Flux rss
Ils ont besoin de votre aide
Collection CommentCaMarche.net
Rechercher : dans
Par : Pertinence Date Nom d'utilisateur
Statut : Résolu

Fenêtre pub IE même hors navigation

Vassago, le lundi 9 mai 2005 à 14:09:51
Bonjour!

Je viens vous voir en désespoir de cause. Depuis quelque jour, une publicité me saute à la tête de façon aléatoire. le nom de la fenêtre est presque toujours "warning". Elle contient des pubs diverses, pour casino, pour des anti-spyware... Elle apparaît même quand je ne navigue pas, quand je joue ma fenêtre de jeu se baisse, quand je bosse sous photoshop elle apparaît... bref, au secours!

Nortons anti-virus ne voyait rien. Je l'ai enlevé et remplacé par Ewido, qu'on m'a conseillé. Il ne voyait rien non plus.

J'ai déjà essayé tous les anti-spyware que je connais tour à tour :
Spyb, ad-aware, a², spysweeper, CWShredder, microsoft anti-spyware...
Rien n'y fait.

Et quand je pense à tout ce que j'aurai à réinstaller sur ma machine si je dois formater juste pour ça... @_@

Bon, j'ai un rapport Hijack... mais je ne sais pas trop quoi en faire. J'espère que c'est ce dont vous avez besoin pour m'aider. D'avance, merci.

<?xml version="1.0" encoding="Windows-1252" ?>
- <a2hijackfreelog>
<version>1.20</version>
<datecreated>2005-05-08 19:55</datecreated>
<language>en-us</language>
<ie_version>6.0.2800.1106</ie_version>
<os>2000</os>
<os_version>5.0.2195</os_version>
<os_csd>Service Pack 4</os_csd>
<programpath>C:\Program Files</programpath>
<startuppath>C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Démarrage</startuppath>
<systempath>C:\WINNT\system32</systempath>
<winpath>C:\WINNT</winpath>
- <autoruns>
- <autorun category="registry">
<name>Synchronization Manager</name>
<location>HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run</location>
<filepath>mobsync.exe /logon</filepath>
</autorun>
- <autorun category="registry">
<name>atwtusb</name>
<location>HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run</location>
<filepath>atwtusb.exe beta</filepath>
</autorun>
- <autorun category="registry">
<name>divwin</name>
<location>HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run</location>
<filepath>divwin.exe</filepath>
</autorun>
- <autorun category="registry">
<name>sp</name>
<location>HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run</location>
<filepath>rundll32 d:\temp\se.dll,DllInstall</filepath>
</autorun>
- <autorun category="startupfiles">
<location>win.ini</location>
<name>load</name>
<filepath />
</autorun>
- <autorun category="startupfiles">
<location>win.ini</location>
<name>run</name>
<filepath />
</autorun>
- <autorun category="startupfiles">
<location>win.ini</location>
<name>shell</name>
<filepath>explorer.exe</filepath>
</autorun>
- <autorun category="startupfiles">
<location>win.ini</location>
<name>scrnsave.exe</name>
<filepath />
</autorun>
- <autorun category="startupfiles">
<location>win.ini</location>
<name>NUL</name>
<filepath />
</autorun>
- <autorun category="autostartmenu">
<location>C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\</location>
<name>EPSON Status Monitor 3 Environment Check 2</name>
</autorun>
- <autorun category="autostartmenu">
<location>C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\</location>
<name>Exif Launcher</name>
</autorun>
- <autorun category="autostartmenu">
<location>C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\</location>
<name>Adobe Gamma Loader</name>
</autorun>
- <autorun category="autostartmenu">
<location>C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\</location>
<name>Microsoft Office</name>
</autorun>
- <autorun category="autostartmenu">
<location>C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\</location>
<name>Lancement rapide dAdobe Reader</name>
</autorun>
- <autorun category="tricky">
<name>internat.exe</name>
<location>HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Run\</location>
<filepath>internat.exe</filepath>
</autorun>
- <autorun category="tricky">
<name>^SetupICWDesktop</name>
<location>HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\RunOnce\</location>
<filepath>%programpath%\Internet Explorer\Connection Wizard\icwconn1.exe /desktop</filepath>
</autorun>
- <autorun category="tricky">
<name>Shell</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\</location>
<filepath>explorer.exe</filepath>
</autorun>
- <autorun category="tricky">
<name>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\</location>
<filepath>%winpath%\inf\unregmp2.exe /ShowWMP</filepath>
</autorun>
- <autorun category="tricky">
<name>{26923b43-4d38-484f-9b9e-de460746276c}</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\</location>
<filepath>%systempath%\shmgrate.exe OCInstallUserConfigIE</filepath>
</autorun>
- <autorun category="tricky">
<name>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\</location>
<filepath>%systempath%\shmgrate.exe OCInstallUserConfigOE</filepath>
</autorun>
- <autorun category="tricky">
<name>{F74FF722-E280-4F3F-86AD-8EFEF12C68D8}</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\</location>
<filepath>RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP</filepath>
</autorun>
- <autorun category="tricky">
<name>{44BBA840-CC51-11CF-AAFA-00AA00B6015C}</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\</location>
<filepath>%programpath%\Outlook Express\setup50.exe /APP:OE /CALLER:WINNT /user /install</filepath>
</autorun>
- <autorun category="tricky">
<name>{44BBA842-CC51-11CF-AAFA-00AA00B6015B}</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\</location>
<filepath>rundll32.exe advpack.dll,LaunchINFSection %winpath%\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT</filepath>
</autorun>
- <autorun category="tricky">
<name>{6A5110B5-E14B-4268-A065-EF89FF33C325}</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\</location>
<filepath>regsvr32.exe /s /n /i:S 2 true 3 true 4 true 5 true 6 true 7 true initpki.dll</filepath>
</autorun>
- <autorun category="tricky">
<name>{6BF52A52-394A-11d3-B153-00C04F79FAA6}</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\</location>
<filepath>rundll32.exe advpack.dll,LaunchINFSection %winpath%\INF\wmp.inf,PerUserStub</filepath>
</autorun>
- <autorun category="tricky">
<name>{7790769C-0471-11d2-AF11-00C04FA35D02}</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\</location>
<filepath>%programpath%\Outlook Express\setup50.exe /APP:WAB /CALLER:WINNT /user /install</filepath>
</autorun>
- <autorun category="tricky">
<name>{89820200-ECBD-11cf-8B85-00AA005B4340}</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\</location>
<filepath>regsvr32.exe /s /n /i:U shell32.dll</filepath>
</autorun>
- <autorun category="tricky">
<name>{89820200-ECBD-11cf-8B85-00AA005B4383}</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\</location>
<filepath>%systempath%\system32\ie4uinit.exe</filepath>
</autorun>
- <autorun category="tricky">
<name>{89B4C1CD-B018-4511-B0A1-5476DBF70820}</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\</location>
<filepath>%systempath%\Rundll32.exe %systempath%\mscories.dll,Install</filepath>
</autorun>
- <autorun category="tricky">
<name>{9EF0045A-CDD9-438e-95E6-02B9AFEC8E11}</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\</location>
<filepath>%systempath%\system32\updcrl.exe -e -u %systempath%\system32\verisignpub1.crl</filepath>
</autorun>
- <autorun category="tricky">
<name>Fichier script VBScript</name>
<location>HKEY_CLASSES_ROOT\vbsfile\shell\open\command\</location>
<filepath>%systempath%\System32\WScript.exe %1 %*</filepath>
</autorun>
- <autorun category="tricky">
<name>Fichier script VBScript</name>
<location>HKEY_CLASSES_ROOT\vbefile\shell\open\command\</location>
<filepath>%systempath%\System32\WScript.exe %1 %*</filepath>
</autorun>
- <autorun category="tricky">
<name>Fichier script JScript</name>
<location>HKEY_CLASSES_ROOT\jsfile\shell\open\command\</location>
<filepath>%systempath%\System32\WScript.exe %1 %*</filepath>
</autorun>
- <autorun category="tricky">
<name>Fichier script JScript</name>
<location>HKEY_CLASSES_ROOT\jsefile\shell\open\command\</location>
<filepath>%systempath%\System32\WScript.exe %1 %*</filepath>
</autorun>
- <autorun category="tricky">
<name>Fichier des paramètres de Windows Script Host</name>
<location>HKEY_CLASSES_ROOT\wshfile\shell\open\command\</location>
<filepath>%systempath%\System32\WScript.exe %1 %*</filepath>
</autorun>
- <autorun category="tricky">
<name>Fichier script Windows</name>
<location>HKEY_CLASSES_ROOT\wsffile\shell\open\command\</location>
<filepath>%systempath%\System32\WScript.exe %1 %*</filepath>
</autorun>
- <autorun category="tricky">
<name>Application</name>
<location>HKEY_CLASSES_ROOT\exefile\shell\open\command\</location>
<filepath>%1 %*</filepath>
</autorun>
- <autorun category="tricky">
<name>Application MS-DOS</name>
<location>HKEY_CLASSES_ROOT\comfile\shell\open\command\</location>
<filepath>%1 %*</filepath>
</autorun>
- <autorun category="tricky">
<name>Fichier de commande MS-DOS</name>
<location>HKEY_CLASSES_ROOT\batfile\shell\open\command\</location>
<filepath>%1 %*</filepath>
</autorun>
- <autorun category="tricky">
<name>Écran de veille</name>
<location>HKEY_CLASSES_ROOT\scrfile\shell\open\command\</location>
<filepath>%1 /S</filepath>
</autorun>
- <autorun category="tricky">
<name>Raccourci pour le programme MS-DOS</name>
<location>HKEY_CLASSES_ROOT\piffile\shell\open\command\</location>
<filepath>%1 %*</filepath>
</autorun>
- <autorun category="tricky">
<name>BootExecute</name>
<location>HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Session Manager\</location>
<filepath>autocheck autochk *</filepath>
</autorun>
- <autorun category="tricky">
<name>Network.ConnectionTray</name>
<location>HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\</location>
<filepath>%systempath%\NETSHELL.dll</filepath>
</autorun>
- <autorun category="tricky">
<name>WebCheck</name>
<location>HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\</location>
<filepath>%systempath%\system32\webcheck.dll</filepath>
</autorun>
- <autorun category="tricky">
<name>SysTray</name>
<location>HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\</location>
<filepath>stobject.dll</filepath>
</autorun>
</autoruns>
- <addons>
- <addon category="bho">
<clsid>{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}</clsid>
<name>AcroIEHlprObj Class</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\</location>
<filepath>D:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll</filepath>
</addon>
- <addon category="bho">
<clsid>{302A3240-4805-4a34-97D7-1645A0B08410}</clsid>
<name>BolgerObj Class</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\</location>
<filepath>%winpath%\Bolger.dll</filepath>
</addon>
- <addon category="shellexecutehooks">
<clsid>{AEB6717E-7E19-11d0-97EE-00C04FD91972}</clsid>
<name>URL Exec Hook</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\</location>
<filepath>shell32.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{00022613-0000-0000-C000-000000000046}</clsid>
<name>Feuille de propriétés du fichier multimédia</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>mmsys.cpl</filepath>
</addon>
- <addon category="shellextension">
<clsid>{176d6597-26d3-11d1-b350-080036a75b03}</clsid>
<name>Gestion de scanneur ICM</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>icmui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{1F2E5C40-9550-11CE-99D2-00AA006E086C}</clsid>
<name>Extension noyau de sécurité</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>rshx32.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{3EA48300-8CF6-101B-84FB-666CCB9BCD32}</clsid>
<name>Page des propriétés de OLE DocFile</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>docprop.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{40dd6e20-7c17-11ce-a804-00aa003ca9f6}</clsid>
<name>Extensions de linterpréteur de commandes pour le partage</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>ntshrui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{41E300E0-78B6-11ce-849B-444553540000}</clsid>
<name>Extension du Panneau de configuration PlusPack</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>plustab.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{42071712-76d4-11d1-8b24-00a0c9068ff3}</clsid>
<name>Extension Affichage Carte du Panneau de configuration</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>deskadp.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{42071713-76d4-11d1-8b24-00a0c9068ff3}</clsid>
<name>Extension Affichage Écran du Panneau de configuration</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>deskmon.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{42071714-76d4-11d1-8b24-00a0c9068ff3}</clsid>
<name>Extension Affichage Panorama du Panneau de configuration</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>deskpan.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{4E40F770-369C-11d0-8922-00A024AB2DBB}</clsid>
<name>Extension noyau de sécurité</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>dssec.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{56117100-C0CD-101B-81E2-00AA004AE837}</clsid>
<name>Gestionnaire de données endommagées de linterpréteur de commandes</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>shscrap.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{59099400-57FF-11CE-BD94-0020AF85B590}</clsid>
<name>Extension copie de disquette</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>diskcopy.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{59be4990-f85c-11ce-aff7-00aa003ca9f6}</clsid>
<name>Extensions de linterpréteur de commandes pour les objets Microsoft Windows Network</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>ntlanui2.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{5DB2625A-54DF-11D0-B6C4-0800091AA605}</clsid>
<name>Gestion décran ICM</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\System32\icmui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{675F097E-4C4D-11D0-B6C1-0800091AA605}</clsid>
<name>Gestion dimprimante ICM</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\icmui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{764BF0E1-F219-11ce-972D-00AA00A14F56}</clsid>
<name />
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath />
</addon>
- <addon category="shellextension">
<clsid>{77597368-7b15-11d0-a0c2-080036af3f03}</clsid>
<name>Extension de lenvironnement dimpression Web</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>printui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{7988B573-EC89-11cf-9C00-00AA00A14F56}</clsid>
<name>Microsoft Disk Quota UI</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>dskquoui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{853FE2B1-B769-11d0-9C4E-00C04FB6C6FA}</clsid>
<name />
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath />
</addon>
- <addon category="shellextension">
<clsid>{85BBD920-42A0-1069-A2E4-08002B30309D}</clsid>
<name>Porte-documents</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>syncui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{88895560-9AA2-1069-930E-00AA0030EBC8}</clsid>
<name>HyperTerminal Icon Ext</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\hticons.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{BD84B380-8CA2-1069-AB1D-08000948F534}</clsid>
<name>Fonts</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>fontext.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{DBCE2480-C732-101B-BE72-BA78E9AD5B27}</clsid>
<name>Profil ICC</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\icmui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{F37C5810-4D3F-11d0-B4BF-00AA00BBB723}</clsid>
<name>Extension noyau de sécurité</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>rshx32.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{f81e9010-6ea4-11ce-a7ff-00aa003ca9f6}</clsid>
<name>Extensions de linterpréteur de commandes pour le partage</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>ntshrui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{f92e8c40-3d33-11d2-b1aa-080036a75b03}</clsid>
<name>Display TroubleShoot CPL Extension</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>deskperf.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{60254CA5-953B-11CF-8C96-00AA00B8708C}</clsid>
<name>Shell Extension For Windows Script Host</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\wshext.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{7444C717-39BF-11D1-8CD9-00C04FC29D45}</clsid>
<name>CryptPKO Class</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\cryptext.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{7444C719-39BF-11D1-8CD9-00C04FC29D45}</clsid>
<name>CryptSig Class</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\cryptext.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{7007ACC7-3202-11D1-AAD2-00805FC1270E}</clsid>
<name>Connexions réseau et accès à distance</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\NETSHELL.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{EFA24E61-B078-11d0-89E4-00C04FC9E26E}</clsid>
<name>Favorites Band</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shdocvw.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{0A89A860-D7B1-11CE-8350-444553540000}</clsid>
<name>Shell Automation Inproc Service</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shdocvw.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{E7E4BC40-E76A-11CE-A9BB-00AA004AE837}</clsid>
<name>Shell DocObject Viewer</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shdocvw.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{FBF23B40-E3F0-101B-8488-00AA003E56F8}</clsid>
<name>Raccourci Internet</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>shdocvw.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{3C374A40-BAE4-11CF-BF7D-00AA006946EE}</clsid>
<name>Microsoft Url History Service</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shdocvw.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{FF393560-C2A7-11CF-BFF4-444553540000}</clsid>
<name>Historique</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shdocvw.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{7BD29E00-76C1-11CF-9DD0-00A0C9034933}</clsid>
<name>Temporary Internet Files</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shdocvw.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{CFBFAE00-17A6-11D0-99CB-00C04FD64497}</clsid>
<name>Microsoft Url Search Hook</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shdocvw.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{A2B0DD40-CC59-11d0-A3A5-00C04FD706EC}</clsid>
<name>Image de démarrage de la Suite IE4</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shdocvw.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{67EA19A0-CCEF-11d0-8024-00C04FD75D13}</clsid>
<name>CDF Extension Copy Hook</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shdocvw.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{131A6951-7F78-11D0-A979-00C04FD705A2}</clsid>
<name>ISFBand OC</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shdocvw.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{9461b922-3c5a-11d2-bf8b-00c04fb93661}</clsid>
<name>Search Assistant OC</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shdocvw.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{3DC7A020-0ACD-11CF-A9BB-00AA004AE837}</clsid>
<name>Internet</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shdocvw.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{871C5380-42A0-1069-A2EA-08002B30309D}</clsid>
<name />
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shdocvw.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{DD2110F0-9EEF-11cf-8D8E-00AA0060F5BF}</clsid>
<name>Scheduling UI icon handler</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\mstask.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{797F1E90-9EDD-11cf-8D8E-00AA0060F5BF}</clsid>
<name>Scheduling UI property sheet handler</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\mstask.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{D6277990-4C6A-11CF-8D87-00AA0060F5BF}</clsid>
<name>Tâches planifiées</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\mstask.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{1A9BA3A0-143A-11CF-8350-444553540000}</clsid>
<name>Dossier favori du shell</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shell32.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{20D04FE0-3AEA-1069-A2D8-08002B30309D}</clsid>
<name>Poste de travail</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shell32.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{86747AC0-42A0-1069-A2E6-08002B30309D}</clsid>
<name>Porte-documents</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shell32.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{0AFACED1-E828-11D1-9187-B532F1E9575D}</clsid>
<name>Raccourci vers le dossier</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shell32.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{12518493-00B2-11d2-9FA5-9E3420524153}</clsid>
<name>Volume monté</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shell32.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{21B22460-3AEA-1069-A2DC-08002B30309D}</clsid>
<name>Extension de la page de propriétés des fichiers</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shell32.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{B091E540-83E3-11CF-A713-0020AFD79762}</clsid>
<name>Page des types de fichiers</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shell32.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{FBF23B41-E3F0-101B-8488-00AA003E56F8}</clsid>
<name>Gestionnaire des types de fichiers MIME</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shell32.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{C2FBB630-2971-11d1-A18C-00C04FD75D13}</clsid>
<name>Service Copier vers Microsoft</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shell32.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{C2FBB631-2971-11d1-A18C-00C04FD75D13}</clsid>
<name>Service Déplacer vers Microsoft</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shell32.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{13709620-C279-11CE-A49E-444553540000}</clsid>
<name>Service dautomatisation de linterface</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\shell32.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{62112AA1-EBE4-11cf-A5FB-0020AFE7292D}</clsid>
<name>Shell Automation Folder View</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shell32.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{4622AD11-FF23-11d0-8D34-00A0C90F2719}</clsid>
<name>Menu Démarrer</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shell32.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{7BA4C740-9E81-11CF-99D3-00AA004AE837}</clsid>
<name>Service SendTo Microsoft</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shell32.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{D969A300-E7FF-11d0-A93B-00A0C90F2719}</clsid>
<name>Service Nouvel objet Microsoft</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shell32.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{09799AFB-AD67-11d1-ABCD-00C04FC30936}</clsid>
<name>Ouvrir avec le gestionnaire de menu contextuel</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shell32.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{3FC0B520-68A9-11D0-8D77-00C04FD70822}</clsid>
<name>Afficher les extensions HTML du Panneau de configuration</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shell32.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{75048700-EF1F-11D0-9888-006097DEACF9}</clsid>
<name>ActiveDesktop</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\shell32.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{6D5313C0-8C62-11D1-B2CD-006097DF8C11}</clsid>
<name>Extension de la page de propriétés des options des dossiers</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shell32.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{57651662-CE3E-11D0-8D77-00C04FC99D61}</clsid>
<name>CmdFileIcon</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shell32.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{4657278A-411B-11d2-839A-00C04FD918D0}</clsid>
<name>Application daide du système pour le glisser-déplacer</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shell32.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{A470F8CF-A1E8-4f65-8335-227475AA5C46}</clsid>
<name>Ajouter lélément de cryptage dans les menus contextuels de lExplorateur</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\shell32.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{5E6AB780-7743-11CF-A12B-00AA004AE837}</clsid>
<name>Barre doutils Internet Microsoft</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{22BF0C20-6DA7-11D0-B373-00A0C9034938}</clsid>
<name>État du téléchargement</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{568804CA-CBD7-11d0-9816-00C04FD91972}</clsid>
<name>Menu Dossier Bureau</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{5b4dae26-b807-11d0-9815-00c04fd91972}</clsid>
<name>Bande de menus</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{8278F931-2A3E-11d2-838F-00C04FD918D0}</clsid>
<name>Suivi du menu Shell</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{E13EF4E4-D2F2-11d0-9816-00C04FD91972}</clsid>
<name>Menu Site</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{ECD4FC4F-521C-11D0-B792-00A0C90312E1}</clsid>
<name>Menu Barre du Bureau</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{91EA3F8B-C99B-11d0-9815-00C04FD91972}</clsid>
<name>Dossier Bureau étendu</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{6413BA2C-B461-11d1-A18A-080036B11A03}</clsid>
<name>Dossier du shell augmenté</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{F61FFEC1-754F-11d0-80CA-00AA005B4383}</clsid>
<name>BandProxy</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{D82BE2B0-5764-11D0-A96E-00C04FD705A2}</clsid>
<name>IShellFolderBand</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{7BA4C742-9E81-11CF-99D3-00AA004AE837}</clsid>
<name>Bande du navigateur Microsoft</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{30D02401-6A81-11d0-8274-00C04FD5AE38}</clsid>
<name>Bande de recherche</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{169A0691-8DF9-11d1-A1C4-00C04FD75D13}</clsid>
<name>Volet intégré de recherche</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{07798131-AF23-11d1-9111-00A0C98BA67D}</clsid>
<name>Recherche Web</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{0E5CBF21-D15F-11d0-8301-00AA005B4383}</clsid>
<name>Liens</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{AF4F6510-F982-11d0-8595-00AA004CD6D8}</clsid>
<name>Utilitaire des options de larborescence du Registre</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{01E04581-4EEE-11d0-BFE9-00AA005B4383}</clsid>
<name>Adresse</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{A08C11D2-A228-11d0-825B-00AA005B4383}</clsid>
<name>Boîte dentrée de ladresse</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{00BB2763-6A77-11D0-A535-00C04FD7D062}</clsid>
<name>Saisie semi-automatique Microsoft</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{7487cd30-f71a-11d0-9ea7-00805f714772}</clsid>
<name>Image miniature</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{7376D660-C583-11d0-A3A5-00C04FD706EC}</clsid>
<name>TridentImageExtractor</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{6756A641-DE71-11d0-831B-00AA005B4383}</clsid>
<name>Liste de saisie semi-automatique MRU</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{00BB2764-6A77-11D0-A535-00C04FD7D062}</clsid>
<name>Liste de saisie semi-automatique de lhistorique Microsoft</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{03C036F1-A186-11D0-824A-00AA005B4383}</clsid>
<name>Liste de saisie semi-automatique du dossier Shell Microsoft</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{00BB2765-6A77-11D0-A535-00C04FD7D062}</clsid>
<name>Conteneur de la liste de saisie semi-automatique multiple Microsoft</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{ECD4FC4E-521C-11D0-B792-00A0C90312E1}</clsid>
<name>Menu Site de bandes</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{3CCF8A41-5C85-11d0-9796-00AA00B90ADF}</clsid>
<name>Shell DeskBarApp</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{ECD4FC4C-521C-11D0-B792-00A0C90312E1}</clsid>
<name>Barre du Bureau</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{ECD4FC4D-521C-11D0-B792-00A0C90312E1}</clsid>
<name>Shell Rebar BandSite</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{DD313E04-FEFF-11d1-8ECD-0000F87A470C}</clsid>
<name>Assistance utilisateur</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{EF8AD2D1-AE36-11D1-B2D2-006097DF8C11}</clsid>
<name>Paramètres du dossier global</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\browseui.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{9E56BE60-C50F-11CF-9A2C-00A0C90A90CE}</clsid>
<name />
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\sendmail.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{9E56BE61-C50F-11CF-9A2C-00A0C90A90CE}</clsid>
<name />
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\sendmail.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{88C6C381-2E85-11D0-94DE-444553540000}</clsid>
<name>Dossier ActiveX Cache</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\occache.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{E6FB5E20-DE35-11CF-9C87-00AA005127ED}</clsid>
<name>WebCheck</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\webcheck.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{ABBE31D0-6DAE-11D0-BECA-00C04FD940BE}</clsid>
<name>Subscription Mgr</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\webcheck.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{F5175861-2688-11d0-9C5E-00AA00A45957}</clsid>
<name>Dossier Inscription</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\webcheck.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{08165EA0-E946-11CF-9C87-00AA005127ED}</clsid>
<name>WebCheckWebCrawler</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\webcheck.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{E3A8BDE6-ABCE-11d0-BC4B-00C04FD929DB}</clsid>
<name>WebCheckChannelAgent</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\webcheck.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{E8BB6DC0-6B4E-11d0-92DB-00A0C90C2BD7}</clsid>
<name>TrayAgent</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\webcheck.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{7D559C10-9FE9-11d0-93F7-00AA0059CE02}</clsid>
<name>Code Download Agent</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\webcheck.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{E6CC6978-6B6E-11D0-BECA-00C04FD940BE}</clsid>
<name>ConnectionAgent</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\webcheck.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{D8BD2030-6FC9-11D0-864F-00AA006809D9}</clsid>
<name>PostAgent</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\webcheck.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{7FC0B86E-5FA7-11d1-BC7C-00C04FD929DB}</clsid>
<name>WebCheck SyncMgr Handler</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\system32\webcheck.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{8BEBB290-52D0-11D0-B7F4-00C04FD706EC}</clsid>
<name>Miniatures</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\thumbvw.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{EAB841A0-9550-11CF-8C16-00805F1408F3}</clsid>
<name>Extracteur de miniatures HTML</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\thumbvw.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{1AEB1360-5AFC-11D0-B806-00C04FD706EC}</clsid>
<name>Extracteur de miniatures des filtres graphiques Office</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\thumbvw.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{9DBD2C50-62AD-11D0-B806-00C04FD706EC}</clsid>
<name>Summary Info Thumbnail handler (DOCFILES)</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\thumbvw.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{500202A0-731E-11D0-B829-00C04FD706EC}</clsid>
<name>LNK file thumbnail interface delegator</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\thumbvw.dll</filepath>
</addon>
- <addon category="shellextension">
<clsid>{352EC2B7-8B9A-11D1-B8AE-006008059382}</clsid>
<name>%DESC_AppMgr%</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\System32\appwiz.cpl</filepath>
</addon>
- <addon category="shellextension">
<clsid>{0B124F8C-91F0-11D1-B8B5-006008059382}</clsid>
<name>Énumérateur dapplications installées</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\</location>
<filepath>%systempath%\System32\appwiz.cpl</filepath>
</addon>
- <addon category="shellextension">
<clsid>{CFCCC7A0-A282-11D1-9082-006008059382}</clsid>
<name>Darwin App Publisher</name>
<location>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curre
Répondre à Vassago  Signaler ce message aux modérateurs Aller au dernier message

1


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
Vassago, le lundi 9 mai 2005 à 14:29:15
Voilà à quoi ressemble la fenêtre au fait (faites pas gaffe à mon wallpaper)

http://endorphinenetwork.free.fr/pub.jpg

(je trouve pas comment éditer les messages, je suis une buse, pardon!)
   
Répondre à Vassago

2


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
Madrilene, le samedi 12 août 2006 à 11:14:29
Hello Vassago
j'ai exactement le même problème, je vois que tu as mis "résolu" à ton sujet, est-ce que tu as trouvé une autre solution que le formatage ?
Merci d'avance
   
Répondre à Madrilene

3


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
Regis59, le samedi 12 août 2006 à 11:29:08
Salut vous 2.

Télécharge ceci: (merci a S!RI pour ce programme).
http://siri.urz.free.fr/Fix/SmitfraudFix.zip
Exécute le, Double click sur Smitfraudfix.cmd choisit l’option 1, il va générer un rapport
Copie/colle le sur le poste stp.

a+
   
Répondre à Regis59

5


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
Madrilene, le samedi 12 août 2006 à 15:17:26
Bonjour
> merci de ton post
> en fait j'ai fait un scan sous Bitdefender et il m'a trouvé deux trojans :
> Trojan Downloader.Winshow.AK dans C:\windows\vbaddin(2).ini=>:eamcyp:$DATA
>
> et
> Genpack:Trojan. Doawnloader.agent.bg dans
> C:\windows\pqdisk1(2).cmd=>:fdvgjm:$DATA
> J'ai pas supprimé les fichiers ne sachant pas trop si il fallait ou pas.
>
> J'ai Spybot et ad aware mais je ne sais pas si je m'en sers bien !
>
> Autre bleme mon disque dur est presque plein, j'arrive a saturation et je ne
> sais pas si je vais pouvoir télécharger de nouveaux logiciel :-(
>
> Mais si tu as une piste...
> Merci d'avance
>
> S
   
Répondre à Madrilene

4


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
Vassago, le samedi 12 août 2006 à 13:00:29
Ouh... ça fait un bout de temps.
J'avais téléchargé un logiciels anti spy-ware, du genre " a²".
J'ai dû en essayer plusieurs avant de trouver celui qui m'a nettoyé ça correctement, et maintenant, je ne sais plus lequel c'était.

Le truc, c'est de surtout passer en mode sans echec pour lancer le nettoyage, de façon à ce que tu n'aies que les services et logiciels minimum qui tournent.
   
Répondre à Vassago

6


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
Regis59, le samedi 12 août 2006 à 19:50:08
Salut

télécharge HijackThis ici:
http://telechargement.zebulon.fr/138-hijackthis-1991.html

Dézippe le dans un dossier prévu à cet effet.
Par exemple C:\hijackthis < Enregistre le bien dans c : !
Démo : (Merci a Balltrap34 pour cette réalisation)
http://pageperso.aol.fr/balltrap34/Hijenr.gif

Lance le puis:
clique sur "do a system scan and save logfile" (cf démo)
faire un copier coller du log entier sur le forum

Démo : (Merci a Balltrap34 pour cette réalisation)
http://pageperso.aol.fr/balltrap34/demohijack.htm

Bon courage

A+
   
Répondre à Regis59

7


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
Madrilene, le dimanche 13 août 2006 à 13:04:44
Re bonjour
Bonjour j'ai le même problem (pub intepestive avec entre autre doctor system) et je n'arrive pas à m'en débarasser.
Voici le rapport avec "blacklight" de F secure : 

08/13/06 12:42:34 [Info]: BlackLight Engine 1.0.42 initialized 
08/13/06 12:42:34 [Info]: OS: 5.1 build 2600 (Service Pack 1) 
08/13/06 12:42:35 [Note]: 7019 4 
08/13/06 12:42:35 [Note]: 7005 0 
08/13/06 12:42:42 [Note]: 7006 0 
08/13/06 12:42:42 [Note]: 7011 312 
08/13/06 12:42:43 [Note]: 7026 0 
08/13/06 12:42:43 [Note]: 7026 0 
08/13/06 12:42:43 [Note]: 7024 3 
08/13/06 12:42:43 [Info]: Hidden process: C:\windows\system32\vzyqxtnhlu.exe 
08/13/06 12:42:43 [Note]: FSRAW library version 1.7.1019 
08/13/06 12:48:19 [Info]: Hidden file: c:\WINDOWS\system32\vzyqxtnhlu_nav.dat 
08/13/06 12:48:19 [Note]: 10002 1 
08/13/06 12:48:20 [Info]: Hidden file: c:\WINDOWS\system32\vzyqxtnhlu.dat 
08/13/06 12:48:20 [Note]: 10002 1 
08/13/06 12:48:20 [Info]: Hidden file: C:\windows\system32\vzyqxtnhlu.exe 
08/13/06 12:48:20 [Note]: 10002 1 
08/13/06 12:48:20 [Info]: Hidden file: c:\WINDOWS\system32\vzyqxtnhlu_navps.dat 
08/13/06 12:48:20 [Note]: 10002 1 
08/13/06 12:48:33 [Info]: Hidden file: c:\WINDOWS\Prefetch\VZYQXTNHLU.EXE-1666D3F0.pf 
08/13/06 12:48:33 [Note]: 10002 1 
08/13/06 12:54:14 [Note]: 7007 0

Le rapport hickthis arrive
Merci d'avance
   
Répondre à Madrilene

8


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
Madrilene, le dimanche 13 août 2006 à 13:17:56
voici le hijack this en mode normalo avec la connexion internet allumée : 

Logfile of HijackThis v1.99.1
Scan saved at 13:08:15, on 13/08/2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\crypserv.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\carpserv.exe
C:\WINDOWS\System32\atiptaxx.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\PROGRA~1\LAUNCH~1\CPLBBL16.EXE
C:\PROGRA~1\Logitech\iTouch\iTouch.exe
C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe
C:\PROGRA~1\Maxtor\OneTouch\Utils\OneTouch.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\System32\ctfmon.exe
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\SpamPal\spampal.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\Netscape\Netscape\Netscp.exe
C:\Documents and Settings\Calas\Bureau\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
N3 - Netscape 7: user_pref("browser.startup.homepage", "http://home.netscape.com/bookmark/7_0/home.html"); (C:\Documents and Settings\Calas\Application Data\Mozilla\Profiles\default\xeldg8q3.slt\prefs.js)
N3 - Netscape 7: user_pref("browser.search.defaultengine", "engine://C%3A%5CProgram%20Files%5CNetscape%5CNetscape%5Csearchplugins%5CSBWeb_01.src"); (C:\Documents and Settings\Calas\Application Data\Mozilla\Profiles\default\xeldg8q3.slt\prefs.js)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Acrobat\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\system32\msdxm.ocx
O4 - HKLM\..\Run: [CARPService] carpserv.exe
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [AtiPTA] atiptaxx.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\CPLBBL16.EXE
O4 - HKLM\..\Run: [zBrowser Launcher] C:\PROGRA~1\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [MaxtorOneTouch] C:\PROGRA~1\Maxtor\OneTouch\Utils\OneTouch.exe
O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe"  -osboot
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [Mozilla Quick Launch] "C:\Program Files\Netscape\Netscape\Netscp.exe" -turbo
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - Startup: La Solution Ciel 2000.lnk = C:\CIEL\STARTER.EXE
O4 - Startup: La Solution Enseignement Ciel.lnk = C:\CIEL\STARTER.EXE
O4 - Startup: SpamPal.lnk = C:\Program Files\SpamPal\spampal.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O15 - Trusted Zone: http://www.franceinter.com
O15 - Trusted Zone: http://www.radiofrance.fr
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} - 
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2005111401/housecall.trendmicro.com/housecall/...
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Environnement d'exécution Java 1.4.0_03) - 
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} - 
O16 - DPF: {CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA} - 
O17 - HKLM\System\CCS\Services\Tcpip\..\{39DB5B7B-256C-4C1F-B888-1CFF640350A6}: NameServer = 80.10.246.1 80.10.246.132
O17 - HKLM\System\CCS\Services\Tcpip\..\{3B2A23CC-957E-463F-9CD9-1305637949D6}: NameServer = 192.168.0.1
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: Crypkey License - Kenonic Controls Ltd. - C:\WINDOWS\SYSTEM32\crypserv.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: MacFormatService - Unknown owner - C:\Program Files\Conversions Plus\FORMATM.EXE" /SERVICE (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs Inc. - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

merci d'avance
   
Répondre à Madrilene

9


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
Regis59, le dimanche 13 août 2006 à 15:25:40
salut mandrilene

Il serait préférable que tu fasses ton message personnel, cela rendra les postes plus compréhensibles et la réponse à ton problème sera plus efficace
Procèdes comme ceci :
http://pageperso.aol.fr/balltrap34/demofairesontmessage.htm

A bientôt
   
Répondre à Regis59

10


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
evan2, le dimanche 8 avril 2007 à 01:01:50
Voila moi j'ai le meme probleme sauf que c'est plusieurs site comme : navisearch ,drivercleaner ...

Voici mon diagnostique :

Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe