Utilisateur(s) parcourant cette discussion : 1 visiteur(s)

demande d'aide pour suppression fenêtre intempestive
Auteur Message
yoann090 En ligne
Equipe SHZ
*****

Messages : 504
Inscription : Sept. 2012
Message : #11
RE: demande d'aide pour suppression fenêtre intempestive
Il est en quoi ton pc, le langage est en anglais, adobe reader en japonais apparemment, y a plein de problème d'encodage ?

De ce fait, les outils de désinfection ne peuvent pas agir correctement, AdwCleaner est passé à côté d'élément qu'il a pourtant pris en charge et là je te donne un script qui n'est sans doute pas complet mais y a une partie des lignes que je ne peux absolument pas analyser car l'encodage les rend illisible.

Copie le texte en gras ci dessous :

SysRestore
O2 - BHO: delta Helper Object [64Bits] - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} . (.Delta-search.com - No comment.) -- C:\Program Files (x86)\Delta\delta\1.8.10.0\bh\delta.dll
O42 - Logiciel: Delta Chrome Toolbar - (.Visual Tools.) [HKLM][64Bits] -- Delta Chrome Toolbar
O42 - Logiciel: Delta toolbar - (.Delta.) [HKLM][64Bits] -- delta
[HKCU\Software\BabylonToolbar]
[HKCU\Software\Delta]
[HKLM\Software\Wow6432Node\Babylon]
[HKLM\Software\Wow6432Node\Delta]
O43 - CFD: 2013/04/08 - 0:19:07 - [2.768] ----D C:\Program Files (x86)\Delta
O43 - CFD: 2013/04/08 - 0:18:54 - [0] ----D C:\ProgramData\Babylon
O43 - CFD: 2013/04/08 - 0:19:10 - [1.932] ----D C:\Users\Vincent\AppData\Roaming\BabSolution
O43 - CFD: 2013/04/08 - 0:18:54 - [0.010] ----D C:\Users\Vincent\AppData\Roaming\Babylon
O45 - LFCP:[MD5.86DCA7BA7ADE27EEAAAC8DBB10D98C90] - 2013/04/08 - 0:19:03 ---A- - C:\Windows\Prefetch\DELTATB.EXE-04D557C5.pf
O45 - LFCP:[MD5.945786018AF1E5A61FEE9A3A3E6B095E] - 2013/04/08 - 0:19:07 ---A- - C:\Windows\Prefetch\DELTA4FFX.EXE-B9C88FC4.pf
O45 - LFCP:[MD5.0EB7879454B38092063C3A0A9861DFBD] - 2013/04/08 - 0:19:07 ---A- - C:\Windows\Prefetch\DELTA4IE.EXE-3FA4D69E.pf
O45 - LFCP:[MD5.C8C15882E003FFD9CB7D8244D378CF66] - 2013/04/08 - 0:19:07 ---A- - C:\Windows\Prefetch\DELTASRV.EXE-4C1778A4.pf
O45 - LFCP:[MD5.7C4FD60178C7E838CF0B727E7E6A6A35] - 2013/04/08 - 0:19:11 ---A- - C:\Windows\Prefetch\MYBABYLONTB.EXE-7E4145C7.pf
O61 - LFC: 2013/04/08 - 0:19:37 ---A- C:\Users\Vincent\AppData\Roaming\Babylon\log_file.txt [10530]
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Delta Search) - http://www.delta-search.com
O69 - SBI: SearchScopes [HKCU] {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} - (SecureSearch) - http://lavasoft.blekko.com
[HKLM\Software\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}]
[HKLM\Software\Wow6432Node\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}]
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}]
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}]
[HKLM\Software\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}]
[HKLM\Software\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}]
[HKLM\Software\Wow6432Node\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}]
[HKLM\Software\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}]
[HKLM\Software\Wow6432Node\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}]
[HKLM\Software\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}]
[HKLM\Software\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}]
[HKLM\Software\Wow6432Node\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}]
[HKLM\Software\Classes\AppID\escort.dll]
[HKLM\Software\Classes\AppID\escortapp.dll]
[HKLM\Software\Classes\AppID\escorteng.dll]
[HKLM\Software\Classes\AppID\esrv.EXE]
[HKLM\Software\Classes\escort.escortIEPane]
[HKLM\Software\Classes\escort.escortIEPane.1]
[HKCU\Software\BabylonToolbar]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}]
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}]
[HKLM\Software\Classes\Prod.cap]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}]
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{348C2DF3-1191-4C3E-92A6-B3A89A9D9C85}]
[HKLM\Software\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}]
[HKLM\Software\Wow6432Node\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}]
[HKLM\Software\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}]
[HKLM\Software\Classes\TypeLib\{39CB8175-E224-4446-8746-00566302DF8D}]
[HKLM\Software\Wow6432Node\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}]
[HKLM\Software\Classes\TypeLib\{4599D05A-D545-4069-BB42-5895B4EAE05B}]
[HKLM\Software\Classes\delta.deltaappCore]
[HKLM\Software\Classes\delta.deltaappCore.1]
[HKLM\Software\Classes\delta.deltadskBnd]
[HKLM\Software\Classes\delta.deltadskBnd.1]
[HKLM\Software\Classes\AppID\ESRV.EXE]
[HKLM\Software\Classes\delta.deltaHlpr]
[HKLM\Software\Classes\delta.deltaHlpr.1]
[HKLM\Software\Classes\esrv.deltaESrvc]
[HKLM\Software\Classes\esrv.deltaESrvc.1]
[HKLM\Software\Wow6432Node\Classes\delta.deltaappCore]
[HKLM\Software\Wow6432Node\Classes\delta.deltaappCore.1]
[HKLM\Software\Wow6432Node\Classes\delta.deltadskBnd]
[HKLM\Software\Wow6432Node\Classes\delta.deltadskBnd.1]
[HKLM\Software\Wow6432Node\Classes\delta.deltaHlpr]
[HKLM\Software\Wow6432Node\Classes\delta.deltaHlpr.1]
[HKLM\Software\Wow6432Node\Classes\esrv.deltaESrvc]
[HKLM\Software\Wow6432Node\Classes\esrv.deltaESrvc.1]
[HKLM\Software\Wow6432Node\Classes\escort.escortIEPane]
[HKLM\Software\Wow6432Node\Classes\escort.escortIEPane.1]
[HKLM\Software\Classes\AppID\escort.DLL]
[HKLM\Software\Classes\AppID\escortApp.DLL]
[HKLM\Software\Classes\AppID\escortEng.DLL]
[HKLM\Software\Classes\AppID\escorTlbr.DLL]
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Paths\TBSBrowser.exe]
C:\ProgramData\Babylon
C:\Users\Vincent\AppData\Roaming\Babylon
C:\Users\Vincent\AppData\Roaming\BabSolution
EmptyTemp


Puis suis ce tutoriel : http://www.security-helpzone.com/Thread-ZHPFix-Script
08-04-2013 16:56
daf Hors ligne
Membre inscrit

Messages : 14
Inscription : Avr. 2013
Message : #12
RE: demande d'aide pour suppression fenêtre intempestive
oui, j'avoue que c'est un peu compliqué, car c'est un PC japonais, et j'utilise plusieurs langues (japonais, anglais, français)...
J'espère que ça va aller malgré tout...
J'ai suivi la procédure et voici le rapport ci-dessous.
Encore merci pour votre aide... j'attends les consignes suivantes...



Rapport de ZHPFix 2013.3.9.1 par Nicolas Coolman, Update du 9/03/2013
Fichier d'export Registre : C:\ZHP\ZHPExportRegistry-2013-04-09-1-58-31.txt
Run by Vincent at 2013/04/09 1:58:31
High Elevated Privileges : OK
Windows 8 Home Premium Edition, 64-bit (Build 9200)

Recycle Files Deleted

========== Software ==========
NOT FOUND Uninstall Process: c:\users\vincent\appdata\roaming\babsolution\shared\guninstaller.exe
NOT FOUND Software Key: delta

========== Registry Key ==========
DELETED [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar]
DELETED Key: CLSID BHO: {C1AF5FA5-852C-4C90-812E-A7F75E011D87}
DELETED Key: HKCU\Software\BabylonToolbar
DELETED Key: HKCU\Software\Delta
DELETED Key: HKLM\Software\Wow6432Node\Babylon
DELETED Key: HKLM\Software\Wow6432Node\Delta
DELETED Key: SearchScopes :{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
DELETED Key: SearchScopes :{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
DELETED Key: HKLM\Software\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
NOT FOUND Key: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}
NOT FOUND Key: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
DELETED Key: HKLM\Software\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
DELETED Key: HKLM\Software\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
DELETED Key: HKLM\Software\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
DELETED Key: HKLM\Software\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
DELETED Key: HKLM\Software\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
DELETED Key: HKLM\Software\Classes\AppID\escort.dll
DELETED Key: HKLM\Software\Classes\AppID\escortapp.dll
DELETED Key: HKLM\Software\Classes\AppID\escorteng.dll
DELETED Key: HKLM\Software\Classes\AppID\esrv.EXE
DELETED Key: HKLM\Software\Classes\escort.escortIEPane
DELETED Key: HKLM\Software\Classes\escort.escortIEPane.1
NOT FOUND Key: HKCU\Software\BabylonToolbar
DELETED Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
DELETED Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
NOT FOUND Key: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
DELETED Key: HKLM\Software\Classes\Prod.cap
DELETED Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}
DELETED Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}
DELETED Key*: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
NOT FOUND Key: HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
DELETED Key: HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{348C2DF3-1191-4C3E-92A6-B3A89A9D9C85}
DELETED Key: HKLM\Software\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
DELETED Key: HKLM\Software\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}
DELETED Key: HKLM\Software\Classes\TypeLib\{39CB8175-E224-4446-8746-00566302DF8D}
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}
DELETED Key: HKLM\Software\Classes\TypeLib\{4599D05A-D545-4069-BB42-5895B4EAE05B}
DELETED Key: HKLM\Software\Classes\delta.deltaappCore
DELETED Key: HKLM\Software\Classes\delta.deltaappCore.1
DELETED Key: HKLM\Software\Classes\delta.deltadskBnd
DELETED Key: HKLM\Software\Classes\delta.deltadskBnd.1
NOT FOUND Key: HKLM\Software\Classes\AppID\ESRV.EXE
DELETED Key: HKLM\Software\Classes\delta.deltaHlpr
DELETED Key: HKLM\Software\Classes\delta.deltaHlpr.1
DELETED Key: HKLM\Software\Classes\esrv.deltaESrvc
DELETED Key: HKLM\Software\Classes\esrv.deltaESrvc.1
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\delta.deltaappCore
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\delta.deltaappCore.1
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\delta.deltadskBnd
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\delta.deltadskBnd.1
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\delta.deltaHlpr
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\delta.deltaHlpr.1
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\esrv.deltaESrvc
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\esrv.deltaESrvc.1
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\escort.escortIEPane
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\escort.escortIEPane.1
NOT FOUND Key: HKLM\Software\Classes\AppID\escort.DLL
NOT FOUND Key: HKLM\Software\Classes\AppID\escortApp.DLL
NOT FOUND Key: HKLM\Software\Classes\AppID\escortEng.DLL
DELETED Key: HKLM\Software\Classes\AppID\escorTlbr.DLL
DELETED Key: HKLM\Software\Microsoft\Windows\CurrentVersion\App Paths\TBSBrowser.exe

========== Repertory ==========
DELETED Folder: C:\Program Files (x86)\Delta
DELETED Folder: C:\ProgramData\Babylon
DELETED Folder: C:\Users\Vincent\AppData\Roaming\BabSolution
DELETED Folder: C:\Users\Vincent\AppData\Roaming\Babylon
DELETED Window Temporary

========== File ==========
DELETED File: c:\program files (x86)\delta\delta\1.8.10.0\bh\delta.dll
NOT FOUND File: c:\windows\prefetch\deltatb.exe-04d557c5.pf
NOT FOUND File: c:\windows\prefetch\delta4ffx.exe-b9c88fc4.pf
NOT FOUND File: c:\windows\prefetch\delta4ie.exe-3fa4d69e.pf
NOT FOUND File: c:\windows\prefetch\deltasrv.exe-4c1778a4.pf
DELETED File: c:\windows\prefetch\mybabylontb.exe-7e4145c7.pf
NOT FOUND File: c:\users\vincent\appdata\roaming\babylon\log_file.txt
NOT FOUND Folder/File: c:\programdata\babylon
NOT FOUND Folder/File: c:\users\vincent\appdata\roaming\babylon
NOT FOUND Folder/File: c:\users\vincent\appdata\roaming\babsolution
DELETED Window Temporary

========== Restoration ==========
Restore System Point created succefully


========== Summary ==========
66 : Registry Key
5 : Repertory
11 : File
2 : Software
1 : Restoration


End of clean in 00mn 37s

========== Report File ==========
C:\ZHP\ZHPFix[R1].txt - 2013/04/09 1:58:31 [6610]

Pardon, car je crois que précédemment, j'ai mal suivi les consignes / je n'avais pas cliqué droit Administrateur pour ouvrir ZHPFix...
donc j'ai refait la manip et voici le nouveau rapport ci-dessous :


Rapport de ZHPFix 2013.3.9.1 par Nicolas Coolman, Update du 9/03/2013
Fichier d'export Registre : C:\ZHP\ZHPExportRegistry-2013-04-09-2-07-41.txt
Run by Vincent at 2013/04/09 2:07:41
High Elevated Privileges : OK
Windows 8 Home Premium Edition, 64-bit (Build 9200)

Recycle Files Deleted

========== Software ==========
NOT FOUND Software Key: Delta Chrome Toolbar
NOT FOUND Software Key: delta

========== Registry Key ==========
NOT FOUND Key: CLSID BHO: {C1AF5FA5-852C-4C90-812E-A7F75E011D87}
NOT FOUND Key: HKCU\Software\BabylonToolbar
NOT FOUND Key: HKCU\Software\Delta
NOT FOUND Key: HKLM\Software\Wow6432Node\Babylon
NOT FOUND Key: HKLM\Software\Wow6432Node\Delta
NOT FOUND SearchScopes :{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
NOT FOUND SearchScopes :{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
NOT FOUND Key: HKLM\Software\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
NOT FOUND Key: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}
NOT FOUND Key: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
NOT FOUND Key: HKLM\Software\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
NOT FOUND Key: HKLM\Software\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
NOT FOUND Key: HKLM\Software\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
NOT FOUND Key: HKLM\Software\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
NOT FOUND Key: HKLM\Software\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
NOT FOUND Key: HKLM\Software\Classes\AppID\escort.dll
NOT FOUND Key: HKLM\Software\Classes\AppID\escortapp.dll
NOT FOUND Key: HKLM\Software\Classes\AppID\escorteng.dll
NOT FOUND Key: HKLM\Software\Classes\AppID\esrv.EXE
NOT FOUND Key: HKLM\Software\Classes\escort.escortIEPane
NOT FOUND Key: HKLM\Software\Classes\escort.escortIEPane.1
NOT FOUND Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
NOT FOUND Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
NOT FOUND Key: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
NOT FOUND Key: HKLM\Software\Classes\Prod.cap
DELETED Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}
NOT FOUND Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}
NOT FOUND Key: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
NOT FOUND Key: HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
NOT FOUND Key: HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{348C2DF3-1191-4C3E-92A6-B3A89A9D9C85}
NOT FOUND Key: HKLM\Software\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
NOT FOUND Key: HKLM\Software\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}
NOT FOUND Key: HKLM\Software\Classes\TypeLib\{39CB8175-E224-4446-8746-00566302DF8D}
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}
NOT FOUND Key: HKLM\Software\Classes\TypeLib\{4599D05A-D545-4069-BB42-5895B4EAE05B}
NOT FOUND Key: HKLM\Software\Classes\delta.deltaappCore
NOT FOUND Key: HKLM\Software\Classes\delta.deltaappCore.1
NOT FOUND Key: HKLM\Software\Classes\delta.deltadskBnd
NOT FOUND Key: HKLM\Software\Classes\delta.deltadskBnd.1
NOT FOUND Key: HKLM\Software\Classes\delta.deltaHlpr
NOT FOUND Key: HKLM\Software\Classes\delta.deltaHlpr.1
NOT FOUND Key: HKLM\Software\Classes\esrv.deltaESrvc
NOT FOUND Key: HKLM\Software\Classes\esrv.deltaESrvc.1
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\delta.deltaappCore
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\delta.deltaappCore.1
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\delta.deltadskBnd
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\delta.deltadskBnd.1
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\delta.deltaHlpr
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\delta.deltaHlpr.1
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\esrv.deltaESrvc
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\esrv.deltaESrvc.1
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\escort.escortIEPane
NOT FOUND Key: HKLM\Software\Wow6432Node\Classes\escort.escortIEPane.1
NOT FOUND Key: HKLM\Software\Classes\AppID\escorTlbr.DLL
NOT FOUND Key: HKLM\Software\Microsoft\Windows\CurrentVersion\App Paths\TBSBrowser.exe

========== Repertory ==========
NOT FOUND C:\Program Files (x86)\Delta
NOT FOUND C:\ProgramData\Babylon
NOT FOUND C:\Users\Vincent\AppData\Roaming\BabSolution
NOT FOUND C:\Users\Vincent\AppData\Roaming\Babylon
DELETED Window Temporary

========== File ==========
NOT FOUND File: c:\program files (x86)\delta\delta\1.8.10.0\bh\delta.dll
NOT FOUND File: c:\windows\prefetch\deltatb.exe-04d557c5.pf
NOT FOUND File: c:\windows\prefetch\delta4ffx.exe-b9c88fc4.pf
NOT FOUND File: c:\windows\prefetch\delta4ie.exe-3fa4d69e.pf
NOT FOUND File: c:\windows\prefetch\deltasrv.exe-4c1778a4.pf
NOT FOUND File: c:\windows\prefetch\mybabylontb.exe-7e4145c7.pf
NOT FOUND File: c:\users\vincent\appdata\roaming\babylon\log_file.txt
NOT FOUND Folder/File: c:\programdata\babylon
NOT FOUND Folder/File: c:\users\vincent\appdata\roaming\babylon
NOT FOUND Folder/File: c:\users\vincent\appdata\roaming\babsolution
DELETED Window Temporary

========== Restoration ==========
Restore System Point created succefully


========== Summary ==========
60 : Registry Key
5 : Repertory
11 : File
2 : Software
1 : Restoration


End of clean in 00mn 00s

========== Report File ==========
C:\ZHP\ZHPFix[R1].txt - 2013/04/09 1:58:31 [6661]
C:\ZHP\ZHPFix[R2].txt - 2013/04/09 2:07:41 [6283]
08-04-2013 18:03
yoann090 En ligne
Equipe SHZ
*****

Messages : 504
Inscription : Sept. 2012
Message : #13
RE: demande d'aide pour suppression fenêtre intempestive
Ok, comment va le pc ?
08-04-2013 18:22
daf Hors ligne
Membre inscrit

Messages : 14
Inscription : Avr. 2013
Message : #14
RE: demande d'aide pour suppression fenêtre intempestive
ben, la fenêtre revient toujours et d'ailleurs depuis aujourd'hui 2 fois (superposées)...
que faire ensuite ?
Encore merci, il va sans dire...

2 fois - je voulais dire en 2 exemplaires (superposés)
08-04-2013 19:06
yoann090 En ligne
Equipe SHZ
*****

Messages : 504
Inscription : Sept. 2012
Message : #15
RE: demande d'aide pour suppression fenêtre intempestive
Je m en doutais un peu mais comme je t ai expliqué y a la moitié du rapport que je peux pas traiter parce que j arrive pas a lire a cause de l encodage.
On va essayer un autre outil.

Suis ce tutoriel
http://www.security-helpzone.com/forum/T...an-complet
08-04-2013 19:46
daf Hors ligne
Membre inscrit

Messages : 14
Inscription : Avr. 2013
Message : #16
RE: demande d'aide pour suppression fenêtre intempestive
j'ai fait la manip -
mais je n'arrive pas à copier le lien du fichier rapport... alors je le copie ci-dessous.
Apparemment un élément a été détecté et je l'ai supprimé (Trojan?PMovie) - j'ignore si le pb est réglé (?), mais en tout cas, pour l'instant, depuis le redémarrage, la fenêtre intempestive n'apparaît plus... Est-ce réglé ??

2013/04/09 4:02:24
mbam-log-2013-04-09 (04-02-24).txt

Type d'examen: Examen rapide
Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM
Options d'examen désactivées: P2P
Elément(s) analysé(s): 231940
Temps écoulé: 4 minute(s), 9 seconde(s)

Processus mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Module(s) mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Clé(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)

Valeur(s) du Registre détectée(s): 1
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|perversiov86666_774815720 (Trojan.PMovie) -> Données: "C:\windows\system32\mshta" http://78f1.useread.info/ddo/z4eO4ifpbff-lR~Qw6p5gQ.htm -> Mis en quarantaine et supprimé avec succès.

Elément(s) de données du Registre détecté(s): 0
(Aucun élément nuisible détecté)

Dossier(s) détecté(s): 0
(Aucun élément nuisible détecté)

Fichier(s) détecté(s): 0
(Aucun élément nuisible détecté)

(fin)
08-04-2013 20:20
yoann090 En ligne
Equipe SHZ
*****

Messages : 504
Inscription : Sept. 2012
Message : #17
RE: demande d'aide pour suppression fenêtre intempestive
On attend un ou deux jour tu me dis si ça réapparaît ou pas et on verra en fonction.

++
09-04-2013 16:26
daf Hors ligne
Membre inscrit

Messages : 14
Inscription : Avr. 2013
Message : #18
RE: demande d'aide pour suppression fenêtre intempestive
OK
merci bcp !
en tt cas pour l'instant, pas de pb-
A suivre donc...
09-04-2013 18:52
daf Hors ligne
Membre inscrit

Messages : 14
Inscription : Avr. 2013
Message : #19
RE: demande d'aide pour suppression fenêtre intempestive
Bonjour,
4 jours après les opérations, rien n'est apparu - si bien que j'ai l'impression que le problème est bien réglé...
Dans ce cas, un très grand MERCI !
12-04-2013 9:37
yoann090 En ligne
Equipe SHZ
*****

Messages : 504
Inscription : Sept. 2012
Message : #20
RE: demande d'aide pour suppression fenêtre intempestive
Il reste juste à faire le ménage dans les outils :
  • Télécharge DelFix (d'Xplode) sur ton bureau.
  • Lance le, laisse la case précochée
  • Clique ensuite sur Exécuter puis patiente pendant le processus de suppression.
  • Le rapport sera enregistré sous C:\DelFix.txt. Copie/Colle le dans ta prochaine réponse.

12-04-2013 18:15


  
 



Sujets similaires
Discussion : Auteur Réponses : Affichages : Dernier message
aide pour ZHPdiag rapport tas 1 0 09-04-2014 20:18
Dernier message : loumax
Aide pour finir nettoyage portable ASUS ROJAS GUERRA Julio 1 244 17-11-2013 21:17
Dernier message : Dinath
demande d'aide suppression searchnu.com isabe2000 2 528 22-04-2013 9:47
Dernier message : kalamyte
Besoin d'aide pour désinstaller boxor. kikiche 19 1.547 11-04-2013 21:30
Dernier message : kikiche
Demande d'aide pour desinstaller les adwares et autres bestioles MatetJo 1 436 06-04-2013 19:06
Dernier message : yoann090

 
Aller à :


Forum | Blog | Contact | Notre hébergeur | L'équipe | RSS Mentions légales