bonjour je ne peux me connecter a internet que quelques secondes apres j ai un message de generic host..... voici le rapport hijack merci de votre aide kat Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 08:10:20, on 31/01/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe C:\WINDOWS\system32\winamp.exe C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\explorer.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://google.icq.com/search/search_frame.php R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://google.icq.com R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQToolbar\tbu17\toolbaru.dll O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQToolbar\tbu17\toolbaru.dll O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" O4 - HKLM\..\Run: [Winamp Agent] C:\WINDOWS\system32\winamp.exe O4 - HKLM\..\Run: [Advanced DHTML Enable] C:\WINDOWS\system32\gimryhuy.exe O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user') O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML O8 - Extra context menu item: Add to AMV Converter... - D:\Program Files\MP3 Player Utilities 4.15\AMVConverter\grab.html O8 - Extra context menu item: MediaManager tool grab multimedia file - D:\Program Files\MP3 Player Utilities 4.15\MediaManager\grab.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\SPYBOT~1\SDHelper.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

GENERIC HOST WIN 32 AIDE AIDE AIDE

Réponse 21 / 29

ktherine Messages postés 20 Statut Membre

bon j ai eu le temps de faire tools

voici le rapport

-->- Recherche:

C:\Vundofix backups: trouvé !
C:\Qoobox: trouvé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis: trouvé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis\HijackThis.lnk: trouvé !
C:\Documents and Settings\ktrine\Bureau\HijackThis.lnk: trouvé !
C:\Documents and Settings\ktrine\Bureau\Clean.zip: trouvé !
C:\Documents and Settings\ktrine\Bureau\Msnfix.zip: trouvé !
C:\Documents and Settings\ktrine\Bureau\ComboFix.exe: trouvé !
C:\Documents and Settings\ktrine\Bureau\vundoFix.exe: trouvé !
C:\Documents and Settings\ktrine\Bureau\HJTInstall.exe: trouvé !
C:\Documents and Settings\ktrine\Bureau\MsnFix: trouvé !
C:\Documents and Settings\ktrine\Bureau\clean\clean\tar.exe: trouvé !
C:\Documents and Settings\ktrine\Bureau\clean\clean\remove.reg: trouvé !
C:\Documents and Settings\ktrine\Bureau\clean\clean\pskill.exe: trouvé !
C:\Documents and Settings\ktrine\Bureau\clean\clean\LFiles.exe: trouvé !
C:\Documents and Settings\ktrine\Bureau\clean\clean\gzip.exe: trouvé !
C:\Documents and Settings\ktrine\Bureau\clean\clean\delsiri.cmd: trouvé !
C:\Documents and Settings\ktrine\Bureau\clean\clean\delr.cmd: trouvé !
C:\Documents and Settings\ktrine\Bureau\clean\clean\del3.cmd: trouvé !
C:\Documents and Settings\ktrine\Bureau\clean\clean\del2.cmd: trouvé !
C:\Documents and Settings\ktrine\Bureau\clean\clean\clean.cmd: trouvé !
C:\Documents and Settings\ktrine\Bureau\clean\clean\cherche.cmd: trouvé !
C:\Documents and Settings\ktrine\Bureau\MSNFix\MsnFix: trouvé !
C:\Documents and Settings\ktrine\Bureau\prog\Navilog1.lnk: trouvé !
C:\Program Files\Trend Micro\HijackThis: trouvé !
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: trouvé !
C:\QooBox\Quarantine\C\Combofix: trouvé !

---------------------------------
-->- Suppression:

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis\HijackThis.lnk: supprimé !
C:\Documents and Settings\ktrine\Bureau\HijackThis.lnk: supprimé !
C:\Documents and Settings\ktrine\Bureau\Clean.zip: supprimé !
C:\Documents and Settings\ktrine\Bureau\Msnfix.zip: supprimé !
C:\Documents and Settings\ktrine\Bureau\ComboFix.exe: supprimé !
C:\Documents and Settings\ktrine\Bureau\vundoFix.exe: supprimé !
C:\Documents and Settings\ktrine\Bureau\HJTInstall.exe: supprimé !
C:\Documents and Settings\ktrine\Bureau\clean\clean\tar.exe: supprimé !
C:\Documents and Settings\ktrine\Bureau\clean\clean\remove.reg: supprimé !
C:\Documents and Settings\ktrine\Bureau\clean\clean\pskill.exe: supprimé !
C:\Documents and Settings\ktrine\Bureau\clean\clean\LFiles.exe: supprimé !
C:\Documents and Settings\ktrine\Bureau\clean\clean\gzip.exe: supprimé !
C:\Documents and Settings\ktrine\Bureau\clean\clean\delsiri.cmd: supprimé !
C:\Documents and Settings\ktrine\Bureau\clean\clean\delr.cmd: supprimé !
C:\Documents and Settings\ktrine\Bureau\clean\clean\del3.cmd: supprimé !
C:\Documents and Settings\ktrine\Bureau\clean\clean\del2.cmd: supprimé !
C:\Documents and Settings\ktrine\Bureau\clean\clean\clean.cmd: supprimé !
C:\Documents and Settings\ktrine\Bureau\clean\clean\cherche.cmd: supprimé !
C:\Documents and Settings\ktrine\Bureau\prog\Navilog1.lnk: supprimé !
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: supprimé !
C:\Vundofix backups: supprimé !
C:\Qoobox: supprimé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis: supprimé !
C:\Documents and Settings\ktrine\Bureau\MsnFix: supprimé !
C:\Program Files\Trend Micro\HijackThis: supprimé !

po_ur le reste je le fais ce soir

j ai toujours la fenetre de message erreur de generic mais je fais "ne pas envoyer" et c est bon il ne m embete plus

merci encore

je vous tiens au courant pour bitdefender dans la soirée

++ KAT

Réponse 22 / 29