Probleme fenetre de recherche intenpestive
herve
-
Utilisateur anonyme -
Utilisateur anonyme -
Bonjour a tous et merci d'avance pour votre aide,
voila mon problème depuis quelques jours une fenêtré de recherche de Windows s'ouvre seule et a n'importe quel moment sur mon bureau et de plus dans mes navigateurs internet "IE et Firefox une barre de recherche c installée en bas en prenant la priorité sur la barre de recherche google.
après analyses virus,spyware etc... r.a.s de ce coté la
j'avoue que la je c plus trop quoi faire... besoin d'aide e!
voila mon problème depuis quelques jours une fenêtré de recherche de Windows s'ouvre seule et a n'importe quel moment sur mon bureau et de plus dans mes navigateurs internet "IE et Firefox une barre de recherche c installée en bas en prenant la priorité sur la barre de recherche google.
après analyses virus,spyware etc... r.a.s de ce coté la
j'avoue que la je c plus trop quoi faire... besoin d'aide e!
A voir également:
- Probleme fenetre de recherche intenpestive
- Recherche automatique des chaînes ne fonctionne pas - Guide
- Fenetre windows - Guide
- Fenêtre hors écran windows 11 - Guide
- Fenetre de navigation privée - Guide
- Rechercher ou entrer l'adresse mm - recherche google - Guide
25 réponses
All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
No active process named iexplore.exe was found!
No active process named firefox.exe was found!
No active process named msnmsgr.exe was found!
No active process named Teatimer.exe was found!
========== SERVICES/DRIVERS ==========
Error: No service named EsetTrialReset was found to stop!
Service\Driver key EsetTrialReset not found.
========== OTL ==========
Prefs.js: {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}:6.0.12 removed from extensions.enabledItems
Prefs.js: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21 removed from extensions.enabledItems
Prefs.js: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22 removed from extensions.enabledItems
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\RunLogonScriptSync deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\EnableLinkedConnections deleted successfully.
Registry value HKEY_USERS\S-1-5-21-3288291784-4058297364-326315844-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\LinkResolveIgnoreLinkInfo deleted successfully.
Registry value HKEY_USERS\S-1-5-21-3288291784-4058297364-326315844-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoResolveTrack deleted successfully.
Starting removal of ActiveX control {8AD9C840-044E-11D1-B3E9-00805F499D93}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\ not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: herve
->Temp folder emptied: 122180660 bytes
->Temporary Internet Files folder emptied: 1972779 bytes
->Java cache emptied: 1249355 bytes
->FireFox cache emptied: 65888703 bytes
->Flash cache emptied: 5949 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 113910 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 183,00 mb
OTL by OldTimer - Version 3.2.20.2 log created on 01172011_232546
Files\Folders moved on Reboot...
Registry entries deleted on Reboot...
========== PROCESSES ==========
No active process named explorer.exe was found!
No active process named iexplore.exe was found!
No active process named firefox.exe was found!
No active process named msnmsgr.exe was found!
No active process named Teatimer.exe was found!
========== SERVICES/DRIVERS ==========
Error: No service named EsetTrialReset was found to stop!
Service\Driver key EsetTrialReset not found.
========== OTL ==========
Prefs.js: {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}:6.0.12 removed from extensions.enabledItems
Prefs.js: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21 removed from extensions.enabledItems
Prefs.js: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22 removed from extensions.enabledItems
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Main\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\RunLogonScriptSync deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\EnableLinkedConnections deleted successfully.
Registry value HKEY_USERS\S-1-5-21-3288291784-4058297364-326315844-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\LinkResolveIgnoreLinkInfo deleted successfully.
Registry value HKEY_USERS\S-1-5-21-3288291784-4058297364-326315844-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoResolveTrack deleted successfully.
Starting removal of ActiveX control {8AD9C840-044E-11D1-B3E9-00805F499D93}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\ not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: herve
->Temp folder emptied: 122180660 bytes
->Temporary Internet Files folder emptied: 1972779 bytes
->Java cache emptied: 1249355 bytes
->FireFox cache emptied: 65888703 bytes
->Flash cache emptied: 5949 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 113910 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 183,00 mb
OTL by OldTimer - Version 3.2.20.2 log created on 01172011_232546
Files\Folders moved on Reboot...
Registry entries deleted on Reboot...
fermer toutes les fenêtres et applications lors de l'installation et de l'analyse.
▶ Télécharge ici :
Malwarebytes
▶ Installe le ( choisis bien "francais" ; ne modifie pas les paramètres d'installe ) et mets le à jour .
(NB : Si tu as un message d'erreur t'indiquant qu'il te manque "COMCTL32.OCX" lors de l'installe, alors télécharge le ici : COMCTL32.OCX
▶ Potasses le Tuto pour te familiariser avec le prg :
( cela dit, il est très simple d'utilisation ).
relance malwarebytes en suivant scrupuleusement ces consignes :
! Déconnecte toi et ferme toutes applications en cours !
▶ Lance Malwarebyte's .
Fais un examen dit "Complet" .
▶ Laisse le programme travailler ( et ne rien faire d'autre avec le PC durant le scan ).
▶ à la fin tu cliques sur "résultat" .
▶ Vérifie que tous les objets infectés soient validés, puis clique sur " suppression " .
▶ Note : si il faut redémarrer ton PC pour finir le nettoyage, fais le !
▶ Poste le rapport sauvegardé après la suppression des objets infectés (dans l'onglet "rapport/log"de Malwarebytes, le dernier en date)
▶ Télécharge ici :
Malwarebytes
▶ Installe le ( choisis bien "francais" ; ne modifie pas les paramètres d'installe ) et mets le à jour .
(NB : Si tu as un message d'erreur t'indiquant qu'il te manque "COMCTL32.OCX" lors de l'installe, alors télécharge le ici : COMCTL32.OCX
▶ Potasses le Tuto pour te familiariser avec le prg :
( cela dit, il est très simple d'utilisation ).
relance malwarebytes en suivant scrupuleusement ces consignes :
! Déconnecte toi et ferme toutes applications en cours !
▶ Lance Malwarebyte's .
Fais un examen dit "Complet" .
▶ Laisse le programme travailler ( et ne rien faire d'autre avec le PC durant le scan ).
▶ à la fin tu cliques sur "résultat" .
▶ Vérifie que tous les objets infectés soient validés, puis clique sur " suppression " .
▶ Note : si il faut redémarrer ton PC pour finir le nettoyage, fais le !
▶ Poste le rapport sauvegardé après la suppression des objets infectés (dans l'onglet "rapport/log"de Malwarebytes, le dernier en date)
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Version de la base de données: 5542
Windows 6.1.7600
Internet Explorer 8.0.7600.16385
18/01/2011 00:27:21
mbam-log-2011-01-18 (00-27-21).txt
Type d'examen: Examen complet (A:\|C:\|D:\|E:\|F:\|G:\|H:\|I:\|J:\|K:\|L:\|)
Elément(s) analysé(s): 438198
Temps écoulé: 43 minute(s), 40 seconde(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 12
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
c:\Users\herve\documents\activation windows 7\removewat 2.2.5\removewat.exe (HackTool.Wpakill) -> Quarantined and deleted successfully.
c:\Users\herve\documents\activation windows 7\windows loader v1.9\windows loader.exe (PUP.HackTool.Windowsloader) -> Quarantined and deleted successfully.
c:\Users\herve\documents\niouzefire\extracted\fraida64extreme1.50.1200.0.par2\aida64 keygen.exe (Backdoor.RBot) -> Quarantined and deleted successfully.
c:\program files\list_kill'em\serv_impath.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\program files\list_kill'em\Upl.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\program files\vs revo group\revo uninstaller pro\revo uninstaller pro 2.5.0 patch.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
d:\Users\herve\Desktop\Extra\activation\removewat 2.2.5\removewat.exe (HackTool.Wpakill) -> Quarantined and deleted successfully.
d:\Users\herve\Desktop\Extra\programmes externes\firepasswordviewer\firepasswordviewer.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
e:\logiciels\fr_revo_uninstaller_pro_2.50_cerise.rar\revo uninstaller pro 2.5.0 patch.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
e:\logiciels\malwarebytesanti-malware v1.45 multilanguage winall keygen\malwarebytes.anti-malware.v1.45.incl.keygen-lz0\Keymaker.exe (Dont.Steal.Our.Software) -> Quarantined and deleted successfully.
e:\logiciels\oo.defrag.professional.edition. v12.0.197.incl\keygen.exe (Backdoor.RBot) -> Quarantined and deleted successfully.
e:\logiciels\ulta iso premium v9.3.5.2716 install multi upby tmcr2552\ultraiso_premium_v9.3.5.2716 multilingual\Keygen\keygen.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
voila mais le probleme toujours la ....:+(
www.malwarebytes.org
Version de la base de données: 5542
Windows 6.1.7600
Internet Explorer 8.0.7600.16385
18/01/2011 00:27:21
mbam-log-2011-01-18 (00-27-21).txt
Type d'examen: Examen complet (A:\|C:\|D:\|E:\|F:\|G:\|H:\|I:\|J:\|K:\|L:\|)
Elément(s) analysé(s): 438198
Temps écoulé: 43 minute(s), 40 seconde(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 12
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
c:\Users\herve\documents\activation windows 7\removewat 2.2.5\removewat.exe (HackTool.Wpakill) -> Quarantined and deleted successfully.
c:\Users\herve\documents\activation windows 7\windows loader v1.9\windows loader.exe (PUP.HackTool.Windowsloader) -> Quarantined and deleted successfully.
c:\Users\herve\documents\niouzefire\extracted\fraida64extreme1.50.1200.0.par2\aida64 keygen.exe (Backdoor.RBot) -> Quarantined and deleted successfully.
c:\program files\list_kill'em\serv_impath.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\program files\list_kill'em\Upl.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\program files\vs revo group\revo uninstaller pro\revo uninstaller pro 2.5.0 patch.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
d:\Users\herve\Desktop\Extra\activation\removewat 2.2.5\removewat.exe (HackTool.Wpakill) -> Quarantined and deleted successfully.
d:\Users\herve\Desktop\Extra\programmes externes\firepasswordviewer\firepasswordviewer.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
e:\logiciels\fr_revo_uninstaller_pro_2.50_cerise.rar\revo uninstaller pro 2.5.0 patch.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
e:\logiciels\malwarebytesanti-malware v1.45 multilanguage winall keygen\malwarebytes.anti-malware.v1.45.incl.keygen-lz0\Keymaker.exe (Dont.Steal.Our.Software) -> Quarantined and deleted successfully.
e:\logiciels\oo.defrag.professional.edition. v12.0.197.incl\keygen.exe (Backdoor.RBot) -> Quarantined and deleted successfully.
e:\logiciels\ulta iso premium v9.3.5.2716 install multi upby tmcr2552\ultraiso_premium_v9.3.5.2716 multilingual\Keygen\keygen.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
voila mais le probleme toujours la ....:+(
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question