Bonjour,
Voici le message qu'affiche une boite de dialogue au démarrage:
windows script host
cannot find script file ''C:\Users\m\AppData\Roaming\Microsoft\SYSTEM\cste''
jai fais un scan avec Hijackthis car une personne avait le meme probleme:
https://forums.commentcamarche.net/forum/affich-26022082-message-windows-script-host#q=windows+script+host&cur=2&url=%2F
parcontre, je n'ai pas de ligne:
O4 - HKLM\..\Policies\Explorer\Run: [Updates] "C:\Windows\svchost .exe" /e:VBScript.Encode "C:\Users\m\AppData\Roaming\Microsoft\SYSTEM\cste"
donc je suis un peux perdue. je vous colle donc le résultat (car je ne peux pas l'enregistrer sur mon portable)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 08:53:20, on 2012-12-30
Platform: Unknown Windows (WinNT 6.01.3505 SP1)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Seagate Replica\bin\Seagate-Replica-Autoplay.exe
C:\Users\Utilisateur\AppData\Local\Akamai\netsession_win.exe
C:\Users\Utilisateur\AppData\Roaming\Ziyzt\ogcy.exe
C:\Program Files (x86)\LOLReplay\LOLRecorder.exe
C:\Users\Utilisateur\AppData\Local\Akamai\netsession_win.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\TOSHIBA\HDMICtrlMan\HCMSoundChanger.exe
C:\Program Files (x86)\Druide\Antidote 7\Programmes32\agentantidote.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
C:\Program Files (x86)\Seagate Replica\bin\Seagate-Replica-Tray.exe
C:\Program Files (x86)\Opera\opera.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology
\IAStorIcon.exe
C:\Users\Utilisateur\AppData\Roaming\SearchProtect\bin\cltmng.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Users\Utilisateur\Downloads\Protection\Hijackthis\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar =
https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://search.conduit.com?SearchSource=10&ctid=CT3128284
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName
=
R3 - URLSearchHook: (no name) - {b9d63c58-90cc-428b-8d3b-cbb88eb07e7e}
- (no file)
R3 - URLSearchHook: 01NET.com Toolbar - {8e5025c2-8ea3-430d-80b8-
a14151068a6d} - C:\Program Files (x86)\01NET.com\prxtb01NE.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -
C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX
\AcroIEHelperShim.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video>
- {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX
\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: RewardsArcade - {597A9974-8CB0-4f41-B61F-ED065738A397} - C:
\Program Files (x86)\RewardsArcade\RewardsArcade.dll
O2 - BHO: 01NET.com - {8e5025c2-8ea3-430d-80b8-a14151068a6d} - C:
\Program Files (x86)\01NET.com\prxtb01NE.dll
O2 - BHO: Wajam IE BHO - {A7A6995D-6EE1-4FD1-A258-49395D5BF99C} - C:
\Program Files (x86)\Wajam\IE\priam_bho.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-
9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: 01NET.com Toolbar - {8e5025c2-8ea3-430d-80b8-
a14151068a6d} - C:\Program Files (x86)\01NET.com\prxtb01NE.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R)
Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files
(x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [HWSetup] "C:\Program Files\TOSHIBA\Utilities
\HWSetup.exe" hwSetUP
O4 - HKLM\..\Run: [KeNotify] C:\Program Files (x86)\TOSHIBA\Utilities
\KeNotify.exe
O4 - HKLM\..\Run: [SVPWUTIL] C:\Program Files (x86)\TOSHIBA\Utilities
\SVPWUTIL.exe SVPwUTIL
O4 - HKLM\..\Run: [TUSBSleepChargeSrv] %ProgramFiles(x86)%\TOSHIBA
\TOSHIBA USB Sleep and Charge Utility\TUSBSleepChargeSrv.exe
O4 - HKLM\..\Run: [ToshibaServiceStation] "C:\Program Files
(x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe"
/hide:60
O4 - HKLM\..\Run: [TWebCamera] "C:\Program Files (x86)\TOSHIBA\TOSHIBA
Web Camera Application\TWebCamera.exe" autorun
O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files (x86)\Common Files
\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe"
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files (x86)\Common
Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files
\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [agentantidote.exe] "C:\Program Files (x86)\Druide
\Antidote 7\Programmes32\agentantidote.exe" /LancementSession
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime
\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir
Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes
\iTunesHelper.exe"
O4 - HKLM\..\Run: [DivXMediaServer] C:\Program Files (x86)\DivX\DivX
Media Server\DivXMediaServer.exe
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX
Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [SearchProtectAll] C:\Program Files
(x86)\SearchProtect\bin\cltmng.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar
\sidebar.exe /autoRun
O4 - HKCU\..\Run: [cacaoweb] "C:\Users\Utilisateur\AppData\Roaming
\cacaoweb\cacaoweb.exe" -noplayer
O4 - HKCU\..\Run: [MobileDocuments] C:\Program Files (x86)\Common
Files\Apple\Internet Services\ubd.exe
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows
\System32\StikyNot.exe
O4 - HKCU\..\Run: [] C:\Program Files (x86)\Samsung\Kies\External
\FirmwareUpdate\KiesPDLR.exe
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Utilisateur
\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [Zaqepepeiq] C:\Users\Utilisateur\AppData\Roaming
\Ziyzt\ogcy.exe
O4 - HKCU\..\Run: [SearchProtect] C:\Users\Utilisateur\AppData\Roaming
\SearchProtect\cltmng.exe
O4 - HKCU\..\Run: [PCSpeedUp] C:\Program Files (x86)\Accelerer PC
\PCSUNotifier.exe
O4 - Global Startup: LOLRecorder.lnk = C:\Program Files
(x86)\LOLReplay\LOLRecorder.exe
O8 - Extra context menu item: &Envoyer à OneNote - res://C:
\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: E&xporter vers Microsoft Excel -
res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} -
C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O13 - Gopher Prefix:
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) -
http://messenger.zone.msn.com/MessengerGamesContent/GameContent/fr/uno1
/GAME_UNO1.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient
Class) -
http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.ca
b
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags
Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} -
C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Flash Player Update Service
(AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows
\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown
owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira
Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir
Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira
Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir
Desktop\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files
(x86)\Common Files\Apple\Mobile Device Support
\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:
\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ConfigFree WiMAX Service (cfWiMAXService) - TOSHIBA
CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree
\CFIWmxSvcs64.exe
O23 - Service: Search Protect by Conduit Updater (CltMngSvc) - Conduit
- C:\Program Files (x86)\SearchProtect\bin\CltMngSvc.exe
O23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program
Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown
owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown
owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. -
C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher
\FNPLicensingService64.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) -
Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage
Technology\IAStorDataMgrSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision
Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver
\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:
\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows
\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local
Management Service (LMS) - Intel Corporation - C:\Program Files
(x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:
\Program Files\ma-config.com\x64\maconfservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) -
Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance
Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows
\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) -
Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner -
C:\windows\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner -
C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: PC Speed Up Service (PCSUService) - Unknown owner - C:
\Program Files (x86)\Accelerer PC\PCSUService.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300
(ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe
(file missing)
O23 - Service: Seagate Replica System Monitor (ReplicaSysMon) - Seagate
Technology LLC - C:\Program Files (x86)\Seagate Replica\bin
\ReplicaSysMon.exe
O23 - Service: Roxio UPnP Renderer 9 - Sonic Solutions - C:\Program
Files (x86)\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe
O23 - Service: Roxio Upnp Server 9 - Sonic Solutions - C:\Program Files
(x86)\Roxio\Digital Home 9\RoxioUpnpService9.exe
O23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Sonic Solutions
- C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM
\RoxLiveShare9.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files
(x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions
- C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM
\RoxWatch9.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental)
(rpcapd) - Unknown owner - C:\Program Files (x86)\WinPcap\rpcapd.exe
(file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) -
Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: TOSHIBA Modem region select service (RSELSVC) - TOSHIBA
Corporation - C:\Program Files\TOSHIBA\rselect\RSelSvc.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown
owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Seagate Replica Service (Seagate-Replica-Svc) - Seagate
Technology LLC - C:\Program Files (x86)\Seagate Replica\bin\Seagate-
Replica-Svc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:
\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) -
Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) -
Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) -
Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: TOSHIBA HDD Protection (Thpsrv) - Unknown owner - C:
\windows\system32\ThpSrv.exe (file missing)
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files
(x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown
owner - C:\windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation -
C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:
\Program Files\TOSHIBA\TECO\TecoService.exe
O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation -
C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:
\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) -
Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User
Notification Service (UNS) - Intel Corporation - C:\Program Files
(x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) -
Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown
owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown
owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: WajamUpdater - Wajam - C:\Program Files (x86)\Wajam
\Updater\WajamUpdater.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc)
- Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file
missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) -
Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv)
- Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101
(WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media
Player\wmpnetwk.exe (file missing)
End of file - 14599 bytes
merci pour votre aide!
Afficher la suite