rk2kts

le 9 juillet 2008

bonjour, je suis à bout d'idées pour remettre le wifi sur ma machine...concernant combofix, ça n'a rien fait...

a priori, c'est peut être la carte réseau qui déconne...enfin, j'attends tes conseils avertis.

merci par avance.

le 4 juillet 2008

c'est bon, j'avais anticipé la suppression d'ask....en revanche,en ce qui concerne la connection sans fil, j'ai pas les même catégories que toi,je suis sous vista, mais j'ai quand même réussi à trouver "réparer" mais il me dit qu'il n'y a plus de problème pour la connection sauf que pour le wifi, tout est inexistant!

j'essaye de réinstaller la box avec le logiciel d'orange mais il me demande toujours un clé usb flash pour servir de relai wifi alors qu'avant c'était pas comme ça..je crois que la ça commence à me gaver!!!

le 4 juillet 2008

oui, t'inquiètes, je l'avais déja supprimer. je te poste le rapport hijackthis. sauf dernier petit problème, je n'arrive pas à récupérer ma connexion wifi, j'avais vu que bagle les neutralisé...

rapport:

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 11:08:14, on 04/07/2008

Platform: Windows Vista SP1 (WinNT 6.00.1905)

MSIE: Internet Explorer v7.00 (7.00.6001.18000)

Boot mode: Normal

Running processes:

C:\Windows\system32\Dwm.exe

C:\Windows\system32\taskeng.exe

C:\Windows\Explorer.EXE

C:\Program Files\HP\QuickPlay\QPService.exe

C:\Program Files\HP\HP Software Update\hpwuSchd2.exe

C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe

C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe

C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe

C:\Program Files\Java\jre1.6.0\bin\jusched.exe

C:\Program Files\Synaptics\SynTP\SynTPStart.exe

C:\Program Files\Common Files\Real\Update_OB\realsched.exe

C:\Program Files\PowerISO\PWRISOVM.EXE

C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe

C:\Program Files\COMODO\SafeSurf\cssurf.exe

C:\Program Files\COMODO\Firewall\cfp.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files\DAEMON Tools\daemon.exe

C:\Windows\System32\rundll32.exe

C:\Program Files\Windows Media Player\wmpnscfg.exe

C:\Windows\system32\taskeng.exe

C:\Program Files\OpenOffice.org 2.2\program\soffice.exe

C:\PROGRA~1\HEWLET~1\Shared\HPQTOA~1.EXE

C:\Windows\system32\wbem\unsecapp.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Program Files\OpenOffice.org 2.2\program\soffice.BIN

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Windows\system32\taskeng.exe

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

C:\Windows\system32\SearchFilterHost.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://login.live.com/login.srf?wa=wsignin...px&id=64855

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...n&pf=laptop

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll

R3 - URLSearchHook: (no name) - {0579B4B6-0293-4d73-B02D-5EBB0BA0F0A2} - C:\Program Files\AskSBar\SrchAstt\1.bin\A2SRCHAS.DLL

O2 - BHO: Ask Search Assistant BHO - {0579B4B1-0293-4d73-B02D-5EBB0BA0F0A2} - C:\Program Files\AskSBar\SrchAstt\1.bin\A2SRCHAS.DLL

O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - (no file)

O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll

O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll

O2 - BHO: Ask Toolbar BHO - {F0D4B231-DA4B-4daf-81E4-DFEE4931A4AA} - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL

O3 - Toolbar: (no name) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - (no file)

O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll

O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll

O3 - Toolbar: Ask Toolbar - {F0D4B239-DA4B-4daf-81E4-DFEE4931A4AA} - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL

O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start

O4 - HKLM\..\Run: [HP Health Check Scheduler] C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe

O4 - HKLM\..\Run: [WAWifiMessage] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe

O4 - HKLM\..\Run: [hpWirelessAssistant] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0\bin\jusched.exe"

O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe

O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"

O4 - HKLM\..\Run: [ORAHSSSessionManager] C:\Program Files\OrangeHSS\SessionManager\SessionManager.exe

O4 - HKLM\..\Run: [synTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe

O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE

O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min

O4 - HKLM\..\Run: [COMODO SafeSurf] "C:\Program Files\COMODO\SafeSurf\cssurf.exe" -s

O4 - HKLM\..\Run: [COMODO Firewall Pro] "C:\Program Files\COMODO\Firewall\cfp.exe" -h

O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033

O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')

O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

O4 - Startup: OpenOffice.org 2.2.lnk = C:\Program Files\OpenOffice.org 2.2\program\quickstart.exe

O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm

O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx

O8 - Extra context menu item: Ajouter à Kaspersky Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\ie_banner_deny.htm

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll

O13 - Gopher Prefix:

O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/200612...ex/qtplugin.cab

O16 - DPF: {04CB5B64-5915-4629-B869-8945CEBADD21} (Module de délivrance de certificat MINEFI) - https://static.impots.gouv.fr/abos/static/s...te/certdgi1.cab

O16 - DPF: {104B0A37-AB99-4F06-8032-8BBDC3B77DDB} (Telechargement Control) - http://www8.photoweb.fr/telechargement/Photoweb_uploader.cab

O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/resources/...NPUpldfr-fr.cab

O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.girafoto.fr/uploaders/aurigma_4...geUploader4.cab

O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.photoreflex.com/tools/ImageUplo...geUploader3.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab

O20 - AppInit_DLLs: C:\Windows\system32\guard32.dll C:\Windows\system32\cssdll32.dll

O23 - Service: AddFiltr - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe

O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe

O23 - Service: Avira AntiVir Personal – Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe

O23 - Service: Avira AntiVir Personal – Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe

O23 - Service: Capture Device Service - InterVideo Inc. - C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe

O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe

O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe

O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)

O23 - Service: COMODO Firewall Pro Helper Service (cmdAgent) - Unknown owner - C:\Program Files\COMODO\Firewall\cmdagent.exe

O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\Windows\system32\CTsvcCDA.exe

O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe

O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe

O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe

O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe

O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe

O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\system32\PSIService.exe

O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe

O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe

O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--

End of file - 11921 bytes

le 4 juillet 2008

bonjour, merci encore de ton aide précieuse, tout semble marche comme avant. avast est vraiment merdique, une véritable passoire! j'ai fait un scan avec antivir, il a découvert 133 virus!!!!! moi qui pensé avoir un ordi sain!!!!merci encore pour tes compétences, ça fait plaisir!

a bientot...enfin pas trop vite j'espère!!!

le 2 juillet 2008

voici le rapport avec le "nouveau" combofix:

ComboFix 08-07-01.5 - RK 2008-07-02 22:25:42.3 - NTFSx86

Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6001.1.1252.1.1036.18.363 [GMT 2:00]

Endroit: C:\Users\RK\Desktop\Combo-Fix.exe

* Création d'un nouveau point de restauration

.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))

.

C:\Windows\system32\drivers\downld

.

((((((((((((((((((((((((((((( Fichiers créés 2008-06-02 to 2008-07-02 ))))))))))))))))))))))))))))))))))))

.

2008-06-25 15:24 . 2008-06-25 15:24 <REP> d-------- C:\Users\RK\AppData\Roaming\Malwarebytes

2008-06-25 15:24 . 2008-06-25 15:24 <REP> d-------- C:\Users\All Users\Malwarebytes

2008-06-25 15:24 . 2008-06-25 15:24 <REP> d-------- C:\ProgramData\Malwarebytes

2008-06-25 15:24 . 2008-06-25 15:24 <REP> d-------- C:\Program Files\Malwarebytes' Anti-Malware

2008-06-25 15:24 . 2008-06-19 17:48 34,296 --a------ C:\Windows\System32\drivers\mbamcatchme.sys

2008-06-25 15:24 . 2008-06-19 17:47 17,144 --a------ C:\Windows\System32\drivers\mbam.sys

2008-06-25 15:17 . 2008-06-25 15:17 <REP> d-------- C:\Users\RK\AppData\Roaming\VTC Preferences Folder

2008-06-24 21:04 . 2008-06-28 08:58 <REP> d-------- C:\Users\All Users\Avira

2008-06-24 21:04 . 2008-06-28 08:58 <REP> d-------- C:\ProgramData\Avira

2008-06-24 19:21 . 2008-06-24 19:21 268 --ah----- C:\sqmdata09.sqm

2008-06-24 19:21 . 2008-06-24 19:21 244 --ah----- C:\sqmnoopt09.sqm

2008-06-24 17:45 . 2008-06-24 17:45 268 --ah----- C:\sqmdata08.sqm

2008-06-24 17:45 . 2008-06-24 17:45 244 --ah----- C:\sqmnoopt08.sqm

2008-06-24 14:40 . 2008-06-24 17:01 <REP> d-------- C:\Muestras

2008-06-24 09:32 . 2008-06-24 09:32 244 --ah----- C:\sqmnoopt07.sqm

2008-06-24 09:32 . 2008-06-24 09:32 232 --ah----- C:\sqmdata07.sqm

2008-06-24 09:31 . 2008-06-24 09:31 268 --ah----- C:\sqmdata06.sqm

2008-06-24 09:31 . 2008-06-24 09:31 244 --ah----- C:\sqmnoopt06.sqm

2008-06-23 22:20 . 2008-06-23 22:20 244 --ah----- C:\sqmnoopt05.sqm

2008-06-23 22:20 . 2008-06-23 22:20 232 --ah----- C:\sqmdata05.sqm

2008-06-23 22:17 . 2008-06-23 22:17 268 --ah----- C:\sqmdata04.sqm

2008-06-23 22:17 . 2008-06-23 22:17 244 --ah----- C:\sqmnoopt04.sqm

2008-06-23 21:57 . 2008-06-23 21:57 268 --ah----- C:\sqmdata03.sqm

2008-06-23 21:57 . 2008-06-23 21:57 244 --ah----- C:\sqmnoopt03.sqm

2008-06-23 20:24 . 2008-06-23 20:24 268 --ah----- C:\sqmdata02.sqm

2008-06-23 20:24 . 2008-06-23 20:24 244 --ah----- C:\sqmnoopt02.sqm

2008-06-23 20:20 . 2008-06-23 20:20 268 --ah----- C:\sqmdata01.sqm

2008-06-23 20:20 . 2008-06-23 20:20 244 --ah----- C:\sqmnoopt01.sqm

2008-06-23 19:51 . 2008-06-23 19:51 <REP> d-------- C:\Windows\Sun

2008-06-23 19:51 . 2008-06-23 19:51 268 --ah----- C:\sqmdata00.sqm

2008-06-23 19:51 . 2008-06-23 19:51 244 --ah----- C:\sqmnoopt00.sqm

2008-06-14 21:30 . 2008-04-23 06:42 428,544 --a------ C:\Windows\System32\EncDec.dll

2008-06-14 21:29 . 2008-04-23 06:42 293,376 --a------ C:\Windows\System32\psisdecd.dll

2008-06-14 21:29 . 2008-04-23 06:41 218,624 --a------ C:\Windows\System32\psisrndr.ax

2008-06-14 21:29 . 2008-04-23 06:41 57,856 --a------ C:\Windows\System32\MSDvbNP.ax

2008-06-14 12:30 . 2008-06-24 21:22 259,946,324 --a------ C:\Windows\MEMORY.DMP

2008-06-14 11:45 . 2002-08-08 15:51 38,951 --a------ C:\Windows\System32\drivers\NETMDUSB.sys

2008-06-14 11:45 . 2005-10-31 10:46 36,679 --------- C:\Windows\System32\drivers\NETMD052.sys

2008-06-14 11:45 . 2003-11-10 12:31 36,232 --------- C:\Windows\System32\drivers\NETMD033.sys

2008-06-14 11:45 . 2003-04-01 18:55 35,319 --------- C:\Windows\System32\drivers\NETMD031.sys

2008-06-14 11:33 . 2008-06-14 11:33 <REP> d-------- C:\Users\All Users\SonicStage

2008-06-14 11:33 . 2008-06-14 11:33 <REP> d-------- C:\ProgramData\SonicStage

2008-06-14 11:24 . 2007-01-13 08:24 770,048 --a------ C:\Windows\System32\CDDBUISony.dll

2008-06-14 11:24 . 2007-01-13 08:22 655,360 --a------ C:\Windows\System32\CDDBControlSony.dll

2008-06-14 11:24 . 2007-01-13 08:22 589,824 --a------ C:\Windows\System32\CddbMusicIDSony.dll

2008-06-14 11:24 . 2007-01-13 08:25 532,480 --a------ C:\Windows\System32\CddbPlaylist2Sony.dll

2008-06-14 11:24 . 2007-01-13 08:24 73,728 --a------ C:\Windows\System32\CddbLinkSony.dll

2008-06-14 11:22 . 2008-06-14 11:33 <REP> d-------- C:\Users\All Users\Sony Corporation

2008-06-14 11:22 . 2008-06-14 11:33 <REP> d-------- C:\ProgramData\Sony Corporation

2008-06-14 11:21 . 2008-06-14 12:52 <REP> d-------- C:\Program Files\Sony

2008-06-14 11:20 . 2008-06-14 11:20 <REP> dr------- C:\Windows\System32\config\systemprofile\Videos

2008-06-14 11:20 . 2008-06-14 11:20 <REP> dr------- C:\Windows\System32\config\systemprofile\Searches

2008-06-14 11:20 . 2008-06-14 11:20 <REP> dr------- C:\Windows\System32\config\systemprofile\Saved Games

2008-06-14 11:20 . 2008-06-14 11:20 <REP> dr------- C:\Windows\System32\config\systemprofile\Pictures

2008-06-14 11:20 . 2008-06-14 11:20 <REP> dr------- C:\Windows\System32\config\systemprofile\Links

2008-06-14 11:20 . 2008-06-14 11:20 <REP> dr------- C:\Windows\System32\config\systemprofile\Downloads

2008-06-14 11:20 . 2008-06-14 11:20 <REP> dr------- C:\Windows\System32\config\systemprofile\Documents

2008-06-14 11:19 . 2008-06-14 11:34 <REP> d-------- C:\Users\RK\AppData\Roaming\Sony Corporation

2008-06-14 11:19 . 2008-06-14 11:21 <REP> d-------- C:\Program Files\Common Files\Sony Shared

2008-06-11 16:57 . 2008-06-11 17:33 <REP> d-------- C:\Users\RK\.jenny

2008-06-11 09:49 . 2008-04-26 10:08 1,314,816 --a------ C:\Windows\System32\quartz.dll

2008-06-11 09:49 . 2008-05-10 03:33 113,664 --a------ C:\Windows\System32\drivers\rmcast.sys

2008-06-11 09:48 . 2008-04-25 04:12 1,383,424 --a------ C:\Windows\System32\mshtml.tlb

2008-06-11 09:48 . 2008-04-25 06:35 826,880 --a------ C:\Windows\System32\wininet.dll

2008-06-07 03:01 . 2008-06-07 03:01 <REP> d-------- C:\Program Files\Microsoft CAPICOM 2.1.0.2

2008-06-06 13:04 . 2008-06-06 13:04 <REP> d-------- C:\Program Files\Windows Live Favorites

2008-06-06 13:03 . 2008-06-06 13:04 <REP> d-------- C:\Program Files\Windows Live Toolbar

2008-06-06 12:59 . 2008-06-06 13:04 <REP> d--hsc--- C:\Program Files\Common Files\WindowsLiveInstaller

2008-06-06 12:58 . 2008-06-06 12:58 <REP> d-------- C:\Program Files\Windows Live

.

(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))

.

2008-07-02 14:59 --------- d-----w C:\Users\RK\AppData\Roaming\OpenOffice.org2

2008-07-02 10:49 --------- d-----w C:\ProgramData\pdf995

2008-07-01 20:22 62,684 ----a-w C:\Users\RK\AppData\Roaming\nvModes.dat

2008-06-28 08:53 --------- d-----w C:\Program Files\Common Files\LightScribe

2008-06-27 17:25 --------- d-----w C:\ProgramData\Kaspersky Lab

2008-06-27 17:25 --------- d-----w C:\Program Files\Kaspersky Lab

2008-06-23 19:50 --------- d-----w C:\Program Files\OrangeHSS

2008-06-23 11:26 --------- d-----w C:\Users\RK\AppData\Roaming\NeroDCTemplates

2008-06-21 22:19 --------- d-----w C:\Users\RK\AppData\Roaming\uTorrent

2008-06-14 09:45 --------- d--h--w C:\Program Files\InstallShield Installation Information

2008-06-12 08:19 --------- d-----w C:\Program Files\Windows Mail

2008-06-06 10:56 --------- d-----w C:\ProgramData\WLInstaller

2008-05-22 20:22 --------- d-----w C:\Users\RK\AppData\Roaming\pokerth

2008-05-19 20:53 --------- d-----w C:\Program Files\eMule

2008-05-14 12:41 --------- d-----w C:\Program Files\CCleaner

2008-05-14 11:38 --------- d-----w C:\Program Files\PowerISO

2008-05-12 22:57 --------- d-----w C:\Program Files\Common Files\Adobe AIR

2008-05-04 20:10 --------- d-----w C:\ProgramData\Roxio

2008-04-07 12:13 51,716 ----a-w C:\Windows\System32\pdf995mon.dll

2008-04-07 12:13 249,856 ----a-w C:\Windows\System32\pdfmona.dll

2008-03-22 15:44 174 --sha-w C:\Program Files\desktop.ini

2008-02-01 21:19 42,062 ----a-w C:\Users\Odie\AppData\Roaming\nvModes.dat

2007-12-29 00:10 33,792 ----a-w C:\Users\RK\AppData\Roaming\smvss.exe

2007-12-20 23:16 102 ----a-w C:\Users\RK\AppData\Roaming\wklnhst.dat

2007-10-18 10:50 1,215 ----a-w C:\Program Files\uninstal.log

2007-07-20 09:36 94,080 ----a-w C:\Users\RK\AppData\Roaming\ezplay.sys

2007-07-20 09:36 87,608 ----a-w C:\Users\RK\AppData\Roaming\ezpinst.exe

2007-07-20 09:34 47,360 ----a-w C:\Users\RK\AppData\Roaming\pcouffin.sys

2007-08-27 10:46 16,384 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat

2007-08-27 10:46 32,768 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat

2007-08-27 10:46 16,384 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat

2007-02-01 18:20 22 --sha-w C:\Windows\SMINST\HPCD.sys

2006-05-03 09:06 163,328 --sh--r C:\Windows\System32\flvDX.dll

2007-02-21 10:47 31,232 --sh--r C:\Windows\System32\msfDX.dll

2008-01-23 00:33 98,549,280 --sha-w C:\Windows\System32\drivers\fidbox.dat

.

((((((((((((((((((((((((((((( snapshot@2008-07-02_14.57.43.61 )))))))))))))))))))))))))))))))))))))))))

.

- 2008-07-02 12:47:33 67,584 --s-a-w C:\Windows\bootstat.dat

+ 2008-07-02 20:21:27 67,584 --s-a-w C:\Windows\bootstat.dat

- 2008-07-02 12:47:34 2,048 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat

+ 2008-07-02 14:58:05 2,048 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat

- 2008-07-02 12:47:34 2,048 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat

+ 2008-07-02 14:58:05 2,048 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat

- 2008-07-02 12:48:39 262,144 ----a-w C:\Windows\ServiceProfiles\LocalService\ntuser.dat

+ 2008-07-02 14:59:08 262,144 ----a-w C:\Windows\ServiceProfiles\LocalService\ntuser.dat

+ 2008-07-02 14:59:08 262,144 ---ha-w C:\Windows\ServiceProfiles\LocalService\ntuser.dat.LOG1

- 2008-07-02 12:48:32 262,144 ----a-w C:\Windows\ServiceProfiles\NetworkService\ntuser.dat

+ 2008-07-02 14:59:03 262,144 ----a-w C:\Windows\ServiceProfiles\NetworkService\ntuser.dat

+ 2008-07-02 14:59:03 262,144 ---ha-w C:\Windows\ServiceProfiles\NetworkService\ntuser.dat.LOG1

- 2008-06-27 17:15:23 32,768 --sha-w C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat

+ 2008-07-02 14:46:31 32,768 --sha-w C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat

- 2008-06-27 17:15:23 32,768 --sha-w C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat

+ 2008-07-02 14:46:31 32,768 --sha-w C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat

- 2008-06-27 17:15:23 16,384 --sha-w C:\Windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat

+ 2008-07-02 14:46:31 16,384 --sha-w C:\Windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat

- 2008-07-02 10:49:48 262,144 ----a-w C:\Windows\System32\config\systemprofile\ntuser.dat

+ 2008-07-02 20:25:37 262,144 ----a-w C:\Windows\System32\config\systemprofile\ntuser.dat

- 2008-07-02 12:49:23 15,232 ----a-w C:\Windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-3714345025-661749866-3589347183-1003_UserData.bin

+ 2008-07-02 14:59:56 15,280 ----a-w C:\Windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-3714345025-661749866-3589347183-1003_UserData.bin

- 2008-07-02 12:49:23 114,494 ----a-w C:\Windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin

+ 2008-07-02 14:59:55 114,718 ----a-w C:\Windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin

- 2008-07-02 09:37:27 4,722 ----a-w C:\Windows\System32\WDI\ERCQueuedResolutions.dat

+ 2008-07-02 13:02:57 6,044 ----a-w C:\Windows\System32\WDI\ERCQueuedResolutions.dat

- 2008-07-02 12:49:21 71,266 ----a-w C:\Windows\System32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin

+ 2008-07-02 14:59:52 71,266 ----a-w C:\Windows\System32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin

- 2008-07-01 23:08:36 394,000 ----a-w C:\Windows\System32\WDI\SuspendPerformanceDiagnostics_SystemData_S3.bin

+ 2008-07-02 20:21:38 395,632 ----a-w C:\Windows\System32\WDI\SuspendPerformanceDiagnostics_SystemData_S3.bin

.

-- Snapshot reset to current date --

.

((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))

.

REGEDIT4

*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe" [2008-01-19 00:33 1233920]

"msnmsgr"="C:\Program Files\MSN Messenger\msnmsgr.exe" [2007-01-19 13:55 5674352]

"DAEMON Tools"="C:\Program Files\DAEMON Tools\daemon.exe" [2007-08-16 13:24 167368]

"WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" [2008-01-19 00:33 202240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2005-07-23 08:02 684032]

"QPService"="C:\Program Files\HP\QuickPlay\QPService.exe" [2006-12-02 17:32 167936]

"HP Software Update"="C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe" [2005-02-17 00:11 49152]

"HP Health Check Scheduler"="C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" [2006-12-04 13:39 46704]

"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0\bin\jusched.exe" [2006-12-18 17:28 77824]

"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2007-02-16 10:54 282624]

"NeroFilterCheck"="C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe" [2007-03-01 15:57 153136]

"NBKeyScan"="C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2007-09-20 09:51 1836328]

"ORAHSSSessionManager"="C:\Program Files\OrangeHSS\SessionManager\SessionManager.exe" [2007-06-12 20:12 94208]

"SynTPStart"="C:\Program Files\Synaptics\SynTP\SynTPStart.exe" [2007-09-15 03:29 102400]

"NvSvc"="C:\Windows\system32\nvsvc.dll" [2007-02-27 11:26 90191]

"NvCplDaemon"="C:\Windows\system32\NvCpl.dll" [2007-02-27 11:26 7770112]

"NvMediaCenter"="C:\Windows\system32\NvMcTray.dll" [2007-02-27 11:26 81920]

"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [2008-04-20 14:16 185896]

"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 22:16 39792]

"PWRISOVM.EXE"="C:\Program Files\PowerISO\PWRISOVM.EXE" [2008-03-15 01:50 233472]

"Corel File Shell Monitor"="C:\Program Files\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe" [2007-10-30 19:52 16200]

"Adobe Photo Downloader"="C:\Program Files\Adobe\Adobe Photoshop Lightroom 1.3\apdproxy.exe" [2007-12-04 03:07 61440]

C:\Users\Odie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\

OpenOffice.org 2.2.lnk - C:\Program Files\OpenOffice.org 2.2\program\quickstart.exe [2007-02-02 17:54:56 393216]

C:\Users\RK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\

Adobe Gamma.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-03-16 20:16:50 113664]

OpenOffice.org 2.2.lnk - C:\Program Files\OpenOffice.org 2.2\program\quickstart.exe [2007-02-02 17:54:56 393216]

TribalWeb.lnk - C:\Program Files\TribalWeb.net\tribalweb.exe [2007-03-27 17:15:44 1077248]

TribalWeb.net.lnk - C:\Program Files\TribalWeb.net\tribalweb.exe [2007-03-27 17:15:44 1077248]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"EnableUIADesktopToggle"= 0 (0x0)

"EnableLUA"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]

"vidc.i420"= i420vfw.dll

"vidc.yv12"= yv12vfw.dll

"vidc.DIV3"= DivXc32.dll

"vidc.DIV4"= DivXc32f.dll

"msacm.divxa32"= DivXa32.acm

"VIDC.HFYU"= huffyuv.dll

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]

"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]

"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]

"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]

"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-3714345025-661749866-3589347183-1003]

"EnableNotificationsRef"=dword:00000006

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]

"{E6EAD248-3380-420E-8AC7-31548A61C8DA}"= UDP:C:\Program Files\HP\QuickPlay\QP.exe:QP

"{615648ED-EC8F-43D5-828E-0A5BBF002C89}"= TCP:C:\Program Files\HP\QuickPlay\QP.exe:QP

"{6B06DEA2-BFB4-493A-A2FE-4BD6592B833B}"= C:\Program Files\MSN Messenger\livecall.exe:Windows Live Messenger 8.1 (Phone)

"TCP Query User{F87639F6-6F75-48DB-B5BD-AD98D27B31BB}C:\\program files\\tribalweb.net\\tribalweb.exe"= UDP:C:\program files\tribalweb.net\tribalweb.exe:TribalWeb.net : Réseau privé sur Internet

"UDP Query User{B10652B2-1283-4C8F-AA86-F9079169DAEE}C:\\program files\\tribalweb.net\\tribalweb.exe"= TCP:C:\program files\tribalweb.net\tribalweb.exe:TribalWeb.net : Réseau privé sur Internet

"TCP Query User{582BD754-C113-4E02-9D44-FAC7FE6E835A}C:\\program files\\utorrent\\utorrent.exe"= UDP:C:\program files\utorrent\utorrent.exe:uTorrent

"UDP Query User{86EDE6F0-FDD2-4481-BF0E-000A8451AA61}C:\\program files\\utorrent\\utorrent.exe"= TCP:C:\program files\utorrent\utorrent.exe:uTorrent

"{E32DFE85-0A47-434D-BAAF-2DE464EE8AD3}"= UDP:86:BroadCam Web Server

"TCP Query User{A8C9E7F8-87A8-4C44-A68F-52648C24FC5F}C:\\program files\\common files\\nero\\nero web\\setupx.exe"= UDP:C:\program files\common files\nero\nero web\setupx.exe:Nero Installer

"UDP Query User{D162F9CE-9802-4D4A-BDEB-22582CFF7B6B}C:\\program files\\common files\\nero\\nero web\\setupx.exe"= TCP:C:\program files\common files\nero\nero web\setupx.exe:Nero Installer

"{322C693F-D48C-4FDD-A50A-C4E8594C5466}"= UDP:14354:emule

"{78BCEC0E-27AF-4375-B163-3E1CFA9D5D1C}"= TCP:14364:emule

"TCP Query User{0BB3CCC7-4E7A-41A9-AF0D-23E5683AB380}C:\\program files\\internet explorer\\iexplore.exe"= UDP:C:\program files\internet explorer\iexplore.exe:Internet Explorer

"UDP Query User{97896D4B-94BF-4558-A350-AC888460A56F}C:\\program files\\internet explorer\\iexplore.exe"= TCP:C:\program files\internet explorer\iexplore.exe:Internet Explorer

"TCP Query User{D046997F-E55B-4C96-9A64-CCB1ECC4FB61}C:\\program files\\real\\realplayer\\realplay.exe"= UDP:C:\program files\real\realplayer\realplay.exe:RealPlayer

"UDP Query User{262815F2-3A80-4E86-8E8F-0EF82F59DAE7}C:\\program files\\real\\realplayer\\realplay.exe"= TCP:C:\program files\real\realplayer\realplay.exe:RealPlayer

"TCP Query User{DB716014-08F0-4209-AE48-69EDDAEDE033}C:\\program files\\emule\\emule.exe"= UDP:C:\program files\emule\emule.exe:eMule

"UDP Query User{0DDBC0A4-E67B-415D-B9DA-96167E4DCBB8}C:\\program files\\emule\\emule.exe"= TCP:C:\program files\emule\emule.exe:eMule

"TCP Query User{FE793E1C-919F-4669-8F84-5EB0E9D085F5}C:\\program files\\mozilla firefox\\firefox.exe"= UDP:C:\program files\mozilla firefox\firefox.exe:Firefox

"UDP Query User{A166F6A1-A47C-43DB-8F08-88C2CFCD138C}C:\\program files\\mozilla firefox\\firefox.exe"= TCP:C:\program files\mozilla firefox\firefox.exe:Firefox

"TCP Query User{6731529A-7C1E-460D-8750-CF5CBFF95531}C:\\program files\\nero\\nero8\\nero home\\nerohome.exe"= UDP:C:\program files\nero\nero8\nero home\nerohome.exe:Nero Home

"UDP Query User{54A61C54-E4CE-4D80-A95E-74E4B651DAA3}C:\\program files\\nero\\nero8\\nero home\\nerohome.exe"= TCP:C:\program files\nero\nero8\nero home\nerohome.exe:Nero Home

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List]

"C:\\Program Files\\OrangeHSS\\Connectivity\\ConnectivityManager.exe"= C:\Program Files\OrangeHSS\Connectivity\ConnectivityManager.exe:*:enabled:CSS

R2 NMSAccessU;NMSAccessU;C:\Program Files\CDBurnerXP\NMSAccessU.exe [2007-05-04 09:27]

R2 UxTuneUp;TuneUp Extension de thème;C:\Windows\System32\svchost.exe [2008-01-19 00:33]

R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service;C:\Windows\system32\drivers\CHDRT32.sys [2008-03-03 05:10]

S3 PCAMp50;PCAMp50 NDIS Protocol Driver;C:\Windows\system32\Drivers\PCAMp50.sys [2006-11-28 22:46]

S3 PCASp50;PCASp50 NDIS Protocol Driver;C:\Windows\system32\Drivers\PCASp50.sys [2006-11-28 22:46]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

bthsvcs REG_MULTI_SZ BthServ

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs

UxTuneUp

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f1004f3e-0887-11dc-b447-001636cb6ea1}]

\shell\AutoRun\command - F:\AUTORUN.EXE

.

Contenu du dossier 'Scheduled Tasks/Tâches planifiées'

"2008-06-20 15:19:41 C:\Windows\Tasks\Maintenance en 1 clic.job"

- C:\Program Files\TuneUp Utilities 2007\SystemOptimizer.exe

"2008-07-02 20:31:00 C:\Windows\Tasks\User_Feed_Synchronization-{32A71BF6-C420-4772-94DC-5DA6FB61CD01}.job"

- C:\Windows\system32\msfeedssync.exe

"2008-07-02 20:31:00 C:\Windows\Tasks\User_Feed_Synchronization-{D85F3ADF-E004-4657-A11C-EEF5882FEAED}.job"

- C:\Windows\system32\msfeedssync.exe

"2008-06-06 11:04:40 C:\Windows\Tasks\Vérifier les mises à jour de Windows Live Toolbar.job"

- C:\Program Files\Windows Live Toolbar\MSNTBUP.EXE

.

**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2008-07-02 22:32:48

Windows 6.0.6001 Service Pack 1 NTFS

Balayage processus cachés ...

Balayage caché autostart entries ...

Balayage des fichiers cachés ...

Scan terminé avec succès

Les fichiers cachés: 0

**************************************************************************

.

Temps d'accomplissement: 2008-07-02 22:35:30

ComboFix-quarantined-files.txt 2008-07-02 20:34:35

ComboFix2.txt 2008-07-02 12:59:08

Pre-Run: 29,522,202,624 octets libres

Post-Run: 29,513,629,696 octets libres

273 --- E O F --- 2008-06-26 08:07:18

le 2 juillet 2008

désolé,jétais occupé...beagled ne marche pas,je suis sous vista et dans la fenetre qui s'ouvre,il mentionne "only for win 2000 et xp"

le 2 juillet 2008

il a réagi bizarement le logiciel que tu m'as donné.je sais pas si c'est normal.le rapport n'était pas sous le nom que tu m'as dit.je te poste ce que je croit être.

***

le 2 juillet 2008

tu vas péter les plombs,me traiter de boulet mais je ne peux pas exécuter hijackthis.

j'ai bien fusionner le fichier que tu m'as dit.

en mode normal,beagle neutralise hijackthis, je suis passer en mode sans échec pour tester si c'était possible de l'exécuter mais échec!

il me dit que ce n'est pas une application win32 valide.

le 2 juillet 2008

je comprends pas ce que tu me demandes là....quel fichier?

désolé.

le 2 juillet 2008

avant de choper le trojan, non.mais depuis c'est fréquent.

le 2 juillet 2008

bon ben désolé, ça marche pas...j'ai fait 2 fois ce que tu m'as dit...2 fois gros bugs...2 fois écran bleu avec des messages me disant comme quoi il y avait des erreurs critiques,blablabla...

j'ai relevé ça si ça peut t'aider:

"technical information:

stop 0x000000F4 (0x00000003,0x93C9B230, 0x93C9B37C, 0x84C41330)"

petite précision: tout c'est déroulé comme tu l'avais expliqué concernant combofix sauf qu'il ne m'as jamais demandé de taper 1 ou 2..il lance la restauration et puis écran bleu.

le 2 juillet 2008

voici le rapport combofix:

ComboFix 08-07-01.3 - RK 2008-07-02 14:51:42.2 - NTFSx86

Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6001.1.1252.1.1036.18.492 [GMT 2:00]

.

/wow section - STAGE 3

SED: can't read MWindows.dat: No such file or directory

/wow section - STAGE 4