Probleme explorateur windows sous vista

jéjé -
Utilisateur anonyme - 13 déc. 2009 à 16:11

Help pour un novice de l'info,
voici mon probleme: mon explorateur windows ne repond plus, impossible d'acceder à mon disque dur!!! vista me demande de chercher une solution ou d'essayer de redemarer...mais rien ne se passe

j'ai déjà effectué quelques manip:
-lancer un scan avec F-secure
-lancer un scan avec SUPERAntiSpywar
-et utiliser CCleaner
ils ont détectés des fichiers infectés, que j'ai bien sur supprimés, j'ai rebooté mais le probleme est tjrs present!!!

Donc j'ai utilisé la derniere version de SmitfraudFix:
- (1) recherchej'ai esssayé de generer un rapport mais il ne se passe rien, la fenetre de SmitfraudFix disparait et plus rien...???
- (2) nettoyagej'ai redemaré en mode sans echecs et relancer SmitfraudFix pour un nettoyage et pareil il commence son analyse puis la fenetre disparait et il ne se passe plus rien!!!!????
voila ce qu'il affiche avant que la fenetre ne disparait (il y peut etre des erreurs dans ce texte):
Arret des processus...
chemin d'acces introuvable: C\windows\system32\drivers\etc
recherche VaCfix...
winsock2 Fix...
generic renos Fix...
supression des fichiers infectés...
Puis la fentre se ferme et plus rien

alors j'ai utilisé hijackthis pour essayer d'avoir un rapport d'analyse et le voilà (mais mes connaissances en info s'arrete là, je ne sais pas l'exploiter)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:23:14, on 06/12/2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18828)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files (x86)\Winamp\winampa.exe
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
C:\Program Files (x86)\F-Secure\common\FSM32.EXE
C:\Program Files (x86)\Java\jre6\bin\jusched.exe
C:\Program Files (x86)\F-Secure\FSGUI\fsguidll.exe
C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files (x86)\google\googletoolbar1.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files (x86)\google\googletoolbar1.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe
O4 - HKLM\..\Run: [StartCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [HP Software Update] c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files (x86)\F-Secure\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files (x86)\F-Secure\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [LaunchList] C:\Program Files (x86)\Pinnacle\Studio 11\LaunchList2.exe
O4 - HKCU\..\Run: [Neuf Media Center] "C:\Program Files (x86)\SFR\Media Center\MediaCenter.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Startup: LimeWire On Startup.lnk = C:\Program Files (x86)\LimeWire\LimeWire.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Google Search - res://C:\Program Files (x86)\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Pages liées - res://C:\Program Files (x86)\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://C:\Program Files (x86)\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://C:\Program Files (x86)\Google\GoogleToolbar1.dll/cmcache.html
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\OFFICE11\REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} (ActiveScan 2.0 Installer Class) - http://acs.pandasoftware.com/activescan/cabs/as2stubie.cab
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files (x86)\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Ati External Event Utility - Unknown owner - C:\Windows\system32\Ati2evxx.exe (file missing)
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files (x86)\F-Secure\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Network Request Broker - F-Secure Corporation - C:\Program Files (x86)\F-Secure\Common\FNRB32.EXE
O23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C:\Program Files (x86)\F-Secure\FSAUA\program\fsaua.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files (x86)\F-Secure\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files (x86)\F-Secure\Common\FSMA32.EXE
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PCLEPCI - Pinnacle Systems GmbH - C:\Windows\SysWOW64\drivers\pclepci.sys
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

Afficher la suite

A voir également:

Probleme explorateur windows sous vista
Clé windows 8 - Guide
Windows vista - Télécharger - Divers Utilitaires
Problème démarrage windows 10 - Guide
Explorateur windows - Guide
Montage video gratuit windows - Guide

58 réponses

Réponse 21 / 58

Utilisateur anonyme

https://forums.commentcamarche.net/forum/affich-15494650-probleme-explorateur-windows-sous-vista?page=2#39

jéjé

OK c'est j'ai réussi à le télécharger
je fais la manip et je reviens vers toi

Réponse 22 / 58

Utilisateur anonyme

jéjé

et voilà

############################## | FindyKill V5.021 |

# User : jerome (Administrateurs) # PC-JEROME
# Update on 10/12/2009 by Chiquitine29
# Start at: 10:55:26 | 12/12/2009
# Website : http://pagesperso-orange.fr/NosTools/index.html
# Contact : FindyKill.Contact@gmail.com

# AMD Athlon(tm) 7550 Dual-Core Processor
# Microsoft® Windows Vista™ Édition Familiale Premium (6.0.6002 64-bit) # Service Pack 2
# Internet Explorer 8.0.6001.18828
# Windows Firewall Status : Disabled
# AV : F-Secure Client Security 7.12 7.12 [ Enabled | Updated ]
# FW : F-Secure Client Security 7.12[ Enabled ]7.12

# C:\ # Disque fixe local # 581,65 Go (429,17 Go free) [HP] # NTFS
# D:\ # Disque fixe local # 14,52 Go (2,04 Go free) [FACTORY_IMAGE] # NTFS
# E:\ # Disque CD-ROM
# F:\ # Disque amovible

############################## | Processus actifs |

C:\Windows\SysWOW64\svchost.exe
C:\Program Files (x86)\F-Secure\Anti-Virus\fsgk32st.exe
C:\Program Files (x86)\F-Secure\Common\FSMA32.EXE
C:\Program Files (x86)\F-Secure\Anti-Virus\FSGK32.EXE
C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
C:\Program Files (x86)\F-Secure\Common\FSMB32.EXE
C:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files (x86)\F-Secure\common\FSM32.EXE
C:\Program Files (x86)\Java\jre6\bin\jusched.exe
C:\Program Files (x86)\F-Secure\Anti-Virus\fssm32.exe
C:\Program Files (x86)\F-Secure\Common\FCH32.EXE
C:\Program Files (x86)\F-Secure\Common\FAMEH32.EXE
C:\Program Files (x86)\F-Secure\FSAUA\program\fsaua.exe
C:\Program Files (x86)\F-Secure\Anti-Virus\fsqh.exe
C:\Program Files (x86)\F-Secure\Common\FNRB32.EXE
C:\Program Files (x86)\F-Secure\FWES\Program\fsdfwd.exe
C:\Program Files (x86)\F-Secure\Common\FIH32.EXE
C:\Program Files (x86)\F-Secure\FSGUI\fsguidll.exe
C:\Program Files (x86)\F-Secure\Anti-Virus\fsav32.exe
C:\Program Files (x86)\SUPERAntiSpyware\SUPERAntiSpyware.exe

################## | C: |

################## | C:\Windows |

################## | C:\Windows\system32 |

################## | C:\Windows\system32\drivers |

################## | C:\Users\jerome\AppData\Roaming |

################## | Temporary Internet Files |

################## | Registre / Clés infectieuses |

################## | Etat / Services / Informations |

# Affichage des fichiers cachés : OK

# Mode sans echec : OK

# (!) Uac = 0x0

# Ndisuio -> Start = 3 ( Good = 3 | Bad = 4 )
# EapHost -> Start = 3 ( Good = 2 | Bad = 4 )
# Wlansvc -> Start = 2 ( Good = 2 | Bad = 4 )
# SharedAccess -> Start = 3 ( Good = 2 | Bad = 4 )
# windefend -> Start = 2 ( Good = 2 | Bad = 4 )
# wuauserv -> Start = 2 ( Good = 2 | Bad = 4 )
# wscsvc -> Start = 2 ( Good = 2 | Bad = 4 )

################## | Cracks / Keygens / Serials |

"C:\Program Files (x86)\Pinnacle\Hollywood Fx For Studio\6.0\HfxSerial.exe"
23/02/2007 12:19 |Size 61440 |Crc32 7b4173a4 |Md5 a109b0617b0b17e6fb91727979082d5b

"C:\Users\jerome\Documents\divers\logiciels\Adobe Photoshop Lightroom 2.5 Build 605155 Final + Serials\Adobe Photoshop Lightroom 2.5 Build 605155 Final +Serials\Photoshop Lightroom 2.5\Adobe Photoshop Lightroom 2\setup32.exe"
03/09/2009 21:54 |Size 76184512 |Crc32 2aaff8a2 |Md5 64291b9c445a54b535babd056f072338

"C:\Users\jerome\Documents\divers\logiciels\Adobe Photoshop Lightroom 2.5 Build 605155 Final + Serials\Adobe Photoshop Lightroom 2.5 Build 605155 Final +Serials\Photoshop Lightroom 2.5\Adobe Photoshop Lightroom 2\setup64.exe"
03/09/2009 22:46 |Size 77699032 |Crc32 c22782f1 |Md5 f91400568dff614259b07c786d800c08

"C:\Users\jerome\Documents\divers\logiciels\WinRAR 3.90 FRENCH Final Pr‚activ‚ + Keygen\Keygen.exe"
31/10/2009 10:56 |Size 223744 |Crc32 8b3cf9ed |Md5 e03c57e497bd2e11136206f607c15c8c

"C:\Users\jerome\Documents\LimeWire\Incomplete\ Microsoft Office 2003 Professional Edition (SERIAL INTEGRATED) [blaze69] -\OFFICE\MSDE2000\MSDE2KS3.EXE"
25/11/2009 10:10 |Size 20839474 |Crc32 b4b64bbe |Md5 dbf56718dac294f9e1036a4a90bc24f7

"C:\Users\jerome\Documents\LimeWire\Incomplete\ Microsoft Office 2003 Professional Edition (SERIAL INTEGRATED) [blaze69] -\VISIO\VISIODOC.EXE"
24/11/2009 08:14 |Size 34880512 |Crc32 9e928490 |Md5 e5608a9e2913ed3602f90d83920af2d2

################## | ! Fin du rapport # FindyKill V5.021 ! |

Réponse 23 / 58

Utilisateur anonyme

C:\Program Files (x86)\Pinnacle\Hollywood Fx For Studio
C:\Users\jerome\Documents\divers\logiciels\Adobe Photoshop Lightroom 2.5 Build 605155 Final + Serials
C:\Users\jerome\Documents\divers\logiciels\WinRAR 3.90 FRENCH Final Pr‚activ‚ + Keygen\
C:\Users\jerome\Documents\LimeWire\Incomplete\ Microsoft Office 2003 Professional Edition (SERIAL INTEGRATED) [blaze69] -\

SUPPRIME CES CRACKS !!!!!!

Bon, je pensais pas en arriver là !

Télécharge Spyware Terminator sur ton Bureau !

Installe-le, suis le tuto : https://www.malekal.com/tutorial-et-guide-spywareterminator/
Quand tu arrives a la questions si tu veux des protections, choisi AUCUNE PROTECTION car tu as déjà SUPERAntispyware !

Tu devras peut-être redémarrer !
Ensuite, lance le programme, vas dans l'onglet "MISE A JOUR" et fais-là !
Ensuite, fais un scan COMPLET de ton ordinateur (tous les disques locaux !)

IMPORTANT : Branche tous tes disques amovibles (Clé usb, disques durs externe ect....) que tu utilises AVANT LE SCAN !

Après le scan, supprime tous ce qu'il a trouvé et il devra peut-être redémarrer !

Montre son rapport !
Refait un RSIT après ça !

jéjé

je n'ai pas mis le rapport en entier de spyware terminator
il a détecté 4 fichiers que j'ai suprimé

Logfile of Spyware Terminator v2.6.5.111 (db:3.012.011.000)
Scan Time: 12/12/2009 11:34:01 length: 1524 s
Platform: VISTA (6.0.0.6002)
User: Admin
Boot Mode: Normal
Scan type: Full_Spyware_Scan
Scanned Objects: 76374 (Critical:4)
Filter: No System items, No Safe items, No Invalid items

.....

Threat Files
<RiskTool.Reboot.f> : C:\Users\jerome\Desktop\SmitfraudFix\Reboot.exe
<SPR/Tool.Hardoff.A> : C:\Users\jerome\Desktop\SmitfraudFix\restart.exe
<Adware.Agent.106496.3> : C:\Users\jerome\Documents\divers\DivXPro505GAINBundle.exe

et voilà le RSIT

Logfile of random's system information tool 1.06 (written by random/random)
Run by jerome at 2009-12-12 12:13:04
Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 2
System drive C: has 459 GB (77%) free of 596 GB
Total RAM: 4094 MB (53% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:13:07, on 12/12/2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18828)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files (x86)\F-Secure\common\FSM32.EXE
C:\Program Files (x86)\Java\jre6\bin\jusched.exe
C:\Program Files (x86)\F-Secure\FSGUI\fsguidll.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\PROGRA~2\Crawler\Toolbar\CToolbar.exe
C:\Users\jerome\Desktop\RSIT.exe
C:\Program Files (x86)\trend micro\jerome.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~2\Crawler\Toolbar\ctbr.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files (x86)\google\googletoolbar1.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files (x86)\google\googletoolbar1.dll
O3 - Toolbar: Barre d'outils &Crawler - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~2\Crawler\Toolbar\ctbr.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe
O4 - HKLM\..\Run: [StartCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [HP Software Update] c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files (x86)\F-Secure\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files (x86)\F-Secure\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [SpywareTerminatorUpdate] "C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: &Google Search - res://C:\Program Files (x86)\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Pages liées - res://C:\Program Files (x86)\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://C:\Program Files (x86)\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://C:\Program Files (x86)\Google\GoogleToolbar1.dll/cmcache.html
O13 - Gopher Prefix:
O16 - DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} (ActiveScan 2.0 Installer Class) - http://acs.pandasoftware.com/activescan/cabs/as2stubie.cab
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~2\Crawler\Toolbar\ctbr.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files (x86)\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Ati External Event Utility - Unknown owner - C:\Windows\system32\Ati2evxx.exe (file missing)
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files (x86)\F-Secure\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Network Request Broker - F-Secure Corporation - C:\Program Files (x86)\F-Secure\Common\FNRB32.EXE
O23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C:\Program Files (x86)\F-Secure\FSAUA\program\fsaua.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files (x86)\F-Secure\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files (x86)\F-Secure\Common\FSMA32.EXE
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Unknown owner - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PCLEPCI - Pinnacle Systems GmbH - C:\Windows\SysWOW64\drivers\pclepci.sys
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

Réponse 24 / 58

Utilisateur anonyme

Tu peut le mettre en entier le rapport stp ?
Tu peut le retrouver comme ça :
Ouvre spyware terminator, Analyse Anti-Spyware, Rapports du scan, Clique sur le log, fais "Voir le rapport" et copie-colle le rapport ici

jéjé

et le voilà
Logfile of Spyware Terminator v2.6.5.111 (db:3.012.011.000)
Scan Time: 12/12/2009 11:34:01 length: 1524 s
Platform: VISTA (6.0.0.6002)
User: Admin
Boot Mode: Normal
Scan type: Full_Spyware_Scan
Scanned Objects: 76374 (Critical:4)
Filter: No System items, No Safe items, No Invalid items

Running Processes
svchost.exe [Microsoft Corporation] : C:\Windows\SysWOW64\svchost.exe
fsgk32st.exe [F-Secure Corporation] : C:\Program Files (x86)\F-Secure\Anti-Virus\fsgk32st.exe
FSMA32.EXE [F-Secure Corporation] : C:\Program Files (x86)\F-Secure\common\FSMA32.EXE
fsgk32.exe [F-Secure Corp.] : C:\Program Files (x86)\F-Secure\Anti-Virus\fsgk32.exe
LSSrvc.exe [Hewlett-Packard Company] : C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
FSMB32.EXE [F-Secure Corporation] : C:\Program Files (x86)\F-Secure\common\FSMB32.EXE
FCH32.EXE [F-Secure Corporation] : C:\Program Files (x86)\F-Secure\common\FCH32.EXE
fsqh.exe [F-Secure Corporation] : C:\Program Files (x86)\F-Secure\Anti-Virus\fsqh.exe
FAMEH32.EXE [F-Secure Corporation] : C:\Program Files (x86)\F-Secure\common\FAMEH32.EXE
MSASCui.exe [Microsoft Corporation] : C:\Program Files\Windows Defender\MSASCui.exe
FNRB32.exe [F-Secure Corporation] : C:\Program Files (x86)\F-Secure\common\FNRB32.exe
SmartMenu.exe [Hewlett-Packard] : C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
sidebar.exe [Microsoft Corporation] : C:\Program Files\Windows Sidebar\sidebar.exe
FIH32.exe [F-Secure Corporation] : C:\Program Files (x86)\F-Secure\common\FIH32.exe
fsaua.exe [F-Secure Corporation] : C:\Program Files (x86)\F-Secure\FSAUA\program\fsaua.exe
fssm32.exe [F-Secure Corp.] : C:\Program Files (x86)\F-Secure\Anti-Virus\fssm32.exe
hpsysdrv.exe [Hewlett-Packard] : C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
hpwuSchd2.exe [Hewlett-Packard] : C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe
fsdfwd.exe [F-Secure Corporation] : C:\Program Files (x86)\F-Secure\FWES\program\fsdfwd.exe
fsguidll.exe [F-Secure Corporation] : C:\Program Files (x86)\F-Secure\FSGUI\fsguidll.exe
wmpnscfg.exe [Microsoft Corporation] : C:\Program Files\Windows Media Player\wmpnscfg.exe
wmpnetwk.exe [Microsoft Corporation] : C:\Program Files\Windows Media Player\wmpnetwk.exe
fsav32.exe [F-Secure Corporation] : C:\Program Files (x86)\F-Secure\Anti-Virus\fsav32.exe
HP REMOTE V1.0.5.exe : C:\Program Files\Hewlett-Packard\HP Remote\HP REMOTE V1.0.5.exe
MOM.exe [Advanced Micro Devices Inc.] : C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
CCC.exe [ATI Technologies Inc.] : C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
conime.exe [Microsoft Corporation] : C:\Windows\system32\conime.exe
PresentationFontCache.exe [Microsoft Corporation] : C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
iexplore.exe [Microsoft Corporation] : C:\Program Files (x86)\Internet Explorer\iexplore.exe
iexplore.exe [Microsoft Corporation] : C:\Program Files (x86)\Internet Explorer\iexplore.exe
TrustedInstaller.exe [Microsoft Corporation] : C:\Windows\servicing\TrustedInstaller.exe

Internet Settings
R - HKCU\Software\Microsoft\Internet Explorer\Main, Search Bar = http://www.google.com/toolbar/ie8/sidebar.html
R - HKLM\Software\Microsoft\Internet Explorer\Main, Start Page = https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF
R - HKLM\Software\Microsoft\Internet Explorer\Search, SearchAssistant = http://www.google.com/toolbar/ie8/sidebar.html
R - HKLM\System\CurrentControlSet\Services\Tcpip\Parameters, Domain =

StartUps
04 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, Sidebar : [Microsoft Corporation] : C:\Program Files\Windows Sidebar\sidebar.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, hpsysdrv : [Hewlett-Packard] : C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, HP Software Update : [Hewlett-Packard] : C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, Adobe ARM : [Adobe Systems Incorporated] : C:\Program Files (x86)\Common Files\ADOBE\ARM\1.0\ADOBEARM.EXE
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, F-Secure TNB : [F-Secure Corporation] : C:\Program Files (x86)\F-SECURE\FSGUI\TNBUTIL.EXE

Shell Extensions
MHTML Document - {3050f3d9-98b5-11cf-bb82-00aa00bdce0b} - [Microsoft Corporation] : C:\Windows\SysWOW64\mshtml.dll
HTML Document - {25336920-03f9-11cf-8fd0-00aa00686f13} - [Microsoft Corporation] : C:\Windows\SysWOW64\mshtml.dll
CLSID_PreviewMime - {92dbad9f-5025-49b0-9078-2d78f935e341} - [Microsoft Corporation] : C:\Windows\system32\inetcomm.dll
CLSID_PreviewEmail - {b9815375-5d7f-4ce2-9245-c9d4da436930} - [Microsoft Corporation] : C:\Windows\system32\inetcomm.dll
CLSID_PreviewHtml - {f8b8412b-dea3-4130-b36c-5e8be73106ac} - [Microsoft Corporation] : C:\Windows\system32\inetcomm.dll
Shell Message Handler - {5FA29220-36A1-40f9-89C6-F4B384B7642E} - [Microsoft Corporation] : C:\Windows\system32\inetcomm.dll
Shell DocObject Viewer - {E7E4BC40-E76A-11CE-A9BB-00AA004AE837} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
Internet Shortcut - {FBF23B40-E3F0-101B-8488-00AA003E56F8} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
Microsoft Url History Service - {3C374A40-BAE4-11CF-BF7D-00AA006946EE} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
History - {FF393560-C2A7-11CF-BFF4-444553540000} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
Temporary Internet Files - {7BD29E00-76C1-11CF-9DD0-00A0C9034933} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
Temporary Internet Files - {7BD29E01-76C1-11CF-9DD0-00A0C9034933} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
The Internet - {3DC7A020-0ACD-11CF-A9BB-00AA004AE837} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
IE BandProxy - {73CFD649-CD48-4fd8-A272-2070EA56526B} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
IE Microsoft BrowserBand - {07C45BB1-4A8C-4642-A1F5-237E7215FF66} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
IE Navigation Bar - {43886CD5-6529-41c4-A707-7B3C92C05E68} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
IE Search Band - {30D02401-6A81-11d0-8274-00C04FD5AE38} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
IE Registry Tree Options Utility - {F83DAC1C-9BB9-4f2b-B619-09819DA81B0E} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
IE AutoComplete - {3028902F-6374-48b2-8DC6-9725E775B926} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
IE MRU AutoComplete List - {98FF6D4B-6387-4b0a-8FBD-C5C4BB17B4F8} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
IE Custom MRU AutoCompleted List - {FDE7673D-2E19-4145-8376-BBD58C4BC7BA} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
IE Microsoft History AutoComplete List - {6038EF75-ABFC-4e59-AB6F-12D397F6568D} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
IE Microsoft Shell Folder AutoComplete List - {9D958C62-3954-4b44-8FAB-C4670C1DB4C2} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
IE Microsoft Multiple AutoComplete List Container - {B31C5FAE-961F-415b-BAF0-E697A5178B94} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
IE Shell Band Site Menu - {E6EE9AAC-F76B-4947-8260-A9F136138E11} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
IE Shell Rebar BandSite - {BFAD62EE-9D54-4b2a-BF3B-76F90697BD2A} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
IE Menu Band - {4B78D326-D922-44f9-AF2A-07805C2A3560} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
- {6CF48EF8-44CD-45d2-8832-A16EA016311B} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
&Links - {F2CF5485-4E02-4f68-819C-B92DE9277049} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
IE Fade Task - {1C1EDB47-CE22-4bbb-B608-77B48F83C823} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
IE Tracking Shell Menu - {6B4ECC4F-16D1-4474-94AB-5A763F2A54AE} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
IE Menu Site - {44C76ECD-F7FA-411c-9929-1B77BA77F524} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
IE Menu Desk Bar - {205D7A97-F16D-4691-86EF-F3075DCCA57D} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
- {871C5380-42A0-1069-A2EA-08002B30309D} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
IE RSS Feeds Folder - {9A096BB5-9DC3-4D1C-8526-C3CBF991EA4E} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
Microsoft Web Browser - {8856f961-340a-11d0-a96b-00c04fd705a2} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
ActiveX Cache Folder - {88C6C381-2E85-11D0-94DE-444553540000} - [Microsoft Corporation] : C:\Windows\SysWOW64\occache.dll
Shell Icon Handler for Application References - {E37E2028-CE1A-4f42-AF05-6CEABC4E5D75} - [Microsoft Corporation] : C:\Windows\SysWOW64\dfshim.dll
ShellLink for Application References - {e82a2d71-5b2f-43a0-97b8-81be15854de8} - [Microsoft Corporation] : C:\Windows\SysWOW64\dfshim.dll
WebCheckWebCrawler - {08165EA0-E946-11CF-9C87-00AA005127ED} - [Microsoft Corporation] : C:\Windows\SysWOW64\webcheck.dll
Code Download Agent - {7D559C10-9FE9-11d0-93F7-00AA0059CE02} - [Microsoft Corporation] : C:\Windows\SysWOW64\webcheck.dll
WebCheck SyncMgr Handler - {7FC0B86E-5FA7-11d1-BC7C-00C04FD929DB} - [Microsoft Corporation] : C:\Windows\SysWOW64\webcheck.dll
Subscription Mgr - {ABBE31D0-6DAE-11D0-BECA-00C04FD940BE} - [Microsoft Corporation] : C:\Windows\SysWOW64\webcheck.dll
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - [Microsoft Corporation] : C:\Windows\SysWOW64\webcheck.dll
Subscription Folder - {F5175861-2688-11d0-9C5E-00AA00A45957} - [Microsoft Corporation] : C:\Windows\SysWOW64\webcheck.dll
Shell Extension For Windows Script Host - {60254CA5-953B-11CF-8C96-00AA00B8708C} - [Microsoft Corporation] : C:\Windows\SysWOW64\wshext.dll
Microsoft Agent Character Property Sheet Handler - {143A62C8-C33B-11D1-84FE-00C04FA34A14} - [Microsoft Corporation] : C:\Windows\MSAgent\agentpsh.dll
CompressedFolder - {E88DCCE0-B7B3-11d1-A9F0-00AA0060FA31} - [Microsoft Corporation] : C:\Windows\system32\zipfldr.dll
Compressed (zipped) Folder Right Drag Handler - {BD472F60-27FA-11cf-B8B4-444553540000} - [Microsoft Corporation] : C:\Windows\system32\zipfldr.dll
Compressed (zipped) Folder SendTo Target - {888DCA60-FC0A-11CF-8F0F-00C04FD7D062} - [Microsoft Corporation] : C:\Windows\system32\zipfldr.dll
Compressed (zipped) Folder Context Menu - {b8cdcb65-b1bf-4b42-9428-1dfdb7ee92af} - [Microsoft Corporation] : C:\Windows\system32\zipfldr.dll
Compressed (zipped) Folder DropHandler - {ed9d80b9-d157-457b-9192-0e7280313bf0} - [Microsoft Corporation] : C:\Windows\system32\zipfldr.dll
Windows Photo Gallery Viewer Video Verbs - {E598560B-28D5-46aa-A14A-8A3BEA34B576} - [Microsoft Corporation] : C:\Program Files (x86)\Windows Photo Gallery\PhotoViewer.dll
&Windows Media Player - {0a4286ea-e355-44fb-8086-af3df7645bd9} - [Microsoft Corporation] : C:\Program Files (x86)\Windows Media Player\wmpband.dll
Windows Photo Gallery Viewer Autoplay Handler - {9D687A4C-1404-41ef-A089-883B6FBECDE6} - [Microsoft Corporation] : C:\Windows\system32\RUNDLL32.EXE
Portable Media Devices - {640167b4-59b0-47a6-b335-a6b3c0695aea} - [Microsoft Corporation] : C:\Windows\system32\audiodev.dll
PhotoAcqDropTarget - {00f20eb5-8fd6-4d9d-b75e-36801766c8f1} - [Microsoft Corporation] : C:\Program Files (x86)\Windows Photo Gallery\PhotoAcq.dll
@C:\Windows\SysWOW64\shell32.dll,-30579 - {ED228FDF-9EA8-4870-83B1-96B02CFE0D52} - [Microsoft Corporation] : C:\Windows\SysWOW64\gameux.dll
Windows Photo Gallery Viewer Image Verbs - {FFE2A43C-56B9-4bf5-9A79-CC6D4285608A} - [Microsoft Corporation] : C:\Program Files (x86)\Windows Photo Gallery\PhotoViewer.dll
RichGameMediaThumbnail Class - {4E5BFBF8-F59A-4e87-9805-1F9B42CC254A} - [Microsoft Corporation] : C:\Windows\SysWOW64\gameux.dll
Windows gadget DropTarget - {6b9228da-9c15-419e-856c-19e768a13bdc} - [Microsoft Corporation] : C:\Program Files (x86)\Windows Sidebar\sbdrop.dll
RichGameMediaPropertyStore Class - {ECDD6472-2B9B-4b4b-AE36-F316DF3C8D60} - [Microsoft Corporation] : C:\Windows\SysWOW64\gameux.dll
ShellViewRTF - {7F67036B-66F1-411A-AD85-759FB9C5B0DB} - [XSS] : C:\Program Files (x86)\SMINST\ShellvRTF.dll
IE History and Feeds Shell Data Source for Windows Search - {11016101-E366-4D22-BC06-4ADA335C892B} - [Microsoft Corporation] : C:\Windows\SysWOW64\ieframe.dll
Dossiers Web - {BDEADF00-C265-11D0-BCED-00A0C90AB50F} - [Microsoft Corporation] : C:\Program Files (x86)\Common Files\microsoft shared\Web Folders\MSONSEXT.DLL
Enhanced Storage Data Source - {9113A02D-00A3-46B9-BC5F-9C04DADDD5D7} - [Microsoft Corporation] : C:\Windows\system32\EhStorShell.dll

Shell Service Objects
- {WebCheck} - [Microsoft Corporation] : C:\Windows\SysWOW64\webcheck.dll

Protocol Handler
Microsoft HTML About Pluggable Protocol - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - [Microsoft Corporation] : C:\Windows\SysWOW64\mshtml.dll
CDL: Asychronous Pluggable Protocol Handler - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - [Microsoft Corporation] : C:\Windows\SysWOW64\urlmon.dll
DVD: Pluggable Protocol - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - [Microsoft Corporation] : C:\Windows\SysWOW64\msvidctl.dll
file:, local: Asychronous Pluggable Protocol Handler - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - [Microsoft Corporation] : C:\Windows\SysWOW64\urlmon.dll
ftp: Asychronous Pluggable Protocol Handler - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - [Microsoft Corporation] : C:\Windows\SysWOW64\urlmon.dll
http: Asychronous Pluggable Protocol Handler - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - [Microsoft Corporation] : C:\Windows\SysWOW64\urlmon.dll
https: Asychronous Pluggable Protocol Handler - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - [Microsoft Corporation] : C:\Windows\SysWOW64\urlmon.dll
Microsoft HTML Javascript Pluggable Protocol - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - [Microsoft Corporation] : C:\Windows\SysWOW64\mshtml.dll
file:, local: Asychronous Pluggable Protocol Handler - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - [Microsoft Corporation] : C:\Windows\SysWOW64\urlmon.dll
Microsoft HTML Mailto Pluggable Protocol - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - [Microsoft Corporation] : C:\Windows\SysWOW64\mshtml.dll
MHTML Asynchronous Pluggable Protocol Handler - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - [Microsoft Corporation] : C:\Windows\system32\inetcomm.dll
mk: Asychronous Pluggable Protocol Handler - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - [Microsoft Corporation] : C:\Windows\SysWOW64\urlmon.dll
Microsoft Infotech Storage Protocol for IE 4.0 - {0A9007C0-4076-11D3-8789-0000F8105754} - [Microsoft Corporation] : C:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\msitss.dll
Microsoft HTML Resource Pluggable Protocol - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - [Microsoft Corporation] : C:\Windows\SysWOW64\mshtml.dll
TV: Pluggable Protocol - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - [Microsoft Corporation] : C:\Windows\SysWOW64\msvidctl.dll
Microsoft HTML Javascript Pluggable Protocol - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - [Microsoft Corporation] : C:\Windows\SysWOW64\mshtml.dll

Services
23 - [F-Secure Corporation] : C:\Program Files (x86)\F-Secure\Anti-Virus\minifilter\fsgk.sys
23 - [F-Secure Corporation] : C:\Program Files (x86)\F-Secure\Anti-Virus\fsgk32st.exe
23 - [F-Secure Corporation] : C:\Program Files (x86)\F-Secure\common\FNRB32.exe
23 - [Microsoft Corporation] : C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
23 - [F-Secure Corporation] : C:\Program Files (x86)\F-Secure\FSAUA\program\fsaua.exe
23 - [F-Secure Corporation] : C:\Program Files (x86)\F-Secure\FWES\program\fsdfwd.exe
23 - [F-Secure Corporation] : C:\Program Files (x86)\F-Secure\common\FSMA32.EXE
23 - [F-Secure Corporation] : C:\Program Files (x86)\F-Secure\Anti-Virus\minifilter\fsvista.sys
23 - [Hewlett-Packard Company] : C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
23 - [Microsoft Corporation] : C:\Windows\servicing\TrustedInstaller.exe
23 - [Microsoft Corporation] : C:\Program Files\Windows Media Player\wmpnetwk.exe

Threat Files
<RiskTool.Reboot.f> : C:\Users\jerome\Desktop\SmitfraudFix\Reboot.exe
<SPR/Tool.Hardoff.A> : C:\Users\jerome\Desktop\SmitfraudFix\restart.exe
<Adware.Agent.106496.3> : C:\Users\jerome\Documents\divers\DivXPro505GAINBundle.exe

Advanced Files Report
%SYSDIR%\smss.exe [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\csrss.exe [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®]
%SYSDIR%\lsass.exe [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®]
%SYSDIR%\Ati2evxx.exe [ATI Technologies Inc.] [ATI External Event Utility for Windows]
%SYSDIR%\SLsvc.exe [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®]
%SYSDIR%\spoolsv.exe [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®]
%SYSDIR%\dwm.exe [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®]
%WINDIR%\SysWOW64\svchost.exe [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®] MD5=3794B461C45882E06856F282EEF025AF SIZE=21504
%SYSDIR%\ezsvc7.dll [EasyBits Sofware AS] MD5=1D225A72413F32B5DB69E94FB574D929 SIZE=129584
%SYSDIR%\ezsvc7x.dll [EasyBits Software AS] MD5=EAAE65AADA848D9438BF8AD258DB15DB SIZE=580656
%PROGRAMFILES%\F-Secure\FSPS\program\FSLSP.DLL [F-Secure Corporation] [F-Secure Protocol Scanner LSP] MD5=A5D024168139492B33DD4463DC656CE2 SIZE=179296
%PROGRAMFILES%\F-Secure\Anti-Virus\fsgk32st.exe [F-Secure Corporation] [F-Secure Anti-Virus] MD5=2C521785361B061462D44DA62D4329E5 SIZE=47800
%PROGRAMFILES%\F-Secure\common\FSMA32.EXE [F-Secure Corporation] [F-Secure Management Agent] MD5=39C15E7EF4E3DFE87FE7C1B522A81CCE SIZE=117400
%PROGRAMFILES%\F-Secure\Common\FSPMAPI.dll [F-Secure Corporation] [F-Secure Management Agent] MD5=3F8C105C0457A490ED4736DDE1FC9FC5 SIZE=76440
%PROGRAMFILES%\F-Secure\Common\FSMA32.dll [F-Secure Corporation] [F-Secure Management Agent] MD5=7048C290D75BFCFF1F62097A66AF60D4 SIZE=125592
%PROGRAMFILES%\F-Secure\Anti-Virus\fsgk32.exe [F-Secure Corp.] [F-Secure Corp. fsgk32] MD5=626D53C046656DA6124629DF4BD12366 SIZE=425568
%PROGRAMFILES%\f-secure\common\fsma32s.dll [F-Secure Corporation] [F-Secure Management Agent] MD5=A0E22187E155BD057EF7AD42FD1D4A27 SIZE=125592
%PROGRAMFILES%\F-Secure\Anti-Virus\avperf.dll [F-Secure Corp.] [performance counters] MD5=98387EC7747C492259EF5076E8FCB769 SIZE=54368
%PROGRAMFILES%\F-Secure\Scanner-Interface\fsgkiapi.dll [F-Secure Corp.] [F-Secure Corp. fsgkiapi] MD5=4AF455D386C4FA68DC207F10AE18F5B1 SIZE=82528
%PROGRAMFILES%\F-Secure\HIPS\fships.dll [F-Secure Corporation] [F-Secure System Control] MD5=134D4E980003028E28675BEAB87E9721 SIZE=313952
%PROGRAMFILES%\f-secure\daas\fsclm.dll [F-Secure Corporation] [F-Secure Win32 Crypto Library] MD5=DFCE2822C0EAE7745A978D942B3B35C8 SIZE=305760
%COMMONFILES%\LightScribe\LSSrvc.exe [Hewlett-Packard Company] [LightScribe] MD5=9C0546A363FCF52C4AAC6560A92E88FF SIZE=73728
%COMMONFILES%\LightScribe\LSSProxy.dll [Hewlett-Packard Company] [LightScribe] MD5=C3074ED463F8E7F661382F96307FA0CD SIZE=110592
%COMMONFILES%\LightScribe\LSLog.dll [Hewlett-Packard Company] [LightScribe] MD5=F153597F3B55F1C234CB6C65D406DEEA SIZE=33792
%PROGRAMFILES%\F-Secure\common\FSMB32.EXE [F-Secure Corporation] [F-Secure Management Agent] MD5=CDB6E0485673F922847188BDB1FF5743 SIZE=232088
%PROGRAMFILES%\F-Secure\Common\fsexc.dll [F-Secure Corporation] [F-Secure Management Agent] MD5=8497D5F5B3BC278C272F0F1C99859052 SIZE=43672
%PROGRAMFILES%\F-Secure\common\FCH32.EXE [F-Secure Corporation] [F-Secure Management Agent] MD5=458C0074B7E4648E3D0DC59323866D3C SIZE=125592
%PROGRAMFILES%\F-Secure\Common\FSPMENG.DLL [F-Secure Corporation] [F-Secure Management Agent] MD5=FEC2FFBAE82E65CED6DFED162AE75234 SIZE=113304
%PROGRAMFILES%\F-Secure\Anti-Virus\fsqh.exe [F-Secure Corporation] [F-Secure Anti-Virus] MD5=7CEE0F0CFE3026225EC6743BDD2336CD SIZE=43680
%PROGRAMFILES%\F-Secure\Anti-Virus\Qrt.dll [F-Secure Corporation] [F-Secure Corporation Qrt] MD5=3C08EDF5238888ABF923054DBAEA57FD SIZE=211552
%PROGRAMFILES%\F-Secure\common\FAMEH32.EXE [F-Secure Corporation] [F-Secure Management Agent] MD5=5BC17C6BD9F85A0E28BB49AFA1E7ED38 SIZE=404064
%PROGRAMFILES%\F-Secure\Common\fslapi.dll [F-Secure Corporation] [F-Secure Localization Framework] MD5=C6432A1B39EDBB8151333729A025AA74 SIZE=227936
%PROGRAMFILES%\F-Secure\Common\AMEHEVN.DLL [F-Secure Corporation] [F-Secure Management Agent] MD5=22855690D943B045A9B84ACA6EC063A0 SIZE=68248
%PROGRAMFILES%\F-Secure\Common\AMEHLOG.DLL [F-Secure Corporation] [F-Secure Management Agent] MD5=716C2DBDB884DE07FCDD7AE7CCAEAF7B SIZE=76440
%PROGRAMFILES%\F-Secure\Common\AMEHSMT.DLL [F-Secure Corporation] [F-Secure Management Agent] MD5=84EA86A33A1CDC30FF8E85BE7DFBECEE SIZE=101016
%PROGRAMFILES%\F-Secure\Common\AMEHTVL.DLL [F-Secure Corporation] [F-Secure Management Agent] MD5=30748CF0FAA64B49267449FB574FABD5 SIZE=55960
%SYSDIR%\WUDFHost.exe [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®]
%SystemDiskRoot%\Program Files\Windows Defender\MSASCui.exe [Microsoft Corporation] [Windows Defender] MD5=48DD40677817CE1053C2315F5A87E0D3 SIZE=1584184
%PROGRAMFILES%\F-Secure\common\FNRB32.exe [F-Secure Corporation] [F-Secure Management Agent] MD5=C7360A03EF2258DD82548CD3A84546A0 SIZE=162456
%PROGRAMFILES%\F-Secure\Common\NrbApi.dll [F-Secure Corporation] [F-Secure Management Agent] MD5=30DB9EBA0383B6085E6AFD01F7CC7A1A SIZE=117400
%PROGRAMFILES%\F-Secure\Common\NaCoL.dll [F-Secure Corporation] [F-Secure Management Agent] MD5=012D0BED4DBDF07D373FF06CDCDAF99E SIZE=146072
%PROGRAMFILES%\F-Secure\Common\FSMSCl.dll [F-Secure Corporation] [F-Secure Management Agent] MD5=0476A3FF5E75A8F62842762D01B482D8 SIZE=244376
%SystemDiskRoot%\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [Hewlett-Packard] [HP MediaSmart] MD5=FCDD17FED4E599355BE149ED0AD8C4AE SIZE=915512
%PROGRAMFILES%\F-Secure\common\FIH32.exe [F-Secure Corporation] [F-Secure Management Agent] MD5=B18F2644B284D4BBF623C4DB6F294648 SIZE=101016
%PROGRAMFILES%\F-Secure\FSAUA\program\fsaua.exe [F-Secure Corporation] [F-Secure Automatic Update Agent] MD5=21BD075CE4BF71A955979C441656CB03 SIZE=461408
%PROGRAMFILES%\F-Secure\Anti-Virus\fssm32.exe [F-Secure Corp.] [F-Secure Corp. fssm32] MD5=CB7E3C8A3F87148382AB5451687BA8A0 SIZE=512096
%PROGRAMFILES%\F-Secure\Anti-Virus\FM4AV.dll [F-Secure Corporation] [File Management Library] MD5=C1F2CF4CAD435E5283B4AA47AE18C5CA SIZE=495200
%PROGRAMFILES%\F-Secure\Anti-Virus\avpproxy.dll [F-Secure Corporation] [F-Secure Anti-Virus] MD5=B92C55D8DAD057A9C80336FA331D0762 SIZE=84656
%PROGRAMFILES%\F-Secure\Anti-Virus\avpfpi0.dll [Kaspersky Lab] [Kaspersky Anti-Virus] MD5=D163ADF4BAB231B90A3A872178FDD152 SIZE=154296
%PROGRAMFILES%\F-Secure\Anti-Virus\avp_iont.dll [Kaspersky Labs] [Kaspersky Anti-Virus] MD5=B3427AA6191E58E454430A127E3B9331 SIZE=41680
%PROGRAMFILES%\F-Secure\Anti-Spyware\LSSE.DLL [Lavasoft AB] [Lavasoft Anti-Spyware Engine] MD5=E4BB0D315D9ADF081EE0E53503563988 SIZE=223840
%PROGRAMFILES%\F-Secure\Gemini\fsgem.dll [F-Secure Corporation] MD5=713CB3D98BAE823A9B64E4045F74B0EB SIZE=72288
%PROGRAMFILES%\F-Secure\Gemini\fsgeme.dll [F-Secure Corporation] [Gemini engine] MD5=E01983026E2A3DEC3F49A099114FD3EF SIZE=2153080
%PROGRAMFILES%\F-Secure\Anti-Virus\fslfpi.dll [F-Secure Corporation] [F-Secure Anti-Virus] MD5=23F953922C4E8B41BE6ED98B494DE711 SIZE=244400
%PROGRAMFILES%\F-Secure\Anti-Virus\dffpi.dll [F-Secure Corporation] [F-Secure Anti-Virus] MD5=1A91DF5AF3083858862C8A6032FA2E5D SIZE=55904
%PROGRAMFILES%\F-Secure\Pegasus\fpinor.dll [F-Secure Corporation] [F-Secure Pegasus] MD5=DDB4F76A1E500FFBF6172B369B481C00 SIZE=120416
%PROGRAMFILES%\F-Secure\Anti-Virus\fsuss.dll [F-Secure Corporation] [F-Secure Universal System Scan, Proxy] MD5=B932EF3F092E22558E5161F3CEBCFA8E SIZE=109152
%PROGRAMFILES%\F-Secure\Pegasus\NSE_W32.DLL [Norman ASA] [Norman Scanner Engine] MD5=7D47F351F6CF2F71E7E1B42B515ECE8D SIZE=122032
%PROGRAMFILES%\F-Secure\Anti-Virus\fsusscr.dll [F-Secure Corporation] [F-Secure Universal System Scan, Core] MD5=204E95BF328991E55F9DBB87EBFFDA9C SIZE=891488
%PROGRAMFILES%\F-Secure\Anti-Virus\avpfpi1.dll [Kaspersky Lab] [Kaspersky Anti-Virus] MD5=D163ADF4BAB231B90A3A872178FDD152 SIZE=154296
%PROGRAMFILES%\F-Secure\FSGUI\about.dll MD5=D5435DD330F3D6456D7722D61F1EFFA4 SIZE=666208
%PROGRAMFILES%\F-Secure\common\fsmres.eng [F-Secure Corporation] [F-Secure Management Agent] MD5=DB0574A023D86FD26107796181C79AA1 SIZE=131072
%PROGRAMFILES%\F-Secure\FSGUI\fsmuiav.dll [F-Secure Corporation] [F-Secure] MD5=9E84E064E83FD2B16838965812E6B0A8 SIZE=1071712
%PROGRAMFILES%\F-Secure\FSGUI\FSAVURES.ENG MD5=E328753170FACF6D6B0F6DA5CFB9D72A SIZE=26624
%PROGRAMFILES%\f-secure\tnb\fstnb.dll [F-Secure Corporation] [F-Secure TNB] MD5=B28EA572BBAB589403545D64CE05D800 SIZE=146016
%PROGRAMFILES%\F-Secure\FSGUI\aboutres.dll MD5=994230A8BA244BAA0E1CFF61D1E4ECBF SIZE=195168
%PROGRAMFILES%\F-Secure\FSAUA\program\fsauainfo.dll [F-Secure Corporation] [F-Secure Automatic Update Agent] MD5=7F51801D00DFB7F8A2CAF8FA0BC1CFFB SIZE=125536
%PROGRAMFILES%\F-Secure\FSGUI\guilaunc.dll [F-Secure Corporation] [F-Secure] MD5=9C1762337607270543C2CDE553491894 SIZE=309856
%PROGRAMFILES%\F-Secure\FSGUI\strres.eng MD5=84350F5382765315CDA8F96980E4E993 SIZE=69632
%PROGRAMFILES%\F-Secure\Common\fsmaui32.dll [F-Secure Corporation] [F-Secure Management Agent] MD5=E8640D875A2C2DC24E70BB704B7E30F8 SIZE=375448
%PROGRAMFILES%\F-Secure\common\fsmaures.eng [F-Secure Corporation] [F-Secure Management Agent] MD5=937F6E8E52CF8926EDE01D3B54DEBBAB SIZE=13312
%PROGRAMFILES%\F-Secure\FWES\program\fsdfwd.exe [F-Secure Corporation] [F-Secure Internet Shield] MD5=329B96D8F79D56050D4AE50E6DB0FBCB SIZE=465504
%PROGRAMFILES%\F-Secure\FWES\Program\fsmirror.dll [F-Secure Corporation] [F-Secure Anti-Virus® E-Mail Scanning] MD5=24B960BB52EEFD183F9438B6BDF7EB87 SIZE=211552
%PROGRAMFILES%\F-Secure\FWES\Program\fsesperf.dll [F-Secure Corporation] [F-Secure Anti-Virus® E-Mail Scanning] MD5=702E7AFF965EE528F66639FC5663C86D SIZE=76384
%PROGRAMFILES%\F-Secure\Common\fsdfwres.eng [F-Secure Corporation] [F-Secure Internet Shield] MD5=262A0C41061975B52BF475CDB98241FF SIZE=7680
%PROGRAMFILES%\f-secure\common\fswscs.dll [F-Secure Corporation] [F-Secure Windows Security Center Suport] MD5=586A3EC64C4E71A23D5572904A06F568 SIZE=39520
%PROGRAMFILES%\f-secure\fsaua\program\fsaua_api_dll.dll [F-Secure Corporation] [F-Secure Automatic Update Agent] MD5=D96778BCB22E011383FDC1E4C6ED2DC6 SIZE=141920
%PROGRAMFILES%\F-Secure\FWES\Program\fsfwperf.dll [F-Secure Corporation] [F-Secure Internet Shield] MD5=EF210A3B37181DB44B59B541A0889425 SIZE=76384
%PROGRAMFILES%\F-Secure\FSGUI\fsguidll.exe [F-Secure Corporation] [F-Secure] MD5=894B8B73E011C1E1477D619B8365D28F SIZE=473696
%PROGRAMFILES%\F-Secure\FSGUI\guiplugn.dll [F-Secure Corporation] [F-Secure] MD5=EA774CC39C08DD5C118DAA345C594DD5 SIZE=584288
%PROGRAMFILES%\F-Secure\FSGUI\flyer.dll [F-Secure Corporation] [F-Secure] MD5=0B51B42AB8B2594F3DA1EEFA7E21E00C SIZE=1198688
%PROGRAMFILES%\F-Secure\FSGUI\fsavesui.dll [F-Secure Corporation] [F-Secure] MD5=5BC7361DDA581693672218D550F2059A SIZE=776800
%PROGRAMFILES%\F-Secure\FSGUI\flyerres.eng MD5=B11F69B5B2F04504CE062319BA087CB2 SIZE=155648
%PROGRAMFILES%\F-Secure\FSGUI\gres.dll MD5=BEE4F800D6DD62125848BE9FF12761A2 SIZE=178784
%SystemDiskRoot%\Program Files\Windows Media Player\wmpnscfg.exe [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®] MD5=B6A7E7F43234BFA6A8E6CC4110CB9448 SIZE=239104
%SystemDiskRoot%\Program Files\Windows Media Player\wmpnetwk.exe [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®] MD5=56382A5EB85A25446745E3BD6D50A3A5 SIZE=1216000
%PROGRAMFILES%\F-Secure\Anti-Virus\fsav32.exe [F-Secure Corporation] [F-Secure Anti-Virus] MD5=16E355CC0390109AB979A7DA8DC8C777 SIZE=325216
%PROGRAMFILES%\F-Secure\Anti-Virus\FSCHED.dll [F-Secure Corporation] [F-Secure Anti-Virus] MD5=E5DD52792ACDDADCC9E464567AD79F1A SIZE=56928
%PROGRAMFILES%\F-Secure\Anti-Virus\FSTSM.DLL [F-Secure Corporation] [F-Secure common component] MD5=EAB667E709EBD993790AE3F3472B92F8 SIZE=160352
%PROGRAMFILES%\F-Secure\Anti-Virus\FSAVHRES.eng MD5=3140344A83AD26B71D5D588F0D3A6E6A SIZE=36352
%SystemDiskRoot%\Program Files\Hewlett-Packard\HP Remote\HP REMOTE V1.0.5.exe MD5=B5C8C8E5D9B803BD3FA5A3BB048DAB9E SIZE=172032
%PROGRAMFILES%\ATI Technologies\ATI.ACE\Core-Static\MOM.exe [Advanced Micro Devices Inc.] [Catalyst Control Centre] MD5=6B87742F27B087AF7FD4ADC2DB685DE0 SIZE=49152
%PROGRAMFILES%\ATI Technologies\ATI.ACE\Core-Static\CCC.exe [ATI Technologies Inc.] [Catalyst Control Centre] MD5=4C08FB7ACB28689B586D986D3F5826CF SIZE=49152
%SYSDIR%\conime.exe [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=6080A176D09435FC8E6E800996656E18 SIZE=69120
%WINDIR%\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe [Microsoft Corporation] [Microsoft® .NET Framework] MD5=BC5B0BE5AF3510B0FD8C140EE42C6D3E SIZE=42840
%PROGRAMFILES%\Internet Explorer\iexplore.exe [Microsoft Corporation] [Windows® Internet Explorer] MD5=2E48756F12C21F46895036AC089AAD97 SIZE=638232
%PROGRAMFILES%\Microsoft Silverlight\3.0.40818.0\npctrl.dll [Microsoft Corporation] [Silverlight Plug-In] MD5=11B27E47D0217C20BFF2490AB657BE67 SIZE=876872
%WINDIR%\SysWow64\Macromed\Flash\Flash10a.ocx [Adobe Systems, Inc.] [Shockwave Flash] MD5=466C1355934925768822E380DA6E6E4A SIZE=3789728
%SYSDIR%\atiumdag.dll [ATI Technologies Inc.] [ATI Technologies Inc. Radeon DirectX Universal Driver] MD5=522457E0FB7D4F4E219C9A650C985F0D SIZE=3902976
%SYSDIR%\atiumdva.dll [ATI Technologies Inc.] [ATI Technologies Inc. Radeon Video Acceleration Universal Driver] MD5=DDAAC6EF1F2769302122DA28CCB03EA8 SIZE=4905472
%WINDIR%\servicing\TrustedInstaller.exe [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®] MD5=66328B08EF5A9305D8EDE36B93930369 SIZE=42496
%PROGRAMFILES%\Pinnacle\Studio 11\LaunchList2.exe
%WINDIR%\SysWOW64\mshtml.dll [Microsoft Corporation] [Windows® Internet Explorer] MD5=9BFB2F7C3A2F626040C4EB8CE5C6ED2A SIZE=5939712
%SYSDIR%\inetcomm.dll [Microsoft Corporation] [Microsoft® Windows® Operating System] MD5=AC9415A1AF0F49570F7515A7131AE2E1 SIZE=738816
%WINDIR%\SysWOW64\ieframe.dll [Microsoft Corporation] [Windows® Internet Explorer] MD5=2D431D2BF1EECE14AF8BC9FF14E67FB0 SIZE=11069440
%WINDIR%\SysWOW64\occache.dll [Microsoft Corporation] [Windows® Internet Explorer] MD5=142EFDA51D80AEB99EB16D4015D4B271 SIZE=206848
%WINDIR%\SysWOW64\dfshim.dll [Microsoft Corporation] [Microsoft® .NET Framework] MD5=2D82E6A9D1F8095F81BDDA21E369D3D2 SIZE=93512
%WINDIR%\SysWOW64\webcheck.dll [Microsoft Corporation] [Windows® Internet Explorer] MD5=CC8915DB4E33E8FB29CA0D2DBF75306E SIZE=236544
%WINDIR%\SysWOW64\wshext.dll [Microsoft Corporation] [Microsoft (R) Windows Script Host] MD5=9C50130E941A24805A608E6F3D2A3C8F SIZE=90112
%WINDIR%\MSAgent\agentpsh.dll [Microsoft Corporation] [Microsoft Agent Property Sheet Handler] MD5=F0B6186AEB591642784D6FFDC2D625BC SIZE=30720
%SYSDIR%\zipfldr.dll [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®] MD5=7D80F287AEEDD39C03E118E0EBD3311E SIZE=342528
%PROGRAMFILES%\Windows Photo Gallery\PhotoViewer.dll [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®] MD5=EDEB29C82E4B4671F99D68C9E0ECBD29 SIZE=2323968
%PROGRAMFILES%\Windows Media Player\wmpband.dll [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®] MD5=2AC2716E2083A949437CEDB2B6A2E89A SIZE=99328
%SYSDIR%\RUNDLL32.EXE [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®] MD5=4B555106290BD117334E9A08761C035A SIZE=44544
%SYSDIR%\audiodev.dll [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®] MD5=67C30FAFA58BD7E02A9DA8BE28512934 SIZE=244224
%PROGRAMFILES%\Windows Photo Gallery\PhotoAcq.dll [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®] MD5=DE42924E95D459EDE6F82136951B4590 SIZE=1030144
%WINDIR%\SysWOW64\gameux.dll [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®] MD5=9B8F915F1DA844B94700868520C239ED SIZE=1696768
%COMMONFILES%\microsoft shared\ink\TipBand.dll
%PROGRAMFILES%\Windows Sidebar\sbdrop.dll [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®] MD5=A74701976D6D75099B9FCA993685C452 SIZE=66048
%PROGRAMFILES%\SMINST\ShellvRTF.dll [XSS] [XSS ShellvRTF] MD5=77BE2755D74B2129174ADAE629B164DB SIZE=257920
%PROGRAMFILES%\Pinnacle\Studio 11\programs\BlueShellExt.dll
%COMMONFILES%\microsoft shared\Web Folders\MSONSEXT.DLL [Microsoft Corporation] [SharePoint Portal Server] MD5=32E82A0C6D4272407DC8547354EFA42B SIZE=1293008
%SYSDIR%\EhStorShell.dll [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®] MD5=14E4470BF8ACA69A85D741BA99F75F96 SIZE=114176
%SYSDIR%\drivers\acpi.sys [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®]
%SYSDIR%\svchost.exe -k netsvcs
%SYSDIR%\drivers\afd.sys [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®]
%SYSDIR%\DRIVERS\atikmdag.sys [ATI Technologies Inc.] [ATI Radeon Family]
%SYSDIR%\svchost.exe -k LocalSystemNetworkRestricted
%SYSDIR%\svchost.exe -k LocalServiceNetworkRestricted
%SYSDIR%\svchost.exe -k LocalServiceNoNetwork
%SYSDIR%\DRIVERS\bowser.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\cdrom.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\CLFS.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\drivers\crcdisk.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\svchost.exe -k NetworkService
%SYSDIR%\svchost.exe -k DcomLaunch
%SYSDIR%\Drivers\dfsc.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\drivers\disk.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\drivers\dxgkrnl.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\drivers\ecache.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\svchost.exe -k LocalService
%PROGRAMFILES%\F-Secure\Anti-Virus\minifilter\fsgk.sys [F-Secure Corporation] [F-Secure Gatekeeper] MD5=41530327EA28DB396157B33A2F2FE7B9 SIZE=98400
%SYSDIR%\drivers\fileinfo.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\drivers\fltmgr.sys [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®]
%SYSDIR%\drivers\fses.sys
%PROGRAMFILES%\F-Secure\Anti-Virus\minifilter\fsvista.sys [F-Secure Corporation] [F-Secure Vista support driver] MD5=E6C9CC125DBF7EB23A2166ED277D33A3 SIZE=13408
%SYSDIR%\svchost.exe -k GPSvcGroup
%SYSDIR%\drivers\HdAudio.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\HDAudBus.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\hidusb.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\drivers\RTKVHD64.sys
%SYSDIR%\DRIVERS\msiscsi.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\kbdclass.sys [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®]
%SYSDIR%\DRIVERS\kbdhid.sys [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®]
%SYSDIR%\DRIVERS\KMWDFILTER.sys [Windows (R) Codename Longhorn DDK provider] [Windows (R) Codename Longhorn DDK driver]
%SYSDIR%\Drivers\ksecdd.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\drivers\ksthunk.sys
%SYSDIR%\DRIVERS\lltdio.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\drivers\luafv.sys [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®]
%SYSDIR%\DRIVERS\monitor.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\mouclass.sys [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®]
%SYSDIR%\DRIVERS\mouhid.sys [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®]
%SYSDIR%\drivers\mountmgr.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\drivers\mpsdrv.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\drivers\mrxdav.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\mrxsmb.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\mrxsmb10.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\mrxsmb20.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\drivers\msisadrv.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\mssmbios.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\Drivers\mup.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\nwifi.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\drivers\ndis.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\ndistapi.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\ndisuio.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\ndiswan.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\netbios.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\netbt.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\netr7364.sys [Ralink Technology, Corp.] [Ralink 802.11 Wireless Adapters]
%SYSDIR%\drivers\nsiproxy.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\nvmfdx64.sys
%SYSDIR%\drivers\nvraid.sys [NVIDIA Corporation] [NVIDIA nForce(TM) RAID Driver]
%SYSDIR%\drivers\nvstor64.sys [NVIDIA Corporation] [NVIDIA nForce(TM) SATA Driver]
%SYSDIR%\drivers\partmgr.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\drivers\pavboot64.sys [Panda Security, S.L.]
%SYSDIR%\drivers\pci.sys [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®]
%SYSDIR%\drivers\peauth.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\svchost.exe -k NetworkServiceNetworkRestricted
%SYSDIR%\DRIVERS\raspptp.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\processr.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\pacer.sys [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®]
%SYSDIR%\DRIVERS\rasacd.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\rasl2tp.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\raspppoe.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\rassstp.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\rdbss.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\RDPCDD.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\drivers\rdpencdd.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\svchost.exe -k rpcss
%SYSDIR%\DRIVERS\rspndr.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\drivers\RTSTOR64.SYS [Realtek Semiconductor Corp.] [Realtek USB Mass Storage Driver for Vista x64]
%SYSDIR%\DRIVERS\smb.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\srv.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\srv2.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\srvnet.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\svchost.exe -k imgsvc
%SYSDIR%\DRIVERS\swenum.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\drivers\tcpip.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\drivers\tcpipreg.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\tdx.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\termdd.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\tunnel.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\umbus.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\usbccgp.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\usbehci.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\usbhub.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\DRIVERS\usbohci.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\drivers\vga.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\drivers\volmgr.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\drivers\volmgrx.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\drivers\volsnap.sys [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®]
%SYSDIR%\DRIVERS\wanarp.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\drivers\Wdf01000.sys [Microsoft Corporation] [Système d'exploitation Microsoft® Windows®]
%SYSDIR%\svchost.exe -k WerSvcGroup
%SYSDIR%\svchost.exe -k secsvcs
%SYSDIR%\SearchIndexer.exe \Embedding
%SYSDIR%\DRIVERS\WUDFRd.sys [Microsoft Corporation] [Microsoft® Windows® Operating System]
%SYSDIR%\mscoree.dll [Microsoft Corporation] [Microsoft® .NET Framework] MD5=363C34FB89B8ED269659270FB06BEC9F SIZE=278848
%WINDIR%\SysWOW64\urlmon.dll [Microsoft Corporation] [Windows® Internet Explorer] MD5=86DD5DBBD2826ED13FE60CFF47AC3B85 SIZE=1208832
%WINDIR%\SysWOW64\msvidctl.dll [Microsoft Corporation] [DirectShow] MD5=73F97C8899429EFAEE8C8944DCC08C2E SIZE=1544704
%COMMONFILES%\Microsoft Shared\Information Retrieval\msitss.dll [Microsoft Corporation] [Microsoft(R) Infotech Information Storage System Library] MD5=BBFF7F0AC61F8A29241BC00B3785CCB0 SIZE=230760

End of Report

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question

Réponse 25 / 58

Utilisateur anonyme

Télécharge OTMoveIt https://www.luanagames.com/index.fr.html (de Old_Timer) sur ton Bureau.
double-clique sur OTMoveIt.exe pour le lancer.
Assure toi que la case Unregister Dll's and Ocx's soit bien cochée
copie la liste qui se trouve en gras ci-dessous,
et colle-la dans le cadre de gauche de OTMoveIt :Paste List of Files/Folders to be moved.
C:\Program Files\Pinnacle\Hollywood Fx For Studio
C:\Users\jerome\Documents\divers\logiciels\Adobe Photoshop Lightroom 2.5 Build 605155 Final + Serials
C:\Users\jerome\Documents\divers\logiciels\WinRAR 3.90 FRENCH Final Pr‚activ‚ + Keygen\
C:\Users\jerome\Documents\LimeWire\Incomplete\ Microsoft Office 2003 Professional Edition (SERIAL INTEGRATED) [blaze69] -\

Et fait MoveIt!

Montre le rapport qui s'affiche ensuite !

jéjé

il m'afficeh un msg d"erreur
cannot create files C:\_OTMoveIt\MovedFiles\12122009_123347.log

Réponse 26 / 58

Utilisateur anonyme

Ce n'est pas un message d'erreur ! Post le rapport qui est ici : C:\_OTMoveIt\MovedFiles\12122009_123347.log

jéjé

petit souci je n'arrive pas à le retrouver
je suis désolé jsuis vraiment nul

Réponse 27 / 58

Utilisateur anonyme

Non, non, c'est moi^^

Double-clique sur OTMoveIt.exe pour le lancer.
Assure toi que la case Unregister Dll's and Ocx's soit bien cochée
copie la liste qui se trouve en gras ci-dessous,
et colle-la dans le cadre de gauche de OTMoveIt :Paste List of Files/Folders to be moved.
C:\Windows\system32\IEDFix.exe
C:\Windows\system32\IEDFix.C.exe
C:\Windows\system32\404Fix.exe
C:\Windows\system32\Agent.OMZ.Fix.exe
C:\Windows\system32\dumphive.exe
C:\Windows\system32\o4Patch.exe
C:\Windows\system32\SrchSTS.exe
C:\Windows\system32\VACFix.exe
C:\Windows\system32\VCCLSID.exe
C:\Windows\system32\WS2Fix.exe

Et fait MoveIt!

Montre le rapport si il s'affiche sinon, ce n'est pas grave !

Refait un RSIT ensuite !

jéjé

OTMoveIt:
results
C:\Windows\system32\IEDFix.exe moved successfully.
C:\Windows\system32\IEDFix.C.exe moved successfully.
C:\Windows\system32\404Fix.exe moved successfully.
C:\Windows\system32\Agent.OMZ.Fix.exe moved successfully.
C:\Windows\system32\dumphive.exe moved successfully.
C:\Windows\system32\o4Patch.exe moved successfully.
C:\Windows\system32\SrchSTS.exe moved successfully.
C:\Windows\system32\VACFix.exe moved successfully.
C:\Windows\system32\VCCLSID.exe moved successfully.
C:\Windows\system32\WS2Fix.exe moved successfully.

Created on 12/12/2009 12:53:55

et RSIT

Logfile of random's system information tool 1.06 (written by random/random)
Run by jerome at 2009-12-12 12:55:33
Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 2
System drive C: has 445 GB (75%) free of 596 GB
Total RAM: 4094 MB (51% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:55:34, on 12/12/2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18828)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files (x86)\F-Secure\common\FSM32.EXE
C:\Program Files (x86)\Java\jre6\bin\jusched.exe
C:\Program Files (x86)\F-Secure\FSGUI\fsguidll.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\PROGRA~2\Crawler\Toolbar\CToolbar.exe
C:\Users\jerome\Desktop\RSIT.exe
C:\Program Files (x86)\trend micro\jerome.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~2\Crawler\Toolbar\ctbr.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files (x86)\google\googletoolbar1.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files (x86)\google\googletoolbar1.dll
O3 - Toolbar: Barre d'outils &Crawler - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~2\Crawler\Toolbar\ctbr.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe
O4 - HKLM\..\Run: [StartCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [HP Software Update] c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files (x86)\F-Secure\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files (x86)\F-Secure\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [SpywareTerminatorUpdate] "C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: &Google Search - res://C:\Program Files (x86)\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Pages liées - res://C:\Program Files (x86)\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://C:\Program Files (x86)\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://C:\Program Files (x86)\Google\GoogleToolbar1.dll/cmcache.html
O13 - Gopher Prefix:
O16 - DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} (ActiveScan 2.0 Installer Class) - http://acs.pandasoftware.com/activescan/cabs/as2stubie.cab
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~2\Crawler\Toolbar\ctbr.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files (x86)\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Ati External Event Utility - Unknown owner - C:\Windows\system32\Ati2evxx.exe (file missing)
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files (x86)\F-Secure\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Network Request Broker - F-Secure Corporation - C:\Program Files (x86)\F-Secure\Common\FNRB32.EXE
O23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C:\Program Files (x86)\F-Secure\FSAUA\program\fsaua.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files (x86)\F-Secure\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files (x86)\F-Secure\Common\FSMA32.EXE
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Unknown owner - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PCLEPCI - Pinnacle Systems GmbH - C:\Windows\SysWOW64\drivers\pclepci.sys
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

Réponse 28 / 58

Utilisateur anonyme

Est-ce que il y a du changement sur le pc ? (plus rapide, va mieux ect.....)

jéjé

cela me semble pas mal j'ai denouveau accès à mon exploreur windows...ça semble fonctionner normalement
je vais rebooter mon ordi et te dire si je rencontre des problèmes

Réponse 29 / 58

Utilisateur anonyme

Ce n'est pas fini, je vérifie un truc :
Fais ça : https://forums.commentcamarche.net/forum/affich-15494650-probleme-explorateur-windows-sous-vista?page=2#36

jéjé

aie toujours pas de rapport SmitfraudFix (meme erreur qu'avant)???

Réponse 30 / 58

Utilisateur anonyme

Bon, puisque que tu as accès a l'explorer, vérifie que l'UAC est bien DÉSACTIVER
Tuto : https://forum.malekal.com/viewtopic.php?t=6517&start=

Si il n'est pas désactiver, désactive le !!!!

jéjé

il est bien désactivé

Réponse 31 / 58

Utilisateur anonyme

Attend, je vais manger^^
Fais un scan rapide avec MalwareBytes anti-malware

jéjé

bon ap

jéjé > jéjé

rien trouvé avce scan rapide

Malwarebytes' Anti-Malware 1.42
Version de la base de données: 3346
Windows 6.0.6002 Service Pack 2
Internet Explorer 8.0.6001.18828

12/12/2009 13:27:17
mbam-log-2009-12-12 (13-27-17).txt

Type de recherche: Examen rapide
Eléments examinés: 87960
Temps écoulé: 2 minute(s), 46 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)

jéjé > jéjé

j'ai réussi !!!
le rapport générer par SmitFraudFix v2.424 ne s'affichait pas je suis allé le chercher
voilà le rapport

SmitFraudFix v2.424

Rapport fait à 13:30:50,73, 12/12/2009
Executé à partir de C:\Users\jerome\Desktop\SmitfraudFix
OS: Microsoft Windows [version 6.0.6002] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode normal

»»»»»»»»»»»»»»»»»»»»»»»» Process

C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe
C:\PROGRA~1\HEWLET~1\HPREMO~1\HPREMO~1.EXE
C:\Program Files (x86)\F-Secure\common\FSM32.EXE
C:\Windows\SysWOW64\svchost.exe
C:\Program Files (x86)\Java\jre6\bin\jusched.exe
C:\Program Files (x86)\F-Secure\Anti-Virus\fsgk32st.exe
C:\Program Files (x86)\F-Secure\Common\FSMA32.EXE
C:\Program Files (x86)\F-Secure\Anti-Virus\FSGK32.EXE
C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
C:\Program Files (x86)\F-Secure\Common\FSMB32.EXE
C:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\Windows\system32\svchost.exe
C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\WUDFHost.exe
C:\Program Files (x86)\F-Secure\Common\FCH32.EXE
C:\Program Files (x86)\F-Secure\Anti-Virus\fssm32.exe
C:\Program Files (x86)\F-Secure\Common\FAMEH32.EXE
C:\Program Files (x86)\F-Secure\FSAUA\program\fsaua.exe
C:\Program Files (x86)\F-Secure\Anti-Virus\fsqh.exe
C:\Program Files (x86)\F-Secure\Common\FNRB32.EXE
C:\Program Files (x86)\F-Secure\FWES\Program\fsdfwd.exe
C:\Program Files (x86)\F-Secure\Common\FIH32.EXE
C:\Program Files (x86)\F-Secure\FSGUI\fsguidll.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Program Files (x86)\F-Secure\Anti-Virus\fsav32.exe
c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\PROGRA~2\Crawler\Toolbar\CToolbar.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\SysWOW64\conime.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\wbem\wmiprvse.exe

»»»»»»»»»»»»»»»»»»»»»»»» hosts

»»»»»»»»»»»»»»»»»»»»»»»» C:\

»»»»»»»»»»»»»»»»»»»»»»»» C:\Windows

»»»»»»»»»»»»»»»»»»»»»»»» C:\Windows\system

»»»»»»»»»»»»»»»»»»»»»»»» C:\Windows\Web

»»»»»»»»»»»»»»»»»»»»»»»» C:\Windows\system32

»»»»»»»»»»»»»»»»»»»»»»»» C:\Windows\system32\LogFiles

»»»»»»»»»»»»»»»»»»»»»»»» C:\Users\jerome

»»»»»»»»»»»»»»»»»»»»»»»» C:\Users\jerome\AppData\Local\Temp

»»»»»»»»»»»»»»»»»»»»»»»» C:\Users\jerome\Application Data

»»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer

»»»»»»»»»»»»»»»»»»»»»»»» C:\Users\jerome\FAVORI~1

»»»»»»»»»»»»»»»»»»»»»»»» Bureau

»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files (x86)

Réponse 32 / 58

Utilisateur anonyme

Ok, ll est complet la ??
Niquel !

jéjé

plus de probleme???
mon ordi est désinfecté???

Réponse 33 / 58

Utilisateur anonyme

Attend !
Télécharge Toolbar-S&D (Team IDN) sur ton Bureau.
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cpVobGk5bHnxrhQ4yaoEUDJvOYNnEGyYjgqHZz5GqZLfutR3fMFPlsC3-CGIilfupPAguYATNyua3csodN_frdMK8sSzUpit10Yac-QJCOkMqJKkbdKcP6ySs8trWPgoNVIq4TGGWCe6o0txXQv-ZueJF9vZzw3RXsGwFYIqN2lvF2LPdQzS8mE1d5kWOVOz6EMzQuE5-lClSJM869uq3oc7-t7yg%3D%3D&attredirects=3

* Lance l'installation du programme en exécutant le fichier téléchargé.
* Double-clique maintenant sur le raccourci de Toolbar-S&D.
* Sélectionne la langue souhaitée en tapant la lettre de ton choix puis en validant avec la touche Entrée.
* Choisis maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.
* Poste le rapport généré. (C:\TB.txt)

jéjé

voilà le rapport

-----------\\ ToolBar S&D 1.2.9 XP/Vista

Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6002 ) Service Pack 2
x64-based PC ( Multiprocessor Free : AMD Athlon(tm) 7550 Dual-Core Processor )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : jerome ( Administrator )
BOOT : Normal boot
Antivirus : F-Secure Client Security 7.12 7.12 (Activated)
Firewall : F-Secure Client Security 7.12 7.12 (Activated)
C:\ (Local Disk) - NTFS - Total:581 Go (Free:430 Go)
D:\ (Local Disk) - NTFS - Total:14 Go (Free:2 Go)
E:\ (CD or DVD)
F:\ (USB)

"C:\ToolBar SD" ( MAJ : 22-08-2009|18:42 )
Option : [1] ( 12/12/2009|13:42 )

[ UAC => 0 ]

-----------\\ Recherche de Fichiers / Dossiers ...

Réponse 34 / 58

Utilisateur anonyme

Rapport non complet !

jéjé

ben il n'ya que ça dans le fichier (C:\TB.txt)

j'en ai relancer un et le voilà (pareil)

-----------\\ ToolBar S&D 1.2.9 XP/Vista

Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6002 ) Service Pack 2
x64-based PC ( Multiprocessor Free : AMD Athlon(tm) 7550 Dual-Core Processor )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : jerome ( Administrator )
BOOT : Normal boot
Antivirus : F-Secure Client Security 7.12 7.12 (Activated)
Firewall : F-Secure Client Security 7.12 7.12 (Activated)
C:\ (Local Disk) - NTFS - Total:581 Go (Free:430 Go)
D:\ (Local Disk) - NTFS - Total:14 Go (Free:2 Go)
E:\ (CD or DVD)
F:\ (USB)

"C:\ToolBar SD" ( MAJ : 22-08-2009|18:42 )
Option : [1] ( 12/12/2009|13:45 )

[ UAC => 0 ]

-----------\\ Recherche de Fichiers / Dossiers ...

Réponse 35 / 58

Utilisateur anonyme

Bizarre !

Pas grave, suis cette instruction dans l'ordre :

1. Supprime Spyware Terminator (dans ajouter et supprimer des programmes)

2.
Télécharge toolscleaner sur ton Bureau :
* Double-clique sur ToolsCleaner2.exe et laisse le travailler
* Clique sur Recherche et laisse le scan se terminer.
* Clique sur Suppression pour finaliser.
* Tu peux, si tu le souhaites, te servir des Options facultatives.
* Clique sur Quitter, pour que le rapport puisse se créer.
* Le rapport (TCleaner.txt) se trouve à la racine de ton disque dur (C:\)...colle le dans ta réponse

3. Supprime Destroy-Fix de ton bureau

4. Nettoie le registre avec Ccleaner, fais la sauvegarde comme conseillai

Dès que tu aura fais tous ça, dis le moi

jéjé

c'est FAIT

rapport TCleaner
[ Rapport ToolsCleaner version 2.3.11 (par A.Rothstein & dj QUIOU) ]

--> Recherche:

C:\TB.txt: trouvé !
C:\FindyKill.txt: trouvé !
C:\Toolbar SD: trouvé !
C:\FindyKill: trouvé !
C:\Rsit: trouvé !
C:\Program Files (x86)\Trend Micro\HijackThis.exe: trouvé !
C:\Program Files (x86)\Trend Micro\hijackthis.log: trouvé !
C:\Users\jerome\Desktop\SmitFraudFix.exe: trouvé !
C:\Users\jerome\Desktop\ToolBarSD.exe: trouvé !
C:\Users\jerome\Desktop\Rsit.exe: trouvé !
C:\Users\jerome\Desktop\SmitFraudfix: trouvé !

---------------------------------
--> Suppression:

C:\Program Files (x86)\Trend Micro\HijackThis.exe: supprimé !
C:\Users\jerome\Desktop\SmitFraudFix.exe: supprimé !
C:\Users\jerome\Desktop\ToolBarSD.exe: supprimé !
C:\TB.txt: supprimé !
C:\FindyKill.txt: supprimé !
C:\Program Files (x86)\Trend Micro\hijackthis.log: supprimé !
C:\Users\jerome\Desktop\Rsit.exe: supprimé !
C:\Toolbar SD: supprimé !
C:\FindyKill: supprimé !
C:\Rsit: supprimé !
C:\Users\jerome\Desktop\SmitFraudfix: supprimé !

Réponse 36 / 58

Utilisateur anonyme

Evite les sites sensible, ect...

Réponse 37 / 58

Utilisateur anonyme

Tu es encore là ?
J'ai un doute !
Refait ça :
Télécharge OTMoveIt https://www.luanagames.com/index.fr.html (de Old_Timer) sur ton Bureau.
double-clique sur OTMoveIt.exe pour le lancer
Assure toi que la case Unregister Dll's and Ocx's soit bien cochée
copie la liste qui se trouve en gras ci-dessous,
et colle-la dans le cadre de gauche de OTMoveIt :Paste List of Files/Folders to be moved.

C:\Windows\SysWOW64\svchost.exe

Et fait MoveIt!

jéjé

je suis la
je fais la manip et je reviens

Réponse 38 / 58

Utilisateur anonyme

jéjé

et voilà : _OTMoveIt

File move failed. C:\Windows\SysWOW64\svchost.exe scheduled to be moved on reboot.

Created on 12/12/2009 20:38:07

jéjé > jéjé

petite question pour pas mourir bete
A quoi sert OTMoveIt?

Réponse 39 / 58

Utilisateur anonyme

Redémarre l'ordinateur, et dit si ton pc va bien !

Réponse 40 / 58

Utilisateur anonyme

OTMoveIt autrement dit OTM supprime, déplace les lignes que je te dit pour les rendre inoffensifs (parce que c'est des virus)
Mais une mauvaise utilisation peut supprimer un fichier indispensable a la vie de l'ordi donc il faut que ce soit un helper qui te dit de l'utiliser !

jéjé

ok
j'ai rebooté, mon ordi à affiché une page bios au début mais à part ça il a l'air de tourné normalement

Probleme explorateur windows sous vista

58 réponses

Votre réponse

Newsletters