Comment poster un rapport hijackthis
Résolu/Fermé
omimi13
-
23 avril 2008 à 17:10
Bridget. Messages postés 3816 Date d'inscription lundi 16 juillet 2012 Statut Contributeur Dernière intervention 21 février 2014 - 7 déc. 2013 à 04:04
Bridget. Messages postés 3816 Date d'inscription lundi 16 juillet 2012 Statut Contributeur Dernière intervention 21 février 2014 - 7 déc. 2013 à 04:04
A voir également:
- Comment poster un rapport hijackthis
- Hijackthis windows 10 - Télécharger - Antivirus & Antimalwares
- Plan d'un rapport de stage - Guide
- Comment poster une vidéo sur tiktok - Guide
- Easy poster printer - Télécharger - Divers Photo & Graphisme
- Logiciel poster - Télécharger - Divers Photo & Graphisme
8 réponses
jeager
Messages postés
4364
Date d'inscription
mercredi 19 décembre 2007
Statut
Membre
Dernière intervention
14 février 2013
141
23 avril 2008 à 17:11
23 avril 2008 à 17:11
salut !
http://pageperso.aol.fr/balltrap34/demohijack.htm
http://pageperso.aol.fr/balltrap34/demohijack.htm
crewlou
Messages postés
62
Date d'inscription
lundi 21 avril 2008
Statut
Membre
Dernière intervention
23 décembre 2009
1
23 avril 2008 à 19:05
23 avril 2008 à 19:05
appuye bien sur ctrl d'abord puis sur c (mais garde en meme temps ctrl enfoncé et relache)
pareil pour ctrl+v : appuye d'abord sur ctrl puis tout en gardant ctrl enfoncé appuye sur v !!
Sinon quand tout ton texte est surligné tu clique droit sur le bleu (n'importe où dans le texte ) et tu cliques sur "copier"
Ensuite tu va sur ton message et tu cliques droit dans le cadre où tu veut ecrire le message et tu cliques sur "coller" ...
pareil pour ctrl+v : appuye d'abord sur ctrl puis tout en gardant ctrl enfoncé appuye sur v !!
Sinon quand tout ton texte est surligné tu clique droit sur le bleu (n'importe où dans le texte ) et tu cliques sur "copier"
Ensuite tu va sur ton message et tu cliques droit dans le cadre où tu veut ecrire le message et tu cliques sur "coller" ...
ok jvai tenter le copier coller
crewlou
Messages postés
62
Date d'inscription
lundi 21 avril 2008
Statut
Membre
Dernière intervention
23 décembre 2009
1
>
omimi13
23 avril 2008 à 19:29
23 avril 2008 à 19:29
Marque celui ci comme résolu alors
omimi13
>
crewlou
Messages postés
62
Date d'inscription
lundi 21 avril 2008
Statut
Membre
Dernière intervention
23 décembre 2009
23 avril 2008 à 22:04
23 avril 2008 à 22:04
je le considere comme resolu mais je sais comment changer l icone merci d avoir usee un peu de votre temps
# AdwCleaner v2.306 - Rapport créé le 24/07/2013 à 22:08:56
# Mis à jour le 19/07/2013 par Xplode
# Système d'exploitation : Windows 8 (64 bits)
# Nom d'utilisateur : Mary - POTTERPC
# Mode de démarrage : Normal
# Exécuté depuis : C:\Users\Mary\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\G9SX8I2C\adwcleaner.exe
# Option [Suppression]
***** [Services] *****
***** [Fichiers / Dossiers] *****
Dossier Supprimé : C:\Program Files (x86)\DealPly
Dossier Supprimé : C:\Program Files (x86)\WebCake
Dossier Supprimé : C:\ProgramData\Babylon
Dossier Supprimé : C:\ProgramData\Tarma Installer
Dossier Supprimé : C:\Users\Mary\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Dossier Supprimé : C:\Users\Mary\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkcdkfohdadbjmlfejhncigcbfkiaamf
Dossier Supprimé : C:\Users\Mary\AppData\Local\Smartbar
Dossier Supprimé : C:\Users\Mary\AppData\Local\Temp\Iminent
Dossier Supprimé : C:\Users\Mary\AppData\Local\Temp\Smartbar
Dossier Supprimé : C:\Users\Mary\AppData\LocalLow\delta
Dossier Supprimé : C:\Users\Mary\AppData\LocalLow\Smartbar
Dossier Supprimé : C:\Users\Mary\AppData\Roaming\Babylon
Dossier Supprimé : C:\Users\Mary\AppData\Roaming\DealPly
Dossier Supprimé : C:\Users\Mary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DealPly
***** [Registre] *****
Clé Supprimée : HKCU\Software\BabSolution
Clé Supprimée : HKCU\Software\DealPly
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4B6ACEA2-308A-4876-AD36-57CEC5B4FCC7}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4B6ACEA2-308A-4876-AD36-57CEC5B4FCC7}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AF6B0594-6008-4327-93E5-608AD710A6FA}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\DealPly
Clé Supprimée : HKCU\Software\SmartBar
Clé Supprimée : HKCU\Software\SmartbarBackup
Clé Supprimée : HKCU\Software\SmartbarLog
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Clé Supprimée : HKLM\SOFTWARE\Classes\IESmartBar.BandObjectAttribute
Clé Supprimée : HKLM\SOFTWARE\Classes\IESmartBar.BHO
Clé Supprimée : HKLM\SOFTWARE\Classes\IESmartBar.DockingPanel
Clé Supprimée : HKLM\SOFTWARE\Classes\IESmartBar.IESmartBar
Clé Supprimée : HKLM\SOFTWARE\Classes\IESmartBar.IESmartBarBandObject
Clé Supprimée : HKLM\SOFTWARE\Classes\IESmartBar.SmartbarDisplayState
Clé Supprimée : HKLM\SOFTWARE\Classes\IESmartBar.SmartbarMenuForm
Clé Supprimée : HKLM\SOFTWARE\Classes\Prod.cap
Clé Supprimée : HKLM\Software\DealPly
Clé Supprimée : HKLM\Software\Iminent
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\QuickShare_RASAPI32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\QuickShare_RASMANCS
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASAPI32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASMANCS
Clé Supprimée : HKLM\Software\SoftwareUpdater
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4B6ACEA2-308A-4876-AD36-57CEC5B4FCC7}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{56561B2A-FB5D-363A-9631-4C03D6054209}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A717364F-69F3-3A24-ADD5-3901A57F880E}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CCB08265-B35D-30B2-A6AF-6986CA957358}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CD92622E-49B9-33B7-98D1-EC51049457D7}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DF84E609-C3A4-49CB-A160-61767DAF8899}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E041E037-FA4B-364A-B440-7A1051EA0301}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{DF84E609-C3A4-49CB-A160-61767DAF8899}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\pkcdkfohdadbjmlfejhncigcbfkiaamf
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4B6ACEA2-308A-4876-AD36-57CEC5B4FCC7}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\DealPly
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{56561B2A-FB5D-363A-9631-4C03D6054209}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{A717364F-69F3-3A24-ADD5-3901A57F880E}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{CCB08265-B35D-30B2-A6AF-6986CA957358}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{CD92622E-49B9-33B7-98D1-EC51049457D7}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{E041E037-FA4B-364A-B440-7A1051EA0301}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Clé Supprimée : HKLM\SOFTWARE\Tarma Installer
Valeur Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Browser Infrastructure Helper]
Valeur Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
***** [Navigateurs] *****
-\\ Internet Explorer v10.0.9200.16384
[OK] Le registre ne contient aucune entrée illégitime.
-\\ Google Chrome v28.0.1500.72
Fichier : C:\Users\Mary\AppData\Local\Google\Chrome\User Data\Default\Preferences
[OK] Le fichier ne contient aucune entrée illégitime.
*************************
AdwCleaner[S1].txt - [6540 octets] - [24/07/2013 22:08:56]
########## EOF - C:\AdwCleaner[S1].txt - [6600 octets] ##########
# Mis à jour le 19/07/2013 par Xplode
# Système d'exploitation : Windows 8 (64 bits)
# Nom d'utilisateur : Mary - POTTERPC
# Mode de démarrage : Normal
# Exécuté depuis : C:\Users\Mary\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\G9SX8I2C\adwcleaner.exe
# Option [Suppression]
***** [Services] *****
***** [Fichiers / Dossiers] *****
Dossier Supprimé : C:\Program Files (x86)\DealPly
Dossier Supprimé : C:\Program Files (x86)\WebCake
Dossier Supprimé : C:\ProgramData\Babylon
Dossier Supprimé : C:\ProgramData\Tarma Installer
Dossier Supprimé : C:\Users\Mary\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Dossier Supprimé : C:\Users\Mary\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkcdkfohdadbjmlfejhncigcbfkiaamf
Dossier Supprimé : C:\Users\Mary\AppData\Local\Smartbar
Dossier Supprimé : C:\Users\Mary\AppData\Local\Temp\Iminent
Dossier Supprimé : C:\Users\Mary\AppData\Local\Temp\Smartbar
Dossier Supprimé : C:\Users\Mary\AppData\LocalLow\delta
Dossier Supprimé : C:\Users\Mary\AppData\LocalLow\Smartbar
Dossier Supprimé : C:\Users\Mary\AppData\Roaming\Babylon
Dossier Supprimé : C:\Users\Mary\AppData\Roaming\DealPly
Dossier Supprimé : C:\Users\Mary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DealPly
***** [Registre] *****
Clé Supprimée : HKCU\Software\BabSolution
Clé Supprimée : HKCU\Software\DealPly
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4B6ACEA2-308A-4876-AD36-57CEC5B4FCC7}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4B6ACEA2-308A-4876-AD36-57CEC5B4FCC7}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AF6B0594-6008-4327-93E5-608AD710A6FA}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\DealPly
Clé Supprimée : HKCU\Software\SmartBar
Clé Supprimée : HKCU\Software\SmartbarBackup
Clé Supprimée : HKCU\Software\SmartbarLog
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Clé Supprimée : HKLM\SOFTWARE\Classes\IESmartBar.BandObjectAttribute
Clé Supprimée : HKLM\SOFTWARE\Classes\IESmartBar.BHO
Clé Supprimée : HKLM\SOFTWARE\Classes\IESmartBar.DockingPanel
Clé Supprimée : HKLM\SOFTWARE\Classes\IESmartBar.IESmartBar
Clé Supprimée : HKLM\SOFTWARE\Classes\IESmartBar.IESmartBarBandObject
Clé Supprimée : HKLM\SOFTWARE\Classes\IESmartBar.SmartbarDisplayState
Clé Supprimée : HKLM\SOFTWARE\Classes\IESmartBar.SmartbarMenuForm
Clé Supprimée : HKLM\SOFTWARE\Classes\Prod.cap
Clé Supprimée : HKLM\Software\DealPly
Clé Supprimée : HKLM\Software\Iminent
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\QuickShare_RASAPI32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\QuickShare_RASMANCS
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASAPI32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASMANCS
Clé Supprimée : HKLM\Software\SoftwareUpdater
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4B6ACEA2-308A-4876-AD36-57CEC5B4FCC7}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{56561B2A-FB5D-363A-9631-4C03D6054209}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A717364F-69F3-3A24-ADD5-3901A57F880E}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CCB08265-B35D-30B2-A6AF-6986CA957358}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CD92622E-49B9-33B7-98D1-EC51049457D7}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DF84E609-C3A4-49CB-A160-61767DAF8899}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E041E037-FA4B-364A-B440-7A1051EA0301}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{DF84E609-C3A4-49CB-A160-61767DAF8899}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\pkcdkfohdadbjmlfejhncigcbfkiaamf
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4B6ACEA2-308A-4876-AD36-57CEC5B4FCC7}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\DealPly
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{56561B2A-FB5D-363A-9631-4C03D6054209}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{A717364F-69F3-3A24-ADD5-3901A57F880E}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{CCB08265-B35D-30B2-A6AF-6986CA957358}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{CD92622E-49B9-33B7-98D1-EC51049457D7}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{E041E037-FA4B-364A-B440-7A1051EA0301}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Clé Supprimée : HKLM\SOFTWARE\Tarma Installer
Valeur Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Browser Infrastructure Helper]
Valeur Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
***** [Navigateurs] *****
-\\ Internet Explorer v10.0.9200.16384
[OK] Le registre ne contient aucune entrée illégitime.
-\\ Google Chrome v28.0.1500.72
Fichier : C:\Users\Mary\AppData\Local\Google\Chrome\User Data\Default\Preferences
[OK] Le fichier ne contient aucune entrée illégitime.
*************************
AdwCleaner[S1].txt - [6540 octets] - [24/07/2013 22:08:56]
########## EOF - C:\AdwCleaner[S1].txt - [6600 octets] ##########
kevina33
Messages postés
19
Date d'inscription
jeudi 12 février 2009
Statut
Membre
Dernière intervention
13 mars 2010
26 févr. 2009 à 13:02
26 févr. 2009 à 13:02
========= PROCESSES ==========
Process explorer.exe killed successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}\\ deleted successfully.
========== COMMANDS ==========
File delete failed. C:\Users\nous\AppData\Local\Temp\Low\COM6569.tmp scheduled to be deleted on reboot.
File delete failed. C:\Users\nous\AppData\Local\Temp\Low\COM73CD.tmp scheduled to be deleted on reboot.
File delete failed. C:\Users\nous\AppData\Local\Temp\Low\COMCB8D.tmp scheduled to be deleted on reboot.
File delete failed. C:\Users\nous\AppData\Local\Temp\~DF7440.tmp scheduled to be deleted on reboot.
File delete failed. C:\Users\nous\AppData\Local\Temp\~DF744A.tmp scheduled to be deleted on reboot.
File delete failed. C:\Users\nous\AppData\Local\Temp\~DFA286.tmp scheduled to be deleted on reboot.
File delete failed. C:\Users\nous\AppData\Local\Temp\~DFA28B.tmp scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
Local Service Temp folder emptied.
Local Service Temporary Internet Files folder emptied.
File delete failed. C:\Windows\temp\CLDigitalHome\CLMSServer.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\CLDigitalHome\CLMS_AGENT_LOG1.txt scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\CLDigitalHome\PCMMediaServer.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\8927095f-daa5-435a-b27e-ca491975eb17.tmp scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\a63f866b-bd31-46a6-9da5-b631e9ba0bc1.tmp scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\e5b2914e-788b-4e04-92c6-846ac83259df.tmp scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile00.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile01.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile02.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile03.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile04.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\MpCmdRun.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\MpSigStub.log scheduled to be deleted on reboot.
Windows Temp folder emptied.
Temp folders emptied.
Explorer started successfully
Process explorer.exe killed successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}\\ deleted successfully.
========== COMMANDS ==========
File delete failed. C:\Users\nous\AppData\Local\Temp\Low\COM6569.tmp scheduled to be deleted on reboot.
File delete failed. C:\Users\nous\AppData\Local\Temp\Low\COM73CD.tmp scheduled to be deleted on reboot.
File delete failed. C:\Users\nous\AppData\Local\Temp\Low\COMCB8D.tmp scheduled to be deleted on reboot.
File delete failed. C:\Users\nous\AppData\Local\Temp\~DF7440.tmp scheduled to be deleted on reboot.
File delete failed. C:\Users\nous\AppData\Local\Temp\~DF744A.tmp scheduled to be deleted on reboot.
File delete failed. C:\Users\nous\AppData\Local\Temp\~DFA286.tmp scheduled to be deleted on reboot.
File delete failed. C:\Users\nous\AppData\Local\Temp\~DFA28B.tmp scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
Local Service Temp folder emptied.
Local Service Temporary Internet Files folder emptied.
File delete failed. C:\Windows\temp\CLDigitalHome\CLMSServer.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\CLDigitalHome\CLMS_AGENT_LOG1.txt scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\CLDigitalHome\PCMMediaServer.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\8927095f-daa5-435a-b27e-ca491975eb17.tmp scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\a63f866b-bd31-46a6-9da5-b631e9ba0bc1.tmp scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\e5b2914e-788b-4e04-92c6-846ac83259df.tmp scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile00.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile01.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile02.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile03.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile04.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\MpCmdRun.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\MpSigStub.log scheduled to be deleted on reboot.
Windows Temp folder emptied.
Temp folders emptied.
Explorer started successfully
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
############################## [ UsbFix V3.019 # Scan ]
# User : CHRISTELLE (Administrateurs) # MEDIA-131152C50
# Update on 13/05/09 by Chiquitine29, C_XX & Chimay8
# WebSite : http://pagesperso-orange.fr/NosTools/usbfix.html
# Start at: 14:57:37 | 14/05/2009
# Intel(R) Celeron(R) CPU 2.13GHz
# Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 3
# Internet Explorer 6.0.2900.5512
# Windows Firewall Status : Enabled
# AV : AVG Anti-Virus Free 8.5 [ Enabled | Updated ]
# A:\ # Lecteur de disquettes 3 ½ pouces
# C:\ # Disque fixe local # 14,65 Go (7,94 Go free) # NTFS
# D:\ # Disque fixe local # 23,63 Go (19,3 Go free) # NTFS
# E:\ # Disque CD-ROM
# F:\ # Disque amovible # 1,89 Go (11,98 Mo free) [HYPPO2] # FAT32
############################## [ Processus actifs ]
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Hewlett-Packard\HP Deskjet 1280\Toolbox\mpm.exe
C:\PROGRA~1\Bandoo\Bandoo.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
C:\Program Files\DNA\btdna.exe
C:\WINDOWS\system32\5D598C\35A954.EXE
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\Documents and Settings\CHRISTELLE\Menu Démarrer\Programmes\Démarrage\Dos Optimizer.pif
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Program Files\Webshots\WebshotsTray.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\Hewlett-Packard\HP Deskjet 1280\Toolbox\HPWSTBX.exe
C:\WINDOWS\system32\826D7F\LI-2C85A.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\AVG\AVG8\aAvgApi.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Internet Explorer\iexplore.exe
################## [ Registre # Startup ]
HKCU_Main: "Local Page"="C:\\WINDOWS\\system32\\blank.htm"
HKCU_Main: "Search Page"="http://fr.rd.yahoo.com/customize/ie/defaults/sp/msgr9/*https://fr.search.yahoo.com/"
HKCU_Main: "Start Page"="https://fr.yahoo.com/"
HKLM_logon: "Userinit"="C:\\WINDOWS\\system32\\userinit.exe,"
HKLM_logon: "DefaultUserName"="CHRISTELLE"
HKLM_logon: "AltDefaultUserName"="CHRISTELLE"
HKLM_logon: "LegalNoticeCaption"=""
HKLM_logon: "LegalNoticeText"=""
HKLM_Run: Adobe Reader Speed Launcher="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
HKLM_Run: NeroFilterCheck=C:\WINDOWS\system32\NeroCheck.exe
HKLM_Run: RemoteControl="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
HKLM_Run: HPWS myPrintMileage Agent=C:\Program Files\Hewlett-Packard\HP Deskjet 1280\Toolbox\mpm.exe
HKLM_Run: PHIME2002ASync=C:\WINDOWS\System\dumprep.exe
HKLM_Run: FrameWorkService=
HKLM_Run: AVG8_TRAY=C:\PROGRA~1\AVG\AVG8\avgtray.exe
HKLM_Run: 35A954=C:\WINDOWS\system32\5D598C\35A954.EXE
HKLM_Run: HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents=
HKCU_Run: CTFMON.EXE=C:\WINDOWS\system32\ctfmon.exe
HKCU_Run: Messenger (Yahoo!)="C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
HKCU_Run: FrameWorkService=
HKCU_Run: BitTorrent DNA="C:\Program Files\DNA\btdna.exe"
################## [ Informations ]
################## [ Fichiers # Dossiers infectieux ]
Found ! C:\WINDOWS\inf\smss.exe
Found ! "C:\WINDOWS\system32\Sexy Girls.scr"
Found ! "C:\Documents and Settings\CHRISTELLE\Application Data\svchost.exe"
Found ! "C:\Documents and Settings\CHRISTELLE\Application Data\lsass.exe"
Found ! "C:\Documents and Settings\CHRISTELLE\Application Data\smss.exe"
Found ! C:\autorun.inf
Found ! D:\autorun.inf
Found ! F:\.\Recycler\svchost.exe
Found ! F:\Recycle.exe
Found ! F:\RECYCLER\RECYCLER.exe
Found ! F:\autorun.inf
################## [ Registre # Clés Run infectieuses ]
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "FrameWorkService"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "FrameWorkService"
Found ! HKU\S-1-5-21-448539723-688789844-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "FrameWorkService"
################## [ Registre # Mountpoints2 ]
HKCU\Software\Microsoft\....\MountPoints2\{0302006e-2d81-11de-9ff1-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{0302006e-2d81-11de-9ff1-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{099d1575-2047-11de-9fbb-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{099d1575-2047-11de-9fbb-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{0bfc615a-3943-11de-a00a-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{0bfc615a-3943-11de-a00a-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{0bfc6174-3943-11de-a00a-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{0bfc6174-3943-11de-a00a-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{25035266-29c2-11de-9fe6-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{25035266-29c2-11de-9fe6-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{2fa88962-1f88-11de-9fba-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{2fa88962-1f88-11de-9fba-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{364a4368-298e-11de-9fe5-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{364a4369-298e-11de-9fe5-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{364a4369-298e-11de-9fe5-000b6aa8d976}\Shell\ouvrir\Command
HKCU\Software\Microsoft\....\MountPoints2\{3a5a4a8a-357c-11de-a007-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{3a5a4a8a-357c-11de-a007-000b6aa8d976}\Shell\explore\Command
HKCU\Software\Microsoft\....\MountPoints2\{3a5a4a8a-357c-11de-a007-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{3d8aa044-1a1d-11de-9fa8-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{51572508-228c-11de-9fc0-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{51572508-228c-11de-9fc0-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{51572509-228c-11de-9fc0-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{8f3472c4-1d1c-11de-9fad-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{8f3472c4-1d1c-11de-9fad-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{a71bd2b8-1de3-11de-9fb1-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{a71bd2b8-1de3-11de-9fb1-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{a71bd2bc-1de3-11de-9fb1-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{a71bd2bc-1de3-11de-9fb1-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{b9b0cbef-29d1-11de-9fe7-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{b9b0cbef-29d1-11de-9fe7-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{baa32142-1ed6-11de-9fb6-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{baa32142-1ed6-11de-9fb6-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{babebd06-389a-11de-a009-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{babebd06-389a-11de-a009-000b6aa8d976}\Shell\ouvrir\Command
HKCU\Software\Microsoft\....\MountPoints2\{c282c0d6-3496-11de-a005-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{c282c0d6-3496-11de-a005-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{e0a0e56d-3e1a-11de-a00f-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{e9acf15a-2456-11de-9fd2-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{e9acf15a-2456-11de-9fd2-000b6aa8d976}\Shell\ouvrir\Command
HKCU\Software\Microsoft\....\MountPoints2\{ebf5d25e-190d-11de-9fa4-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{ebf5d25e-190d-11de-9fa4-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{ebf5d25f-190d-11de-9fa4-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{ebf5d25f-190d-11de-9fa4-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{fc32c6c3-2e5b-11de-9ffb-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{fc32c6c3-2e5b-11de-9ffb-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{fdd20c60-24dc-11de-9fd3-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{fdd20c60-24dc-11de-9fd3-000b6aa8d976}\Shell\open\Command
################## [ ! Fin du rapport # UsbFix V3.019 ! ]
# User : CHRISTELLE (Administrateurs) # MEDIA-131152C50
# Update on 13/05/09 by Chiquitine29, C_XX & Chimay8
# WebSite : http://pagesperso-orange.fr/NosTools/usbfix.html
# Start at: 14:57:37 | 14/05/2009
# Intel(R) Celeron(R) CPU 2.13GHz
# Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 3
# Internet Explorer 6.0.2900.5512
# Windows Firewall Status : Enabled
# AV : AVG Anti-Virus Free 8.5 [ Enabled | Updated ]
# A:\ # Lecteur de disquettes 3 ½ pouces
# C:\ # Disque fixe local # 14,65 Go (7,94 Go free) # NTFS
# D:\ # Disque fixe local # 23,63 Go (19,3 Go free) # NTFS
# E:\ # Disque CD-ROM
# F:\ # Disque amovible # 1,89 Go (11,98 Mo free) [HYPPO2] # FAT32
############################## [ Processus actifs ]
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Hewlett-Packard\HP Deskjet 1280\Toolbox\mpm.exe
C:\PROGRA~1\Bandoo\Bandoo.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
C:\Program Files\DNA\btdna.exe
C:\WINDOWS\system32\5D598C\35A954.EXE
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\Documents and Settings\CHRISTELLE\Menu Démarrer\Programmes\Démarrage\Dos Optimizer.pif
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Program Files\Webshots\WebshotsTray.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\Hewlett-Packard\HP Deskjet 1280\Toolbox\HPWSTBX.exe
C:\WINDOWS\system32\826D7F\LI-2C85A.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\AVG\AVG8\aAvgApi.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Internet Explorer\iexplore.exe
################## [ Registre # Startup ]
HKCU_Main: "Local Page"="C:\\WINDOWS\\system32\\blank.htm"
HKCU_Main: "Search Page"="http://fr.rd.yahoo.com/customize/ie/defaults/sp/msgr9/*https://fr.search.yahoo.com/"
HKCU_Main: "Start Page"="https://fr.yahoo.com/"
HKLM_logon: "Userinit"="C:\\WINDOWS\\system32\\userinit.exe,"
HKLM_logon: "DefaultUserName"="CHRISTELLE"
HKLM_logon: "AltDefaultUserName"="CHRISTELLE"
HKLM_logon: "LegalNoticeCaption"=""
HKLM_logon: "LegalNoticeText"=""
HKLM_Run: Adobe Reader Speed Launcher="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
HKLM_Run: NeroFilterCheck=C:\WINDOWS\system32\NeroCheck.exe
HKLM_Run: RemoteControl="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
HKLM_Run: HPWS myPrintMileage Agent=C:\Program Files\Hewlett-Packard\HP Deskjet 1280\Toolbox\mpm.exe
HKLM_Run: PHIME2002ASync=C:\WINDOWS\System\dumprep.exe
HKLM_Run: FrameWorkService=
HKLM_Run: AVG8_TRAY=C:\PROGRA~1\AVG\AVG8\avgtray.exe
HKLM_Run: 35A954=C:\WINDOWS\system32\5D598C\35A954.EXE
HKLM_Run: HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents=
HKCU_Run: CTFMON.EXE=C:\WINDOWS\system32\ctfmon.exe
HKCU_Run: Messenger (Yahoo!)="C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
HKCU_Run: FrameWorkService=
HKCU_Run: BitTorrent DNA="C:\Program Files\DNA\btdna.exe"
################## [ Informations ]
################## [ Fichiers # Dossiers infectieux ]
Found ! C:\WINDOWS\inf\smss.exe
Found ! "C:\WINDOWS\system32\Sexy Girls.scr"
Found ! "C:\Documents and Settings\CHRISTELLE\Application Data\svchost.exe"
Found ! "C:\Documents and Settings\CHRISTELLE\Application Data\lsass.exe"
Found ! "C:\Documents and Settings\CHRISTELLE\Application Data\smss.exe"
Found ! C:\autorun.inf
Found ! D:\autorun.inf
Found ! F:\.\Recycler\svchost.exe
Found ! F:\Recycle.exe
Found ! F:\RECYCLER\RECYCLER.exe
Found ! F:\autorun.inf
################## [ Registre # Clés Run infectieuses ]
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "FrameWorkService"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "FrameWorkService"
Found ! HKU\S-1-5-21-448539723-688789844-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "FrameWorkService"
################## [ Registre # Mountpoints2 ]
HKCU\Software\Microsoft\....\MountPoints2\{0302006e-2d81-11de-9ff1-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{0302006e-2d81-11de-9ff1-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{099d1575-2047-11de-9fbb-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{099d1575-2047-11de-9fbb-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{0bfc615a-3943-11de-a00a-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{0bfc615a-3943-11de-a00a-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{0bfc6174-3943-11de-a00a-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{0bfc6174-3943-11de-a00a-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{25035266-29c2-11de-9fe6-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{25035266-29c2-11de-9fe6-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{2fa88962-1f88-11de-9fba-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{2fa88962-1f88-11de-9fba-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{364a4368-298e-11de-9fe5-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{364a4369-298e-11de-9fe5-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{364a4369-298e-11de-9fe5-000b6aa8d976}\Shell\ouvrir\Command
HKCU\Software\Microsoft\....\MountPoints2\{3a5a4a8a-357c-11de-a007-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{3a5a4a8a-357c-11de-a007-000b6aa8d976}\Shell\explore\Command
HKCU\Software\Microsoft\....\MountPoints2\{3a5a4a8a-357c-11de-a007-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{3d8aa044-1a1d-11de-9fa8-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{51572508-228c-11de-9fc0-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{51572508-228c-11de-9fc0-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{51572509-228c-11de-9fc0-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{8f3472c4-1d1c-11de-9fad-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{8f3472c4-1d1c-11de-9fad-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{a71bd2b8-1de3-11de-9fb1-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{a71bd2b8-1de3-11de-9fb1-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{a71bd2bc-1de3-11de-9fb1-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{a71bd2bc-1de3-11de-9fb1-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{b9b0cbef-29d1-11de-9fe7-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{b9b0cbef-29d1-11de-9fe7-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{baa32142-1ed6-11de-9fb6-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{baa32142-1ed6-11de-9fb6-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{babebd06-389a-11de-a009-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{babebd06-389a-11de-a009-000b6aa8d976}\Shell\ouvrir\Command
HKCU\Software\Microsoft\....\MountPoints2\{c282c0d6-3496-11de-a005-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{c282c0d6-3496-11de-a005-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{e0a0e56d-3e1a-11de-a00f-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{e9acf15a-2456-11de-9fd2-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{e9acf15a-2456-11de-9fd2-000b6aa8d976}\Shell\ouvrir\Command
HKCU\Software\Microsoft\....\MountPoints2\{ebf5d25e-190d-11de-9fa4-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{ebf5d25e-190d-11de-9fa4-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{ebf5d25f-190d-11de-9fa4-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{ebf5d25f-190d-11de-9fa4-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{fc32c6c3-2e5b-11de-9ffb-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{fc32c6c3-2e5b-11de-9ffb-000b6aa8d976}\Shell\open\Command
HKCU\Software\Microsoft\....\MountPoints2\{fdd20c60-24dc-11de-9fd3-000b6aa8d976}\Shell\AutoRun\command
HKCU\Software\Microsoft\....\MountPoints2\{fdd20c60-24dc-11de-9fd3-000b6aa8d976}\Shell\open\Command
################## [ ! Fin du rapport # UsbFix V3.019 ! ]
boubou*2776
Messages postés
2
Date d'inscription
dimanche 10 octobre 2010
Statut
Membre
Dernière intervention
10 octobre 2010
10 oct. 2010 à 21:09
10 oct. 2010 à 21:09
le liens ne fonctionne pas
bonjour kkun peux m'aider jai mon PC qui deconne pas mal, je post le hijack si kkun pourrait me dire quoi faire, serait super ;)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 09:55:24, on 30/04/2011
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18602)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\SFR\Kit\9props.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Users\User\Downloads\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.fr.acer.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=5489
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=5489
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.fr.acer.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849EF-C8D7-4D59-B87D-784B7D6BE0B} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Aide à la navigation SFR - {0F6E720A-1A6B-40E1-A294-1D4D19F156C8} - C:\Program Files\SFR\Kit\SFRNavErrorHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-F74-2D53-2644-20D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-9098571CECB} - (no file)
O2 - BHO: Groove GFS Browser Helper - {7285361-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-51647608636} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E2} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Connexion SFR 9props.exe] "C:\Program Files\SFR\Kit\9props.exe" /trayicon
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - Global Startup: BTTray.lnk = ?
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Envoyer l'&image au périphérique Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Quick-Launching Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\Acer\Acer Bio Protection\PwdBank.exe
O9 - Extra 'Tools' menuitem: Quick-Launching Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\Acer\Acer Bio Protection\PwdBank.exe
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O20 - Winlogon Notify: AWinNotifyVitaKey MC3000 - C:\Program Files\Acer\Acer Bio Protection\WinNotify.dll
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: NTI Backup Now 5 Agent Service (BUNAgentSvc) - NewTech Infosystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
O23 - Service: CLHNService - Unknown owner - C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe
O23 - Service: eDataSecurity Service - Egis Incorporated - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
O23 - Service: Empowering Technology Service (ETService) - Unknown owner - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Service Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: iGroupTec Service (IGBASVC) - Unknown owner - C:\Program Files\Acer\Acer Bio Protection\BASVC.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - Unknown owner - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\Cyberlink\Shared files\RichVideo.exe
O23 - Service: Raw Socket Service (RS_Service) - Acer Incorporated - C:\Program Files\Acer\Acer VCM\RS_Service.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: Validity Fingerprint Service (vfsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vfsFPService.exe
--
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 09:55:24, on 30/04/2011
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18602)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\SFR\Kit\9props.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Users\User\Downloads\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.fr.acer.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=5489
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=5489
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.fr.acer.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849EF-C8D7-4D59-B87D-784B7D6BE0B} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Aide à la navigation SFR - {0F6E720A-1A6B-40E1-A294-1D4D19F156C8} - C:\Program Files\SFR\Kit\SFRNavErrorHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-F74-2D53-2644-20D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-9098571CECB} - (no file)
O2 - BHO: Groove GFS Browser Helper - {7285361-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-51647608636} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E2} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Connexion SFR 9props.exe] "C:\Program Files\SFR\Kit\9props.exe" /trayicon
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - Global Startup: BTTray.lnk = ?
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Envoyer l'&image au périphérique Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Quick-Launching Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\Acer\Acer Bio Protection\PwdBank.exe
O9 - Extra 'Tools' menuitem: Quick-Launching Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\Acer\Acer Bio Protection\PwdBank.exe
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O20 - Winlogon Notify: AWinNotifyVitaKey MC3000 - C:\Program Files\Acer\Acer Bio Protection\WinNotify.dll
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: NTI Backup Now 5 Agent Service (BUNAgentSvc) - NewTech Infosystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
O23 - Service: CLHNService - Unknown owner - C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe
O23 - Service: eDataSecurity Service - Egis Incorporated - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
O23 - Service: Empowering Technology Service (ETService) - Unknown owner - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Service Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: iGroupTec Service (IGBASVC) - Unknown owner - C:\Program Files\Acer\Acer Bio Protection\BASVC.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - Unknown owner - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\Cyberlink\Shared files\RichVideo.exe
O23 - Service: Raw Socket Service (RS_Service) - Acer Incorporated - C:\Program Files\Acer\Acer VCM\RS_Service.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: Validity Fingerprint Service (vfsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vfsFPService.exe
--
j'ai le meme probleme
voila mon rapport
# AdwCleaner v1.311 - Rapport créé le 16/10/2011 à 18:54:18
# Mis à jour le 14/10/11 à 18h par Xplode
# Système d'exploitation : Windows 7 Home Premium (64 bits)
# Nom d'utilisateur : SIVIGNON - SIVIGNON-PC (Administrateur)
# Exécuté depuis : C:\Users\SIVIGNON\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\048GS6A8\28-adwcleaner[1].exe
# Option [Recherche]
***** [Processus] *****
***** [Services] *****
***** [Fichiers / Dossiers] *****
***** [Registre] *****
***** [Navigateurs] *****
-\\ Internet Explorer v8.0.7600.16385
[OK] Le registre ne contient aucune entrée illégitime.
*************************
AdwCleaner[R1].txt - [1012 octets] - [16/10/2011 18:42:56]
AdwCleaner[R2].txt - [1074 octets] - [16/10/2011 18:44:49]
AdwCleaner[S1].txt - [1305 octets] - [16/10/2011 18:51:26]
AdwCleaner[R3].txt - [853 octets] - [16/10/2011 18:54:18]
########## EOF - C:\AdwCleaner[R3].txt - [980 octets] ##########
voila mon rapport
# AdwCleaner v1.311 - Rapport créé le 16/10/2011 à 18:54:18
# Mis à jour le 14/10/11 à 18h par Xplode
# Système d'exploitation : Windows 7 Home Premium (64 bits)
# Nom d'utilisateur : SIVIGNON - SIVIGNON-PC (Administrateur)
# Exécuté depuis : C:\Users\SIVIGNON\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\048GS6A8\28-adwcleaner[1].exe
# Option [Recherche]
***** [Processus] *****
***** [Services] *****
***** [Fichiers / Dossiers] *****
***** [Registre] *****
***** [Navigateurs] *****
-\\ Internet Explorer v8.0.7600.16385
[OK] Le registre ne contient aucune entrée illégitime.
*************************
AdwCleaner[R1].txt - [1012 octets] - [16/10/2011 18:42:56]
AdwCleaner[R2].txt - [1074 octets] - [16/10/2011 18:44:49]
AdwCleaner[S1].txt - [1305 octets] - [16/10/2011 18:51:26]
AdwCleaner[R3].txt - [853 octets] - [16/10/2011 18:54:18]
########## EOF - C:\AdwCleaner[R3].txt - [980 octets] ##########
23 avril 2008 à 17:21
23 avril 2008 à 17:28
Tu vas tout en bas de cette fenètre.
Tu double clic et tu reste en "click" et tu remonte toute la page de manière à ce que tout soit surligné en bleu normalement.
ensuite tu appuye simultanément sur les touches ctrl et C de ton clavier .
Puis tu vas sur ta page pour poster le message sur le forum tu clique une fois dans le cadre du texte pour avoir le petit curseur et ensuite tu appuye simmultanément sur ctrl et V
Le rapport est recopié sur le post t'as plus qu'à envoyer le message
23 avril 2008 à 17:35
23 avril 2008 à 17:48
23 avril 2008 à 18:04