Aller au contenu

guillaum1986

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    91

  • Inscription

  • Dernière visite

Autres informations

  • Mes langues
    francais

guillaum1986's Achievements

Member

Member (4/12)

0

Réputation sur la communauté

  1. guillaum1986
    Bonjour, Je ne sais pas si je suis vraiment dans la bonne section, mais j'ai réellement besoin d'aide :P Lors du démarrage de mon PC je reste bloqué sur l'écran bienvenue avec le petit cercle vista qui tourne à coté ... J'ai tenté de démarrer en mode sans échec mais je retombe sur cette même fenêtre de bienvenue... Avez vous une solution? Je suis sous Vista Edition familiale Premium Packard Bell easynote
  2. guillaum1986
    Bonjour à tous, j'ai un petit problème un peu difficile à expliquer mais j'espère me faire comprendre . Depuis quelques temps j'ai donc un soucis avec mon word 2003 au boulot. Lorsque je sélectionne un texte que je veux supprimer, je suis obligé d'appuyer sur la touche "sup" pour le supprimer en effet la touche retrait ne fonctionne pas non plus. De plus logiquement lorsque l'on sélectionne un texte et que je commence à taper le texte devrait s'effacer et ce n'est pas le cas. Avez vous compris mon problème et surtout avez vous des solutions?
  3. guillaum1986

    PC qui freeze

    guillaum1986 a répondu à un(e) sujet de guillaum1986 dans Hardware

    zut zut :s
  4. guillaum1986

    PC qui freeze

    guillaum1986 a répondu à un(e) sujet de guillaum1986 dans Hardware

    Ce nettoyage de disque plante et ne termine jamais :s
  5. guillaum1986

    PC qui freeze

    guillaum1986 a répondu à un(e) sujet de guillaum1986 dans Hardware

    Avec quel logiciel?
  6. guillaum1986

    PC qui freeze

    guillaum1986 a répondu à un(e) sujet de guillaum1986 dans Hardware

    quelle version de firefox as tu ? quels en sont les modules complémentaires ? 3.0.10 et pas de modules complémentaire As tu observé des freeze avec IE ? Avec plusieurs applications lancées en // ? Je t'avoue que je n'utilise jamais IE donc pas de freeze as tu des événements dans l'observateur d'événement de windows ? non rien dans l'observateur As tu des périph USB ne pourrais tu pas les mettre sur un hub avec alim propre ce qui soulagera l'alim et ta CM ? Non As tu fait le ménage dans le démarrage, cf premier msg, peux tu éviter les mises à jour automatique dont celles de Windows et toutes autres. Oui le ménage est fait avc mscnfig mais je t'avoue que j'ai fait toutes les mises à jour windows Peux tu décrire sommairement ta connection au Net : (carte/wifi/filaire) Fai... Intel® Wireless WiFi Link 4965AG Type WIRELESS LAN Speed 54Mbps Apres decris moi ce que tu veux car je te dis je ne suis pas un expert dans ce domaine dsl Carte
  7. guillaum1986

    PC qui freeze

    guillaum1986 a répondu à un(e) sujet de guillaum1986 dans Hardware

    Info Process Explorer CPU Usage aux alentours de 10% Commit 990 Mb I/O Bytes 6kb Physical 1012 Mb Totals Handles 16000 Threads 793 Processes 62 Commit charge Current 1 009 780 Limit 6 481 592 Peak 1 302 844 Physical Memory Total 3 135 176 Available 2 109 376 System Cache 2 308 844 Kernel Memory Pages Physical 92760 Pages Virtual 92736 Pages Limit no symbols En tout cas ça paraît pas en surutilisation... :P En général je freeze sur mozilla, le sablier sur la souris... programme ne répond pas ensuite CTRL ALT SUP et avec le gestionnaire de tâche pas de réponse je suis obligé de le redemarrer au bouton. DSL je ne trouve pas le récapitulatif des événement dans SIW Les defrag disques et registre sont réalisés tous les mois... Non pas de hub Oui les ventilo sont tres souvent en route et d'ailleurs très bruyant... Mon PC est très souvent très chaud et je sais que chaleur = ralentissement des composant electronique. DSL de pas avoir été claire merci pour l'aide!!!
  8. guillaum1986

    PC qui freeze

    guillaum1986 a répondu à un(e) sujet de guillaum1986 dans Hardware

    rapport avc hwmonitor (je trouve que mon PC portable packard bell easynote chauffe beaucoup sous vista 4go de memoire CPUID Hardware Monitor 1.1.4.0 ----------------------------------------------------- Mainboard Vendor Packard Bell BV Mainboard Model PB3 (0xC5 - 0x55C) LPCIO ----------------------------------------------------- Vendor NS Vendor ID 0xFF02 Chip ID 0x85 Revision ID 0x0 Config Mode I/O address 0x2E Dump config mode register space, LDN = 0x9 0 1 2 3 4 5 6 7 8 9 A B C D E F 00 00 00 00 00 00 00 00 09 00 00 00 00 00 00 00 00 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 20 85 12 30 01 00 00 00 00 00 00 00 00 01 01 00 00 30 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 50 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 60 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 70 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Hardware monitor ----------------------------------------------------- ACPI hardware monitor Temperature sensor 0 61°C (141°F) [0xD0E] (THRM) Dump hardware monitor Hardware monitor ----------------------------------------------------- Intel Mobile Core 2 Duo T7250 hardware monitor Temperature sensor 0 58°C (136°F) [0x2A] (Core #0) Temperature sensor 1 58°C (136°F) [0x2A] (Core #1) Dump hardware monitor Hardware monitor ----------------------------------------------------- GeForce 8600M GS hardware monitor Temperature sensor 0 71°C (159°F) [0x47] (GPU Core) Dump hardware monitor Hardware monitor ----------------------------------------------------- ST920042 0AS hardware monitor Temperature sensor 0 45°C (112°F) [0x2D] (HDD) Dump hardware monitor Processors Map ------------------------------------------------------------------------------------ Number of processors 1 Number of threads 2 Processor 0 -- Core 0 -- Thread 0 -- Core 1 -- Thread 0 Processors Information ------------------------------------------------------------------------------------ Processor 1 (ID = 0) Number of cores 2 (max 2) Number of threads 2 (max 2) Name Intel Mobile Core 2 Duo T7250 Codename Merom Specification Intel® Core2 Duo CPU T7250 @ 2.00GHz Package Socket P (478) (platform ID = 7h) CPUID 6.F.D Extended CPUID 6.F Core Stepping M0 Technology 65 nm Core Speed 1180.7 MHz (6.0 x 196.8 MHz) Rated Bus speed 787.1 MHz Stock frequency 2000 MHz Instructions sets MMX, SSE, SSE2, SSE3, SSSE3, EM64T L1 Data cache 2 x 32 KBytes, 8-way set associative, 64-byte line size L1 Instruction cache 2 x 32 KBytes, 8-way set associative, 64-byte line size L2 cache 2048 KBytes, 8-way set associative, 64-byte line size FID/VID Control yes FID range 6.0x - 10.0x max VID 1.175 V Features XD, VT Thread dumps ------------------------------------------------------------------------------------ CPU Thread 0 APIC ID 0 Topology Processor ID 0, Core ID 0, Thread ID 0 Type 01008001h Max CPUID level 0000000Ah Max CPUID ext. level 80000008h Function eax ebx ecx edx 0x00000000 0x0000000A 0x756E6547 0x6C65746E 0x49656E69 0x00000001 0x000006FD 0x00020800 0x0000E3BD 0xBFEBFBFF 0x00000002 0x05B0B101 0x005657F0 0x00000000 0x2CB4307D 0x00000003 0x00000000 0x00000000 0x00000000 0x00000000 0x00000004 0x04000121 0x01C0003F 0x0000003F 0x00000001 0x00000004 0x04000122 0x01C0003F 0x0000003F 0x00000001 0x00000004 0x04004143 0x01C0003F 0x00000FFF 0x00000001 0x00000005 0x00000040 0x00000040 0x00000003 0x00022220 0x00000006 0x00000003 0x00000002 0x00000001 0x00000000 0x00000007 0x00000000 0x00000000 0x00000000 0x00000000 0x00000008 0x00000400 0x00000000 0x00000000 0x00000000 0x00000009 0x00000000 0x00000000 0x00000000 0x00000000 0x0000000A 0x07280202 0x00000000 0x00000000 0x00000503 0x80000000 0x80000008 0x00000000 0x00000000 0x00000000 0x80000001 0x00000000 0x00000000 0x00000001 0x20100000 0x80000002 0x65746E49 0x2952286C 0x726F4320 0x4D542865 0x80000003 0x44203229 0x43206F75 0x20205550 0x54202020 0x80000004 0x30353237 0x20402020 0x30302E32 0x007A4847 0x80000005 0x00000000 0x00000000 0x00000000 0x00000000 0x80000006 0x00000000 0x00000000 0x08006040 0x00000000 0x80000007 0x00000000 0x00000000 0x00000000 0x00000000 0x80000008 0x00003024 0x00000000 0x00000000 0x00000000 Cache descriptor Level 1 D 32 KB 1 thread(s) Cache descriptor Level 1 I 32 KB 1 thread(s) Cache descriptor Level 2 U 2 MB 2 thread(s) MSR 0x0000001B edx = 0x00000000 eax = 0xFEE00900 MSR 0x00000017 edx = 0x001C0000 eax = 0x9A708A25 MSR 0x000000CD edx = 0x00000000 eax = 0x000001A2 MSR 0x0000003F edx = 0x00000000 eax = 0x00000000 MSR 0x000000CE edx = 0x80170B2D eax = 0x3B3B080F MSR 0x000001A0 edx = 0x00000013 eax = 0x64972489 MSR 0x000000EE edx = 0x00000000 eax = 0x9AB90400 MSR 0x0000011E edx = 0x00000000 eax = 0x74702107 MSR 0x0000019C edx = 0x00000000 eax = 0x882A0000 MSR 0x00000198 edx = 0x06170B2D eax = 0x06000B2D MSR 0x00000199 edx = 0x00000000 eax = 0x00000B2D CPU Thread 1 APIC ID 1 Topology Processor ID 0, Core ID 1, Thread ID 0 Type 01008001h Max CPUID level 0000000Ah Max CPUID ext. level 80000008h Function eax ebx ecx edx 0x00000000 0x0000000A 0x756E6547 0x6C65746E 0x49656E69 0x00000001 0x000006FD 0x01020800 0x0000E3BD 0xBFEBFBFF 0x00000002 0x05B0B101 0x005657F0 0x00000000 0x2CB4307D 0x00000003 0x00000000 0x00000000 0x00000000 0x00000000 0x00000004 0x04000121 0x01C0003F 0x0000003F 0x00000001 0x00000004 0x04000122 0x01C0003F 0x0000003F 0x00000001 0x00000004 0x04004143 0x01C0003F 0x00000FFF 0x00000001 0x00000005 0x00000040 0x00000040 0x00000003 0x00022220 0x00000006 0x00000003 0x00000002 0x00000001 0x00000000 0x00000007 0x00000000 0x00000000 0x00000000 0x00000000 0x00000008 0x00000400 0x00000000 0x00000000 0x00000000 0x00000009 0x00000000 0x00000000 0x00000000 0x00000000 0x0000000A 0x07280202 0x00000000 0x00000000 0x00000503 0x80000000 0x80000008 0x00000000 0x00000000 0x00000000 0x80000001 0x00000000 0x00000000 0x00000001 0x20100000 0x80000002 0x65746E49 0x2952286C 0x726F4320 0x4D542865 0x80000003 0x44203229 0x43206F75 0x20205550 0x54202020 0x80000004 0x30353237 0x20402020 0x30302E32 0x007A4847 0x80000005 0x00000000 0x00000000 0x00000000 0x00000000 0x80000006 0x00000000 0x00000000 0x08006040 0x00000000 0x80000007 0x00000000 0x00000000 0x00000000 0x00000000 0x80000008 0x00003024 0x00000000 0x00000000 0x00000000 Cache descriptor Level 1 D 32 KB 1 thread(s) Cache descriptor Level 1 I 32 KB 1 thread(s) Cache descriptor Level 2 U 2 MB 2 thread(s) MSR 0x0000001B edx = 0x00000000 eax = 0xFEE00800 MSR 0x00000017 edx = 0x001C0000 eax = 0x9A708A25 MSR 0x000000CD edx = 0x00000000 eax = 0x000001A2 MSR 0x0000003F edx = 0x00000000 eax = 0x00000000 MSR 0x000000CE edx = 0x80170B2D eax = 0x3B3B080F MSR 0x000001A0 edx = 0x00000013 eax = 0x64972489 MSR 0x000000EE edx = 0x00000000 eax = 0x9AB90400 MSR 0x0000011E edx = 0x00000000 eax = 0x74702107 MSR 0x0000019C edx = 0x00000000 eax = 0x882A0000 MSR 0x00000198 edx = 0x06170B2D eax = 0x06000B2D MSR 0x00000199 edx = 0x00000000 eax = 0x00000B2D Drive ----------------------------------------------------- Name ST920042 0AS Display API(s) ------------------------------------------------------------------------------ NVIDIA direct I/O API NVAPI display API Display Adapter(s) ------------------------------------------------------------------------------ Device number 0 Name GeForce 8600M GS Vendor ID 0x10DE (0x1631) Model ID 0x425 (0xC105) Revision ID 0xA1 Perf Level Default GPU core clock 169.0 MHz GPU shaders clock 338.0 MHz GPU memory clock 100.0 MHz Perf Level 2D Desktop GPU core clock 275.0 MHz GPU shaders clock 550.0 MHz GPU memory clock 200.0 MHz Perf Level 3D Applications GPU core clock 500.0 MHz GPU shaders clock 1000.0 MHz GPU memory clock 350.0 MHz GPU temperature 71 C voila pour les infos disques
  9. guillaum1986

    PC qui freeze

    guillaum1986 a répondu à un(e) sujet de guillaum1986 dans Hardware

    SIW?? dsl je suis pas un pro c'est un logiciel type hijack??
  10. guillaum1986

    PC qui freeze

    guillaum1986 a posté un sujet dans Hardware

    Bjr à tous apres un post dans la section sécurité aucune infection n'a été détecté... et pourtant mon pc freeze régulièrement en ce moment pouvez vous m'aider???
  11. guillaum1986
    merci!!
  12. guillaum1986
    Bonjour, Depuis quelques temps mon PC freeze a tout bout de champ sans aucune explication... et je ne sais vraiment pas quoi faire... ya til une explication dans mon rapport hijack??? Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 15:19:43, on 17/05/2009 Platform: Windows Vista SP1 (WinNT 6.00.1905) MSIE: Internet Explorer v7.00 (7.00.6001.18226) Boot mode: Normal Running processes: C:\Windows\system32\taskeng.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Windows\system32\wbem\unsecapp.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Windows\System32\rundll32.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Windows\System32\rundll32.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\Program Files\DAEMON Tools Lite\daemon.exe C:\Windows\ehome\ehtray.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Users\Guillaume\AppData\Local\Google\Update\GoogleUpdate.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE C:\Program Files\Mozilla Firefox\firefox.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll O1 - Hosts: ::1 localhost O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file) O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll O3 - Toolbar: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\VistaCodecPack\QT\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [Google Update] "C:\Users\Guillaume\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'Default user') O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000 O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL O13 - Gopher Prefix: O17 - HKLM\System\CCS\Services\Tcpip\..\{6BD3AD91-5FD4-4C5F-A2E0-1669B0C6BD3D}: NameServer = 192.168.1.1 O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL O23 - Service: Planificateur Avira AntiVir Personal - Free Antivirus (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing) O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktopManager.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe O23 - Service: Lookout Citadel Server (LkCitadelServer) - National Instruments, Inc. - C:\Windows\system32\lkcitdl.exe O23 - Service: National Instruments PSP Server Locator (lkClassAds) - National Instruments, Inc. - C:\Windows\system32\lkads.exe O23 - Service: National Instruments Time Synchronization (lkTimeSync) - National Instruments, Inc. - C:\Windows\system32\lktsrv.exe O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe O23 - Service: National Instruments Domain Service (NIDomainService) - Unknown owner - C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe (file missing) O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe O23 - Service: SolidConverterPDFv4ReadSpool (SCPDFV4ReadSpool) - Solid Documents, LLC - C:\Windows\Installer\MSI779.tmp O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe -- End of file - 10129 bytes merci!!! :P :P :P
  13. guillaum1986
    Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 01:23:33, on 29/03/2009 Platform: Windows Vista SP1 (WinNT 6.00.1905) MSIE: Internet Explorer v7.00 (7.00.6001.18000) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\system32\taskeng.exe C:\Windows\Explorer.EXE C:\Program Files\Windows Defender\MSASCui.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Windows\System32\rundll32.exe C:\Windows\System32\rundll32.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\DAEMON Tools Lite\daemon.exe C:\Windows\ehome\ehtray.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Users\Guillaume\AppData\Local\Google\Update\GoogleUpdate.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE C:\Windows\system32\wbem\unsecapp.exe C:\Program Files\KONAMI\Pro Evolution Soccer 2009\pes2009.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll O1 - Hosts: ::1 localhost O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file) O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dll O2 - BHO: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll O3 - Toolbar: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\VistaCodecPack\QT\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [Google Update] "C:\Users\Guillaume\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'Default user') O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~3.0_0\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~3.0_0\bin\ssv.dll O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL O13 - Gopher Prefix: O17 - HKLM\System\CCS\Services\Tcpip\..\{6BD3AD91-5FD4-4C5F-A2E0-1669B0C6BD3D}: NameServer = 192.168.1.1 O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL O23 - Service: Planificateur Avira AntiVir Personal - Free Antivirus (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing) O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktopManager.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe O23 - Service: Lookout Citadel Server (LkCitadelServer) - National Instruments, Inc. - C:\Windows\system32\lkcitdl.exe O23 - Service: National Instruments PSP Server Locator (lkClassAds) - National Instruments, Inc. - C:\Windows\system32\lkads.exe O23 - Service: National Instruments Time Synchronization (lkTimeSync) - National Instruments, Inc. - C:\Windows\system32\lktsrv.exe O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe O23 - Service: National Instruments Domain Service (NIDomainService) - Unknown owner - C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe (file missing) O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe O23 - Service: SolidConverterPDFv4ReadSpool (SCPDFV4ReadSpool) - Solid Documents, LLC - C:\Windows\Installer\MSI779.tmp O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe -- End of file - 10138 bytes merci :P :P
  14. guillaum1986
    voilà le rapport fourni merci pour l'aide Fichier lkcitdl.exe reçu le 2009.03.22 14:18:02 (CET) Antivirus Version Dernière mise à jour Résultat a-squared 4.0.0.101 2009.03.22 - AhnLab-V3 5.0.0.2 2009.03.22 - AntiVir 7.9.0.120 2009.03.21 - Authentium 5.1.2.4 2009.03.21 - Avast 4.8.1335.0 2009.03.21 - AVG 8.5.0.283 2009.03.21 - CAT-QuickHeal 10.00 2009.03.21 - ClamAV 0.94.1 2009.03.22 - Comodo 1080 2009.03.22 - DrWeb 4.44.0.09170 2009.03.22 - eSafe 7.0.17.0 2009.03.19 - eTrust-Vet 31.6.6409 2009.03.20 - F-Prot 4.4.4.56 2009.03.21 - F-Secure 8.0.14470.0 2009.03.22 - Fortinet 3.117.0.0 2009.03.22 - GData 19 2009.03.22 - Ikarus T3.1.1.48.0 2009.03.22 - K7AntiVirus 7.10.678 2009.03.21 - Kaspersky 7.0.0.125 2009.03.22 - McAfee 5560 2009.03.21 - McAfee+Artemis 5560 2009.03.21 - McAfee-GW-Edition 6.7.6 2009.03.21 - Microsoft 1.4502 2009.03.22 - NOD32 3953 2009.03.21 - Norman 6.00.06 2009.03.20 - nProtect 2009.1.8.0 2009.03.22 - Panda 10.0.0.10 2009.03.21 - PCTools 4.4.2.0 2009.03.22 - Prevx1 V2 2009.03.22 - Rising 21.21.62.00 2009.03.22 - Sophos 4.39.0 2009.03.22 - Sunbelt 3.2.1858.2 2009.03.21 - Symantec 1.4.4.12 2009.03.22 - TheHacker 6.3.3.3.287 2009.03.22 - TrendMicro 8.700.0.1004 2009.03.22 - VBA32 3.12.10.1 2009.03.22 - ViRobot 2009.3.20.1658 2009.03.20 - VirusBuster 4.6.5.0 2009.03.21 - Information additionnelle File size: 688190 bytes MD5...: 47a111a4dc0d67da431df9f91ee09682 SHA1..: ed23f42c1d7fd76e28362bee3f34ffada0187701 SHA256: 242e319b7152c4f8b1ecf28c50228c02bbc99bf91f93e3907f5614156ba823ee SHA512: 2c445d6c846f56d943fd4cf2bb5965cb6a5d6e41dd7e537d96fd3328571a1bf5<br>72ebdd9b5ecd170b6cdd180f3594697f7ea053481fa0a943253145828a19c157 ssdeep: 12288:G4gNg/wghYYD/oEmOSxmAUGD1CIzMypFVWX10y5ER5gLAUj+tRZ241Q:G4<br>gNg/wghYYD/5mOS0A7D1CIzMyzQ5Es<br> PEiD..: Armadillo v1.71 TrID..: File type identification<br>Win32 Executable Generic (42.3%)<br>Win32 Dynamic Link Library (generic) (37.6%)<br>Generic Win/DOS Executable (9.9%)<br>DOS Executable Generic (9.9%)<br>Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%) PEInfo: PE Structure information<br><br>( base data )<br>entrypointaddress.: 0x70564<br>timedatestamp.....: 0x430de2dd (Thu Aug 25 15:25:17 2005)<br>machinetype.......: 0x14c (I386)<br><br>( 4 sections )<br>name viradd virsiz rawdsiz ntrpy md5<br>.text 0x1000 0x91b53 0x92000 6.05 5119dbc072e4274ca3a3626b907396ef<br>.rdata 0x93000 0x9871 0xa000 3.97 041e2899f803fedee5d788b7ba0e7ef3<br>.data 0x9d000 0xac58 0xa000 5.29 f9093bd42093588cba787a7ce279960b<br>.rsrc 0xa8000 0x318 0x1000 0.84 1503a9052e8fdd3b69516ed99b02c1bb<br><br>( 11 imports ) <br>> KERNEL32.dll: FormatMessageA, LocalFree, GetLastError, GetProcAddress, GetModuleHandleA, GetStartupInfoA, FreeLibrary, OutputDebugStringA, lstrcmpA, GetVersionExA, CreateMutexA, OpenMutexA, ExpandEnvironmentStringsA, MapViewOfFile, CreateFileMappingA, CreateFileA, LoadLibraryA, FindFirstFileA, FindClose, WaitForMultipleObjects, InterlockedDecrement, InterlockedIncrement, SetEvent, RemoveDirectoryA, DeleteCriticalSection, InitializeCriticalSection, WaitForSingleObject, CloseHandle, CreateEventA, GetSystemTimeAsFileTime, EnterCriticalSection, LeaveCriticalSection, InterlockedExchange, Sleep, GetModuleFileNameA, GetLocaleInfoA, FileTimeToLocalFileTime, FileTimeToSystemTime, UnmapViewOfFile<br>> ADVAPI32.dll: ControlService, RegisterServiceCtrlHandlerA, SetServiceStatus, CloseServiceHandle, CreateServiceA, OpenSCManagerA, RegCreateKeyExA, RegDeleteValueA, DeleteService, OpenServiceA, StartServiceA, QueryServiceStatus, RegSetValueExA, RegOpenKeyA, RegCreateKeyA, SetSecurityDescriptorDacl, InitializeSecurityDescriptor, StartServiceCtrlDispatcherA, RegOpenKeyExA, RegQueryValueExA, RegCloseKey<br>> MSVCRT.dll: __3@YAXPAX@Z, __0exception@@QAE@ABV0@@Z, strncpy, _purecall, __CxxFrameHandler, __2@YAPAXI@Z, _controlfp, __set_app_type, __p__fmode, __0exception@@QAE@XZ, _CxxThrowException, memmove, __1exception@@UAE@XZ, __p__commode, _adjust_fdiv, __setusermatherr, _initterm, __getmainargs, _acmdln, exit, _XcptFilter, _exit, _terminate@@YAXXZ, _except_handler3, _onexit, __dllonexit, __1type_info@@UAE@XZ, strchr, towupper, _wtoi, toupper, _endthreadex, wcscmp, realloc, wcstok, wcschr, _chdir, remove, free, strftime, localtime, _CIpow, iswdigit, _strdup, frexp, ldexp, floor, _ftol, swprintf, atoi, _beginthreadex, malloc, fflush, sprintf, _findfirst, _findnext, _findclose, wcsncpy, _wcsnicmp, _wcsicmp, wcslen, wcscpy, rename, __RTDynamicCast, _access, _mkdir, _errno, _splitpath, fopen, fclose, fseek, fgetpos, fread, freopen, fsetpos, fwrite, towlower, _vsnprintf, _stricmp, _snprintf, strtok<br>> MSVCP60.dll: __0bad_alloc@std@@QAE@PBD@Z, __1bad_alloc@std@@UAE@XZ, __0bad_alloc@std@@QAE@ABV01@@Z<br>> LKDYNAM.dll: NewAnsiGuts, NewUnicodeGuts, NewRawGuts, NewCellGuts, NewVectorGuts, NewVarDataDictionary, NewVarDataSSTimeValue, NewVarDataDAQBLOB, SIMapInsert, SIMapFind, SIMapDestroy, VDTCheckFormat, SIMapCopy, VDTRegisterCitadelFormats, VDTUnregisterCitadelFormats, lkd_malloc, SIMapCreate, lkd_free<br>> OLEAUT32.dll: -, -<br>> ole32.dll: CoGetMalloc, CoCreateGuid<br>> LKSOCK.dll: -, _AdvertiseLogosService@32, -<br>> LKOBENV.dll: _RegisterControlEnv@20<br>> nidscmem.dll: ni_dsc_mem_free, ni_dsc_mem_realloc, ni_dsc_mem_malloc<br>> USER32.dll: TranslateMessage, DispatchMessageA, PostQuitMessage, DefWindowProcA, GetMessageA, RegisterClassA, CreateWindowExA, PostMessageA, MessageBoxA, FindWindowA<br><br>( 1 exports ) <br>_ServiceWndProc@16<br> ThreatExpert info: <a href='http://www.threatexpert.com/report.aspx?md5=47a111a4dc0d67da431df9f91ee09682''>http://www.threatexpert.com/report.aspx?md5=47a111a4dc0d67da431df9f91ee09682' target='_blank'>http://www.threatexpert.com/report.aspx?md5=47a111a4dc0d67da431df9f91ee09682</a>'>http://www.threatexpert.com/report.aspx?md5=47a111a4dc0d67da431df9f91ee09682</a> CWSandbox info: <a href='http://research.sunbelt-software.com/partnerresource/MD5.aspx?md5=47a111a4dc0d67da431df9f91ee09682''>http://research.sunbelt-software.com/partnerresource/MD5.aspx?md5=47a111a4dc0d67da431df9f91ee09682' target='_blank'>http://research.sunbelt-software.com/partnerresource/MD5.aspx?md5=47a111a4dc0d67da431df9f91ee09682</a>'>http://research.sunbelt-software.com/partnerresource/MD5.aspx?md5=47a111a4dc0d67da431df9f91ee09682</a> Antivirus Version Dernière mise à jour Résultat a-squared 4.0.0.101 2009.03.22 - AhnLab-V3 5.0.0.2 2009.03.22 - AntiVir 7.9.0.120 2009.03.21 - Authentium 5.1.2.4 2009.03.21 - Avast 4.8.1335.0 2009.03.21 - AVG 8.5.0.283 2009.03.21 - CAT-QuickHeal 10.00 2009.03.21 - ClamAV 0.94.1 2009.03.22 - Comodo 1080 2009.03.22 - DrWeb 4.44.0.09170 2009.03.22 - eSafe 7.0.17.0 2009.03.19 - eTrust-Vet 31.6.6409 2009.03.20 - F-Prot 4.4.4.56 2009.03.21 - F-Secure 8.0.14470.0 2009.03.22 - Fortinet 3.117.0.0 2009.03.22 - GData 19 2009.03.22 - Ikarus T3.1.1.48.0 2009.03.22 - K7AntiVirus 7.10.678 2009.03.21 - Kaspersky 7.0.0.125 2009.03.22 - McAfee 5560 2009.03.21 - McAfee+Artemis 5560 2009.03.21 - McAfee-GW-Edition 6.7.6 2009.03.21 - Microsoft 1.4502 2009.03.22 - NOD32 3953 2009.03.21 - Norman 6.00.06 2009.03.20 - nProtect 2009.1.8.0 2009.03.22 - Panda 10.0.0.10 2009.03.21 - PCTools 4.4.2.0 2009.03.22 - Prevx1 V2 2009.03.22 - Rising 21.21.62.00 2009.03.22 - Sophos 4.39.0 2009.03.22 - Sunbelt 3.2.1858.2 2009.03.21 - Symantec 1.4.4.12 2009.03.22 - TheHacker 6.3.3.3.287 2009.03.22 - TrendMicro 8.700.0.1004 2009.03.22 - VBA32 3.12.10.1 2009.03.22 - ViRobot 2009.3.20.1658 2009.03.20 - VirusBuster 4.6.5.0 2009.03.21 - Information additionnelle File size: 688190 bytes MD5...: 47a111a4dc0d67da431df9f91ee09682 SHA1..: ed23f42c1d7fd76e28362bee3f34ffada0187701 SHA256: 242e319b7152c4f8b1ecf28c50228c02bbc99bf91f93e3907f5614156ba823ee SHA512: 2c445d6c846f56d943fd4cf2bb5965cb6a5d6e41dd7e537d96fd3328571a1bf5<br>72ebdd9b5ecd170b6cdd180f3594697f7ea053481fa0a943253145828a19c157 ssdeep: 12288:G4gNg/wghYYD/oEmOSxmAUGD1CIzMypFVWX10y5ER5gLAUj+tRZ241Q:G4<br>gNg/wghYYD/5mOS0A7D1CIzMyzQ5Es<br> PEiD..: Armadillo v1.71 TrID..: File type identification<br>Win32 Executable Generic (42.3%)<br>Win32 Dynamic Link Library (generic) (37.6%)<br>Generic Win/DOS Executable (9.9%)<br>DOS Executable Generic (9.9%)<br>Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%) PEInfo: PE Structure information<br><br>( base data )<br>entrypointaddress.: 0x70564<br>timedatestamp.....: 0x430de2dd (Thu Aug 25 15:25:17 2005)<br>machinetype.......: 0x14c (I386)<br><br>( 4 sections )<br>name viradd virsiz rawdsiz ntrpy md5<br>.text 0x1000 0x91b53 0x92000 6.05 5119dbc072e4274ca3a3626b907396ef<br>.rdata 0x93000 0x9871 0xa000 3.97 041e2899f803fedee5d788b7ba0e7ef3<br>.data 0x9d000 0xac58 0xa000 5.29 f9093bd42093588cba787a7ce279960b<br>.rsrc 0xa8000 0x318 0x1000 0.84 1503a9052e8fdd3b69516ed99b02c1bb<br><br>( 11 imports ) <br>> KERNEL32.dll: FormatMessageA, LocalFree, GetLastError, GetProcAddress, GetModuleHandleA, GetStartupInfoA, FreeLibrary, OutputDebugStringA, lstrcmpA, GetVersionExA, CreateMutexA, OpenMutexA, ExpandEnvironmentStringsA, MapViewOfFile, CreateFileMappingA, CreateFileA, LoadLibraryA, FindFirstFileA, FindClose, WaitForMultipleObjects, InterlockedDecrement, InterlockedIncrement, SetEvent, RemoveDirectoryA, DeleteCriticalSection, InitializeCriticalSection, WaitForSingleObject, CloseHandle, CreateEventA, GetSystemTimeAsFileTime, EnterCriticalSection, LeaveCriticalSection, InterlockedExchange, Sleep, GetModuleFileNameA, GetLocaleInfoA, FileTimeToLocalFileTime, FileTimeToSystemTime, UnmapViewOfFile<br>> ADVAPI32.dll: ControlService, RegisterServiceCtrlHandlerA, SetServiceStatus, CloseServiceHandle, CreateServiceA, OpenSCManagerA, RegCreateKeyExA, RegDeleteValueA, DeleteService, OpenServiceA, StartServiceA, QueryServiceStatus, RegSetValueExA, RegOpenKeyA, RegCreateKeyA, SetSecurityDescriptorDacl, InitializeSecurityDescriptor, StartServiceCtrlDispatcherA, RegOpenKeyExA, RegQueryValueExA, RegCloseKey<br>> MSVCRT.dll: __3@YAXPAX@Z, __0exception@@QAE@ABV0@@Z, strncpy, _purecall, __CxxFrameHandler, __2@YAPAXI@Z, _controlfp, __set_app_type, __p__fmode, __0exception@@QAE@XZ, _CxxThrowException, memmove, __1exception@@UAE@XZ, __p__commode, _adjust_fdiv, __setusermatherr, _initterm, __getmainargs, _acmdln, exit, _XcptFilter, _exit, _terminate@@YAXXZ, _except_handler3, _onexit, __dllonexit, __1type_info@@UAE@XZ, strchr, towupper, _wtoi, toupper, _endthreadex, wcscmp, realloc, wcstok, wcschr, _chdir, remove, free, strftime, localtime, _CIpow, iswdigit, _strdup, frexp, ldexp, floor, _ftol, swprintf, atoi, _beginthreadex, malloc, fflush, sprintf, _findfirst, _findnext, _findclose, wcsncpy, _wcsnicmp, _wcsicmp, wcslen, wcscpy, rename, __RTDynamicCast, _access, _mkdir, _errno, _splitpath, fopen, fclose, fseek, fgetpos, fread, freopen, fsetpos, fwrite, towlower, _vsnprintf, _stricmp, _snprintf, strtok<br>> MSVCP60.dll: __0bad_alloc@std@@QAE@PBD@Z, __1bad_alloc@std@@UAE@XZ, __0bad_alloc@std@@QAE@ABV01@@Z<br>> LKDYNAM.dll: NewAnsiGuts, NewUnicodeGuts, NewRawGuts, NewCellGuts, NewVectorGuts, NewVarDataDictionary, NewVarDataSSTimeValue, NewVarDataDAQBLOB, SIMapInsert, SIMapFind, SIMapDestroy, VDTCheckFormat, SIMapCopy, VDTRegisterCitadelFormats, VDTUnregisterCitadelFormats, lkd_malloc, SIMapCreate, lkd_free<br>> OLEAUT32.dll: -, -<br>> ole32.dll: CoGetMalloc, CoCreateGuid<br>> LKSOCK.dll: -, _AdvertiseLogosService@32, -<br>> LKOBENV.dll: _RegisterControlEnv@20<br>> nidscmem.dll: ni_dsc_mem_free, ni_dsc_mem_realloc, ni_dsc_mem_malloc<br>> USER32.dll: TranslateMessage, DispatchMessageA, PostQuitMessage, DefWindowProcA, GetMessageA, RegisterClassA, CreateWindowExA, PostMessageA, MessageBoxA, FindWindowA<br><br>( 1 exports ) <br>_ServiceWndProc@16<br> ThreatExpert info: <a href='http://www.threatexpert.com/report.aspx?md5=47a111a4dc0d67da431df9f91ee09682' target='_blank'>http://www.threatexpert.com/report.aspx?md5=47a111a4dc0d67da431df9f91ee09682</a> CWSandbox info: <a href='http://research.sunbelt-software.com/partnerresource/MD5.aspx?md5=47a111a4dc0d67da431df9f91ee09682' target='_blank'>http://research.sunbelt-software.com/partnerresource/MD5.aspx?md5=47a111a4dc0d67da431df9f91ee09682</a>
  15. guillaum1986
    merci voila le rapport au cas ou... Clean Navipromo version 3.7.6 commencé le 19/03/2009 à 23:07:42,34 Outil exécuté depuis C:\Program Files\navilog1 Session actuelle : "Guillaume" Mise à jour le 14.03.2009 à 18h00 par IL-MAFIOSO Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1 X86-based PC ( Multiprocessor Free : Intel® Core2 Duo CPU T7250 @ 2.00GHz ) BIOS : Ver 1.00PARTTBL USER : Guillaume ( Administrator ) BOOT : Normal boot Antivirus : Avira AntiVir PersonalEdition 8.0.1.15 (Activated) C:\ (Local Disk) - NTFS - Total:178 Go (Free:43 Go) D:\ (CD or DVD) F:\ (CD or DVD) Mode suppression par méthode manuelle Nom du fichier saisi : uaowc Nettoyage exécuté au redémarrage de l'ordinateur *** Recherche, création sauvegardes et suppression *** * Suppression dans "C:\Windows\system32" * * Suppression dans "C:\Users\Guillaume\AppData\Local\Microsoft" * * Suppression dans "C:\Users\Guillaume\AppData\Local\virtualstore\windows\system32" * * Suppression dans "C:\Users\Guillaume\AppData\Local" * *** Suppression dossiers dans "C:\Windows" *** *** Suppression dossiers dans "C:\Program Files" *** *** Suppression dossiers dans "c:\progra~2\micros~1\windows\startm~1\programs" *** *** Suppression dossiers dans "c:\progra~2\micros~1\windows\startm~1" *** *** Suppression dossiers dans "C:\ProgramData" *** *** Suppression dossiers dans c:\users\guilla~1\appdata\roaming\micros~1\windows\startm~1\programs *** *** Suppression dossiers dans "C:\Users\Guillaume\AppData\Local\virtualstore\Program Files" *** *** Suppression dossiers dans "C:\Users\Guillaume\AppData\Local" *** *** Suppression dossiers dans "C:\Users\Guillaume\AppData\Roaming" *** *** Suppression fichiers *** C:\Windows\LIVE-PLAYER_SETUP.EXE-039AB8DF.pf supprimé ! C:\Windows\LIVE-PLAYER.EXE-C386027A.pf supprimé ! *** Suppression fichiers temporaires *** Nettoyage contenu C:\Windows\Temp effectué ! Nettoyage contenu C:\Users\GUILLA~1\AppData\Local\Temp effectué ! *** Traitement Recherche complémentaire *** (Recherche fichiers spécifiques) 1)Suppression avec sauvegardes nouveaux fichiers Instant Access : 2)Recherche, création sauvegardes et suppression Heuristique : * Dans "C:\Windows\system32" * * Dans "C:\Users\Guillaume\AppData\Local\Microsoft" * * Dans "C:\Users\Guillaume\AppData\Local\virtualstore\windows\system32" * * Dans "C:\Users\Guillaume\AppData\Local" * *** Sauvegarde du Registre vers dossier Safebackup *** sauvegarde du Registre réalisée avec succès ! *** Nettoyage Registre *** Nettoyage Registre Ok *** Certificats *** Certificat Egroup absent ! Certificat Electronic-Group absent ! Certificat Montorgueil absent ! Certificat OOO-Favorit absent ! Certificat Sunny-Day-Design-Ltdt absent ! *** Fichiers suspects non supprimés par Navilog1 *** !! Fichiers légitimes possibles, à contrôler avant suppression !! Fichiers suspects dans "C:\Windows\system32" : lkcitdl.exe trouvé ! *** Recherche autres dossiers et fichiers connus *** *** Nettoyage terminé le 19/03/2009 à 23:12:42,60 ***
×
×
  • Créer...