Sujet Précédent Sujet Suivant

Fenetres intempestives cid sous vista

Fermé
manda07 Messages postés 19 Date d'inscription mardi 29 avril 2008 Statut Membre Dernière intervention 2 mai 2008 - 1 mai 2008 à 11:39
ep44 Messages postés 7393 Date d'inscription samedi 10 novembre 2007 Statut Contributeur Dernière intervention 11 novembre 2010 - 2 mai 2008 à 23:20
Salut, j'ai donc un problème de fenetres cid qui me harcelent lorsque je suis connectée sur internet, j'ai suivi les conseils de certains membres du forum en utilisant navilog1 et le rapport généré est le suivant, le problème c'est que je ne sais pas quoi en faire...si quelqu'un pouvait me dire quoi supprimer pour que ces fenetres cid n'arretent de s'ouvrir ça serait vraiment bien....
merci d'avance.



Search Navipromo version 3.5.5 commencé le 01/05/2008 à 10:01:23,55

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!

Outil exécuté depuis C:\Program Files\navilog1
Session actuelle : "Amélie"

Mise à jour le 27.04.2008 à 10h00 par IL-MAFIOSO

Microsoft Windows Vista 6.0.6000
Internet Explorer : 7.0.6000.16643
Système de fichiers : NTFS

Executé en mode normal

*** Recherche Programmes installés ***


*** Recherche dossiers dans "C:\Windows" ***


*** Recherche dossiers dans "C:\Program Files" ***


*** Recherche dossiers dans "C:\ProgramData" ***


*** Recherche dossiers dans "c:\progra~2\micros~1\windows\startm~1\programs" ***


*** Recherche dossiers dans "c:\users\amlie~1\appdata\roaming\micros~1\windows\startm~1\programs" ***


*** Recherche dossiers dans "C:\Users\Am‚lie\AppData\Local\virtualstore\Program Files" ***


*** Recherche dossiers dans "C:\Users\Am‚lie\AppData\Roaming" ***

*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d'infos : http://www.gmer.net

Aucun Fichier trouvé


*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!

* Recherche dans "C:\Windows\system32" *

* Recherche dans "C:\Users\Am‚lie\AppData\Local\Microsoft" *

* Recherche dans "C:\Users\Am‚lie\AppData\Local\virtualstore\windows\system32" *

* Recherche dans "C:\Users\Am‚lie\AppData\Local" *



*** Recherche fichiers ***



*** Recherche clés spécifiques dans le Registre ***


*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Recherche nouveaux fichiers Instant Access :


2)Recherche Heuristique :

* Dans "C:\Windows\system32" :


* Dans "C:\Users\Am‚lie\AppData\Local\Microsoft" :


* Dans "C:\Users\Am‚lie\AppData\Local\virtualstore\windows\system32" :


* Dans "C:\Users\Am‚lie\AppData\Local" :


3)Recherche Certificats :

Certificat Egroup absent !
Certificat Electronic-Group absent !
Certificat OOO-Favorit absent !
Certificat Sunny-Day-Design-Ltd absent !

4)Recherche fichiers connus :



*** Analyse terminée le 01/05/2008 à 10:14:03,86 ***
A voir également:

9 réponses

Réponse 1 / 9
ep44 Messages postés 7393 Date d'inscription samedi 10 novembre 2007 Statut Contributeur Dernière intervention 11 novembre 2010 3
1 mai 2008 à 12:45
re

pour commencer

Désactive le contrôle des comptes utilisateurs (tu le réactiveras après ta désinfection):

- Vas dans "Démarrer" puis Panneau de configuration.
- Double Clique sur l'icône Comptes d'utilisateurs et sur Activer ou désactiver le contrôle des comptes d'utilisateurs.
- Clique sur Continuer.
- Décoche la case Utiliser le contrôle des comptes d'utilisateurs pour vous aider à protéger votre ordinateur.
- Valide par OK et redémarre.


ensuite

Télécharge sur le bureau

ftp://ftp.commentcamarche.com/download/HJTInstall.exe

= Double-clic dessus pour l'installer
= Clic Do a system scan and save the log
=coller le rapport
si problème voir l'aide
http://perso.orange.fr/rginformatique/section%20virus/demohijack.htm

@+
0
manda07 Messages postés 19 Date d'inscription mardi 29 avril 2008 Statut Membre Dernière intervention 2 mai 2008
1 mai 2008 à 21:11
voilà le rapport



Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:10:38, on 01/05/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16643)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://neufportail.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (file missing)
R3 - URLSearchHook: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb126\SearchSettings.dll
O1 - Hosts: ::1 localhost
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (file missing)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.0\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSBHO.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb126\SearchSettings.dll
O3 - Toolbar: Show Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.0\CoIEPlg.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (file missing)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [HPAdvisor] C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Phone Online] "C:\ProgramData\dvd help help.2udnd"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [dog about manager team] "C:\ProgramData\load knob locks.c2our"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Envoyer l'&image au périphérique Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O13 - Gopher Prefix:
O16 - DPF: {3860DD98-0549-4D50-AA72-5D17D200EE10} (Windows Live OneCare safety scanner control) - http://cdn.scan.onecare.live.com/resource/download/scanner/fr-fr/wlscctrl2.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://ameliadelarimia.spaces.live.com/PhotoUpload/VistaMsnPUpldfr-fr.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Planificateur LiveUpdate automatique (Automatic LiveUpdate Scheduler) - Symantec Corporation - c:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Com4Qlb - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: GameConsoleService - Unknown owner - C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - c:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE
O23 - Service: LiveUpdate Notice - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: QuickPlay Background Capture Service (QBCS) (QPCapSvc) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe
O23 - Service: QuickPlay Task Scheduler (QTS) (QPSched) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe
0
Réponse 2 / 9
ep44 Messages postés 7393 Date d'inscription samedi 10 novembre 2007 Statut Contributeur Dernière intervention 11 novembre 2010 3
1 mai 2008 à 21:48
relance hijack et coche ceci

R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (file missing)
R3 - URLSearchHook: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb126\SearchSettings.dll
O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb126\SearchSettings.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (file missing)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (file missing)
O4 - Global Startup: BTTray.lnk = ?

Ensuite clique sur fix checked

vérifire dans ajout et suppression de programmes que n'as pas
SearchSettings si tu trouve tu supprime

ensuite
Télécharge OTMoveIt (de Old_Timer) sur ton Bureau.
http://download.bleepingcomputer.com/oldtimer/OTMoveIt2.exe
clic double sur OTMoveIt.exe pour le lancer.
copie la liste qui se trouve en citation ci-dessous,
et colle-la dans le cadre de gauche de OTMoveIt :
Paste List of Files/Folders to be moved.

C:\Program Files\Search Settings\kb126\SearchSettings.dll
EmptyTemp

clique sur MoveIt! pour lancer la suppression.
le résultat apparaîtra dans le cadre Results.
clique sur Exit pour fermer.
poste le rapport situé dans C:\\\_OTMoveIt\MovedFiles.

il te sera peut-être demandé de redémarrer le pc pour achever la suppression.




@+
0
manda07 Messages postés 19 Date d'inscription mardi 29 avril 2008 Statut Membre Dernière intervention 2 mai 2008
1 mai 2008 à 23:27
Voilà j'ai fait tout ce que tu m'as, le rapport est le suivant:

File/Folder C:\Program Files\Search Settings\kb126\SearchSettings.dll not found.
< EmptyTemp >
File delete failed. C:\Users\AMLIE~1\AppData\Local\Temp\ehmsas.txt scheduled to be deleted on reboot.
File delete failed. C:\Users\AMLIE~1\AppData\Local\Temp\~DF30BC.tmp scheduled to be deleted on reboot.
File delete failed. C:\Users\AMLIE~1\AppData\Local\Temp\~DF30E8.tmp scheduled to be deleted on reboot.
File delete failed. C:\Users\AMLIE~1\AppData\Local\Temp\~DFF98.tmp scheduled to be deleted on reboot.
File delete failed. C:\Users\AMLIE~1\AppData\Local\Temp\~DFFAA.tmp scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\000000AF scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\000000B0 scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\000000B1 scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\000000B9 scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\0000011E scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\00000124 scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\0000012C scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\0000012D scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\00000135 scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\DMI161E.tmp scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\ehprivjob.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\ehprivjob1.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\ehprivjob2.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile00.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile01.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile02.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile03.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile04.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile05.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile06.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile07.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile08.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile09.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile10.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile11.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\fwtsqmfile12.sqm scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\IDSinst.LOG scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\JET672A.tmp scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\JET778F.tmp scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\JET896A.tmp scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\JET98C5.tmp scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080319-194345-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080319-194405-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080319-204634-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080319-204651-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080320-002340-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080320-002358-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080320-004019-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080320-004030-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080323-102455-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080323-102512-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080323-143643-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080323-143656-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080323-161837-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080323-161854-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080323-190428-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080323-190441-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080324-091509-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080324-091524-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080324-111501-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080324-111600-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080326-114105-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080326-114135-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080326-182142-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080326-182156-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080328-170951-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080328-171014-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080329-122003-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080329-122017-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080330-013417-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080330-013442-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080330-130544-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080330-130556-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080330-191145-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080330-191205-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080330-191401-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080330-191428-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080331-230641-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080331-230732-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080401-172852-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080401-172905-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080401-183517-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080401-183530-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080402-115356-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080402-115407-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080402-181110-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080402-181121-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080403-161121-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080403-161136-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080403-182438-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080403-182452-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080405-105752-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080405-105806-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080406-200020-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080406-200032-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080407-224519-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080407-224531-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080416-135414-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080416-135442-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080416-144749-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080416-144802-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080418-110621-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080418-110634-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080418-130005-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080418-130018-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080420-121931-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080420-121943-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080420-140826-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080420-140839-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080422-171151-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080422-171204-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080423-135831-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080423-135843-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080427-121414-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080427-121427-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080427-132533-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080427-132552-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080427-143937-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080427-143950-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080427-162144-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080427-162156-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080427-221248-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080427-221301-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080428-210144-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080428-210157-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080429-120655-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080429-120707-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080429-195806-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080429-195828-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080429-205159-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080429-205217-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080430-103635-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080430-103650-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080430-184837-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080430-184849-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080501-194907-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\lpksetup-20080501-194920-0.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\MpCmdRun.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\MpSigStub.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\Norton_SPALOG_3_21_2008_2660862.txt scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\osversion.txt scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\osversionwap.txt scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\QTInstallCode.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\SRTSP_MSI_I_10.2.2.6.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\SRTSP_MSI_U_(1)10.2.0.57.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\SRTSP_Setup_10.2.2.6.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\srtUnin.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\SYMEVENT.LOG scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\WER5C52.tmp.version.txt scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\WER5C53.tmp.appcompat.txt scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\WER9178.tmp.version.txt scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\WER9179.tmp.appcompat.txt scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\WERB6E0.tmp.version.txt scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\WERB6E1.tmp.appcompat.txt scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\WERD441.tmp.version.txt scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\WERD4AF.tmp.appcompat.txt scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\WERD8C2.tmp.version.txt scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\WERD8E3.tmp.appcompat.txt scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\WERE437.tmp.version.txt scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\WERE438.tmp.appcompat.txt scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\WinSAT_DX.etl scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\WinSAT_KernelLog.etl scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\WinSAT_StorageAsmt.etl scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\wlumsp.log scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.
File delete failed. C:\Windows\temp\DWDDDE1.tmp\explorer.exe.xml scheduled to be deleted on reboot.
Temp folders emptied.
IE temp folders emptied.

OTMoveIt2 by OldTimer - Version 1.0.4.1 log created on 05012008_232108


j'espère qu'il n'y aura plus de fenetres cid.... en tout cas merci pour tout, et bon anniversaire à l'avance vu que c'est bientot...le meme jour que moi en plus!
bye
0
Réponse 3 / 9
ep44 Messages postés 7393 Date d'inscription samedi 10 novembre 2007 Statut Contributeur Dernière intervention 11 novembre 2010 3
1 mai 2008 à 23:51
Merci à toi
et pour toi de même alors ;-)

Télécharge ceci: (by Moe) :
http://sosvirus.changelog.fr/Green_day/Lopxpsetup.exe

Double clic sur Lopxpsetup.exe pour lancer l'installation
Au menu, choisir l'option 1
Patienter jusqu'à que l'on demande d'appuyer sur une touche, appuyer !
Une rapport sera alors crée, à copie/colle en entier sur le forum.

0
manda07 Messages postés 19 Date d'inscription mardi 29 avril 2008 Statut Membre Dernière intervention 2 mai 2008
2 mai 2008 à 11:54
Re , je viens d'eesayer mais ils m'ecrivent qu'il nécessite une version non supportée (xp) et j'ai vista....
et j'ai tjs des fenetres cid...aie aie aie!
0
Réponse 4 / 9
ep44 Messages postés 7393 Date d'inscription samedi 10 novembre 2007 Statut Contributeur Dernière intervention 11 novembre 2010 3
2 mai 2008 à 12:26
Bonjour
on passe à autre chose

Télécharger lopxpMH2 depuis http://www.alt-shift-return.org/Info/Fichiers/lopxpMH2.zip
Enregistrer ce fichier sur le Bureau.
Décompresser l'archive lopxpMH2.zip (sous XP, clic droit puis Extraire tout) sur le Bureau.

Dans l'Explorateur, ouvrir le dossier lopxpMH2 qui vient d'être créé sur le Bureau, puis faire un double clic sur lopxpMH2.bat pour lancer l'outil.

Une fenêtre du Bloc-notes va s'ouvrir et afficher le rapport.
Note: Dans le Bloc-notes, vérifier dans le menu Format (en haut) que l'option "Retour automatique à la ligne" n'est pas cochée.
Enregistrer ce fichier sous le nom lopxpMH2-080217.txt
Fermer le Bloc-notes.

==============================================

si ça ne marche pas

Télécharge DiagHelp.zip sur ton bureau http://www.malekal.com/download/DiagHelp.zip
==> Ne double-clic pas dessus !! Fais un clic droit sur le fichier et extraire tout
==> Un nouveau dossier chercher va être créé DiagHelp
==> Ouvre le et double-clic sur go.cmd (le .cmd peut ne pas apparaître)
==> Une fenêtre va s'ouvrir, choisis l'option 1
==> L'analyse va commencer, ceci peut durer quelques minutes, laisse faire et appuie sur une touche quand on te le demande
==> Copie/colle le contenu du bloc-note qui s'ouvre, pour cela :
==> Dans le bloc-note, cliquez sur le menu Edition / Selectionner tout
==> A nouveau menu Edition / copier
==> Dans un nouveau message ici, faire un clic droit / coller
@+
0
manda07 Messages postés 19 Date d'inscription mardi 29 avril 2008 Statut Membre Dernière intervention 2 mai 2008
2 mai 2008 à 13:01
Bon alors pour la première solution le bloc note s'ouvre une fraction de seconde puis se ferme donc j'ai pas le temps de cocher quoi que ce soit.
du coup j'ai essayé la 2ème methode et là lorsque j'appuie sur une touche pour démarrer le scane, il y a ecrit "erreur d'exécution 52, chemin ou nom d'acces incorrect"
je déprime..je pense que c'est un complot ;)je reste ouverte à d'autres solutions!!
merci merci
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 9
ep44 Messages postés 7393 Date d'inscription samedi 10 novembre 2007 Statut Contributeur Dernière intervention 11 novembre 2010 3
2 mai 2008 à 14:05
ok cherche sur ton pc dans "Programmes et fonctionnalités".via le panneau de config

si tu as ceci

* Cid help
* Circle Developement
* Adverts
si oui supprime
refais un nouveau hijack
0
manda07 Messages postés 19 Date d'inscription mardi 29 avril 2008 Statut Membre Dernière intervention 2 mai 2008
2 mai 2008 à 16:56
re, je viens de regarder , je n'ai aucun de ces programmes sur l'ordi ...
0
Réponse 6 / 9
ep44 Messages postés 7393 Date d'inscription samedi 10 novembre 2007 Statut Contributeur Dernière intervention 11 novembre 2010 3
2 mai 2008 à 19:02
refais hijack stp
0
manda07 Messages postés 19 Date d'inscription mardi 29 avril 2008 Statut Membre Dernière intervention 2 mai 2008
2 mai 2008 à 19:43
voilà le nouveau rapport:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:42:55, on 02/05/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16643)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\explorer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://neufportail.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.0\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSBHO.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Show Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.0\CoIEPlg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [HPAdvisor] C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Phone Online] "C:\ProgramData\dvd help help.2udnd"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [dog about manager team] "C:\ProgramData\load knob locks.c2our"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Envoyer l'&image au périphérique Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O13 - Gopher Prefix:
O16 - DPF: {3860DD98-0549-4D50-AA72-5D17D200EE10} (Windows Live OneCare safety scanner control) - http://cdn.scan.onecare.live.com/resource/download/scanner/fr-fr/wlscctrl2.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://ameliadelarimia.spaces.live.com/PhotoUpload/VistaMsnPUpldfr-fr.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Planificateur LiveUpdate automatique (Automatic LiveUpdate Scheduler) - Symantec Corporation - c:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Com4Qlb - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: GameConsoleService - Unknown owner - C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - c:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE
O23 - Service: LiveUpdate Notice - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: QuickPlay Background Capture Service (QBCS) (QPCapSvc) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe
O23 - Service: QuickPlay Task Scheduler (QTS) (QPSched) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe
0
Réponse 7 / 9
ep44 Messages postés 7393 Date d'inscription samedi 10 novembre 2007 Statut Contributeur Dernière intervention 11 novembre 2010 3
2 mai 2008 à 20:09
rend toi ici
https://www.virustotal.com/gui/
et fait analyser ces deux dossiers

C:\ProgramData\dvd help help.2udnd
et
C:\ProgramData\load knob locks.c2our
@+
0
manda07 Messages postés 19 Date d'inscription mardi 29 avril 2008 Statut Membre Dernière intervention 2 mai 2008
2 mai 2008 à 20:26
apparement j'ai plus de fenetre cid!!! jsuis trop contente, merci pour tout, c'etait vraiment gentil de ta part!
à plus
0
Réponse 8 / 9
ep44 Messages postés 7393 Date d'inscription samedi 10 novembre 2007 Statut Contributeur Dernière intervention 11 novembre 2010 3
2 mai 2008 à 21:34
Cool

mais as tu fait analyser les dossiers comme demandé
ensuite une derniére manip pour finalyser ta désinfection
@+
0
manda07 Messages postés 19 Date d'inscription mardi 29 avril 2008 Statut Membre Dernière intervention 2 mai 2008
2 mai 2008 à 22:49
re re, je viens de le faire mais je ne trouve pas les 2 fichiers, il sont introuvables soit disant...
je regarderai encore demain pcq là la fatigue de la journée se fait ressentirµ.
à plus et encore merci
0
Réponse 9 / 9
ep44 Messages postés 7393 Date d'inscription samedi 10 novembre 2007 Statut Contributeur Dernière intervention 11 novembre 2010 3
2 mai 2008 à 23:20
ok
@+
0

Discussions similaires

Problème de clavier, des fenêtre s'ouvrent !!
Lyon691D -
tanteelise -

5 réponses
Encore les CiD
doudoudim -
doudoudim -

18 réponses
p0robleme outlook
ghis2000 -
Panth33ra -

1 réponse
Mon pc ouvre des fenetres tout seul
ilvyans -
bugiuglg -

25 réponses
Reinstaller vista sans cd
pesch -
dd -

86 réponses