KinOurS

merci bcp je te tiens informé des news^^ bye

Tout simplement merci a vous tous ma connexion refonctionne a merveille^^ Et donc dernière chose, pour ce qui est de windows defender et de son message d'erreur 0x800106ba a chaque demarrage du pc ?

Merci pour ta réponse mais ma connexion wifi ne fonctionne plus depuis que j'ai chopé le virus, et quand je cherche a le réparer, il me dit que widows est dans l'incapacité d'éxécuter le programme sans fil de windows et qu'il ne peut pas résoudre le problème... Le non-fonctionnement de mon système wifi ne date pas de combofix mais date du moment ou j'ai attrapé ce virus.... Et windows defender lui m'affiche toujour ce message d'erreur a chaque fois que je lance mon PC......... je n'ai peut-etre plus le virus mais comment réparer ce qu'il a endommagé ???

très bien, et pour ce qui est de du message d'erreur de windows defender 0x800106ba qui reviens à chaque fois et du wifi qui ne veut plus se lancer.....que dois-je faire d'après toi ?

Voili voilou ------------------------- Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 17:46:44, on 20/10/2008 Platform: Windows Vista (WinNT 6.00.1904) MSIE: Internet Explorer v7.00 (7.00.6000.16643) Boot mode: Normal Running processes: c:\Program Files\Bioscrypt\VeriSoft\Bin\AsGHost.exe C:\Windows\system32\Dwm.exe C:\Windows\system32\taskeng.exe C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe C:\Windows\RtHDVCpl.exe C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe C:\Program Files\HP\QuickPlay\QPService.exe C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe C:\Windows\System32\rundll32.exe C:\Windows\System32\rundll32.exe C:\Program Files\Saitek\SD6\Software\ProfilerU.exe C:\Program Files\Saitek\SD6\Software\SaiMfd.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Windows\system32\wbem\unsecapp.exe C:\Program Files\HP\HP Software Update\hpwuSchd2.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Windows\ehome\ehtray.exe C:\Users\KinOurs\Program Files\DNA\btdna.exe C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe C:\Windows\system32\wuauclt.exe C:\Windows\Explorer.exe C:\Users\KinOurs\Desktop\HiJackThis.exe C:\Windows\system32\DllHost.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...n&pf=laptop R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...n&pf=laptop R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O2 - BHO: VeriSoft Access Manager - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - c:\Program Files\Bioscrypt\VeriSoft\Bin\ItIEAddIn.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O4 - HKLM\..\Run: [sMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [iAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe" O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start O4 - HKLM\..\Run: [HP Health Check Scheduler] C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe O4 - HKLM\..\Run: [hpWirelessAssistant] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe O4 - HKLM\..\Run: [WAWifiMessage] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe" O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe c:\PROGRA~1\BIOSCR~1\VeriSoft\Bin\ASTSVCC.dll,RegisterModule O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [synTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [ProfilerU] C:\Program Files\Saitek\SD6\Software\ProfilerU.exe O4 - HKLM\..\Run: [saiMfd] C:\Program Files\Saitek\SD6\Software\SaiMfd.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\Windows\system32\NeroCheck.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [bitTorrent DNA] "C:\Users\KinOurs\Program Files\DNA\btdna.exe" O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun O4 - Global Startup: BTTray.lnk = ? O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O8 - Extra context menu item: Envoyer l'&image au périphérique Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~3.0_0\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~3.0_0\bin\ssv.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O13 - Gopher Prefix: O15 - Trusted Zone: *.canalplay.com O15 - Trusted Zone: *.canalplusactive.com O15 - Trusted Zone: *.canalplay.com (HKLM) O15 - Trusted Zone: *.canalplusactive.com (HKLM) O16 - DPF: CANALPLAY Installer - http://www.canalplay.com/cabs/CanalInstaller.CAB O16 - DPF: {18506D80-9B80-11D4-82C2-0080C8D7ED4A} (GameDesire Roulette) - http://67.15.101.33/g_bin/eng/roulette_2_0_0_27.cab O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/...NPUpldfr-fr.cab O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://copainsdavant.linternaute.com/frame...geUploader5.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownlo.../sysreqlab2.cab O16 - DPF: {6B75345B-AA36-438A-BBE6-4078B4C6984D} (HpProductDetection Class) - http://h20270.www2.hp.com/ediags/gmn2/inst...ctDetection.cab O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} (GMNRev Class) - http://h20270.www2.hp.com/ediags/gmn2/inst...ctDetection.cab O16 - DPF: {83AFB5CA-ED35-11D4-A452-0080C8D85045} (GameDesire Poker Games) - http://67.15.101.33/g_bin/eng/poker_2_0_0_49.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O20 - AppInit_DLLs: APSHook.dll O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: Service CANALPLAY - Canal+ Distribution - C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Windows\System32\ZoneLabs\vsmon.exe -- End of file - 11836 bytes

Re coucou^^ Merci pour ton aide, voici le rapport de combofix ------------------------- ComboFix 08-10-19.04 - KinOurs 2008-10-20 16:49:03.1 - NTFSx86 Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6000.0.1252.1.1036.18.1104 [GMT 2:00] Lancé depuis: C:\Users\KinOurs\Desktop\Combo-Fix.exe * Un nouveau point de restauration a été créé . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . C:\InfoSat.txt . ((((((((((((((((((((((((((((((((((((((( Pilotes/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Legacy_SROSA ((((((((((((((((((((((((((((( Fichiers créés du 2008-09-20 au 2008-10-20 )))))))))))))))))))))))))))))))))))) . Pas de nouveau fichier créé dans ce laps de temps . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-10-20 14:53 --------- d-----w C:\Users\KinOurs\AppData\Roaming\DNA 2008-10-19 23:35 --------- d-----w C:\Users\KinOurs\AppData\Roaming\Malwarebytes 2008-10-19 17:45 --------- d-----w C:\Program Files\Avira 2008-10-19 17:45 --------- d-----w C:\PROGRA~2\Avira 2008-10-19 16:31 262,144 ----a-w C:\ntuser.dat 2008-10-19 16:31 --------- d-----w C:\Program Files\Malwarebytes' Anti-Malware 2008-10-19 16:29 --------- d-----w C:\PROGRA~2\Malwarebytes 2008-10-19 12:00 --------- d--h--w C:\Program Files\InstallShield Installation Information 2008-10-19 12:00 --------- d-----w C:\Users\KinOurs\AppData\Roaming\DAEMON Tools 2008-10-19 12:00 --------- d-----w C:\Program Files\HeroStats 2008-10-19 12:00 --------- d-----w C:\Program Files\DNA 2008-10-18 16:19 --------- d-----w C:\Program Files\Common Files\LightScribe 2008-10-18 13:39 --------- d-----w C:\Program Files\Common Files\Adobe 2008-10-18 10:23 352,614 ---ha-w C:\Windows\system32\drivers\vsconfig.xml 2008-10-17 10:29 --------- d-----w C:\Users\KinOurs\AppData\Roaming\BitTorrent 2008-10-16 18:25 38,496 ----a-w C:\Windows\system32\drivers\mbamswissarmy.sys 2008-10-16 18:25 15,504 ----a-w C:\Windows\system32\drivers\mbam.sys 2008-10-16 17:40 1,130,496 ---h--w C:\Windows\System32\wodfamop.dll 2008-10-16 17:40 --------- d-----w C:\Program Files\Abrosoft 2008-10-16 17:25 159,987 ----a-w C:\Windows\Sqirlz Morph Uninstaller.exe 2008-10-16 17:25 --------- d-----w C:\Program Files\Sqirlz Morph 2008-10-13 13:02 --------- d-----w C:\Program Files\Pinnacle 2008-10-12 19:21 --------- d-----w C:\Program Files\City of Heroes 2008-10-12 15:31 --------- d-----w C:\Users\KinOurs\AppData\Roaming\proDAD 2008-10-12 15:31 --------- d-----w C:\Program Files\proDAD 2008-10-12 15:30 --------- d-----w C:\Program Files\LooksBuilderSE 2008-10-12 15:28 --------- d-----w C:\Program Files\Boris FX, Inc 2008-10-12 15:11 --------- d-----w C:\PROGRA~2\Pinnacle Studio Ultimate 2008-10-12 15:02 --------- d-----w C:\Program Files\Common Files\Yahoo! 2008-10-12 15:02 --------- d-----w C:\PROGRA~2\Studio 12 2008-10-12 15:02 --------- d-----w C:\PROGRA~2\Pinnacle Studio Plus 2008-10-12 15:02 --------- d-----w C:\PROGRA~2\Pinnacle 2008-10-12 14:44 --------- d-----w C:\Program Files\DAEMON Tools Toolbar 2008-10-12 14:44 --------- d-----w C:\Program Files\DAEMON Tools Lite 2008-10-12 14:35 717,296 ----a-w C:\Windows\system32\drivers\sptd.sys 2008-10-12 13:53 --------- d-----w C:\Users\KinOurs\AppData\Roaming\Nero 2008-10-12 13:42 --------- d-----w C:\PROGRA~2\LightScribe 2008-10-12 13:36 --------- d-----w C:\Program Files\Common Files\Nero 2008-10-12 13:08 --------- d-----w C:\Program Files\Nero 2008-10-12 12:55 --------- d-----w C:\PROGRA~2\Nero 2008-10-11 18:28 --------- d-----w C:\Users\KinOurs\AppData\Roaming\OpenOffice.org2 2008-10-01 23:24 --------- d-----w C:\Program Files\eMule 2008-10-01 23:05 --------- d-----w C:\PROGRA~2\eMule 2008-09-28 18:16 --------- d-----w C:\Users\KinOurs\AppData\Roaming\Roxio 2008-09-28 18:16 --------- d-----w C:\PROGRA~2\Sonic 2008-09-28 18:05 --------- d-----w C:\Program Files\Common Files\Ahead 2008-09-28 13:54 89,967 ----a-w C:\Users\KinOurs\AppData\Roaming\nvModes.dat 2008-09-28 10:22 --------- d-----w C:\Program Files\NCSoft 2008-09-28 09:44 --------- d-----w C:\Program Files\BitTorrent 2008-09-10 20:20 --------- d-----w C:\Program Files\GUILD WARS 2008-09-09 22:06 --------- d-----w C:\Users\KinOurs\AppData\Roaming\Shareaza 2008-09-09 22:06 --------- d-----w C:\Program Files\Shareaza 2008-09-08 12:18 --------- d-----w C:\Program Files\WinamaxPoker 2008-09-08 10:18 --------- d-----w C:\Users\KinOurs\AppData\Roaming\Skype 2008-09-01 19:06 --------- d-----w C:\Users\KinOurs\AppData\Roaming\GetRightToGo 2008-08-23 12:28 --------- d-----w C:\Program Files\Avimator 2008-08-21 10:08 --------- d-----w C:\Program Files\SecondLife 2008-08-21 10:07 --------- d-----w C:\Users\KinOurs\AppData\Roaming\SecondLife 2008-08-20 00:39 --------- d-----w C:\Users\KinOurs\AppData\Roaming\GanymedeNet 2008-08-15 22:26 91,591 ----a-w C:\Users\All Users\nvModes.dat 2008-08-15 22:26 91,591 ----a-w C:\PROGRA~2\nvModes.dat 2008-08-09 13:18 2,757,632 ----a-w C:\Windows\Internet Logs\xDBC199.tmp 2008-08-09 13:18 1,674,240 ----a-w C:\Windows\Internet Logs\xDBC4E4.tmp 2008-01-11 14:15 174 --sha-w C:\Program Files\desktop.ini 2008-03-14 02:02 16,384 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat 2008-03-14 02:02 32,768 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat 2008-03-14 02:02 16,384 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" [2006-11-02 201728] "ehTray.exe"="C:\Windows\ehome\ehTray.exe" [2006-11-02 125440] "BitTorrent DNA"="C:\Users\KinOurs\Program Files\DNA\btdna.exe" [2008-09-28 289088] "LightScribe Control Panel"="C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe" [2008-06-09 2363392] "DAEMON Tools Lite"="C:\Program Files\DAEMON Tools Lite\daemon.exe" [2008-07-24 490952] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SMSERIAL"="C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe" [2006-10-09 729088] "SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2007-09-15 1021224] "IAAnotif"="C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2007-02-12 174872] "QPService"="C:\Program Files\HP\QuickPlay\QPService.exe" [2007-04-23 176128] "QlbCtrl"="C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2007-02-13 159744] "HP Health Check Scheduler"="C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" [2007-03-12 50696] "hpWirelessAssistant"="C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2007-03-01 472776] "WAWifiMessage"="C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe" [2007-01-10 317128] "SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe" [2008-06-10 144784] "CognizanceTS"="c:\PROGRA~1\BIOSCR~1\VeriSoft\Bin\ASTSVCC.dll" [2003-12-22 17920] "NvSvc"="C:\Windows\system32\nvsvc.dll" [2007-09-19 86016] "NvCplDaemon"="C:\Windows\system32\NvCpl.dll" [2007-09-19 8497696] "NvMediaCenter"="C:\Windows\system32\NvMcTray.dll" [2007-09-19 81920] "SynTPStart"="C:\Program Files\Synaptics\SynTP\SynTPStart.exe" [2007-09-15 102400] "ZoneAlarm Client"="C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" [2008-10-19 959976] "ProfilerU"="C:\Program Files\Saitek\SD6\Software\ProfilerU.exe" [2007-10-02 233472] "SaiMfd"="C:\Program Files\Saitek\SD6\Software\SaiMfd.exe" [2007-10-02 131072] "QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [2008-03-28 413696] "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2008-03-30 267048] "HP Software Update"="C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840] "NeroFilterCheck"="C:\Windows\system32\NeroCheck.exe" [2001-07-09 155648] "Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792] "avgnt"="C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-06-12 266497] "RtHDVCpl"="RtHDVCpl.exe" [2007-03-09 C:\Windows\RtHDVCpl.exe] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "Launcher"="C:\Windows\SMINST\launcher.exe" [2006-11-07 44128] C:\PROGRA~2\MICROS~1\Windows\STARTM~1\Programs\Startup\ BTTray.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe [2006-12-20 719664] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows] "AppInit_DLLs"=APSHook.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "vidc.mjpg"= pvmjpg30.dll [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Notification Packages REG_MULTI_SZ scecli ASWLNPkg [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\ZoneLabsFirewall] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-1746267223-3792108550-637190556-1000] "EnableNotificationsRef"=dword:00000003 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\DomainProfile] "EnableFirewall"= 0 (0x0) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\DomainProfile\AuthorizedApplications\List] "C:\\Program Files\\NCsoft\\Exteel (US)\\System\\Exteel.exe"= C:\Program Files\NCsoft\Exteel (US)\System\Exteel.exe:*:Enabled:Exteel [HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules] "{AE5AD273-9944-401A-9C1F-0EE24B2AE9D2}"= UDP:C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote "{AB8101E5-A399-4065-BE0A-AE5965ADEF9E}"= TCP:C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote "{EE3A4FBE-66DD-484A-9F72-3677D1306994}"= C:\Program Files\HP\QuickPlay\QP.exe:Quick Play "{08F62DF6-F995-4843-93CD-017E93819D94}"= C:\Program Files\HP\QuickPlay\QPService.exe:Quick Play Resident Program "{92D04DFC-4D3B-4D03-ACCF-F645AFDD51F6}"= Disabled:UDP:C:\Program Files\Skype\Phone\Skype.exe:Skype "{191FE183-9070-429A-81C0-75F111CA7E9C}"= Disabled:TCP:C:\Program Files\Skype\Phone\Skype.exe:Skype "{07F1CBA0-6D21-40FA-90DA-823FEF17E648}"= C:\Program Files\Windows Live\Messenger\livecall.exe:Windows Live Messenger (Phone) "{E59B33F0-2095-408C-A9FF-930506F74ADF}"= UDP:C:\Program Files\Bonjour\mDNSResponder.exe:Bonjour "{49138D30-53CE-4E75-A22A-88D8C70C0015}"= TCP:C:\Program Files\Bonjour\mDNSResponder.exe:Bonjour "{9B8F36E6-A504-4421-A744-771D4BD39DF8}"= UDP:C:\Program Files\iTunes\iTunes.exe:iTunes "{57C5C607-6144-4FD5-81CD-6EFCF81FFABC}"= TCP:C:\Program Files\iTunes\iTunes.exe:iTunes "{3DCBD3D5-D27A-4504-A91F-6498129D0C4A}"= UDP:86:BroadCam Web Server "{287347D2-BAB3-4392-B247-D5C37713ED0A}"= UDP:C:\Program Files\Lecteur CANALPLAY\CanalPlayer.exe:Lecteur CANALPLAY "{51B74BCF-D761-4181-A367-92E17D98FEF5}"= TCP:C:\Program Files\Lecteur CANALPLAY\CanalPlayer.exe:Lecteur CANALPLAY "{FF49AE9A-B3C5-4EB6-A344-B24E4AC776C3}"= C:\Program Files\Windows Live\Messenger\livecall.exe:Windows Live Messenger (Phone) "{E33C80D3-814E-471F-BAE1-4ED2709BF783}"= C:\Program Files\Windows Live\Messenger\livecall.exe:Windows Live Messenger (Phone) "{ABAD6721-F926-4DF1-88D9-3321E7B883E4}"= UDP:C:\Program Files\DNA\btdna.exe:DNA "{75F17D28-8DA9-4A6E-9BE0-894A40C444E2}"= TCP:C:\Program Files\DNA\btdna.exe:DNA "{43E5B630-FEF5-443F-AAC7-BC21C2E2EA4E}"= UDP:C:\Program Files\Pinnacle\Studio 12\Programs\RM.exe:Render Manager "{34BBF47F-9762-43D7-9960-245004A5893F}"= TCP:C:\Program Files\Pinnacle\Studio 12\Programs\RM.exe:Render Manager "{45048B1A-4C50-4903-A5D8-806EC1C0DAA8}"= UDP:C:\Program Files\Pinnacle\Studio 12\Programs\Studio.exe:Studio "{3AF4142C-4ECA-4235-AEA5-395B710B69B8}"= TCP:C:\Program Files\Pinnacle\Studio 12\Programs\Studio.exe:Studio "{21AF1366-813F-4491-8996-332319D2719A}"= UDP:C:\Program Files\Pinnacle\Studio 12\Programs\umi.exe:umi "{670DD5F7-C129-4F33-ADC2-01384A67CCB2}"= TCP:C:\Program Files\Pinnacle\Studio 12\Programs\umi.exe:umi [HKLM\~\services\sharedaccess\parameters\firewallpolicy\PublicProfile] "EnableFirewall"= 0 (0x0) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\RestrictedServices\Static\System] "DFSR-1"= RPort=5722|UDP:%SystemRoot%\system32\svchost.exe|Svc=DFSR:Allow inbound TCP traffic| [HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile] "EnableFirewall"= 0 (0x0) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List] "C:\\Program Files\\NCsoft\\Exteel (US)\\System\\Exteel.exe"= C:\Program Files\NCsoft\Exteel (US)\System\Exteel.exe:*:Enabled:Exteel "C:\\Program Files\\BitTorrent\\bittorrent.exe"= C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent R2 ASBroker;Courtier de session de connexion;C:\Windows\System32\svchost.exe [2006-11-02 22016] R2 ASChannel;Canal de communication local;C:\Windows\System32\svchost.exe [2006-11-02 22016] R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0;C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2008-09-24 935208] R3 btwaudio;Périphérique audio Bluetooth;C:\Windows\system32\drivers\btwaudio.sys [2007-01-02 78128] R3 btwavdt;Bluetooth AVDT Service;C:\Windows\system32\drivers\btwavdt.sys [2007-01-02 80688] R3 btwrchid;btwrchid;C:\Windows\system32\DRIVERS\btwrchid.sys [2007-01-02 16560] S3 SaiH075C;SaiH075C;C:\Windows\system32\DRIVERS\SaiH075C.sys [2006-07-27 176640] S3 Service CANALPLAY;Service CANALPLAY;C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe [2008-06-18 436096] S3 Steam Client Service;Steam Client Service;C:\Program Files\Common Files\Steam\SteamService.exe [2008-08-04 87288] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] bthsvcs REG_MULTI_SZ BthServ Cognizance REG_MULTI_SZ ASBroker ASChannel [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{1f977d88-8c7d-11dd-9789-001a6bb856cb}] \shell\AutoRun\command - oq.cmd \shell\explore\Command - oq.cmd \shell\open\Command - oq.cmd [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{6bee6fa4-986b-11dd-a5e7-001a6bb856cb}] \shell\AutoRun\command - F:\Setup.exe [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}] "C:\Program Files\Common Files\LightScribe\LSRunOnce.exe" . . ------- Examen supplémentaire ------- . FireFox -: Profile - C:\Users\KinOurs\AppData\Roaming\Mozilla\Firefox\Profiles\en482wok.default\ . ************************************************************************** catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-10-20 16:56:05 Windows 6.0.6000 NTFS Recherche de processus cachés ... Recherche d'éléments en démarrage automatique cachés ... Recherche de fichiers cachés ... ************************************************************************** . ------------------------ Autres processus actifs ------------------------ . C:\Windows\System32\audiodg.exe C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\Bioscrypt\VeriSoft\Bin\asghost.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe C:\Program Files\Common Files\LightScribe\LSSrvc.exe C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe C:\Windows\System32\conime.exe C:\Windows\System32\rundll32.exe C:\Windows\System32\rundll32.exe C:\Windows\System32\wbem\unsecapp.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe C:\Program Files\iPod\bin\iPodService.exe C:\Windows\servicing\TrustedInstaller.exe C:\Windows\System32\dllhost.exe . ************************************************************************** . Heure de fin: 2008-10-20 17:08:50 - La machine a redémarré ComboFix-quarantined-files.txt 2008-10-20 15:07:30 Avant-CF: Le texte du message associé au numéro 0x2379 est introuvable dans le fichier de messages pour Application. Après-CF: 53,277,515,776 octets libres 247 --- E O F --- 2008-06-01 10:39:24

bonjour a tous!!! ...voilà...alors j'ai téléchargé éxécutable qui m'a été...fatal... maintenant je ne peux plus lancer, installer, désinstaller aucun antivirus, firewall ect... Windows defender ne fonctionne plus avec le fameux message d'erreur 0x800106ba, ma connexion wifi ne veut plus se lancer, windows est dans l'incapacité de régler le probleme, bref....tout part en sucette sur mon PC.....apres beaucoup de recherche, j'ai compris que j'etais infecté par un virus nommé Bagle ou Beagle... J'ai reussi par miracle en mode sans echec a lancer Elibagle qui ma trouvé et éliminé quelque bagle mais les probleme sont toujour les mêmes... J'ai cru comprendre que pour tuer ce virus il fallais utiliser des logiciel de désinfection assé dangereux dans leur manipulations donc je m'en remet a vous... Merci de m'aider...à très vite j'espere^^