Problème ecran bleu peu après demarage de msn
talou1994
-
talou1994 Messages postés 4 Statut Membre -
talou1994 Messages postés 4 Statut Membre -
Bonsoir, à chaque fois que je lance windows live messenger et que je me connectes, au bout de 3-4 min, j'ai un ecran bleu ...
Voici mon hijackthis.log :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:38:49, on 02/04/2010
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\PixArt\Pac207\Monitor.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe
C:\Users\Thomas\AppData\Local\Google\Update\1.2.183.23\GoogleCrashHandler.exe
C:\Windows\system32\taskhost.exe
C:\Users\Thomas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Thomas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Thomas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Thomas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\taskhost.exe
C:\Users\Thomas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Thomas\Documents\Downloads\HiJackThis.exe
C:\Windows\system32\SearchFilterHost.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.cherche.us/keyword/%s
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ww12.cherche.us
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://ww12.cherche.us
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://ww12.cherche.us
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.cherche.us/keyword/%s
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page_bak = http://ww12.cherche.us
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: agihelper.AGUtils - {0BC6E3FA-78EF-4886-842C-5A1258C4455A} - mscoree.dll (file missing)
O1 - Hosts: 67.223.235.35 game-tuts.com
O1 - Hosts: 67.223.235.35 www.game-tuts.com
O1 - Hosts: 69.174.48.244 modio.com
O1 - Hosts: 69.174.48.244 www.modio.com
O1 - Hosts: 67.223.235.35 game-tuts.com
O1 - Hosts: 67.223.235.35 www.game-tuts.com
O1 - Hosts: 69.174.48.244 modio.com
O1 - Hosts: 69.174.48.244 www.modio.com
O1 - Hosts: 67.223.235.35 game-tuts.com
O1 - Hosts: 67.223.235.35 www.game-tuts.com
O1 - Hosts: 69.174.48.244 modio.com
O1 - Hosts: 69.174.48.244 www.modio.com
O1 - Hosts: 67.223.235.35 game-tuts.com
O1 - Hosts: 67.223.235.35 www.game-tuts.com
O1 - Hosts: 69.174.48.244 modio.com
O1 - Hosts: 69.174.48.244 www.modio.com
O1 - Hosts: 174.37.32.229 game-tuts.com
O1 - Hosts: 174.37.32.229 www.game-tuts.com
O1 - Hosts: 69.174.48.244 modio.com
O1 - Hosts: 69.174.48.244 www.modio.com
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: agihelper.AGUtils - {0bc6e3fa-78ef-4886-842c-5a1258c4455a} - mscoree.dll (file missing)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ievkbd.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
O2 - BHO: R-CARAIBE Toolbar - {ec28d98a-eecd-42b9-a54e-992f6a54a77a} - C:\Program Files\R-CARAIBE\tbR-CA.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: Kiwee Toolbar - {1c99b848-84cb-4ce4-8cd8-ed5719484d9f} - mscoree.dll (file missing)
O3 - Toolbar: R-CARAIBE Toolbar - {ec28d98a-eecd-42b9-a54e-992f6a54a77a} - C:\Program Files\R-CARAIBE\tbR-CA.dll
O4 - HKLM\..\Run: [Monitor] C:\Windows\PixArt\PAC207\Monitor.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Thomas\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: Ajouter à l'Anti-bannière - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ie_banner_deny.htm
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download FLV video content with IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Clavier &virtuel - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: Analyse des &liens - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O13 - Gopher Prefix:
O15 - Trusted Zone: *.chat-land.org
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/MessengerGamesContent/GameContent/fr/uno1/GAME_UNO1.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~2\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~2\KASPER~1\KASPER~1\kloehk.dll
O22 - SharedTaskScheduler: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll
O23 - Service: AG Core Services (AGCoreService) - AG Interactive - C:\Program Files\AGI\core\4.1\AGCoreService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logishrd\lvmvfm\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: wampapache - Apache Software Foundation - c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe
O23 - Service: wampmysqld - Unknown owner - c:\wamp\bin\mysql\mysql5.1.32\bin\mysqld.exe
Voici mon hijackthis.log :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:38:49, on 02/04/2010
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\PixArt\Pac207\Monitor.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe
C:\Users\Thomas\AppData\Local\Google\Update\1.2.183.23\GoogleCrashHandler.exe
C:\Windows\system32\taskhost.exe
C:\Users\Thomas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Thomas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Thomas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Thomas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\taskhost.exe
C:\Users\Thomas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Thomas\Documents\Downloads\HiJackThis.exe
C:\Windows\system32\SearchFilterHost.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.cherche.us/keyword/%s
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ww12.cherche.us
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://ww12.cherche.us
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://ww12.cherche.us
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.cherche.us/keyword/%s
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page_bak = http://ww12.cherche.us
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: agihelper.AGUtils - {0BC6E3FA-78EF-4886-842C-5A1258C4455A} - mscoree.dll (file missing)
O1 - Hosts: 67.223.235.35 game-tuts.com
O1 - Hosts: 67.223.235.35 www.game-tuts.com
O1 - Hosts: 69.174.48.244 modio.com
O1 - Hosts: 69.174.48.244 www.modio.com
O1 - Hosts: 67.223.235.35 game-tuts.com
O1 - Hosts: 67.223.235.35 www.game-tuts.com
O1 - Hosts: 69.174.48.244 modio.com
O1 - Hosts: 69.174.48.244 www.modio.com
O1 - Hosts: 67.223.235.35 game-tuts.com
O1 - Hosts: 67.223.235.35 www.game-tuts.com
O1 - Hosts: 69.174.48.244 modio.com
O1 - Hosts: 69.174.48.244 www.modio.com
O1 - Hosts: 67.223.235.35 game-tuts.com
O1 - Hosts: 67.223.235.35 www.game-tuts.com
O1 - Hosts: 69.174.48.244 modio.com
O1 - Hosts: 69.174.48.244 www.modio.com
O1 - Hosts: 174.37.32.229 game-tuts.com
O1 - Hosts: 174.37.32.229 www.game-tuts.com
O1 - Hosts: 69.174.48.244 modio.com
O1 - Hosts: 69.174.48.244 www.modio.com
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: agihelper.AGUtils - {0bc6e3fa-78ef-4886-842c-5a1258c4455a} - mscoree.dll (file missing)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ievkbd.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
O2 - BHO: R-CARAIBE Toolbar - {ec28d98a-eecd-42b9-a54e-992f6a54a77a} - C:\Program Files\R-CARAIBE\tbR-CA.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: Kiwee Toolbar - {1c99b848-84cb-4ce4-8cd8-ed5719484d9f} - mscoree.dll (file missing)
O3 - Toolbar: R-CARAIBE Toolbar - {ec28d98a-eecd-42b9-a54e-992f6a54a77a} - C:\Program Files\R-CARAIBE\tbR-CA.dll
O4 - HKLM\..\Run: [Monitor] C:\Windows\PixArt\PAC207\Monitor.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Thomas\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: Ajouter à l'Anti-bannière - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ie_banner_deny.htm
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download FLV video content with IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Clavier &virtuel - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: Analyse des &liens - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O13 - Gopher Prefix:
O15 - Trusted Zone: *.chat-land.org
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/MessengerGamesContent/GameContent/fr/uno1/GAME_UNO1.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~2\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~2\KASPER~1\KASPER~1\kloehk.dll
O22 - SharedTaskScheduler: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll
O23 - Service: AG Core Services (AGCoreService) - AG Interactive - C:\Program Files\AGI\core\4.1\AGCoreService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logishrd\lvmvfm\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: wampapache - Apache Software Foundation - c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe
O23 - Service: wampmysqld - Unknown owner - c:\wamp\bin\mysql\mysql5.1.32\bin\mysqld.exe
A voir également:
- Problème ecran bleu peu après demarage de msn
- Supprimer rond bleu whatsapp - Guide
- Double ecran - Guide
- Écran bleu - Guide
- Capture d'écran whatsapp - Accueil - Messagerie instantanée
- Retourner ecran pc - Guide
31 réponses
bon
au point de vue infection, rien de flagrant
- un gros doute sur Connection Booster 4.0.0.0 du site pas tres bien vu de TRACKZAPPER.COM
- beaucoup de choses, emulateur ou autre patch en rapport aux jeux qui de par ta version windows peuvent ne pas tous compatibles et planter donc celui ci
- voir si ce fichier existe encore et le vérifier
Rends toi sur ce site :
https://www.virustotal.com/gui/
Clique sur parcourir et cherche ce fichier :
C:\Users\Thomas\AppData\Local\Temp\RarSFX1\j75bxXP.exe
Clique sur Send File.
Un rapport va s'élaborer ligne à ligne.
Attends la fin. Il doit comprendre la taille du fichier envoyé.
Sauvegarde le rapport avec le bloc-note.
Copie le dans ta réponse.
Si tu ne trouves pas le fichier alors
Affiche tous les fichiers et dossiers :
Pour cela :
Clique sur démarrer/panneau de configuration/option des dossiers/affichage
Cocher afficher les dossiers cachés
Décoche la case "Masquer les fichiers protégés du système d'exploitation (recommandé)"
Décocher masquer les extensions dont le type est connu
Puis fais «appliquer» pour valider les changements.
Et OK
au point de vue infection, rien de flagrant
- un gros doute sur Connection Booster 4.0.0.0 du site pas tres bien vu de TRACKZAPPER.COM
- beaucoup de choses, emulateur ou autre patch en rapport aux jeux qui de par ta version windows peuvent ne pas tous compatibles et planter donc celui ci
- voir si ce fichier existe encore et le vérifier
Rends toi sur ce site :
https://www.virustotal.com/gui/
Clique sur parcourir et cherche ce fichier :
C:\Users\Thomas\AppData\Local\Temp\RarSFX1\j75bxXP.exe
Clique sur Send File.
Un rapport va s'élaborer ligne à ligne.
Attends la fin. Il doit comprendre la taille du fichier envoyé.
Sauvegarde le rapport avec le bloc-note.
Copie le dans ta réponse.
Si tu ne trouves pas le fichier alors
Affiche tous les fichiers et dossiers :
Pour cela :
Clique sur démarrer/panneau de configuration/option des dossiers/affichage
Cocher afficher les dossiers cachés
Décoche la case "Masquer les fichiers protégés du système d'exploitation (recommandé)"
Décocher masquer les extensions dont le type est connu
Puis fais «appliquer» pour valider les changements.
Et OK
Antivirus Version Dernière mise à jour Résultat
a-squared 4.5.0.50 2010.04.04 -
AhnLab-V3 5.0.0.2 2010.04.03 -
AntiVir 7.10.6.24 2010.04.03 -
Antiy-AVL 2.0.3.7 2010.04.02 -
Authentium 5.2.0.5 2010.04.04 -
Avast 4.8.1351.0 2010.04.04 -
Avast5 5.0.332.0 2010.04.04 -
AVG 9.0.0.787 2010.04.04 -
BitDefender 7.2 2010.04.04 -
CAT-QuickHeal 10.00 2010.04.03 -
ClamAV 0.96.0.0-git 2010.04.03 PUA.Packed.ASPack
Comodo 4500 2010.04.04 Heur.Suspicious
DrWeb 5.0.2.03300 2010.04.04 -
eSafe 7.0.17.0 2010.04.01 -
eTrust-Vet None 2010.04.02 -
F-Prot 4.5.1.85 2010.04.04 -
F-Secure 9.0.15370.0 2010.04.04 -
Fortinet 4.0.14.0 2010.04.04 -
GData 19 2010.04.04 -
Ikarus T3.1.1.80.0 2010.04.04 -
Jiangmin 13.0.900 2010.04.04 -
K7AntiVirus 7.10.1004 2010.03.22 -
Kaspersky 7.0.0.125 2010.04.04 -
McAfee 5937 2010.03.31 -
McAfee+Artemis 5937 2010.03.31 -
McAfee-GW-Edition 6.8.5 2010.04.03 -
Microsoft 1.5605 2010.04.04 -
NOD32 4999 2010.04.04 -
Norman 6.04.10 2010.04.03 -
nProtect 2009.1.8.0 2010.04.04 -
Panda 10.0.2.2 2010.04.04 -
PCTools 7.0.3.5 2010.04.04 -
Prevx 3.0 2010.04.04 -
Rising 22.41.04.05 2010.04.02 -
Sophos 4.52.0 2010.04.04 -
Sunbelt 6137 2010.04.04 -
Symantec 20091.2.0.41 2010.04.04 -
TheHacker 6.5.2.0.252 2010.04.04 -
TrendMicro 9.120.0.1004 2010.04.04 -
VBA32 3.12.12.4 2010.04.02 -
ViRobot 2010.4.3.2259 2010.04.04 -
VirusBuster 5.0.27.0 2010.04.04 -
Information additionnelle
File size: 2262280 bytes
MD5 : fd698fe168e9809deb308ed411bb90cb
SHA1 : ae95f1029b683c98aa8f9f4719d8fb5b3f190f5e
SHA256: 2d6bb3772def5a02b148a14ba5bd45ca9c51f04fd918d832befce79f26783a35
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0xDAE8C
timedatestamp.....: 0x4B9E6B7F (Mon Mar 15 18:16:47 2010)
machinetype.......: 0x14C (Intel I386)
( 4 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x1167C9 0x117000 6.58 73345766c973b1fcc152df96e6ea7b1a
.rdata 0x118000 0x31E82 0x32000 5.19 47c9e0a76453cd9f188b34ae12faf585
.data 0x14A000 0x1C8B4 0x11000 5.91 e0946b820c2d30047633f0c9eaf26875
.rsrc 0x167000 0xCB7F8 0xCC000 6.34 fe7f9d2182bccaceb969aa077e76186d
( 12 imports )
> advapi32.dll: SetSecurityDescriptorDacl, InitializeSecurityDescriptor, GetUserNameA, RegQueryValueExW, RegQueryValueW, RegQueryValueA, RegEnumValueW, RegEnumValueA, RegEnumKeyExW, RegEnumKeyW, RegEnumKeyA, RegQueryInfoKeyW, RegQueryInfoKeyA, RegDeleteValueW, RegDeleteValueA, RegDeleteKeyW, RegSetValueExW, RegSetValueW, RegSetValueA, RegOpenKeyExW, RegOpenKeyW, RegCreateKeyExW, RegCreateKeyW, RegCreateKeyA, RegFlushKey, OpenSCManagerA, EnumServicesStatusA, OpenServiceA, QueryServiceConfigA, CloseServiceHandle, RegEnumKeyExA, RegLoadKeyA, RegUnLoadKeyA, LookupPrivilegeValueA, AdjustTokenPrivileges, RegSetValueExA, RegCreateKeyExA, OpenThreadToken, OpenProcessToken, GetTokenInformation, AllocateAndInitializeSid, EqualSid, FreeSid, LookupAccountNameA, IsValidSid, GetSidIdentifierAuthority, GetSidSubAuthorityCount, GetSidSubAuthority, RegOpenKeyExA, RegOpenKeyA, RegQueryValueExA, RegCloseKey, RegDeleteKeyA
> comctl32.dll: -, _TrackMouseEvent
> comdlg32.dll: GetFileTitleA
> gdi32.dll: SetTextJustification, GetBkColor, CreateFontA, GetCharWidthA, DPtoLP, GetMapMode, CombineRgn, SetRectRgn, EnumFontFamiliesExA, CreateHatchBrush, CreateSolidBrush, ExtCreatePen, CreatePen, PlayMetaFile, EnumMetaFile, GetObjectType, PlayMetaFileRecord, SelectPalette, CreatePatternBrush, CreateDIBPatternBrushPt, ExtSelectClipRgn, PolyBezierTo, PolylineTo, PolyDraw, ArcTo, GetCurrentPositionEx, ScaleWindowExtEx, SetWindowExtEx, OffsetWindowOrgEx, SetWindowOrgEx, ScaleViewportExtEx, SetViewportExtEx, OffsetViewportOrgEx, SetViewportOrgEx, Escape, ExtTextOutA, RectVisible, PtVisible, StartDocA, GetWindowExtEx, GetViewportExtEx, SelectClipPath, CreateRectRgn, GetClipRgn, SelectClipRgn, SetColorAdjustment, SetArcDirection, SetMapperFlags, GetPixel, SetTextAlign, MoveToEx, LineTo, OffsetClipRgn, IntersectClipRect, ExcludeClipRect, SetMapMode, ModifyWorldTransform, SetWorldTransform, SetGraphicsMode, SetStretchBltMode, SetROP2, SetPolyFillMode, RestoreDC, SaveDC, PatBlt, CreateRectRgnIndirect, SetBkColor, GetClipBox, GetDCOrgEx, CreateDCA, CopyMetaFileA, GetDeviceCaps, SetPixel, GetCurrentObject, DeleteObject, GetStockObject, GetTextExtentPoint32A, GetTextMetricsA, SetTextColor, SetBkMode, TextOutA, CreateFontIndirectA, GetObjectA, DeleteDC, StretchDIBits, SelectObject, CreateCompatibleDC, CreateCompatibleBitmap, CreateBitmap, BitBlt, SetTextCharacterExtra
> kernel32.dll: CopyFileA, lstrcmpW, GlobalDeleteAtom, GlobalFindAtomA, GlobalAddAtomA, GlobalGetAtomNameA, FreeResource, GetLocaleInfoA, EnumResourceLanguagesA, ConvertDefaultLocale, GetModuleFileNameW, GetThreadLocale, LockFile, UnlockFile, FileTimeToSystemTime, FileTimeToLocalFileTime, GetPrivateProfileIntA, CreateSemaphoreA, ReleaseSemaphore, ReleaseMutex, LocalFileTimeToFileTime, SystemTimeToFileTime, FindResourceExA, GetAtomNameA, TlsGetValue, GlobalReAlloc, GlobalHandle, TlsAlloc, TlsSetValue, LocalReAlloc, TlsFree, GlobalFlags, GetCPInfo, GetOEMCP, RtlUnwind, HeapReAlloc, VirtualQuery, UnhandledExceptionFilter, GlobalSize, IsDebuggerPresent, RaiseException, GetTimeFormatA, GetDateFormatA, HeapSize, GetConsoleCP, GetConsoleMode, GetStartupInfoA, ExitProcess, CreateThread, SetStdHandle, GetACP, IsValidCodePage, FatalAppExitA, GetStdHandle, LCMapStringA, LCMapStringW, GetTimeZoneInformation, GetStringTypeA, GetStringTypeW, GetUserDefaultLCID, EnumSystemLocalesA, IsValidLocale, SetHandleCount, WriteConsoleA, GetConsoleOutputCP, WriteConsoleW, FreeEnvironmentStringsA, GetEnvironmentStrings, FreeEnvironmentStringsW, GetEnvironmentStringsW, QueryPerformanceCounter, SetConsoleCtrlHandler, GetLocaleInfoW, SetEnvironmentVariableA, SetEnvironmentVariableW, FormatMessageA, MulDiv, CreateMutexW, GetCurrentDirectoryW, GlobalLock, GlobalUnlock, ReadFile, WriteProcessMemory, ReadProcessMemory, CreateFileMappingW, CreateFileMappingA, OpenProcess, FindNextFileW, FindNextFileA, FindFirstFileW, DeleteFileW, CreateFileW, VirtualQueryEx, GetSystemDirectoryW, GetCurrentThreadId, CreateToolhelp32Snapshot, OpenThread, Thread32First, TerminateThread, Thread32Next, HeapDestroy, HeapCreate, VirtualProtect, GetPriorityClass, lstrcpyA, SetPriorityClass, GetCurrentProcessId, GetThreadPriority, VirtualProtectEx, DosDateTimeToFileTime, FileTimeToDosDateTime, SetErrorMode, GetFullPathNameW, lstrcpynW, GetModuleHandleW, AreFileApisANSI, lstrcpynA, WritePrivateProfileStringA, GetPrivateProfileStringA, GetFileAttributesW, InterlockedDecrement, LocalAlloc, LocalFree, IsBadReadPtr, lstrcmpA, GetProcessHeap, HeapAlloc, HeapFree, CreateProcessA, TerminateProcess, GetExitCodeProcess, GetCurrentThread, IsBadWritePtr, GetSystemInfo, GlobalAlloc, GlobalFree, GetSystemTimeAsFileTime, CompareFileTime, GetCommandLineA, GetFullPathNameA, FindFirstFileA, FindClose, VirtualAlloc, MoveFileA, GetFileType, CreateEventA, WaitForMultipleObjects, ExitThread, ResetEvent, GetComputerNameA, FreeLibrary, SetThreadPriority, SuspendThread, SetFileAttributesA, GetVolumeInformationA, SetCurrentDirectoryA, SearchPathA, ExpandEnvironmentStringsA, FlushFileBuffers, VirtualFree, InterlockedIncrement, SetFileTime, GetFileTime, GetModuleFileNameA, GetLogicalDrives, GetCurrentProcess, DuplicateHandle, CreateDirectoryA, GetTempFileNameA, MoveFileExA, GetShortPathNameA, GetWindowsDirectoryA, lstrcatA, GetFileSize, MapViewOfFile, UnmapViewOfFile, SetFilePointer, SetEndOfFile, WriteFile, GetTempPathA, GetCurrentDirectoryA, GetTickCount, GetDriveTypeA, GetFileAttributesExA, GetFileAttributesA, DeleteFileA, SetEvent, GetExitCodeThread, CallNamedPipeA, GetSystemDirectoryA, SetLastError, GetSystemPowerStatus, Sleep, LoadLibraryA, CreateFileA, DeviceIoControl, GetVersionExA, WaitForSingleObject, CreateMutexA, GetLocalTime, CloseHandle, GetProcAddress, LeaveCriticalSection, EnterCriticalSection, DeleteCriticalSection, InitializeCriticalSection, ResumeThread, GetModuleHandleA, FindResourceA, LoadResource, LockResource, SizeofResource, GetStringTypeExW, GetStringTypeExA, GetEnvironmentVariableW, GetEnvironmentVariableA, lstrlenA, lstrcmpiW, lstrcmpiA, CompareStringW, CompareStringA, lstrlenW, GetVersion, GetLastError, WideCharToMultiByte, MultiByteToWideChar, SetUnhandledExceptionFilter, InterlockedExchange
> ole32.dll: StringFromCLSID, ReadClassStg, ReadFmtUserTypeStg, OleRegGetUserType, WriteClassStg, CoTreatAsClass, SetConvertStg, CoInitializeEx, CoTaskMemFree, CoCreateInstance, CreateBindCtx, ReleaseStgMedium, CoTaskMemAlloc, OleDuplicateData, CoUninitialize, CoDisconnectObject, StringFromGUID2, CLSIDFromString, WriteFmtUserTypeStg
> oleaut32.dll: -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -
> shell32.dll: SHGetDesktopFolder, SHGetFileInfoA, SHGetPathFromIDListA, SHBrowseForFolderA, ShellExecuteExA, DragQueryFileA, DragFinish, ExtractIconA, ShellExecuteA, SHGetSpecialFolderLocation, SHGetMalloc
> shlwapi.dll: PathFileExistsA, PathFindExtensionA, PathRemoveExtensionA, PathFindFileNameA, PathStripToRootA, StrStrIA, PathIsUNCA
> user32.dll: SetRectEmpty, BringWindowToTop, SetMenu, ShowOwnedPopups, SetCursor, GetMessageA, TranslateMessage, ValidateRect, WindowFromPoint, DestroyMenu, GetMenuItemInfoA, InflateRect, ClientToScreen, GrayStringA, DrawTextExA, TabbedTextOutA, MapVirtualKeyA, GetKeyNameTextA, GetDesktopWindow, CreateDialogIndirectParamA, GetNextDlgTabItem, EndDialog, GetWindowThreadProcessId, PostQuitMessage, ScrollWindowEx, MoveWindow, IsDialogMessageA, IsDlgButtonChecked, SetDlgItemInt, GetDlgItemTextA, GetDlgItemInt, CheckRadioButton, CheckDlgButton, SetMenuItemBitmaps, GetMenuCheckMarkDimensions, CheckMenuItem, SendDlgItemMessageA, WinHelpA, IsChild, SetWindowsHookExA, CallNextHookEx, GetClassLongA, GetClassNameA, GetWindowTextLengthA, GetWindowTextA, GetForegroundWindow, GetLastActivePopup, DispatchMessageA, BeginDeferWindowPos, EndDeferWindowPos, GetTopWindow, DestroyWindow, UnhookWindowsHookEx, GetMessageTime, GetMessagePos, PeekMessageA, MapWindowPoints, ScrollWindow, TrackPopupMenuEx, TrackPopupMenu, GetKeyState, SetScrollRange, InsertMenuItemA, GetScrollPos, GetWindowContextHelpId, EnableWindow, FindWindowExA, SendMessageA, SetForegroundWindow, IsWindowVisible, GetClassInfoExA, GetClassInfoA, AdjustWindowRectEx, EqualRect, DeferWindowPos, CopyRect, GetScrollInfo, SetScrollInfo, GetDlgCtrlID, CallWindowProcA, IntersectRect, SystemParametersInfoA, GetWindow, GetMenuState, GetMenuStringA, GetMenuItemID, InsertMenuA, GetSubMenu, SetPropA, GetCapture, GetActiveWindow, SetWindowPos, GetPropA, RemovePropA, IsWindowEnabled, GetWindowPlacement, SetDlgItemTextA, RegisterClassA, CreateWindowExA, SetWindowLongA, BeginPaint, GetSysColorBrush, FillRect, DrawTextA, EndPaint, GetParent, DefWindowProcA, LoadCursorA, ScreenToClient, GetMenu, ShowScrollBar, SetFocus, SetClassLongA, GetFocus, SetActiveWindow, InvalidateRect, DrawMenuBar, RegisterWindowMessageA, SetWindowTextA, KillTimer, SetTimer, MapDialogRect, LoadAcceleratorsA, ReleaseCapture, LoadMenuA, ReuseDDElParam, UnpackDDElParam, MsgWaitForMultipleObjects, SetCapture, WaitMessage, GetDialogBaseUnits, DeleteMenu, UnregisterClassA, DestroyIcon, GetAsyncKeyState, GetCursorPos, OffsetRect, IsRectEmpty, GetSystemMenu, SetParent, UnionRect, GetDCEx, LockWindowUpdate, GetScrollRange, CharLowerA, CharLowerW, CharUpperA, CharUpperW, ShowWindow, GetDlgItem, LoadIconA, MessageBoxA, GetWindowRect, GetClientRect, LoadImageA, GetSystemMetrics, LoadBitmapA, UpdateWindow, ReleaseDC, GetDC, GetSysColor, CreateMenu, CreatePopupMenu, AppendMenuA, SetRect, PtInRect, SetWindowPlacement, OemToCharA, GetWindowLongA, CharToOemA, wsprintfA, GetWindowDC, TranslateAcceleratorA, IsWindow, ExitWindowsEx, FindWindowA, IsZoomed, IsIconic, PostMessageA, CheckMenuRadioItem, RemoveMenu, ModifyMenuA, GetMenuItemCount, EnableMenuItem, SetScrollPos
> version.dll: GetFileVersionInfoA, GetFileVersionInfoSizeA, VerQueryValueA
> winspool.drv: OpenPrinterA, DocumentPropertiesA, ClosePrinter
( 0 exports )
TrID : File type identification
Windows OCX File (46.2%)
Win64 Executable Generic (32.0%)
Win32 Executable MS Visual C++ (generic) (14.1%)
Win32 Executable Generic (3.1%)
Win32 Dynamic Link Library (generic) (2.8%)
ssdeep: 24576:hbRuMY8hyjq/iwVwMHSIlBm8DMHgxkwg74Jl1OEWbZ5Uwa2lLzZlUlSb2eDBGw/Z:hluBwCIFKgxkwg74JqbXUyc+1h/QE
sigcheck: publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: Doctor Web Ltd.
VeriSign Class 3 Code Signing 2004 CA
Class 3 Public Primary Certification Authority
signing date.: 6:16 PM 3/15/2010
verified.....: -
PEiD : -
packers (F-Prot): Aspack
RDS : NSRL Reference Data Set
-
a-squared 4.5.0.50 2010.04.04 -
AhnLab-V3 5.0.0.2 2010.04.03 -
AntiVir 7.10.6.24 2010.04.03 -
Antiy-AVL 2.0.3.7 2010.04.02 -
Authentium 5.2.0.5 2010.04.04 -
Avast 4.8.1351.0 2010.04.04 -
Avast5 5.0.332.0 2010.04.04 -
AVG 9.0.0.787 2010.04.04 -
BitDefender 7.2 2010.04.04 -
CAT-QuickHeal 10.00 2010.04.03 -
ClamAV 0.96.0.0-git 2010.04.03 PUA.Packed.ASPack
Comodo 4500 2010.04.04 Heur.Suspicious
DrWeb 5.0.2.03300 2010.04.04 -
eSafe 7.0.17.0 2010.04.01 -
eTrust-Vet None 2010.04.02 -
F-Prot 4.5.1.85 2010.04.04 -
F-Secure 9.0.15370.0 2010.04.04 -
Fortinet 4.0.14.0 2010.04.04 -
GData 19 2010.04.04 -
Ikarus T3.1.1.80.0 2010.04.04 -
Jiangmin 13.0.900 2010.04.04 -
K7AntiVirus 7.10.1004 2010.03.22 -
Kaspersky 7.0.0.125 2010.04.04 -
McAfee 5937 2010.03.31 -
McAfee+Artemis 5937 2010.03.31 -
McAfee-GW-Edition 6.8.5 2010.04.03 -
Microsoft 1.5605 2010.04.04 -
NOD32 4999 2010.04.04 -
Norman 6.04.10 2010.04.03 -
nProtect 2009.1.8.0 2010.04.04 -
Panda 10.0.2.2 2010.04.04 -
PCTools 7.0.3.5 2010.04.04 -
Prevx 3.0 2010.04.04 -
Rising 22.41.04.05 2010.04.02 -
Sophos 4.52.0 2010.04.04 -
Sunbelt 6137 2010.04.04 -
Symantec 20091.2.0.41 2010.04.04 -
TheHacker 6.5.2.0.252 2010.04.04 -
TrendMicro 9.120.0.1004 2010.04.04 -
VBA32 3.12.12.4 2010.04.02 -
ViRobot 2010.4.3.2259 2010.04.04 -
VirusBuster 5.0.27.0 2010.04.04 -
Information additionnelle
File size: 2262280 bytes
MD5 : fd698fe168e9809deb308ed411bb90cb
SHA1 : ae95f1029b683c98aa8f9f4719d8fb5b3f190f5e
SHA256: 2d6bb3772def5a02b148a14ba5bd45ca9c51f04fd918d832befce79f26783a35
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0xDAE8C
timedatestamp.....: 0x4B9E6B7F (Mon Mar 15 18:16:47 2010)
machinetype.......: 0x14C (Intel I386)
( 4 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x1167C9 0x117000 6.58 73345766c973b1fcc152df96e6ea7b1a
.rdata 0x118000 0x31E82 0x32000 5.19 47c9e0a76453cd9f188b34ae12faf585
.data 0x14A000 0x1C8B4 0x11000 5.91 e0946b820c2d30047633f0c9eaf26875
.rsrc 0x167000 0xCB7F8 0xCC000 6.34 fe7f9d2182bccaceb969aa077e76186d
( 12 imports )
> advapi32.dll: SetSecurityDescriptorDacl, InitializeSecurityDescriptor, GetUserNameA, RegQueryValueExW, RegQueryValueW, RegQueryValueA, RegEnumValueW, RegEnumValueA, RegEnumKeyExW, RegEnumKeyW, RegEnumKeyA, RegQueryInfoKeyW, RegQueryInfoKeyA, RegDeleteValueW, RegDeleteValueA, RegDeleteKeyW, RegSetValueExW, RegSetValueW, RegSetValueA, RegOpenKeyExW, RegOpenKeyW, RegCreateKeyExW, RegCreateKeyW, RegCreateKeyA, RegFlushKey, OpenSCManagerA, EnumServicesStatusA, OpenServiceA, QueryServiceConfigA, CloseServiceHandle, RegEnumKeyExA, RegLoadKeyA, RegUnLoadKeyA, LookupPrivilegeValueA, AdjustTokenPrivileges, RegSetValueExA, RegCreateKeyExA, OpenThreadToken, OpenProcessToken, GetTokenInformation, AllocateAndInitializeSid, EqualSid, FreeSid, LookupAccountNameA, IsValidSid, GetSidIdentifierAuthority, GetSidSubAuthorityCount, GetSidSubAuthority, RegOpenKeyExA, RegOpenKeyA, RegQueryValueExA, RegCloseKey, RegDeleteKeyA
> comctl32.dll: -, _TrackMouseEvent
> comdlg32.dll: GetFileTitleA
> gdi32.dll: SetTextJustification, GetBkColor, CreateFontA, GetCharWidthA, DPtoLP, GetMapMode, CombineRgn, SetRectRgn, EnumFontFamiliesExA, CreateHatchBrush, CreateSolidBrush, ExtCreatePen, CreatePen, PlayMetaFile, EnumMetaFile, GetObjectType, PlayMetaFileRecord, SelectPalette, CreatePatternBrush, CreateDIBPatternBrushPt, ExtSelectClipRgn, PolyBezierTo, PolylineTo, PolyDraw, ArcTo, GetCurrentPositionEx, ScaleWindowExtEx, SetWindowExtEx, OffsetWindowOrgEx, SetWindowOrgEx, ScaleViewportExtEx, SetViewportExtEx, OffsetViewportOrgEx, SetViewportOrgEx, Escape, ExtTextOutA, RectVisible, PtVisible, StartDocA, GetWindowExtEx, GetViewportExtEx, SelectClipPath, CreateRectRgn, GetClipRgn, SelectClipRgn, SetColorAdjustment, SetArcDirection, SetMapperFlags, GetPixel, SetTextAlign, MoveToEx, LineTo, OffsetClipRgn, IntersectClipRect, ExcludeClipRect, SetMapMode, ModifyWorldTransform, SetWorldTransform, SetGraphicsMode, SetStretchBltMode, SetROP2, SetPolyFillMode, RestoreDC, SaveDC, PatBlt, CreateRectRgnIndirect, SetBkColor, GetClipBox, GetDCOrgEx, CreateDCA, CopyMetaFileA, GetDeviceCaps, SetPixel, GetCurrentObject, DeleteObject, GetStockObject, GetTextExtentPoint32A, GetTextMetricsA, SetTextColor, SetBkMode, TextOutA, CreateFontIndirectA, GetObjectA, DeleteDC, StretchDIBits, SelectObject, CreateCompatibleDC, CreateCompatibleBitmap, CreateBitmap, BitBlt, SetTextCharacterExtra
> kernel32.dll: CopyFileA, lstrcmpW, GlobalDeleteAtom, GlobalFindAtomA, GlobalAddAtomA, GlobalGetAtomNameA, FreeResource, GetLocaleInfoA, EnumResourceLanguagesA, ConvertDefaultLocale, GetModuleFileNameW, GetThreadLocale, LockFile, UnlockFile, FileTimeToSystemTime, FileTimeToLocalFileTime, GetPrivateProfileIntA, CreateSemaphoreA, ReleaseSemaphore, ReleaseMutex, LocalFileTimeToFileTime, SystemTimeToFileTime, FindResourceExA, GetAtomNameA, TlsGetValue, GlobalReAlloc, GlobalHandle, TlsAlloc, TlsSetValue, LocalReAlloc, TlsFree, GlobalFlags, GetCPInfo, GetOEMCP, RtlUnwind, HeapReAlloc, VirtualQuery, UnhandledExceptionFilter, GlobalSize, IsDebuggerPresent, RaiseException, GetTimeFormatA, GetDateFormatA, HeapSize, GetConsoleCP, GetConsoleMode, GetStartupInfoA, ExitProcess, CreateThread, SetStdHandle, GetACP, IsValidCodePage, FatalAppExitA, GetStdHandle, LCMapStringA, LCMapStringW, GetTimeZoneInformation, GetStringTypeA, GetStringTypeW, GetUserDefaultLCID, EnumSystemLocalesA, IsValidLocale, SetHandleCount, WriteConsoleA, GetConsoleOutputCP, WriteConsoleW, FreeEnvironmentStringsA, GetEnvironmentStrings, FreeEnvironmentStringsW, GetEnvironmentStringsW, QueryPerformanceCounter, SetConsoleCtrlHandler, GetLocaleInfoW, SetEnvironmentVariableA, SetEnvironmentVariableW, FormatMessageA, MulDiv, CreateMutexW, GetCurrentDirectoryW, GlobalLock, GlobalUnlock, ReadFile, WriteProcessMemory, ReadProcessMemory, CreateFileMappingW, CreateFileMappingA, OpenProcess, FindNextFileW, FindNextFileA, FindFirstFileW, DeleteFileW, CreateFileW, VirtualQueryEx, GetSystemDirectoryW, GetCurrentThreadId, CreateToolhelp32Snapshot, OpenThread, Thread32First, TerminateThread, Thread32Next, HeapDestroy, HeapCreate, VirtualProtect, GetPriorityClass, lstrcpyA, SetPriorityClass, GetCurrentProcessId, GetThreadPriority, VirtualProtectEx, DosDateTimeToFileTime, FileTimeToDosDateTime, SetErrorMode, GetFullPathNameW, lstrcpynW, GetModuleHandleW, AreFileApisANSI, lstrcpynA, WritePrivateProfileStringA, GetPrivateProfileStringA, GetFileAttributesW, InterlockedDecrement, LocalAlloc, LocalFree, IsBadReadPtr, lstrcmpA, GetProcessHeap, HeapAlloc, HeapFree, CreateProcessA, TerminateProcess, GetExitCodeProcess, GetCurrentThread, IsBadWritePtr, GetSystemInfo, GlobalAlloc, GlobalFree, GetSystemTimeAsFileTime, CompareFileTime, GetCommandLineA, GetFullPathNameA, FindFirstFileA, FindClose, VirtualAlloc, MoveFileA, GetFileType, CreateEventA, WaitForMultipleObjects, ExitThread, ResetEvent, GetComputerNameA, FreeLibrary, SetThreadPriority, SuspendThread, SetFileAttributesA, GetVolumeInformationA, SetCurrentDirectoryA, SearchPathA, ExpandEnvironmentStringsA, FlushFileBuffers, VirtualFree, InterlockedIncrement, SetFileTime, GetFileTime, GetModuleFileNameA, GetLogicalDrives, GetCurrentProcess, DuplicateHandle, CreateDirectoryA, GetTempFileNameA, MoveFileExA, GetShortPathNameA, GetWindowsDirectoryA, lstrcatA, GetFileSize, MapViewOfFile, UnmapViewOfFile, SetFilePointer, SetEndOfFile, WriteFile, GetTempPathA, GetCurrentDirectoryA, GetTickCount, GetDriveTypeA, GetFileAttributesExA, GetFileAttributesA, DeleteFileA, SetEvent, GetExitCodeThread, CallNamedPipeA, GetSystemDirectoryA, SetLastError, GetSystemPowerStatus, Sleep, LoadLibraryA, CreateFileA, DeviceIoControl, GetVersionExA, WaitForSingleObject, CreateMutexA, GetLocalTime, CloseHandle, GetProcAddress, LeaveCriticalSection, EnterCriticalSection, DeleteCriticalSection, InitializeCriticalSection, ResumeThread, GetModuleHandleA, FindResourceA, LoadResource, LockResource, SizeofResource, GetStringTypeExW, GetStringTypeExA, GetEnvironmentVariableW, GetEnvironmentVariableA, lstrlenA, lstrcmpiW, lstrcmpiA, CompareStringW, CompareStringA, lstrlenW, GetVersion, GetLastError, WideCharToMultiByte, MultiByteToWideChar, SetUnhandledExceptionFilter, InterlockedExchange
> ole32.dll: StringFromCLSID, ReadClassStg, ReadFmtUserTypeStg, OleRegGetUserType, WriteClassStg, CoTreatAsClass, SetConvertStg, CoInitializeEx, CoTaskMemFree, CoCreateInstance, CreateBindCtx, ReleaseStgMedium, CoTaskMemAlloc, OleDuplicateData, CoUninitialize, CoDisconnectObject, StringFromGUID2, CLSIDFromString, WriteFmtUserTypeStg
> oleaut32.dll: -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -
> shell32.dll: SHGetDesktopFolder, SHGetFileInfoA, SHGetPathFromIDListA, SHBrowseForFolderA, ShellExecuteExA, DragQueryFileA, DragFinish, ExtractIconA, ShellExecuteA, SHGetSpecialFolderLocation, SHGetMalloc
> shlwapi.dll: PathFileExistsA, PathFindExtensionA, PathRemoveExtensionA, PathFindFileNameA, PathStripToRootA, StrStrIA, PathIsUNCA
> user32.dll: SetRectEmpty, BringWindowToTop, SetMenu, ShowOwnedPopups, SetCursor, GetMessageA, TranslateMessage, ValidateRect, WindowFromPoint, DestroyMenu, GetMenuItemInfoA, InflateRect, ClientToScreen, GrayStringA, DrawTextExA, TabbedTextOutA, MapVirtualKeyA, GetKeyNameTextA, GetDesktopWindow, CreateDialogIndirectParamA, GetNextDlgTabItem, EndDialog, GetWindowThreadProcessId, PostQuitMessage, ScrollWindowEx, MoveWindow, IsDialogMessageA, IsDlgButtonChecked, SetDlgItemInt, GetDlgItemTextA, GetDlgItemInt, CheckRadioButton, CheckDlgButton, SetMenuItemBitmaps, GetMenuCheckMarkDimensions, CheckMenuItem, SendDlgItemMessageA, WinHelpA, IsChild, SetWindowsHookExA, CallNextHookEx, GetClassLongA, GetClassNameA, GetWindowTextLengthA, GetWindowTextA, GetForegroundWindow, GetLastActivePopup, DispatchMessageA, BeginDeferWindowPos, EndDeferWindowPos, GetTopWindow, DestroyWindow, UnhookWindowsHookEx, GetMessageTime, GetMessagePos, PeekMessageA, MapWindowPoints, ScrollWindow, TrackPopupMenuEx, TrackPopupMenu, GetKeyState, SetScrollRange, InsertMenuItemA, GetScrollPos, GetWindowContextHelpId, EnableWindow, FindWindowExA, SendMessageA, SetForegroundWindow, IsWindowVisible, GetClassInfoExA, GetClassInfoA, AdjustWindowRectEx, EqualRect, DeferWindowPos, CopyRect, GetScrollInfo, SetScrollInfo, GetDlgCtrlID, CallWindowProcA, IntersectRect, SystemParametersInfoA, GetWindow, GetMenuState, GetMenuStringA, GetMenuItemID, InsertMenuA, GetSubMenu, SetPropA, GetCapture, GetActiveWindow, SetWindowPos, GetPropA, RemovePropA, IsWindowEnabled, GetWindowPlacement, SetDlgItemTextA, RegisterClassA, CreateWindowExA, SetWindowLongA, BeginPaint, GetSysColorBrush, FillRect, DrawTextA, EndPaint, GetParent, DefWindowProcA, LoadCursorA, ScreenToClient, GetMenu, ShowScrollBar, SetFocus, SetClassLongA, GetFocus, SetActiveWindow, InvalidateRect, DrawMenuBar, RegisterWindowMessageA, SetWindowTextA, KillTimer, SetTimer, MapDialogRect, LoadAcceleratorsA, ReleaseCapture, LoadMenuA, ReuseDDElParam, UnpackDDElParam, MsgWaitForMultipleObjects, SetCapture, WaitMessage, GetDialogBaseUnits, DeleteMenu, UnregisterClassA, DestroyIcon, GetAsyncKeyState, GetCursorPos, OffsetRect, IsRectEmpty, GetSystemMenu, SetParent, UnionRect, GetDCEx, LockWindowUpdate, GetScrollRange, CharLowerA, CharLowerW, CharUpperA, CharUpperW, ShowWindow, GetDlgItem, LoadIconA, MessageBoxA, GetWindowRect, GetClientRect, LoadImageA, GetSystemMetrics, LoadBitmapA, UpdateWindow, ReleaseDC, GetDC, GetSysColor, CreateMenu, CreatePopupMenu, AppendMenuA, SetRect, PtInRect, SetWindowPlacement, OemToCharA, GetWindowLongA, CharToOemA, wsprintfA, GetWindowDC, TranslateAcceleratorA, IsWindow, ExitWindowsEx, FindWindowA, IsZoomed, IsIconic, PostMessageA, CheckMenuRadioItem, RemoveMenu, ModifyMenuA, GetMenuItemCount, EnableMenuItem, SetScrollPos
> version.dll: GetFileVersionInfoA, GetFileVersionInfoSizeA, VerQueryValueA
> winspool.drv: OpenPrinterA, DocumentPropertiesA, ClosePrinter
( 0 exports )
TrID : File type identification
Windows OCX File (46.2%)
Win64 Executable Generic (32.0%)
Win32 Executable MS Visual C++ (generic) (14.1%)
Win32 Executable Generic (3.1%)
Win32 Dynamic Link Library (generic) (2.8%)
ssdeep: 24576:hbRuMY8hyjq/iwVwMHSIlBm8DMHgxkwg74Jl1OEWbZ5Uwa2lLzZlUlSb2eDBGw/Z:hluBwCIFKgxkwg74JqbXUyc+1h/QE
sigcheck: publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: Doctor Web Ltd.
VeriSign Class 3 Code Signing 2004 CA
Class 3 Public Primary Certification Authority
signing date.: 6:16 PM 3/15/2010
verified.....: -
PEiD : -
packers (F-Prot): Aspack
RDS : NSRL Reference Data Set
-
ce fichier est bon...
si on veut être tout à fait sûr que le pc est ok du point de vue virus, fais un scan sur un de ces sites
Eset (Nod32) en ligne
https://www.eset.com/
bitdefender en ligne :
http://www.bitdefender.fr/scan_fr/scan8/ie.html
Panda en ligne :
http://pandasoftware.fr
Kaspersky en ligne
https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
si on veut être tout à fait sûr que le pc est ok du point de vue virus, fais un scan sur un de ces sites
Eset (Nod32) en ligne
https://www.eset.com/
bitdefender en ligne :
http://www.bitdefender.fr/scan_fr/scan8/ie.html
Panda en ligne :
http://pandasoftware.fr
Kaspersky en ligne
https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
J'ai finit mon scan avec ESET et j'ai eu deux Fichiers a la fin que j'ai supprimer.
Mais je suis sûr que je vais avoir un autre écran bleu ...
Le prochain écran bleu que j'ai, je l'écrit et je le poste ici.
Mais je suis sûr que je vais avoir un autre écran bleu ...
Le prochain écran bleu que j'ai, je l'écrit et je le poste ici.
j'ai eu deux Fichiers a la fin que j'ai supprimer.
as tu les noms , chemins de ces fichiers
un rapport peut être ?
as tu les noms , chemins de ces fichiers
un rapport peut être ?
C'était deux fichiers d'un programme que tu m'avais fait installés..
Mais ça n'était sûrement pas grave.
Par contre j'ai fait un analyse avec BIT DEFENDER en ligne et j'ai eu deux fichiers qui ont été supprimés.
Voici le rapport de BIT DEFENDER (je n'ai pas le rapport de ESET Désolé):
http://www.load.to/XfDbsk72wM/bit.html
J'ai du l'heberger sur ce site car plusieurs sites ne veulent pas ..
Mais ça n'était sûrement pas grave.
Par contre j'ai fait un analyse avec BIT DEFENDER en ligne et j'ai eu deux fichiers qui ont été supprimés.
Voici le rapport de BIT DEFENDER (je n'ai pas le rapport de ESET Désolé):
http://www.load.to/XfDbsk72wM/bit.html
J'ai du l'heberger sur ce site car plusieurs sites ne veulent pas ..
ok
mais prends gardes à la compatibilité des logiciesl ou autre application avec ton exploitation
cela est sujet à plantage
@+
mais prends gardes à la compatibilité des logiciesl ou autre application avec ton exploitation
cela est sujet à plantage
@+
Ok, mais j'avais déjà ce problème avec vista, j'ai donc installé seven par dessus et ça n'a rien changé..
Bonjour,
Commence deja par effacer t'est jeux a tous prix,
C'est tu ce qu'est modio.com ? a effacer aussi !
Enleve aussi tous se qui conserne chat land. tu a un petit trojan de leur faute..
redemare ton ordinateur
et fait une analyse en ligne avec :
https://www.eset.com/int/home/online-scanner/
puis reposte un log:
Commence deja par effacer t'est jeux a tous prix,
C'est tu ce qu'est modio.com ? a effacer aussi !
Enleve aussi tous se qui conserne chat land. tu a un petit trojan de leur faute..
redemare ton ordinateur
et fait une analyse en ligne avec :
https://www.eset.com/int/home/online-scanner/
puis reposte un log:
