Fenêtre intempestive qui s'ouvre avec IE 7 (Windows vista 64 premium)

Le
Laurent
Bonjour,
Depuis quelques temps, j'ai une fenêtre qui s'ouvre quand je surfe sur IE.
J'ai fait pas mal de scan avec ad aware, spybot, trend micro, Mais en
vain.
J'ai fait un scan avec "hijackthis", voici le résultat :
Merci pour votre aide.
Laurent.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 08:03:53, on 30/09/2007
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16512)
Boot mode: Normal

Running processes:
C:WindowsSOUNDMAN.EXE
C:Program Files
(x86)GoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
C:Program FilesAlwil SoftwareAvast4ashDisp.exe
C:Program Files (x86)BitSpiritBitSpirit.exe
C:Program Files (x86)LavasoftAd-Aware 2007Ad-Aware2007.exe
C:Program Files (x86)Internet Exploreriexplore.exe
C:UserschycoboyAppDataLocalMicrosoftWindowsTemporary Internet
FilesContent.IE5OF95JQ4PHiJackThis[1].exe

R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page =
http://go.microsoft.com/fwlink/?LinkIdT896
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkIdi157
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkIdT896
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page =
http://go.microsoft.com/fwlink/?LinkIdT896
R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page =
http://go.microsoft.com/fwlink/?LinkIdi157
R0 - HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant =
R0 - HKLMSoftwareMicrosoftInternet ExplorerSearch,CustomizeSearch =
R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader -
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:Program Files (x86)Common
FilesAdobeAcrobatActiveXAcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) -
{22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:Program Files
(x86)SkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
O2 - BHO: Spybot-S&D IE Protection -
{53707962-6F74-2D53-2644-206D7942484F} - C:PROGRA~2Spybot - Search &
DestroySDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} -
c:program files (x86)googlegoogletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO -
{AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:Program Files
(x86)GoogleGoogleToolbarNotifier2.0.301.5672swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:program
files (x86)googlegoogletoolbar1.dll
O4 - HKLM..Run: [avast!] C:PROGRA~1ALWILS~1Avast4ashDisp.exe
O4 - HKLM..Run: [Adobe Reader Speed Launcher] "C:Program Files
(x86)AdobeReader 8.0ReaderReader_sl.exe"
O4 - HKLM..Run: [MAGIXautostart] D:setup.exe
O4 - HKLM..Run: [QuickTime Task] "C:Program Files
(x86)QuickTimeqttask.exe" -atboottime
O4 - HKLM..Run: [StartCCC] C:Program Files (x86)ATI
TechnologiesATI.ACECore-StaticCLIStart.exe
O4 - HKCU..Run: [swg] C:Program Files
(x86)GoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
O4 - HKUSS-1-5-19..Run: [Sidebar] %ProgramFiles%Windows
SidebarSidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUSS-1-5-19..Run: [WindowsWelcomeCenter] rundll32.exe
oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUSS-1-5-20..Run: [Sidebar] %ProgramFiles%Windows
SidebarSidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: Télécharger avec &BitSpirit - C:Program Files
(x86)BitSpiritbsurl.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} -
C:Program Files (x86)Javajre1.5.0_03binpjpi150_03.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) -
{08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program Files
(x86)Javajre1.5.0_03binpjpi150_03.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} -
C:Program Files (x86)SkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} -
C:PROGRA~2Microsoft OfficeOffice12REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} -
C:PROGRA~2Spybot - Search & DestroySDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration -
{DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:PROGRA~2Spybot - Search &
DestroySDHelper.dll
O13 - Gopher Prefix:
O15 - Trusted Zone: http://www.msi.com.tw
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) -
http://a1540.g.akamai.net/7/1540/52/20070711/qtinstall.info.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) -
http://webscanner.kaspersky.fr/kavwebscan_unicode.cab
O16 - DPF: {104B0A37-AB99-4F06-8032-8BBDC3B77DDB} (Telechargement Control) -
http://www8.photoweb.fr/telechargement/Photoweb_uploader.cab
O16 - DPF: {3860DD98-0549-4D50-AA72-5D17D200EE10} (Windows Live OneCare
safety scanner control) -
http://cdn.scan.onecare.live.com/resource/download/scanner/fr-FR/wlscctrl2.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) -
http://gfx1.mail.live.com/mail/w1/resources/VistaMSNPUpldfr-fr.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) -
http://a840.g.akamai.net/7/840/537/2005111401/housecall.trendmicro.com/housecall/xscan53.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload
Control) -
http://chycoboy.spaces.live.com/PhotoUpload/VistaMsnPUpldfr-fr.cab
O16 - DPF: {8167C273-DF59-4416-B647-C8BB2C7EE83E} (WebSDev Control) -
http://liveupdate.msi.com.tw/autobios/LOnline/install.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} -
http://charon777.free.fr/plugins/hardwaredetection_2_0_4_9.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment
1.5.0) -
http://javadl-esd.sun.com/update/1.5.0/jinstall-1_5_0_03-windows-i586.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -
http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} -
C:PROGRA~2COMMON~1SkypeSkype4COM.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:Program
Files (x86)LavasoftAd-Aware 2007aawservice.exe
O23 - Service: @%SystemRoot%system32Alg.exe,-112 (ALG) - Unknown owner -
C:WindowsSystem32alg.exe (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software -
C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
O23 - Service: Ati External Event Utility - Unknown owner -
C:Windowssystem32Ati2evxx.exe (file missing)
O23 - Service: avast! Antivirus - ALWIL Software - C:Program FilesAlwil
SoftwareAvast4ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:Program FilesAlwil
SoftwareAvast4ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:Program FilesAlwil
SoftwareAvast4ashWebSv.exe
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner -
C:Windowssystem32DFSR.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision
Corporation - C:Program Files (x86)Common
FilesInstallShieldDriver1150Intel 32IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner -
C:Windowssystem32lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner -
C:WindowsSystem32msdtc.exe (file missing)
O23 - Service: NBService - Nero AG - C:Program Files (x86)NeroNero 7Nero
BackItUpNBService.exe
O23 - Service: @%SystemRoot%System32etlogon.dll,-102 (Netlogon) - Unknown
owner - C:Windowssystem32lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:Program Files (x86)Common
FilesAheadLibNMIndexingService.exe
O23 - Service: PnkBstrA - Unknown owner - C:Windowssystem32PnkBstrA.exe
O23 - Service: @%systemroot%system32psbase.dll,-300 (ProtectedStorage) -
Unknown owner - C:Windowssystem32lsass.exe (file missing)
O23 - Service: @%systemroot%system32Locator.exe,-2 (RpcLocator) - Unknown
owner - C:Windowssystem32locator.exe (file missing)
O23 - Service: @%SystemRoot%system32samsrv.dll,-1 (SamSs) - Unknown
owner - C:Windowssystem32lsass.exe (file missing)
O23 - Service: @%SystemRoot%system32SLsvc.exe,-101 (slsvc) - Unknown
owner - C:Windowssystem32SLsvc.exe (file missing)
O23 - Service: @%SystemRoot%system32snmptrap.exe,-3 (SNMPTRAP) - Unknown
owner - C:WindowsSystem32snmptrap.exe (file missing)
O23 - Service: @%systemroot%system32spoolsv.exe,-1 (Spooler) - Unknown
owner - C:WindowsSystem32spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%system32ui0detect.exe,-101 (UI0Detect) -
Unknown owner - C:Windowssystem32UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%system32vds.exe,-100 (vds) - Unknown owner -
C:WindowsSystem32vds.exe (file missing)
O23 - Service: @%systemroot%system32vssvc.exe,-102 (VSS) - Unknown owner -
C:Windowssystem32vssvc.exe (file missing)
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner -
C:Program Files (x86)Windows LiveinstallerWLSetupSvc.exe
O23 - Service: @%Systemroot%system32wbemwmiapsrv.exe,-110 (wmiApSrv) -
Unknown owner - C:Windowssystem32wbemWmiApSrv.exe (file missing)
O23 - Service: @%ProgramFiles%Windows Media Playerwmpnetwk.exe,-101
(WMPNetworkSvc) - Unknown owner - C:Program Files (x86)Windows Media
Playerwmpnetwk.exe (file missing)

--
End of file - 9413 bytes
Vidéos High-Tech et Jeu Vidéo
Téléchargements
Vos réponses
Gagnez chaque mois un abonnement Premium avec GNT : Inscrivez-vous !
Trier par : date / pertinence
Fabrice [MVP]
Le #396085
"Laurent" news:46ff403c$0$15949$
Bonjour,
Depuis quelques temps, j'ai une fenêtre qui s'ouvre quand je surfe sur IE.
J'ai fait pas mal de scan avec ad aware, spybot, trend micro, ... Mais en
vain.
J'ai fait un scan avec "hijackthis", voici le résultat :
Merci pour votre aide.
Laurent.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 08:03:53, on 30/09/2007
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16512)
Boot mode: Normal

Running processes:
C:WindowsSOUNDMAN.EXE
C:Program Files
(x86)GoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
C:Program FilesAlwil SoftwareAvast4ashDisp.exe
C:Program Files (x86)BitSpiritBitSpirit.exe
C:Program Files (x86)LavasoftAd-Aware 2007Ad-Aware2007.exe
C:Program Files (x86)Internet Exploreriexplore.exe
C:UserschycoboyAppDataLocalMicrosoftWindowsTemporary Internet
FilesContent.IE5OF95JQ4PHiJackThis[1].exe

R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page =
http://go.microsoft.com/fwlink/?LinkIdT896
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkIdi157
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkIdT896
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page =
http://go.microsoft.com/fwlink/?LinkIdT896
R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page =
http://go.microsoft.com/fwlink/?LinkIdi157
R0 - HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant > R0 - HKLMSoftwareMicrosoftInternet ExplorerSearch,CustomizeSearch > R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName > F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader -
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:Program Files (x86)Common
FilesAdobeAcrobatActiveXAcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) -
{22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:Program Files
(x86)SkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
O2 - BHO: Spybot-S&D IE Protection -
{53707962-6F74-2D53-2644-206D7942484F} - C:PROGRA~2Spybot - Search &
DestroySDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} -
c:program files (x86)googlegoogletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO -
{AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:Program Files
(x86)GoogleGoogleToolbarNotifier2.0.301.5672swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} -
c:program files (x86)googlegoogletoolbar1.dll
O4 - HKLM..Run: [avast!] C:PROGRA~1ALWILS~1Avast4ashDisp.exe
O4 - HKLM..Run: [Adobe Reader Speed Launcher] "C:Program Files
(x86)AdobeReader 8.0ReaderReader_sl.exe"
O4 - HKLM..Run: [MAGIXautostart] D:setup.exe
O4 - HKLM..Run: [QuickTime Task] "C:Program Files
(x86)QuickTimeqttask.exe" -atboottime
O4 - HKLM..Run: [StartCCC] C:Program Files (x86)ATI
TechnologiesATI.ACECore-StaticCLIStart.exe
O4 - HKCU..Run: [swg] C:Program Files
(x86)GoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
O4 - HKUSS-1-5-19..Run: [Sidebar] %ProgramFiles%Windows
SidebarSidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUSS-1-5-19..Run: [WindowsWelcomeCenter] rundll32.exe
oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUSS-1-5-20..Run: [Sidebar] %ProgramFiles%Windows
SidebarSidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: Télécharger avec &BitSpirit - C:Program
Files (x86)BitSpiritbsurl.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} -
C:Program Files (x86)Javajre1.5.0_03binnpjpi150_03.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) -
{08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program Files
(x86)Javajre1.5.0_03binnpjpi150_03.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} -
C:Program Files (x86)SkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} -
C:PROGRA~2Microsoft OfficeOffice12REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} -
C:PROGRA~2Spybot - Search & DestroySDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration -
{DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:PROGRA~2Spybot - Search &
DestroySDHelper.dll
O13 - Gopher Prefix:
O15 - Trusted Zone: http://www.msi.com.tw
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) -
http://a1540.g.akamai.net/7/1540/52/20070711/qtinstall.info.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) -
http://webscanner.kaspersky.fr/kavwebscan_unicode.cab
O16 - DPF: {104B0A37-AB99-4F06-8032-8BBDC3B77DDB} (Telechargement
Control) - http://www8.photoweb.fr/telechargement/Photoweb_uploader.cab
O16 - DPF: {3860DD98-0549-4D50-AA72-5D17D200EE10} (Windows Live OneCare
safety scanner control) -
http://cdn.scan.onecare.live.com/resource/download/scanner/fr-FR/wlscctrl2.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload
Tool) - http://gfx1.mail.live.com/mail/w1/resources/VistaMSNPUpldfr-fr.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) -
http://a840.g.akamai.net/7/840/537/2005111401/housecall.trendmicro.com/housecall/xscan53.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo
Upload Control) -
http://chycoboy.spaces.live.com/PhotoUpload/VistaMsnPUpldfr-fr.cab
O16 - DPF: {8167C273-DF59-4416-B647-C8BB2C7EE83E} (WebSDev Control) -
http://liveupdate.msi.com.tw/autobios/LOnline/install.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} -
http://charon777.free.fr/plugins/hardwaredetection_2_0_4_9.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime
Environment 1.5.0) -
http://javadl-esd.sun.com/update/1.5.0/jinstall-1_5_0_03-windows-i586.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash
Object) -
http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} -
C:PROGRA~2COMMON~1SkypeSkype4COM.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB -
C:Program Files (x86)LavasoftAd-Aware 2007aawservice.exe
O23 - Service: @%SystemRoot%system32Alg.exe,-112 (ALG) - Unknown owner -
C:WindowsSystem32alg.exe (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software -
C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
O23 - Service: Ati External Event Utility - Unknown owner -
C:Windowssystem32Ati2evxx.exe (file missing)
O23 - Service: avast! Antivirus - ALWIL Software - C:Program FilesAlwil
SoftwareAvast4ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:Program
FilesAlwil SoftwareAvast4ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:Program
FilesAlwil SoftwareAvast4ashWebSv.exe
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner -
C:Windowssystem32DFSR.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision
Corporation - C:Program Files (x86)Common
FilesInstallShieldDriver1150Intel 32IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner -
C:Windowssystem32lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner -
C:WindowsSystem32msdtc.exe (file missing)
O23 - Service: NBService - Nero AG - C:Program Files (x86)NeroNero
7Nero BackItUpNBService.exe
O23 - Service: @%SystemRoot%System32netlogon.dll,-102 (Netlogon) -
Unknown owner - C:Windowssystem32lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:Program Files (x86)Common
FilesAheadLibNMIndexingService.exe
O23 - Service: PnkBstrA - Unknown owner - C:Windowssystem32PnkBstrA.exe
O23 - Service: @%systemroot%system32psbase.dll,-300 (ProtectedStorage) -
Unknown owner - C:Windowssystem32lsass.exe (file missing)
O23 - Service: @%systemroot%system32Locator.exe,-2 (RpcLocator) -
Unknown owner - C:Windowssystem32locator.exe (file missing)
O23 - Service: @%SystemRoot%system32samsrv.dll,-1 (SamSs) - Unknown
owner - C:Windowssystem32lsass.exe (file missing)
O23 - Service: @%SystemRoot%system32SLsvc.exe,-101 (slsvc) - Unknown
owner - C:Windowssystem32SLsvc.exe (file missing)
O23 - Service: @%SystemRoot%system32snmptrap.exe,-3 (SNMPTRAP) - Unknown
owner - C:WindowsSystem32snmptrap.exe (file missing)
O23 - Service: @%systemroot%system32spoolsv.exe,-1 (Spooler) - Unknown
owner - C:WindowsSystem32spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%system32ui0detect.exe,-101 (UI0Detect) -
Unknown owner - C:Windowssystem32UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%system32vds.exe,-100 (vds) - Unknown owner -
C:WindowsSystem32vds.exe (file missing)
O23 - Service: @%systemroot%system32vssvc.exe,-102 (VSS) - Unknown
owner - C:Windowssystem32vssvc.exe (file missing)
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner -
C:Program Files (x86)Windows LiveinstallerWLSetupSvc.exe
O23 - Service: @%Systemroot%system32wbemwmiapsrv.exe,-110 (wmiApSrv) -
Unknown owner - C:Windowssystem32wbemWmiApSrv.exe (file missing)
O23 - Service: @%ProgramFiles%Windows Media Playerwmpnetwk.exe,-101
(WMPNetworkSvc) - Unknown owner - C:Program Files (x86)Windows Media
Playerwmpnetwk.exe (file missing)

--
End of file - 9413 bytes




Bonsoir,

Votre log n'est pas valable... il est fait en mode normale et pas en mode
sans échec et il est exécutez depuis IE, alors qu'il faut le décompresser
AVANT et l'exécuter APRES avec un explorateur et pas depuis IE.

--
Fabrice
Microsoft MVP
http://www.fab3d.fr.st
Faq Windows XP :
http://a.vouillon.online.fr/faq-winxp.htm

Jean Pierre
Le #395997
Dans son message news:,
Fabrice [MVP]
"Laurent" news:46ff403c$0$15949$
Bonjour,
Depuis quelques temps, j'ai une fenêtre qui s'ouvre quand je surfe
sur IE. J'ai fait pas mal de scan avec ad aware, spybot, trend
micro, ... Mais en vain.
J'ai fait un scan avec "hijackthis", voici le résultat :
Merci pour votre aide.
Laurent.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 08:03:53, on 30/09/2007
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16512)
Boot mode: Normal

Running processes:
C:WindowsSOUNDMAN.EXE
C:Program Files
(x86)GoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
C:Program FilesAlwil SoftwareAvast4ashDisp.exe
C:Program Files (x86)BitSpiritBitSpirit.exe
C:Program Files (x86)LavasoftAd-Aware 2007Ad-Aware2007.exe
C:Program Files (x86)Internet Exploreriexplore.exe
C:UserschycoboyAppDataLocalMicrosoftWindowsTemporary Internet
FilesContent.IE5OF95JQ4PHiJackThis[1].exe

R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page >> http://go.microsoft.com/fwlink/?LinkIdT896
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL
= http://go.microsoft.com/fwlink/?LinkIdi157
R1 - HKLMSoftwareMicrosoftInternet
ExplorerMain,Default_Search_URL >> http://go.microsoft.com/fwlink/?LinkIdT896 R1 -
HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page >> http://go.microsoft.com/fwlink/?LinkIdT896
R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page >> http://go.microsoft.com/fwlink/?LinkIdi157
R0 - HKLMSoftwareMicrosoftInternet
ExplorerSearch,SearchAssistant = R0 -
HKLMSoftwareMicrosoftInternet ExplorerSearch,CustomizeSearch >> R0 - HKCUSoftwareMicrosoftInternet
ExplorerToolbar,LinksFolderName = F2 - REG:system.ini:
UserInit=userinit.exe O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader -
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:Program Files
(x86)Common FilesAdobeAcrobatActiveXAcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) -
{22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:Program Files
(x86)SkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
O2 - BHO: Spybot-S&D IE Protection -
{53707962-6F74-2D53-2644-206D7942484F} - C:PROGRA~2Spybot - Search
& DestroySDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no
file) O2 - BHO: Google Toolbar Helper -
{AA58ED58-01DD-4d91-8333-CF10577473F7} - c:program files
(x86)googlegoogletoolbar1.dll O2 - BHO: Google Toolbar Notifier
BHO -
{AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:Program Files
(x86)GoogleGoogleToolbarNotifier2.0.301.5672swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} -
c:program files (x86)googlegoogletoolbar1.dll
O4 - HKLM..Run: [avast!] C:PROGRA~1ALWILS~1Avast4ashDisp.exe
O4 - HKLM..Run: [Adobe Reader Speed Launcher] "C:Program Files
(x86)AdobeReader 8.0ReaderReader_sl.exe"
O4 - HKLM..Run: [MAGIXautostart] D:setup.exe
O4 - HKLM..Run: [QuickTime Task] "C:Program Files
(x86)QuickTimeqttask.exe" -atboottime
O4 - HKLM..Run: [StartCCC] C:Program Files (x86)ATI
TechnologiesATI.ACECore-StaticCLIStart.exe
O4 - HKCU..Run: [swg] C:Program Files
(x86)GoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
O4 - HKUSS-1-5-19..Run: [Sidebar] %ProgramFiles%Windows
SidebarSidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUSS-1-5-19..Run: [WindowsWelcomeCenter] rundll32.exe
oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUSS-1-5-20..Run: [Sidebar] %ProgramFiles%Windows
SidebarSidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: Télécharger avec &BitSpirit -
C:Program Files (x86)BitSpiritbsurl.htm
O9 - Extra button: (no name) -
{08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program Files
(x86)Javajre1.5.0_03binnpjpi150_03.dll O9 - Extra 'Tools'
menuitem: Console Java (Sun) -
{08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program Files
(x86)Javajre1.5.0_03binnpjpi150_03.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} -
C:Program Files (x86)SkypeToolbarsInternet
ExplorerSkypeIEPlugin.dll O9 - Extra button: Research -
{92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:PROGRA~2Microsoft
OfficeOffice12REFIEBAR.DLL O9 - Extra button: (no name) -
{DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:PROGRA~2Spybot - Search
& DestroySDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search &
Destroy Configuration
- {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:PROGRA~2Spybot -
Search & DestroySDHelper.dll
O13 - Gopher Prefix:
O15 - Trusted Zone: http://www.msi.com.tw
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object)
-
http://a1540.g.akamai.net/7/1540/52/20070711/qtinstall.info.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan
Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab O16 -
DPF: {104B0A37-AB99-4F06-8032-8BBDC3B77DDB} (Telechargement
Control) -
http://www8.photoweb.fr/telechargement/Photoweb_uploader.cab O16 -
DPF: {3860DD98-0549-4D50-AA72-5D17D200EE10} (Windows Live OneCare
safety scanner control) -
http://cdn.scan.onecare.live.com/resource/download/scanner/fr-FR/wlscctrl2.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload
Tool) -
http://gfx1.mail.live.com/mail/w1/resources/VistaMSNPUpldfr-fr.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall
Control) -
http://a840.g.akamai.net/7/840/537/2005111401/housecall.trendmicro.com/housecall/xscan53.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live
Photo Upload Control) -
http://chycoboy.spaces.live.com/PhotoUpload/VistaMsnPUpldfr-fr.cab
O16 - DPF: {8167C273-DF59-4416-B647-C8BB2C7EE83E} (WebSDev Control) -
http://liveupdate.msi.com.tw/autobios/LOnline/install.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} -
http://charon777.free.fr/plugins/hardwaredetection_2_0_4_9.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime
Environment 1.5.0) -
http://javadl-esd.sun.com/update/1.5.0/jinstall-1_5_0_03-windows-i586.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash
Object) -
http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} -
C:PROGRA~2COMMON~1SkypeSkype4COM.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB -
C:Program Files (x86)LavasoftAd-Aware 2007aawservice.exe
O23 - Service: @%SystemRoot%system32Alg.exe,-112 (ALG) - Unknown
owner - C:WindowsSystem32alg.exe (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL
Software - C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
O23 - Service: Ati External Event Utility - Unknown owner -
C:Windowssystem32Ati2evxx.exe (file missing)
O23 - Service: avast! Antivirus - ALWIL Software - C:Program
FilesAlwil SoftwareAvast4ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:Program
FilesAlwil SoftwareAvast4ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:Program
FilesAlwil SoftwareAvast4ashWebSv.exe
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner -
C:Windowssystem32DFSR.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision
Corporation - C:Program Files (x86)Common
FilesInstallShieldDriver1150Intel 32IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner -
C:Windowssystem32lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner -
C:WindowsSystem32msdtc.exe (file missing)
O23 - Service: NBService - Nero AG - C:Program Files (x86)NeroNero
7Nero BackItUpNBService.exe
O23 - Service: @%SystemRoot%System32netlogon.dll,-102 (Netlogon) -
Unknown owner - C:Windowssystem32lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:Program Files
(x86)Common FilesAheadLibNMIndexingService.exe
O23 - Service: PnkBstrA - Unknown owner -
C:Windowssystem32PnkBstrA.exe O23 - Service:
@%systemroot%system32psbase.dll,-300 (ProtectedStorage) - Unknown
owner - C:Windowssystem32lsass.exe (file missing) O23 - Service:
@%systemroot%system32Locator.exe,-2 (RpcLocator) -
Unknown owner - C:Windowssystem32locator.exe (file missing)
O23 - Service: @%SystemRoot%system32samsrv.dll,-1 (SamSs) - Unknown
owner - C:Windowssystem32lsass.exe (file missing)
O23 - Service: @%SystemRoot%system32SLsvc.exe,-101 (slsvc) -
Unknown owner - C:Windowssystem32SLsvc.exe (file missing)
O23 - Service: @%SystemRoot%system32snmptrap.exe,-3 (SNMPTRAP) -
Unknown owner - C:WindowsSystem32snmptrap.exe (file missing)
O23 - Service: @%systemroot%system32spoolsv.exe,-1 (Spooler) -
Unknown owner - C:WindowsSystem32spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%system32ui0detect.exe,-101 (UI0Detect)
- Unknown owner - C:Windowssystem32UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%system32vds.exe,-100 (vds) - Unknown
owner - C:WindowsSystem32vds.exe (file missing)
O23 - Service: @%systemroot%system32vssvc.exe,-102 (VSS) - Unknown
owner - C:Windowssystem32vssvc.exe (file missing)
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown
owner - C:Program Files (x86)Windows LiveinstallerWLSetupSvc.exe
O23 - Service: @%Systemroot%system32wbemwmiapsrv.exe,-110
(wmiApSrv) - Unknown owner - C:Windowssystem32wbemWmiApSrv.exe
(file missing) O23 - Service: @%ProgramFiles%Windows Media
Playerwmpnetwk.exe,-101
(WMPNetworkSvc) - Unknown owner - C:Program Files (x86)Windows
Media Playerwmpnetwk.exe (file missing)

--
End of file - 9413 bytes




Bonsoir,

Votre log n'est pas valable... il est fait en mode normale et pas en
mode sans échec et il est exécutez depuis IE, alors qu'il faut le
décompresser AVANT et l'exécuter APRES avec un explorateur et pas
depuis IE.


Bonsoir,

Ah bon c'est nouveau cela décompresser un log et tu fais comment sérieux
et en plus exécuter depuis IE alors qu'HIjackThis le propose tu as du
faire de grandes études sérieux pour dire autant de conneries et en plus
MVP j'hallucine grave là comme quoi Jiel a pas tout à fait tort sur son
approche des MVP répondre le plus possible avec 9 conneries sur 10
questions.

Enfin pour te répondre Laurent déjà tout ce qui est file missing ou no
file tu fixes et en priorité
O23 - Service: @%systemroot%system32vssvc.exe,-102 (VSS) - Unknown
owner -C:Windowssystem32vssvc.exe (file missing)


Fabrice [MVP]
Le #395996
Ah bon c'est nouveau cela décompresser un log et tu fais comment sérieux
et en plus exécuter depuis IE alors qu'HIjackThis le propose tu as du
faire de grandes études sérieux pour dire autant de conneries et en plus
MVP j'hallucine grave là comme quoi Jiel a pas tout à fait tort sur son
approche des MVP répondre le plus possible avec 9 conneries sur 10
questions.

Enfin pour te répondre Laurent déjà tout ce qui est file missing ou no
file tu fixes et en priorité
O23 - Service: @%systemroot%system32vssvc.exe,-102 (VSS) - Unknown
owner -C:Windowssystem32vssvc.exe (file missing)




T'es un malin toi..
C'est pas le LOG qu'il faut décompresser, c'est le programme pour ne pas
l'exécuter à travers IE !!!!
Et les fichiers missing, ne réparerons pas sont problème car ces fichiers ne
peuvent plus être mis en cause !

Si Jiel disait cela sur les MVP, il devais en penser autant pour toi !

--
Fabrice
Microsoft MVP
http://www.fab3d.fr.st
Faq Windows XP :
http://a.vouillon.online.fr/faq-winxp.htm

Publicité
Poster une réponse
Anonyme