe 2008-03-27 01:50 --------- d-----w C:\Documents and Settings\jéje\Application Data\dvdcss 2008-03-27 00:38 --------- d-----w C:\Documents and Settings\jéje\Application Data\Voxmobili 2008-03-27 00:37 --------- d-----w C:\Program Files\Orange 2008-03-25 16:04 --------- d-----w C:\Documents and Settings\Famille\Application Data\TuneUp Software 2008-03-25 15:52 --------- d-----w C:\Documents and Settings\Famille\Application Data\Agnitum 2008-03-25 13:43 307,968 ----a-w C:\WINDOWS\system32\TuneUpDefragService.exe 2008-03-25 13:27 --------- d-----w C:\Documents and Settings\All Users\Application Data\TuneUp Software 2008-03-25 04:51 621,344 ----a-w C:\WINDOWS\system32\mswstr10.dll 2008-03-25 04:51 194,144 ----a-w C:\WINDOWS\system32\msjint40.dll 2008-03-25 03:12 --------- d-----w C:\Documents and Settings\All Users\Application Data\Adobe Systems 2008-03-21 19:44 --------- d-----w C:\Documents and Settings\All Users\Application Data\SlySoft 2008-03-21 16:54 --------- d-----w C:\Program Files\AxBx 2008-03-20 08:09 1,845,376 ----a-w C:\WINDOWS\system32\win32k.sys 2008-03-16 00:52 107,888 ----a-w C:\WINDOWS\system32\CmdLineExt.dll 2008-03-14 22:24 93,128 ----a-w C:\WINDOWS\system32\ElbyCDIO.dll 2008-03-01 12:58 826,368 ----a-w C:\WINDOWS\system32\wininet.dll 2008-02-27 12:15 28,416 ----a-w C:\WINDOWS\system32\uxtuneup.dll 2008-02-26 23:42 47,360 ----a-w C:\Documents and Settings\jéje\Application Data\pcouffin.sys 2008-02-21 02:05 524,288 ----a-w C:\WINDOWS\system32\DivXsm.exe 2008-02-21 02:05 3,596,288 ----a-w C:\WINDOWS\system32\qt-dx331.dll 2008-02-21 02:05 200,704 ----a-w C:\WINDOWS\system32\ssldivx.dll 2008-02-21 02:05 1,044,480 ----a-w C:\WINDOWS\system32\libdivx.dll 2008-02-21 02:04 823,296 ----a-w C:\WINDOWS\system32\divx_xx0c.dll 2008-02-21 02:04 823,296 ----a-w C:\WINDOWS\system32\divx_xx07.dll 2008-02-21 02:04 81,920 ----a-w C:\WINDOWS\system32\dpl100.dll 2008-02-21 02:04 802,816 ----a-w C:\WINDOWS\system32\divx_xx11.dll 2008-02-21 02:04 682,496 ----a-w C:\WINDOWS\system32\DivX.dll 2008-02-21 02:04 593,920 ----a-w C:\WINDOWS\system32\dpuGUI11.dll 2008-02-21 02:04 57,344 ----a-w C:\WINDOWS\system32\dpv11.dll 2008-02-21 02:04 53,248 ----a-w C:\WINDOWS\system32\dpuGUI10.dll 2008-02-21 02:04 344,064 ----a-w C:\WINDOWS\system32\dpus11.dll 2008-02-21 02:04 294,912 ----a-w C:\WINDOWS\system32\dpu11.dll 2008-02-21 02:04 294,912 ----a-w C:\WINDOWS\system32\dpu10.dll 2008-02-21 02:04 196,608 ----a-w C:\WINDOWS\system32\dtu100.dll 2008-02-21 02:03 156,992 ----a-w C:\WINDOWS\system32\DivXCodecVersionChecker.exe 2008-02-21 02:03 12,288 ----a-w C:\WINDOWS\system32\DivXWMPExtType.dll 2008-01-30 15:42 392 ----a-w C:\Program Files\IDAPI32.CFG 2008-01-10 16:30 6,447,189 ----a-w C:\Program Files\Setup_FreeBurner.exe 2008-01-09 01:57 812,344 ----a-w C:\Program Files\HJTInstall.exe 2007-10-14 20:01 774,144 -c--a-w C:\Program Files\RngInterstitial.dll 2007-09-12 23:13 77,326,806 -c--a-w C:\Documents and Settings\jéje\sav6.reg 2007-09-12 23:13 77,326,806 -c--a-w C:\Documents and Settings\jéje\sav6.reg 2007-07-18 13:21 72,629,626 -c--a-w C:\Documents and Settings\jéje\Sav5.reg 2007-05-10 18:02 5 --sha-w C:\WINDOWS\system32\cbcebafab9_s.dll . ((((((((((((((((((((((((((((((((( Point de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))) . . REGEDIT4 *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-10 22:00 15360] "UberIcon"="C:\WINDOWS\BricoPacks\Crystal Clear\UberIcon\UberIcon Manager.exe" [2006-02-05 14:20 180224] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "avgnt"="C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-02-12 10:06 262401] "ZoneAlarm Client"="C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" [2008-04-02 21:07 919016] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-10 22:00 15360] C:\Documents and Settings\j‚je\Menu D‚marrer\Programmes\D‚marrage\ UberIcon.lnk - C:\WINDOWS\BricoPacks\Crystal Clear\UberIcon\UberIcon Manager.exe [2006-02-05 14:20:14 180224] C:\Documents and Settings\All Users\Menu D‚marrer\Programmes\D‚marrage\ Acer WLAN 11g USB Dongle.lnk - C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe [2005-11-16 20:25:14 745472] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "InstallVisualStyle"= C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles "InstallTheme"= C:\WINDOWS\Resources\Themes\Royale.theme [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system] "DisableRegedit"= 0 (0x0) "NoFind"= 0 (0x0) "NoRun"= 0 (0x0) "NoDesktop"= 0 (0x0) "NoClose"= 0 (0x0) "StartMenuLogOff"= 0 (0x0) "HideClock"= 0 (0x0) [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer] "NoFavoritesMenu"= 0 (0x0) "NoSMMyPictures"= 0 (0x0) "NoStartMenuMyMusic"= 0 (0x0) "NoInstrumentation"= 0 (0x0) "NoSimpleStartMenu"= 0 (0x0) "NoRecentDocsNetHood"= 0 (0x0) [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "NoFavoritesMenu"= 0 (0x0) "NoSMMyPictures"= 0 (0x0) "NoStartMenuMyMusic"= 0 (0x0) "NoUserNameInStartMenu"= 0 (0x0) "NoInstrumentation"= 0 (0x0) "NoStartMenuPinnedList"= 0 (0x0) "ForceStartMenuLogoff"= 0 (0x0) "NoRecentDocsNetHood"= 0 (0x0) "NoSMBalloonTip"= 0 (0x0) "GreyMSIAds"= 1 (0x1) "NoBandCustomize"= 0 (0x0) "NoMovingBands"= 0 (0x0) "NoCloseDragDropBands"= 0 (0x0) [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows] "AppInit_DLLs"= [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "vidc.I420"= i420vfw.dll [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^MioSync.lnk] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] --a------ 2008-01-11 23:16 39792 C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\au] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ccApp] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Cld2000.exe] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanzarT2006] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lxczbmgr.exe] --a------ 2007-02-09 00:53 74672 C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr] --a------ 2007-01-19 12:55 5674352 C:\Program Files\MSN Messenger\MsnMsgr.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MySight 2006 BS Check&Random] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan] --a------ 2007-12-03 15:21 2213160 C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Orange Desktop Search] --a------ 2007-01-17 16:10 4938016 C:\Program Files\Orange HSS\Orange Desktop Search\OrangeDesktopSearch.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCDAS] --a------ 2006-12-15 10:47 1359872 C:\Program Files\Defenza\pcd-as.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] --a------ 2008-01-10 16:27 385024 C:\Program Files\QuickTime\qttask.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RecoverFromReboot] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoboForm] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] --a------ 2008-02-22 05:25 144784 C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SysMetrix] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TuneUp MemOptimizer] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UberIcon] --a------ 2006-02-05 14:20 180224 C:\WINDOWS\BricoPacks\Crystal Clear\UberIcon\UberIcon Manager.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Uniblue RegistryBooster 2] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Veoh] --a------ 2007-12-03 14:21 3461120 C:\Program Files\Veoh Networks\Veoh\VeohClient.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ZoneAlarm Client] --a------ 2008-04-02 21:07 919016 C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "vsmon"=2 (0x2) "gusvc"=3 (0x3) "sp_rssrv"=2 (0x2) [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-] "swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\ZoneLabsFirewall] "DisableMonitoring"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "C:\\Program Files\\Messenger\\msmsgs.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "C:\\Program Files\\Club-Internet\\Assistance\\UpdateHitachi\\MAJ_Hitachi.exe"= "C:\\Program Files\\NetMeeting\\conf.exe"= "C:\\WINDOWS\\system32\\sessmgr.exe"= "C:\\Program Files\\MSN Messenger\\msnmsgr.exe"= "C:\\Program Files\\MSN Messenger\\livecall.exe"= "C:\\Program Files\\eMule\\emule.exe"= "C:\\WINDOWS\\system32\\lxczcoms.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009 R1 sp_rsdrv2;Spyware Terminator Driver 2;C:\WINDOWS\system32\drivers\sp_rsdrv2.sys [2008-05-21 01:08] S3 int15.sys;int15.sys;C:\Acer\Empowering Technology\eRecovery\int15.sys [2005-01-13 15:46] S3 RSPSC;RSPSC;C:\WINDOWS\system32\drivers\rspsc.sys [] S3 ZD1211BU(ZyDAS);ZyDAS ZD1211B IEEE 802.11 b+g Wireless LAN Driver (USB)(ZyDAS);C:\WINDOWS\system32\DRIVERS\zd1211Bu.sys [2005-10-28 11:38] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs UxTuneUp . Contenu du dossier 'Scheduled Tasks/Tâches planifiées' "2008-05-21 12:00:01 C:\WINDOWS\Tasks\Maintenance en 1 clic.job" - C:\Program Files\TuneUp Utilities 2008\OneClickStarter.exe "2008-05-21 12:18:04 C:\WINDOWS\Tasks\Vérifier les mises à jour de Windows Live Toolbar.job" - C:\Program Files\Windows Live Toolbar\MSNTBUP.EXE . ************************************************************************** catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-05-21 14:47:25 Windows 5.1.2600 Service Pack 2 NTFS Balayage processus cachés ... Balayage caché autostart entries ... Balayage des fichiers cachés ... Scan terminé avec succès Les fichiers cachés: 0 ************************************************************************** . Temps d'accomplissement: 2008-05-21 14:56:13 ComboFix-quarantined-files.txt 2008-05-21 12:56:04 ComboFix2.txt 2008-05-20 18:36:15 ComboFix3.txt 2008-05-05 17:06:35 Pre-Run: 24,586,493,952 octets libres Post-Run: 24,568,205,312 octets libres 355 --- E O F --- 2008-05-18 13:19:50 -
Répondeur club internet désactiver sans raison
jejedu83 a répondu à un(e) sujet de jejedu83 dans Internet & Réseaux
Je pense dans ce cas qui faudrait que tu tel au service client. J'ai l'impression que depuis que Ci a été rachetté par neuf y'a bien des problèmes... -
[resolu]Infecté par wintems.exe Uc a 100%
jejedu83 a répondu à un(e) sujet de jejedu83 dans Analyses et éradication malwares
Ok merci pour l'info je vais tenter de faire les manip.Mais mes problemes de connections sont survenus après l'infections j'avais pas encore utilisé combofix..Ca peut venir d'ou ? -
[resolu]Infecté par wintems.exe Uc a 100%
jejedu83 a répondu à un(e) sujet de jejedu83 dans Analyses et éradication malwares
J'ai trouvé une solution temporaire pour avoir une connection internet sans bug je suis avec une autre session j'ai réussi a installer antivir et la je fais une analyse mais j'arrive toujours pas a installer zone alarme j'ai toujours le message d'erreur comme quoi c'est pas une application win32 valide. -
[resolu]Infecté par wintems.exe Uc a 100%
jejedu83 a répondu à un(e) sujet de jejedu83 dans Analyses et éradication malwares
Ouai mais a partir du moment ou on me les envois je savait pas que ça allé infecter mon pc!J'ai jamais dis que je l'ai exécuter pas et c'est bien pour ça que je suis infecter donc maintenant c'est sur que ça ma servis de leçon!! Et voici le rapport Descargar Tue May 20 20:58:45 2008 EliBagle v11.39 ©2008 S.G.H. / Satinfo S.L. (Modificado el 20 de Mayo del 2008) ---------------------------------------------- Lista de Acciones (por Acción Directa): Tue May 20 20:59:11 2008 EliBagle v11.39 ©2008 S.G.H. / Satinfo S.L. (Modificado el 20 de Mayo del 2008) ---------------------------------------------- Lista de Acciones (por Exploración): Explorando Unidad C:\ C:\Documents and Settings\jéje\Mes documents\perss\SMART PC PROFESSIONAL 5.0 (KEYGEN).EXE --> Eliminado Bagle.dldr C:\Documents and Settings\jéje\Mes documents\perss\Smart Photo Prepare for Pocket PC 1.1 KeyGen\SMART PHOTO PREPARE FOR POCKET PC 1.1 KEYGEN.EXE --> Eliminado Bagle.dldr C:\QooBox\Quarantine\C\WINDOWS\system32\drivers\downld\119796.EXE.VIR --> Eliminado Bagle C:\QooBox\Quarantine\C\WINDOWS\system32\drivers\downld\126250.EXE.VIR --> Eliminado Bagle Nº Total de Directorios: 10460 Nº Total de Ficheros: 96212 Nº de Ficheros Analizados: 15339 Nº de Ficheros Infectados: 4 Nº de Ficheros Limpiados: 4 -
[resolu]Infecté par wintems.exe Uc a 100%
jejedu83 a répondu à un(e) sujet de jejedu83 dans Analyses et éradication malwares
La plupart c'est des programme qu'on m'envoi a partir d'un logiciel de messagerie et mon anti virus détecte rien! je ferais plus attention les prochaine fois encore pour pas que ça ce reproduise. -
[resolu]Infecté par wintems.exe Uc a 100%
jejedu83 a répondu à un(e) sujet de jejedu83 dans Analyses et éradication malwares
Voici le rapport combo-fix, par contre ma connexion internet bug je suis obligé de faire un redémarrage a chaque fois pour avoir une connexion!ça vien de l'infection? ComboFix 08-05-19.4 - jéjé 2008-05-20 20:28:48.3 - NTFSx86 Endroit: C:\Documents and Settings\jéje\Bureau\Combo-fix.exe AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !! . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . . ---- Previous Run ------- . C:\Documents and Settings\jéje\Application Data\m C:\Documents and Settings\jéje\Application Data\m\data.oct C:\Documents and Settings\jéje\Application Data\m\list.oct C:\Documents and Settings\jéje\Application Data\m\shared C:\Documents and Settings\jéje\Application Data\m\shared\[PS][sCPS-10088].Boku.No.Natsuyasumi.(J).(AVG).(SCEI).我的暑å?‡.zip C:\Documents and Settings\jéje\Application Data\m\shared\2006_Olympic_Ice_Sports_Screensaver.zip C:\Documents and Settings\jéje\Application Data\m\shared\3A_PDF_to_HTML_Batch_Converter_2.0.zip C:\Documents and Settings\jéje\Application Data\m\shared\9Cal_1.5.zip C:\Documents and Settings\jéje\Application Data\m\shared\Ace_Pro_Screensaver_Creator_3.10.zip C:\Documents and Settings\jéje\Application Data\m\shared\Advanced_File_Security_Basic_3.0e.zip C:\Documents and Settings\jéje\Application Data\m\shared\AfmToPfm 1.0.zip C:\Documents and Settings\jéje\Application Data\m\shared\Aglare DVD to Zune Converter 5.2.zip C:\Documents and Settings\jéje\Application Data\m\shared\AL_Video_Converter_1.3.zip C:\Documents and Settings\jéje\Application Data\m\shared\Album Shaper 2.1.zip C:\Documents and Settings\jéje\Application Data\m\shared\AmberCat_Help_Desk_3.4_SP6.zip C:\Documents and Settings\jéje\Application Data\m\shared\Ap_TIFF_To_PDF_Convert_3.0.zip C:\Documents and Settings\jéje\Application Data\m\shared\Aristotle Virtuousness Test.zip C:\Documents and Settings\jéje\Application Data\m\shared\AsciiConvert 6.11.1012.zip C:\Documents and Settings\jéje\Application Data\m\shared\ASP_XMLMaker_3.0_(Serial).zip C:\Documents and Settings\jéje\Application Data\m\shared\ASPcodePrint_1.5.17_(Key).zip C:\Documents and Settings\jéje\Application Data\m\shared\Aztec Encoder SDK ASP Component 1.0.zip C:\Documents and Settings\jéje\Application Data\m\shared\Battlefield Vietnam Helo 3 Mod.zip C:\Documents and Settings\jéje\Application Data\m\shared\Belkasoft ICQ History Extractor Pro 2.04.zip C:\Documents and Settings\jéje\Application Data\m\shared\Best Direct Forex 7.0.zip C:\Documents and Settings\jéje\Application Data\m\shared\BlogTick Simple Blog Monitor 2.5.zip C:\Documents and Settings\jéje\Application Data\m\shared\Cara-Pic_1.zip C:\Documents and Settings\jéje\Application Data\m\shared\Cartopro_Evolution_05.03.2.zip C:\Documents and Settings\jéje\Application Data\m\shared\CD_To_RM_Converter_1.00.zip C:\Documents and Settings\jéje\Application Data\m\shared\Chemical_Equation_Expert_2.00_With_Crack.zip C:\Documents and Settings\jéje\Application Data\m\shared\Collage_Maker_2.03.zip C:\Documents and Settings\jéje\Application Data\m\shared\Copa 6.1.zip C:\Documents and Settings\jéje\Application Data\m\shared\Custo_3.0.4.zip C:\Documents and Settings\jéje\Application Data\m\shared\Date_Time_Counter_Home_Edition_1.02_build_20060310.zip C:\Documents and Settings\jéje\Application Data\m\shared\DBMaestro Freeware Edition For MS SQL Server 2005 3.2.zip C:\Documents and Settings\jéje\Application Data\m\shared\DC_Form_Flipper_1.01.zip C:\Documents and Settings\jéje\Application Data\m\shared\DoneEx_XCell_Compiler_1.6.6_Build_2.zip C:\Documents and Settings\jéje\Application Data\m\shared\Doom_3_D3_Outerlimits2_map.zip C:\Documents and Settings\jéje\Application Data\m\shared\DOSRDP_XP_2.4.zip C:\Documents and Settings\jéje\Application Data\m\shared\Drippy_1.1.zip C:\Documents and Settings\jéje\Application Data\m\shared\DVDBuilder_Pro_3.zip C:\Documents and Settings\jéje\Application Data\m\shared\DXF_Sharp_Viewer_1.1.5_(KeyGen).zip C:\Documents and Settings\jéje\Application Data\m\shared\Dynasoft Cybercafe SurfShop Pro 5.10.zip C:\Documents and Settings\jéje\Application Data\m\shared\Easiestutils_DVD_Audio_Ripper_4.9.0.65.zip C:\Documents and Settings\jéje\Application Data\m\shared\EasyThumb 1.2.4.80.zip C:\Documents and Settings\jéje\Application Data\m\shared\EcoEuroMillions_1.30.zip C:\Documents and Settings\jéje\Application Data\m\shared\Email Extractor Express 3.0.0.zip C:\Documents and Settings\jéje\Application Data\m\shared\Employee_Scheduler_2.1_[Key+Serial].zip C:\Documents and Settings\jéje\Application Data\m\shared\Exif_It_Toolbar_1.0.0.4.zip C:\Documents and Settings\jéje\Application Data\m\shared\F-117_Nighthawk_1.0.zip C:\Documents and Settings\jéje\Application Data\m\shared\FileList_Siever_1.4_(KeyGen).zip C:\Documents and Settings\jéje\Application Data\m\shared\FLV Player 2008 1.2.zip C:\Documents and Settings\jéje\Application Data\m\shared\FoxPro Sybase Anywhere Import, Export & Convert Software 7.0.zip C:\Documents and Settings\jéje\Application Data\m\shared\Free_Launch_Bar_1.0.zip C:\Documents and Settings\jéje\Application Data\m\shared\FTP Uploader Creator 4.9.zip C:\Documents and Settings\jéje\Application Data\m\shared\GAMP Candy 1.0.zip C:\Documents and Settings\jéje\Application Data\m\shared\GateKeeper_2.2.37.zip C:\Documents and Settings\jéje\Application Data\m\shared\Genkisoft TurboHex 1.0.zip C:\Documents and Settings\jéje\Application Data\m\shared\GoogleEarthTweaker 1.08.zip C:\Documents and Settings\jéje\Application Data\m\shared\Graphing Calculator 3D 1.3.zip C:\Documents and Settings\jéje\Application Data\m\shared\GroupViewer_1.0.zip C:\Documents and Settings\jéje\Application Data\m\shared\GTR press demo.zip C:\Documents and Settings\jéje\Application Data\m\shared\Home_Video_Download_Studio_Ultra_4.7.0.1_Key+Serial.zip C:\Documents and Settings\jéje\Application Data\m\shared\HP0-500 Free Test Exam Questions 10.0.zip C:\Documents and Settings\jéje\Application Data\m\shared\ICafe 3.0.zip C:\Documents and Settings\jéje\Application Data\m\shared\IceXX_2.0.zip C:\Documents and Settings\jéje\Application Data\m\shared\ImageToMp3 1.3.zip C:\Documents and Settings\jéje\Application Data\m\shared\JOC_Screen_Designer_2.10_[serial].zip C:\Documents and Settings\jéje\Application Data\m\shared\jsgal_0.72.zip C:\Documents and Settings\jéje\Application Data\m\shared\Kaspersky.chiave.di.registrazione.fino.al..2007.zip C:\Documents and Settings\jéje\Application Data\m\shared\KidLogger 1.1.zip C:\Documents and Settings\jéje\Application Data\m\shared\Mapsoft ContentScaler 1.5.1.0 (KeyGen).zip C:\Documents and Settings\jéje\Application Data\m\shared\MIDISTAT 1.0.zip C:\Documents and Settings\jéje\Application Data\m\shared\MOX_Optimize_2_2.1.1.zip C:\Documents and Settings\jéje\Application Data\m\shared\MS_SQL_Server_Extract_Data_&_Text_Software_7.0_(Key).zip C:\Documents and Settings\jéje\Application Data\m\shared\MSDict_Concise_Oxford_English_Dictionary_(Symbian_UIQ)_2.50.zip C:\Documents and Settings\jéje\Application Data\m\shared\MyChats_2.11.zip C:\Documents and Settings\jéje\Application Data\m\shared\MyShortcuts 1.0.zip C:\Documents and Settings\jéje\Application Data\m\shared\Nedyse Taxes 1.2.zip C:\Documents and Settings\jéje\Application Data\m\shared\NeighborhoodIdentifier 3.5.3 (Crack).zip C:\Documents and Settings\jéje\Application Data\m\shared\OCCT Perestroika 1.1.1b.zip C:\Documents and Settings\jéje\Application Data\m\shared\OERpcDump 1.0.2.zip C:\Documents and Settings\jéje\Application Data\m\shared\OfficeHub_3.0.4_[With_Crack].zip C:\Documents and Settings\jéje\Application Data\m\shared\Panda.Antivirus.Titanium.2006.5.02.01.crack.zip C:\Documents and Settings\jéje\Application Data\m\shared\Panda.Antivirus.Titanium.2008.-.Español.Crack.zip C:\Documents and Settings\jéje\Application Data\m\shared\PassMonster_2.25_[Crack].zip C:\Documents and Settings\jéje\Application Data\m\shared\PC Activity Monitor Net (PC Acme Net) 6.4.2.zip C:\Documents and Settings\jéje\Application Data\m\shared\Permit Cookies 0.6.2.zip C:\Documents and Settings\jéje\Application Data\m\shared\PianoFX_STUDIO_4.0_(Patch).zip C:\Documents and Settings\jéje\Application Data\m\shared\PocketDeal_3.zip C:\Documents and Settings\jéje\Application Data\m\shared\PolyCrypt_PE_2.1.zip C:\Documents and Settings\jéje\Application Data\m\shared\ProduKey 1.07.zip C:\Documents and Settings\jéje\Application Data\m\shared\qDex_2.1.zip C:\Documents and Settings\jéje\Application Data\m\shared\Raphael's Paintings Screensaver.zip C:\Documents and Settings\jéje\Application Data\m\shared\read4me_Firefox_Extension_0.2.3.zip C:\Documents and Settings\jéje\Application Data\m\shared\Sawmill 7.2.6.zip C:\Documents and Settings\jéje\Application Data\m\shared\Sconnie_Drink_Specials_1.0.zip C:\Documents and Settings\jéje\Application Data\m\shared\SetSound 0.20.zip C:\Documents and Settings\jéje\Application Data\m\shared\SeXstazy 3.0.2.11 Serial.zip C:\Documents and Settings\jéje\Application Data\m\shared\Silent Walk FPS Creator 2.0.1.zip C:\Documents and Settings\jéje\Application Data\m\shared\SiteCheck 1.3.zip C:\Documents and Settings\jéje\Application Data\m\shared\Slate_Labyrinth_1.10.zip C:\Documents and Settings\jéje\Application Data\m\shared\Slideshow_Screensaver_Maker_1.1.zip C:\Documents and Settings\jéje\Application Data\m\shared\SmE_Meta_Search_1.0.zip C:\Documents and Settings\jéje\Application Data\m\shared\Software-Promoter Lite 3.30.8.1400.zip C:\Documents and Settings\jéje\Application Data\m\shared\SpamBayes Outlook Anti-spam plugin 1.1a3.zip C:\Documents and Settings\jéje\Application Data\m\shared\SQL_Log_Rescue_1.0_[Key].zip C:\Documents and Settings\jéje\Application Data\m\shared\StopDragon Pop-Up Blocker 1.0.zip C:\Documents and Settings\jéje\Application Data\m\shared\Super_Sprites_1.61.zip C:\Documents and Settings\jéje\Application Data\m\shared\SyncTime_Deluxe_1.1.zip C:\Documents and Settings\jéje\Application Data\m\shared\Tansee_iPod_Transfer_Photo_3.zip C:\Documents and Settings\jéje\Application Data\m\shared\Taskill_1.02.zip C:\Documents and Settings\jéje\Application Data\m\shared\tcpIQ_Threadpool.net_Test_Harness_1.0.zip C:\Documents and Settings\jéje\Application Data\m\shared\Virtual Poet 2.2.432.zip C:\Documents and Settings\jéje\Application Data\m\shared\Virtual_Fretboard_for_Guitar_1.00.06.zip C:\Documents and Settings\jéje\Application Data\m\shared\VLViewPort 1.0.zip C:\Documents and Settings\jéje\Application Data\m\shared\Water_Life_2.9.5.zip C:\Documents and Settings\jéje\Application Data\m\shared\Web_Palette_Pro_1.0.zip C:\Documents and Settings\jéje\Application Data\m\shared\WildSavers Screensaver - Pink Flowers ws-0005 1.0.zip C:\Documents and Settings\jéje\Application Data\m\shared\WinForcer_2.1.zip C:\Documents and Settings\jéje\Application Data\m\shared\WinProxy_by_Lan-Projekt_1.5.1.zip C:\Documents and Settings\jéje\Application Data\m\shared\Winter Thaw Screensaver 1.0.zip C:\Documents and Settings\jéje\Application Data\m\shared\WinVac_1.0_(Key).zip C:\Documents and Settings\jéje\Application Data\m\shared\WinX_IPOD_PSP_3GP_MP4_PDA_Video_Converter_3.5.5.zip C:\Documents and Settings\jéje\Application Data\m\shared\Wondershare Rapid E-learning Suite Standard 4.6.0.zip C:\Documents and Settings\jéje\Application Data\m\shared\Word_Recovery_2007.zip C:\Documents and Settings\jéje\Application Data\m\shared\WxCopy_1.5_(Key+Serial).zip C:\Documents and Settings\jéje\Application Data\m\shared\X360 Video Player ActiveX OCX 2.0.zip C:\Documents and Settings\jéje\Application Data\m\shared\Zlyda_1.1.zip C:\Documents and Settings\jéje\Application Data\m\srvlist.oct C:\WINDOWS\system32\drivers\downld C:\WINDOWS\system32\drivers\downld\101093.exe C:\WINDOWS\system32\drivers\downld\108437.exe C:\WINDOWS\system32\drivers\downld\115703.exe C:\WINDOWS\system32\drivers\downld\119796.exe C:\WINDOWS\system32\drivers\downld\119968.exe C:\WINDOWS\system32\drivers\downld\123359.exe C:\WINDOWS\system32\drivers\downld\126250.exe C:\WINDOWS\system32\drivers\downld\129875.exe C:\WINDOWS\system32\drivers\downld\132656.exe C:\WINDOWS\system32\drivers\downld\134421.exe C:\WINDOWS\system32\drivers\downld\137062.exe C:\WINDOWS\system32\drivers\downld\141718.exe C:\WINDOWS\system32\drivers\downld\165906.exe C:\WINDOWS\system32\drivers\downld\348031.exe C:\WINDOWS\system32\drivers\downld\357875.exe C:\WINDOWS\system32\drivers\downld\363734.exe C:\WINDOWS\system32\drivers\downld\410656.exe C:\WINDOWS\system32\drivers\downld\416625.exe C:\WINDOWS\system32\drivers\downld\527796.exe C:\WINDOWS\system32\drivers\downld\568265.exe C:\WINDOWS\system32\drivers\downld\591906.exe C:\WINDOWS\system32\drivers\downld\79937.exe C:\WINDOWS\system32\drivers\downld\79968.exe C:\WINDOWS\system32\drivers\downld\84078.exe C:\WINDOWS\system32\drivers\downld\85515.exe C:\WINDOWS\system32\drivers\hldrrr.exe C:\WINDOWS\system32\drivers\mdelk.exe C:\WINDOWS\system32\drivers\srosa.sys C:\WINDOWS\system32\mdelk.exe C:\WINDOWS\system32\wintems.exe . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Legacy_SROSA ((((((((((((((((((((((((((((( Fichiers créés 2008-04-20 to 2008-05-20 )))))))))))))))))))))))))))))))))))) . 2070-01-01 02:00 . 2008-04-03 00:53 <REP> d-------- C:\APOAL_R0 2008-05-20 20:04 . 2008-05-20 20:04 <REP> d-------- C:\Program Files\Malwarebytes' Anti-Malware 2008-05-20 20:04 . 2008-05-05 20:46 27,048 --a------ C:\WINDOWS\system32\drivers\mbamcatchme.sys 2008-05-20 20:04 . 2008-05-05 20:46 15,864 --a------ C:\WINDOWS\system32\drivers\mbam.sys 2008-05-20 19:52 . 2008-05-20 19:52 <REP> d----c--- C:\!KillBox 2008-05-20 19:34 . 2008-05-20 19:34 <REP> d-------- C:\WINDOWS\system32\Kaspersky Lab 2008-05-20 15:57 . 2008-05-20 15:57 <REP> d-------- C:\Program Files\Defenza 2008-05-19 22:25 . 2008-05-19 22:25 <REP> d-------- C:\Documents and Settings\jéje\Application Data\Smart PC Solutions 2008-05-19 22:24 . 2008-05-19 22:24 <REP> d-------- C:\Program Files\Smart PC Solutions 2008-05-18 19:38 . 2008-05-20 03:20 1,243,168 --ahs---- C:\WINDOWS\system32\drivers\fidbox.dat 2008-05-18 19:38 . 2008-05-20 03:20 5,564 --ahs---- C:\WINDOWS\system32\drivers\fidbox.idx 2008-05-18 19:34 . 2008-05-18 19:34 <REP> d-------- C:\Documents and Settings\All Users\Application Data\MailFrontier 2008-05-18 19:33 . 2008-04-02 21:07 75,248 --a------ C:\WINDOWS\zllsputility.exe 2008-05-18 19:33 . 2008-04-02 21:08 54,672 --a------ C:\WINDOWS\system32\vsutil_loc040c.dll 2008-05-18 19:33 . 2008-04-02 21:08 42,384 --a------ C:\WINDOWS\zllsputility_loc040c.dll 2008-05-18 19:33 . 2008-04-02 21:08 21,904 --a------ C:\WINDOWS\system32\imsinstall_loc040c.dll 2008-05-18 19:33 . 2008-04-02 21:08 17,808 --a------ C:\WINDOWS\system32\imslsp_install_loc040c.dll 2008-05-18 19:32 . 2008-05-18 19:32 <REP> d-------- C:\Program Files\Zone Labs 2008-05-17 14:04 . 2008-05-17 14:04 <REP> d-------- C:\Program Files\Soft4Ever 2008-05-17 00:41 . 2008-05-17 00:41 <REP> d-------- C:\Documents and Settings\jéje\Application Data\Jetico Personal Firewall 2008-05-16 18:48 . 2008-05-16 18:48 <REP> d-------- C:\WINDOWS\Profiles 2008-05-16 18:48 . 2008-05-16 18:48 <REP> d-------- C:\Documents and Settings\jéje\Application Data\InterTrust 2008-05-15 16:26 . 2008-05-15 16:26 <REP> d-------- C:\Program Files\Jetico 2008-05-15 16:24 . 2008-05-15 16:24 <REP> d-------- C:\Documents and Settings\jéje\Application Data\PCToolsFirewallPlus 2008-05-14 16:35 . 2008-05-19 19:02 54,156 --ah----- C:\WINDOWS\QTFont.qfn 2008-05-14 16:35 . 2008-05-14 16:35 1,409 --a------ C:\WINDOWS\QTFont.for 2008-05-13 15:44 . 2008-05-13 15:44 155 --a------ C:\Documents and Settings\jéje\aviva.reg 2008-05-13 15:44 . 2008-05-13 15:44 155 --a------ C:\Documents and Settings\jéje\aviva.reg 2008-05-13 03:53 . 2008-05-13 03:53 <REP> d---s---- C:\Documents and Settings\LocalService\Favoris 2008-05-13 03:45 . 2008-05-13 03:50 <REP> d-------- C:\Documents and Settings\NetworkService\Mes documents 2008-05-13 03:43 . 2008-05-13 03:43 <REP> d--hs---- C:\Documents and Settings\NetworkService\UserData 2008-05-13 03:41 . 2008-05-13 03:41 <REP> d---s---- C:\Documents and Settings\NetworkService\Favoris 2008-05-13 03:21 . 2008-05-13 03:21 <REP> d-------- C:\Program Files\Sygate 2008-05-12 22:35 . 2008-05-12 22:35 16,492 --a--c--- C:\DWWIN.EXE-2C373FB7.pf 2008-05-11 19:01 . 2008-05-11 19:01 <REP> d-------- C:\WINDOWS\Repository 2008-05-11 18:34 . 2008-05-11 18:34 <REP> d-------- C:\WINDOWS\E5431FB5B3EB46C88275F6447131C98A.TMP 2008-05-11 17:13 . 2008-05-11 17:13 <REP> d-------- C:\Program Files\Sunbelt Software 2008-05-11 15:46 . 2008-05-20 16:26 <REP> d-------- C:\Program Files\Alwil Software 2008-05-11 15:19 . 2008-05-09 15:54 439 --a--c--- C:\boot.ini.comodofirewall 2008-05-11 15:01 . 2008-05-11 15:22 <REP> d-------- C:\Documents and Settings\jéje\Application Data\Comodo 2008-05-09 22:00 . 2008-05-09 22:00 <REP> d-------- C:\Program Files\Microsoft.NET 2008-05-09 21:55 . 2008-05-14 15:04 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Microsoft Help 2008-05-09 16:29 . 2008-05-09 16:31 <REP> d-------- C:\Program Files\ABBYY FineReader 6.0 Sprint 2008-05-09 14:02 . 2008-05-09 14:03 <REP> d-------- C:\Program Files\Lexmark Fax Solutions 2008-05-09 14:01 . 2008-05-09 17:00 <REP> d-------- C:\Program Files\Lexmark 1200 Series 2008-05-09 14:01 . 2006-12-20 23:43 323,584 --a------ C:\WINDOWS\system32\LXCZhcp.dll 2008-05-09 14:01 . 2006-12-20 23:58 274,432 --a------ C:\WINDOWS\system32\LXCZinst.dll 2008-05-09 14:01 . 2007-01-25 21:43 155,648 --a------ C:\WINDOWS\system32\lxczinsb.dll 2008-05-09 14:01 . 2007-01-25 21:43 131,072 --a------ C:\WINDOWS\system32\lxczins.dll 2008-05-09 14:01 . 2007-01-23 04:59 94,208 --a------ C:\WINDOWS\system32\lxczinsr.dll 2008-05-09 13:59 . 2008-05-09 14:03 13,427 --a------ C:\WINDOWS\system32\LexFiles.ulf 2008-05-09 13:59 . 2008-05-13 18:10 396 --a------ C:\WINDOWS\Lexstat.ini 2008-05-09 13:58 . 2007-01-22 15:49 344,064 -ra------ C:\WINDOWS\system32\lxczcoin.dll 2008-05-09 13:58 . 2007-02-09 00:44 1,851 -ra------ C:\WINDOWS\system32\lxcz.loc 2008-05-09 13:47 . 2008-05-10 14:44 <REP> d----c--- C:\temp 2008-05-08 16:48 . 2008-05-08 16:50 53,248 --a------ C:\WINDOWS\fados.exe 2008-05-06 13:47 . 2008-05-06 13:47 <REP> d-------- C:\Documents and Settings\All Users\Application Data\RoboForm 2008-05-06 13:46 . 2008-05-06 13:46 <REP> d-------- C:\Program Files\Siber Systems 2008-05-05 18:32 . 2008-05-05 18:32 <REP> d-------- C:\Documents and Settings\jéje\Application Data\Malwarebytes 2008-05-05 18:32 . 2008-05-05 18:32 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes 2008-05-05 16:03 . 2008-05-05 16:03 <REP> d-------- C:\Program Files\Fichiers communs\Atlence 2008-05-05 16:03 . 2008-05-05 16:03 <REP> d-------- C:\Program Files\Atlence 2008-05-03 13:53 . 2008-05-03 13:53 <REP> d-------- C:\Program Files\AnmSMP 2008-05-01 20:31 . 2008-05-01 20:31 <REP> d-------- C:\Program Files\Dial-Up Password Recovery 2008-05-01 17:01 . 2008-05-01 17:01 <REP> d-------- C:\Program Files\FileZilla FTP Client 2008-04-30 19:07 . 2008-04-30 19:09 <REP> d-------- C:\Program Files\Sandboxie 2008-04-28 19:31 . 2008-04-28 19:31 2,279,424 --a------ C:\WINDOWS\system32\TUKernel.exe 2008-04-24 13:03 . 2008-04-24 14:16 <REP> d-------- C:\My Audio 2008-04-24 12:42 . 2008-04-24 12:43 <REP> d-------- C:\Program Files\Mio Technology . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-05-20 18:03 --------- d---a-w C:\Documents and Settings\All Users\Application Data\TEMP 2008-05-20 17:43 --------- d-----w C:\Program Files\Navilog1 2008-05-20 17:19 --------- d-----w C:\Program Files\Hijackthis Version Française 2008-05-20 17:08 --------- d-----w C:\Documents and Settings\All Users\Application Data\Avira 2008-05-20 16:52 --------- d-----w C:\Program Files\a-squared Free 2008-05-20 16:41 70,656 ----a-w C:\WINDOWS\system32\dllcache\sysinfo.exe 2008-05-20 16:40 15,360 ----a-w C:\WINDOWS\system32\dllcache\register.exe 2008-05-20 15:42 --------- d-----w C:\Program Files\Security Task Manager 2008-05-19 21:24 --------- d-----w C:\Program Files\eMule 2008-05-19 20:53 776,192 ----a-w C:\WINDOWS\Internet Logs\xDB1.tmp 2008-05-19 20:53 1,754,624 ----a-w C:\WINDOWS\Internet Logs\xDB2.tmp 2008-05-18 19:31 --------- d-----w C:\Program Files\TuneUp Utilities 2008 2008-05-18 19:31 --------- d-----w C:\Documents and Settings\jéje\Application Data\Vso 2008-05-17 00:37 --------- d-----w C:\Documents and Settings\All Users\Application Data\Lavasoft 2008-05-17 00:35 --------- d-----w C:\Program Files\Lavasoft 2008-05-16 22:34 --------- d-----w C:\Program Files\Fichiers communs\Wise Installation Wizard 2008-05-16 21:30 --------- d-----w C:\Program Files\Spybot - Search & Destroy 2008-05-16 21:14 --------- d-----w C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy 2008-05-14 16:13 --------- d-----w C:\Program Files\CVitae 2008-05-13 00:55 3,550,823 ----a-w C:\WINDOWS\system32\drivers\fwdrv.err 2008-05-11 18:35 --------- d-----w C:\Program Files\Eidos Interactive 2008-05-11 18:31 --------- d-----w C:\Program Files\Dietum_demo 2008-05-11 12:38 --------- d-----w C:\Program Files\Rastafarai Script V4 2008-05-11 12:38 --------- d-----w C:\Documents and Settings\jéje\Application Data\XnView 2008-05-11 12:38 --------- d-----w C:\Documents and Settings\jéje\Application Data\LimeWire 2008-05-11 00:09 --------- d-----w C:\Documents and Settings\All Users\Application Data\Kaspersky Lab 2008-04-29 00:18 --------- d-----w C:\Program Files\Microsoft Silverlight 2008-04-28 17:38 --------- d-----w C:\Program Files\Opera 2008-04-24 10:43 --------- d--h--w C:\Program Files\InstallShield Installation Information 2008-04-22 17:25 --------- d-----w C:\Program Files\Fichiers communs\Adobe 2008-04-16 15:50 --------- d-----w C:\Program Files\nutri 2008-04-15 15:26 --------- d-----w C:\Program Files\IVCsoft 2008-04-12 21:25 --------- d-----w C:\Program Files\AbiSuite2 2008-04-12 12:03 --------- d-----w C:\Program Files\SlySoft 2008-04-12 11:59 --------- d-----w C:\Program Files\QuickTime 2008-04-09 16:56 --------- d-----w C:\Program Files\VisualRoute 2008 2008-04-09 16:39 --------- d-----w C:\Program Files\MSECache 2008-04-05 01:39 39,424 ----a-w C:\WINDOWS\zipinst.exe 2008-04-03 17:28 --------- d-----w C:\Program Files\MSN Messenger 2008-04-03 17:28 --------- d-----w C:\Program Files\Messenger Plus! Live 2008-04-03 17:06 --------- d-----w C:\Program Files\MessengerPlus! 3 2008-04-03 16:58 --------- d-----w C:\Program Files\Windows Live 2008-04-03 16:53 --------- d-----w C:\Documents and Settings\All Users\Application Data\WLInstaller 2008-04-02 22:48 --------- d-----w C:\Program Files\Trojan Remover 2008-04-02 22:48 --------- d-----w C:\Program Files\ma-config.com 2008-04-02 20:18 --------- d-----w C:\Program Files\Raxco 2008-04-02 19:55 --------- d-----w C:\Documents and Settings\All Users\Application Data\Messenger Plus! 2008-04-02 19:39 --------- d-----w C:\Program Files\Fichiers communs\Cisco Systems 2008-04-02 19:07 1,086,952 ----a-w C:\WINDOWS\system32\zpeng24.dll 2008-04-02 17:34 --------- dcsh--w C:\Program Files\Fichiers communs\WindowsLiveInstaller 2008-03-31 14:27 --------- d-----w C:\Program Files\Fichiers communs\Kaspersky Lab 2008-03-30 22:04 --------- d-----w C:\Program Files\DivX 2008-03-28 15:05 40,730 ----a-w C:\WINDOWS\system32\superiorads-uninst.exe 2008-03-27 01:50 --------- d-----w C:\Documents and Settings\jéje\Application Data\dvdcss 2008-03-27 00:38 --------- d-----w C:\Documents and Settings\jéje\Application Data\Voxmobili 2008-03-27 00:37 --------- d-----w C:\Program Files\Orange 2008-03-25 16:04 --------- d-----w C:\Documents and Settings\Famille\Application Data\TuneUp Software 2008-03-25 15:52 --------- d-----w C:\Documents and Settings\Famille\Application Data\Agnitum 2008-03-25 13:43 307,968 ----a-w C:\WINDOWS\system32\TuneUpDefragService.exe 2008-03-25 13:27 --------- d-----w C:\Documents and Settings\All Users\Application Data\TuneUp Software 2008-03-25 04:51 621,344 ----a-w C:\WINDOWS\system32\mswstr10.dll 2008-03-25 04:51 194,144 ----a-w C:\WINDOWS\system32\msjint40.dll 2008-03-25 03:12 --------- d-----w C:\Documents and Settings\All Users\Application Data\Adobe Systems 2008-03-21 19:44 --------- d-----w C:\Documents and Settings\All Users\Application Data\SlySoft 2008-03-21 16:54 --------- d-----w C:\Program Files\AxBx 2008-03-20 12:18 --------- d-----w C:\Program Files\EA GAMES 2008-03-20 08:09 1,845,376 ----a-w C:\WINDOWS\system32\win32k.sys 2008-03-16 00:52 107,888 ----a-w C:\WINDOWS\system32\CmdLineExt.dll 2008-03-14 22:24 93,128 ----a-w C:\WINDOWS\system32\ElbyCDIO.dll 2008-03-01 12:58 826,368 ----a-w C:\WINDOWS\system32\wininet.dll 2008-02-27 12:15 28,416 ----a-w C:\WINDOWS\system32\uxtuneup.dll 2008-02-26 23:42 47,360 ----a-w C:\Documents and Settings\jéje\Application Data\pcouffin.sys 2008-02-21 02:05 524,288 ----a-w C:\WINDOWS\system32\DivXsm.exe 2008-02-21 02:05 3,596,288 ----a-w C:\WINDOWS\system32\qt-dx331.dll 2008-02-21 02:05 200,704 ----a-w C:\WINDOWS\system32\ssldivx.dll 2008-02-21 02:05 1,044,480 ----a-w C:\WINDOWS\system32\libdivx.dll 2008-02-21 02:04 823,296 ----a-w C:\WINDOWS\system32\divx_xx0c.dll 2008-02-21 02:04 823,296 ----a-w C:\WINDOWS\system32\divx_xx07.dll 2008-02-21 02:04 81,920 ----a-w C:\WINDOWS\system32\dpl100.dll 2008-02-21 02:04 802,816 ----a-w C:\WINDOWS\system32\divx_xx11.dll 2008-02-21 02:04 682,496 ----a-w C:\WINDOWS\system32\DivX.dll 2008-02-21 02:04 593,920 ----a-w C:\WINDOWS\system32\dpuGUI11.dll 2008-02-21 02:04 57,344 ----a-w C:\WINDOWS\system32\dpv11.dll 2008-02-21 02:04 53,248 ----a-w C:\WINDOWS\system32\dpuGUI10.dll 2008-02-21 02:04 344,064 ----a-w C:\WINDOWS\system32\dpus11.dll 2008-02-21 02:04 294,912 ----a-w C:\WINDOWS\system32\dpu11.dll 2008-02-21 02:04 294,912 ----a-w C:\WINDOWS\system32\dpu10.dll 2008-02-21 02:04 196,608 ----a-w C:\WINDOWS\system32\dtu100.dll 2008-02-21 02:03 156,992 ----a-w C:\WINDOWS\system32\DivXCodecVersionChecker.exe 2008-02-21 02:03 12,288 ----a-w C:\WINDOWS\system32\DivXWMPExtType.dll 2008-02-20 06:51 282,624 ----a-w C:\WINDOWS\system32\gdi32.dll 2008-02-20 05:35 45,568 ----a-w C:\WINDOWS\system32\dnsrslvr.dll 2008-01-30 15:42 392 ----a-w C:\Program Files\IDAPI32.CFG 2008-01-10 16:30 6,447,189 ----a-w C:\Program Files\Setup_FreeBurner.exe 2008-01-09 01:57 812,344 ----a-w C:\Program Files\HJTInstall.exe 2007-10-14 20:01 774,144 -c--a-w C:\Program Files\RngInterstitial.dll 2007-09-12 23:13 77,326,806 -c--a-w C:\Documents and Settings\jéje\sav6.reg 2007-09-12 23:13 77,326,806 -c--a-w C:\Documents and Settings\jéje\sav6.reg 2007-07-18 13:21 72,629,626 -c--a-w C:\Documents and Settings\jéje\Sav5.reg 2007-07-18 13:21 72,629,626 -c--a-w C:\Documents and Settings\jéje\Sav5.reg 2007-05-10 18:02 5 --sha-w C:\WINDOWS\system32\cbcebafab9_s.dll . ((((((((((((((((((((((((((((((((( Point de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))) . . REGEDIT4 *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-10 22:00 15360] "UberIcon"="C:\WINDOWS\BricoPacks\Crystal Clear\UberIcon\UberIcon Manager.exe" [2006-02-05 14:20 180224] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ZoneAlarm Client"="C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" [2008-05-20 20:13 919016] "avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2008-05-20 18:03 79224] "MSConfig"="C:\WINDOWS\pchealth\helpctr\Binaries\MSCONFIG.exe" [2005-09-28 20:11 172544] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-10 22:00 15360] C:\Documents and Settings\j‚je\Menu D‚marrer\Programmes\D‚marrage\ UberIcon.lnk - C:\WINDOWS\BricoPacks\Crystal Clear\UberIcon\UberIcon Manager.exe [2006-02-05 14:20:14 180224] C:\Documents and Settings\All Users\Menu D‚marrer\Programmes\D‚marrage\ Acer WLAN 11g USB Dongle.lnk - C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe [2005-11-16 20:25:14 745472] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "InstallVisualStyle"= C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles "InstallTheme"= C:\WINDOWS\Resources\Themes\Royale.theme [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system] "DisableRegedit"= 0 (0x0) "NoFind"= 0 (0x0) "NoRun"= 0 (0x0) "NoDesktop"= 0 (0x0) "NoClose"= 0 (0x0) "StartMenuLogOff"= 0 (0x0) "HideClock"= 0 (0x0) [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer] "NoFavoritesMenu"= 0 (0x0) "NoSMMyPictures"= 0 (0x0) "NoStartMenuMyMusic"= 0 (0x0) "NoInstrumentation"= 0 (0x0) "NoSimpleStartMenu"= 0 (0x0) "NoRecentDocsNetHood"= 0 (0x0) [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "NoFavoritesMenu"= 0 (0x0) "NoSMMyPictures"= 0 (0x0) "NoStartMenuMyMusic"= 0 (0x0) "NoUserNameInStartMenu"= 0 (0x0) "NoInstrumentation"= 0 (0x0) "NoStartMenuPinnedList"= 0 (0x0) "ForceStartMenuLogoff"= 0 (0x0) "NoRecentDocsNetHood"= 0 (0x0) "NoSMBalloonTip"= 0 (0x0) "GreyMSIAds"= 1 (0x1) "NoBandCustomize"= 0 (0x0) "NoMovingBands"= 0 (0x0) "NoCloseDragDropBands"= 0 (0x0) [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows] "AppInit_DLLs"= [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "vidc.I420"= i420vfw.dll [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^MioSync.lnk] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] --a------ 2008-01-11 23:16 39792 C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\au] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ccApp] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Cld2000.exe] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanzarT2006] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lxczbmgr.exe] --a------ 2007-02-09 00:53 74672 C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr] --a------ 2007-01-19 12:55 5674352 C:\Program Files\MSN Messenger\MsnMsgr.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MySight 2006 BS Check&Random] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan] --a------ 2007-12-03 15:21 2213160 C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Orange Desktop Search] --a------ 2007-01-17 16:10 4938016 C:\Program Files\Orange HSS\Orange Desktop Search\OrangeDesktopSearch.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCDAS] --a------ 2006-12-15 10:47 1359872 C:\Program Files\Defenza\pcd-as.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] --a------ 2008-01-10 16:27 385024 C:\Program Files\QuickTime\qttask.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RecoverFromReboot] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoboForm] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SearchSettings] --a------ 2007-12-06 12:58 1069920 C:\Program Files\Search Settings\SearchSettings.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\spa_start] C:\WINDOWS\system32\{fb946997-87a9-c7b2-f6b5-899f9dcbdecc}.dll [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] --a------ 2008-02-22 05:25 144784 C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SysMetrix] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TuneUp MemOptimizer] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UberIcon] --a------ 2006-02-05 14:20 180224 C:\WINDOWS\BricoPacks\Crystal Clear\UberIcon\UberIcon Manager.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Uniblue RegistryBooster 2] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Veoh] --a------ 2007-12-03 14:21 3461120 C:\Program Files\Veoh Networks\Veoh\VeohClient.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\{928d07a7-1d66-fa96-56f7-94081c4d17f6}] C:\WINDOWS\system32\{fb946997-87a9-c7b2-f6b5-899f9dcbdecc}.dll [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "vsmon"=2 (0x2) "gusvc"=3 (0x3) "sp_rssrv"=3 (0x3) [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-] "swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "spa_start"=C:\WINDOWS\System32\Rundll32.exe "C:\WINDOWS\system32\sprt_ads.dll" DllInit [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\ZoneLabsFirewall] "DisableMonitoring"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "C:\\Program Files\\Messenger\\msmsgs.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "C:\\Program Files\\Club-Internet\\Assistance\\UpdateHitachi\\MAJ_Hitachi.exe"= "C:\\Program Files\\NetMeeting\\conf.exe"= "C:\\WINDOWS\\system32\\sessmgr.exe"= "C:\\Program Files\\MSN Messenger\\msnmsgr.exe"= "C:\\Program Files\\MSN Messenger\\livecall.exe"= "C:\\Program Files\\eMule\\emule.exe"= "C:\\WINDOWS\\system32\\lxczcoms.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009 HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs UxTuneUp . Contenu du dossier 'Scheduled Tasks/Tâches planifiées' "2008-05-20 18:18:19 C:\WINDOWS\Tasks\Maintenance en 1 clic.job" - C:\Program Files\TuneUp Utilities 2008\OneClickStarter.exe "2008-05-20 17:18:02 C:\WINDOWS\Tasks\Vérifier les mises à jour de Windows Live Toolbar.job" - C:\Program Files\Windows Live Toolbar\MSNTBUP.EXE . ************************************************************************** catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-05-20 20:32:26 Windows 5.1.2600 Service Pack 2 NTFS Balayage processus cachés ... Balayage caché autostart entries ... Balayage des fichiers cachés ... Scan terminé avec succès Les fichiers cachés: 0 ************************************************************************** . --------------------- DLLs a chargé sous des processus courants --------------------- PROCESS: C:\WINDOWS\explorer.exe -> C:\WINDOWS\BricoPacks\Crystal Clear\UberIcon\UberIcon.dll . Temps d'accomplissement: 2008-05-20 20:36:14 ComboFix-quarantined-files.txt 2008-05-20 18:36:03 ComboFix2.txt 2008-05-05 17:06:35 Pre-Run: 22,059,737,088 octets libres Post-Run: 22,055,923,712 octets libres 498 --- E O F --- 2008-05-18 13:19:50 -
[resolu]Infecté par wintems.exe Uc a 100%
jejedu83 a répondu à un(e) sujet de jejedu83 dans Analyses et éradication malwares
C'est quand meme pas de ma faute si je suis infecté!il me semble que ce forum est conçu pour aider les personne qui ont des probleme de ce genre ou je me trompe?et les sujet que tu a cité date j'ai oublié de mettre résolu c'est vrai!et les autre sont des sujets que j'avais crée pour aider une amie qui avais ces probleme de virus mais comme depuis son pc marche plus..... Voila Mr oGu -
[resolu]Infecté par wintems.exe Uc a 100%
jejedu83 a posté un sujet dans Analyses et éradication malwares
Bonjour a tous depuis hier je me suis chopé un trojan qui fait ramer mon pc l'uc presque tout le temps a 100% dans les processus j'ai wintems.exe d'après ce que j'ai lu ça a l'air d'etre une saleté difficile a s'en débarrassé!!j'e l'est enlevé avec navilog mais il revient apres un redémarrage. Mon antivirus et pare feu ont l'air d'etre désactiver quand je clik dessus j'ai un message d'erreur comme quoi ce n'est pas une application win32 valide... Je vous post un log hijacthis en espérant qu'on puisse m'aider! merci Logfile of HijackThis v1.99.1 Scan saved at 19:18 , on 20/05/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16640) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Acer\Empowering Technology\ePerformance\MemCheck.exe C:\WINDOWS\eHome\ehRecvr.exe c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe C:\WINDOWS\system32\lxczcoms.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Defenza\pcd-as.exe C:\WINDOWS\system32\ctfmon.exe C:\WINDOWS\BricoPacks\Crystal Clear\UberIcon\UberIcon Manager.exe C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe C:\WINDOWS\system32\taskmgr.exe C:\WINDOWS\system32\dllhost.exe C:\WINDOWS\system32\drivers\downld\84078.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [PCDAS] C:\Program Files\Defenza\pcd-as.exe /10003 O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [uberIcon] "C:\WINDOWS\BricoPacks\Crystal Clear\UberIcon\UberIcon Manager.exe" O4 - Startup: UberIcon.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\UberIcon\UberIcon Manager.exe O4 - Global Startup: Acer WLAN 11g USB Dongle.lnk = C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe O9 - Extra button: Trace - {04849C74-016E-4a43-8AA5-1F01DE57F4A1} - C:\Program Files\VisualRoute 2008\vrie.dll O9 - Extra 'Tools' menuitem: VisualRoute Trace - {04849C74-016E-4a43-8AA5-1F01DE57F4A1} - C:\Program Files\VisualRoute 2008\vrie.dll O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra button: Statistiques d'Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\WINDOWS\system32\shdocvw.dll O11 - Options group: [iNTERNATIONAL] International* O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} - O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab56986.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/...lscbase2474.cab O16 - DPF: {8436FE12-31DB-48BF-83BF-FE682F9160B4} (NanoInstaller Class) - http://www.nanoscan.com/cabs/nanoinst.cab O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} - http://acs.pandasoftware.com/activescan/as5free/asinst.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxmultijoueurs.orange.fr/Gameshel...ronGameHost.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\FICHIE~1\MICROS~1\OFFICE12\MSOXMLMF.DLL O20 - AppInit_DLLs: O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - c:\program files\a-squared free\a2service.exe O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe O23 - Service: lxcz_device - - C:\WINDOWS\system32\lxczcoms.exe O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe -
Que pensez vous du motorola w230?? Qui l'as déjà utilisé?
-
Pour les fan de foot
jejedu83 a répondu à un(e) sujet de jejedu83 dans J'ai rien à dire mais j'le dis quand même
Troll toi meme LOL -
Coucou tout le monde!! Apres une saison galere le Psg reste en L1 grace a sa victoire 2 a 1 a Sochaux... quel soulagement apres tant de temps a stresser mais pour la prochaine saison y'aura obligatoirement des changement sinon ça va etre une saison galere comme les 2 précedente... On perd un grand club le RcLens pour ma part j'aurais préféré que ce soit toulouse en L2... Et vous etes fan de foot?? Avez vous suivis votre club dans le meilleur comme le pire?? Quel été vos pronostic pour le club champion et celui qui allé rejoindre Metz et Strasbourg en L 2 ?? A vous!!
-
LOL j'allé le faire a l'instant mais je viens de voir que quelqu'un s'en est deja chargé la prochaine fois je le ferais de suite
-
Re bonjour! Merci pour votre aide j'ai fais comme Angelique a dis et au redémarrage quel bonheur de revoir mes icone apparaitre merci c'est sympa! A+
-
C'est quoi le traybar.exe?? jamais entendu parler... Sinon je n'est pas trafiqué la barre des taches et j'utilise un bricopak mais je doute que le probleme vienne de là puisque je l'utilise depuis longtemps et jamais j'ai eu ce problème. Concernant l'icone du volume j'ai fais comme tu l'as écris et j'ai retrouvé l'icone. J'ai trouver sur le net un logiciel a propos des icone c'est taskbarRepairToolPlus mais je n'y comprend rien tout est en anglais si tu connais son fonctionnement tu pourrais m'expliquer stp? merci
-
Salut! Moi jai coché toujours afficher mais ça na rien changer... C'est pas au niveau des services que ça coince ? je sais pas lesquels par rapport a mon probleme... Merci
-
En fait je vien de voir qui ya plusieurs icone qui ont disparu comme celle du volume et périphérique...
-
Oui toujours .. J'ai spybot mai je sais pas comment faire pour enlever le teatimer je vous post un log hijacthis Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 19:14 , on 13/05/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16640) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Sygate\SPF\smc.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe C:\WINDOWS\system32\ctfmon.exe C:\WINDOWS\BricoPacks\Crystal Clear\UberIcon\UberIcon Manager.exe C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe C:\Acer\Empowering Technology\ePerformance\MemCheck.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe C:\WINDOWS\eHome\ehRecvr.exe C:\WINDOWS\eHome\ehSched.exe c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe C:\WINDOWS\system32\lxczcoms.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\dllhost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\MSN Messenger\usnsvc.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avcenter.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://orange.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll O4 - HKLM\..\Run: [smcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [uberIcon] "C:\WINDOWS\BricoPacks\Crystal Clear\UberIcon\UberIcon Manager.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: UberIcon.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\UberIcon\UberIcon Manager.exe O4 - Global Startup: Acer WLAN 11g USB Dongle.lnk = C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx O8 - Extra context menu item: Choisir comme avatar pour &Messenger - C:\Program Files\MSN Pictures Displayer\AddIEPicture.htm O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office12\EXCEL.EXE/3000 O9 - Extra button: Trace - {04849C74-016E-4a43-8AA5-1F01DE57F4A1} - C:\Program Files\VisualRoute 2008\vrie.dll O9 - Extra 'Tools' menuitem: VisualRoute Trace - {04849C74-016E-4a43-8AA5-1F01DE57F4A1} - C:\Program Files\VisualRoute 2008\vrie.dll O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra button: Statistiques d’Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\WINDOWS\system32\shdocvw.dll O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} - O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab56986.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/...lscbase2474.cab O16 - DPF: {8436FE12-31DB-48BF-83BF-FE682F9160B4} (NanoInstaller Class) - http://www.nanoscan.com/cabs/nanoinst.cab O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} - http://acs.pandasoftware.com/activescan/as5free/asinst.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxmultijoueurs.orange.fr/Gameshel...ronGameHost.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O20 - AppInit_DLLs: O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe O23 - Service: Avira AntiVir Personal – Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe O23 - Service: Avira AntiVir Personal – Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe O23 - Service: lxcz_device - - C:\WINDOWS\system32\lxczcoms.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe O24 - Desktop Component 0: (no name) - http://meteomedia.com/ -- End of file - 8439 bytes
-
C'est la fenetre la ou ya statut overview, local protection, administration...Antivir guard est activé toutes les icones son verte sauf last complete systeme scan.. Angelique j'ai pas compris ce que tu voulais dire, je le trouve ou teatimer ??
-
Quand je fais démarrer > start antivir ya la fenêtre antivir qui s'ouvre mais pas d'icone dans la barre des taches et aucun message d'erreur... J'ai réinstaller antivir, l'icone y est mais au redémarrage elle disparait! Et oui toujours xp2
-
Re dans ajout supression de programme... Et quant au post que tu m'as dis c'est pour une amie.. Toujour pas cette icone antivir!
-
SAlut facks c'est ce que jai fais désinstaller et réinstaller mais jai toujours le meme probleme depuis! A+
-
Bonjour, Je viens d'installer Antivir mais depuis que j'ai redémarrer mon pc l'icône antivir a disparu de la barres des taches et aucun moyen de la faire revenir! Si quelqu'un a eu le même problème ou sais comment le résoudre merci de me le dire ça serais sympa A+