A voir également:
- Gros problème, apparament spyware ?
- Anti spyware - Télécharger - Antivirus & Antimalwares
- Temu spyware - Guide
- Spyware doctor - Télécharger - Antivirus & Antimalwares
- Spyware terminator - Télécharger - Antivirus & Antimalwares
- Spyware blaster - Télécharger - Antivirus & Antimalwares
99 réponses
Utilisateur anonyme
14 juil. 2009 à 21:11
14 juil. 2009 à 21:11
Télécharge Zeb-Restore http://telechargement.zebulon.fr/zeb-restore.html enregistre ce fichier sur le bureau.
-Clic droit Zeb-Restore.zip ==> Extraire tout choisis comme lieu d'enregistrement le bureau.
-Ouvre le dossier ZR_1.0.0.37 ==> double clic sur Zeb-Restore.exe
- Coche la case devant :sites de confiance
- Ne coche aucune autre case
-Clique sur Restaurer
-Redémarre ton PC
ensuite :
Double clic sur OTL.exe pour le lancer.
Copie la liste qui se trouve en gras ci-dessous,
et colle-la dans la zone sous Customs Scans/Fixes
:processes
explorer.exe
iexplore.exe
firefox.exe
msnmsgr.exe
TeaTimer.exe
:services
:OTL
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - - No CLSID value found.
O3 - HKU\S-1-5-21-4146051209-3798790659-292467720-1008\..\Toolbar\ShellBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-4146051209-3798790659-292467720-1008\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-4146051209-3798790659-292467720-1008_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\msdaipp - No CLSID value found
@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A3C30D38
@Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2
:files
C:\Program Files\Circle Developemet
C:\found.*
C:\Documents and Settings\Administrateur.BOURGEY\Application Data\SampleView
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\SampleView
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\SampleView
C:\Documents and Settings\Default User\Application Data\SampleView
:commands
[emptytemp]
[start explorer]
[reboot]
Clique sur RunFix pour lancer la suppression.
Poste le rapport.
==========
-Clic droit Zeb-Restore.zip ==> Extraire tout choisis comme lieu d'enregistrement le bureau.
-Ouvre le dossier ZR_1.0.0.37 ==> double clic sur Zeb-Restore.exe
- Coche la case devant :sites de confiance
- Ne coche aucune autre case
-Clique sur Restaurer
-Redémarre ton PC
ensuite :
Double clic sur OTL.exe pour le lancer.
Copie la liste qui se trouve en gras ci-dessous,
et colle-la dans la zone sous Customs Scans/Fixes
:processes
explorer.exe
iexplore.exe
firefox.exe
msnmsgr.exe
TeaTimer.exe
:services
:OTL
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - - No CLSID value found.
O3 - HKU\S-1-5-21-4146051209-3798790659-292467720-1008\..\Toolbar\ShellBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-4146051209-3798790659-292467720-1008\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-4146051209-3798790659-292467720-1008_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\msdaipp - No CLSID value found
@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A3C30D38
@Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2
:files
C:\Program Files\Circle Developemet
C:\found.*
C:\Documents and Settings\Administrateur.BOURGEY\Application Data\SampleView
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\SampleView
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\SampleView
C:\Documents and Settings\Default User\Application Data\SampleView
:commands
[emptytemp]
[start explorer]
[reboot]
Clique sur RunFix pour lancer la suppression.
Poste le rapport.
==========
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Utilisateur anonyme
14 juil. 2009 à 21:19
14 juil. 2009 à 21:19
ah je ne sais pas ca...
vois avec ton fournisseur d'accès internet c'est peut etre le routeur qui delire .
vois avec ton fournisseur d'accès internet c'est peut etre le routeur qui delire .
All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
No active process named iexplore.exe was found!
Process firefox.exe killed successfully!
No active process named msnmsgr.exe was found!
No active process named TeaTimer.exe was found!
========== SERVICES/DRIVERS ==========
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7E853D72-626A-48EC-A868-BA8D5E23E045}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\ deleted successfully.
Registry value HKEY_USERS\S-1-5-21-4146051209-3798790659-292467720-1008\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\\{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Infodelivery\ deleted successfully.
Registry key HKEY_USERS\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry key HKEY_USERS\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry key HKEY_USERS\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry key HKEY_USERS\S-1-5-19_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry key HKEY_USERS\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry key HKEY_USERS\S-1-5-20_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry key HKEY_USERS\S-1-5-21-4146051209-3798790659-292467720-1008\Software\Policies\Microsoft\Internet Explorer\Control Panel\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-4146051209-3798790659-292467720-1008_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ipp\ deleted successfully.
File Protocol\Handler\ipp - No CLSID value found not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msdaipp\ deleted successfully.
File Protocol\Handler\msdaipp - No CLSID value found not found.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:A3C30D38 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2 deleted successfully.
========== FILES ==========
C:\Program Files\Circle Developemet moved successfully.
C:\found.000\dir0000.chk moved successfully.
C:\found.000 moved successfully.
C:\found.001 moved successfully.
C:\found.002 moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY\Application Data\SampleView moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Symantec moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\SampleView moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\SystemCertificates\My\CTLs moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\SystemCertificates\My\CRLs moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\SystemCertificates\My\Certificates moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\SystemCertificates\My moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\SystemCertificates moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\Protect\S-1-5-21-3052455505-2124113384-3927977952-1003 moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\Protect\S-1-5-21-1645522239-764733703-725345543-1003 moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\Protect moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\MMC moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\Media Player moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\Internet Explorer\Quick Launch moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\Internet Explorer\Lancement rapide moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\Internet Explorer moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\Crypto\RSA moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\Crypto moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\Credentials\S-1-5-21-3710852563-2570412010-4205390597-500 moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\Credentials moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\Address Book moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Identities\{03089365-441A-4383-BA8D-4736B9AC7834} moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Identities moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Apple Computer\iTunes moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Apple Computer moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data moved successfully.
File\Folder C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\SampleView not found.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Symantec moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\SampleView moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Mozilla\Firefox\Profiles\83ypkou2.default\minidumps moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Mozilla\Firefox\Profiles\83ypkou2.default\extensions moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Mozilla\Firefox\Profiles\83ypkou2.default\chrome moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Mozilla\Firefox\Profiles\83ypkou2.default\bookmarkbackups moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Mozilla\Firefox\Profiles\83ypkou2.default moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Mozilla\Firefox\Profiles moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Mozilla\Firefox\Crash Reports moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Mozilla\Firefox moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Mozilla\Extensions moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Mozilla moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\Windows\Themes moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\Windows moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\SystemCertificates\My\CTLs moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\SystemCertificates\My\CRLs moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\SystemCertificates\My\Certificates moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\SystemCertificates\My moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\SystemCertificates moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\Protect\S-1-5-21-3052455505-2124113384-3927977952-1003 moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\Protect\S-1-5-21-1645522239-764733703-725345543-1003 moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\Protect moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\MMC moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\Media Player moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\Internet Explorer\Quick Launch moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\Internet Explorer\Lancement rapide moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\Internet Explorer moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\Crypto\RSA moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\Crypto moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\Credentials\S-1-5-21-4146051209-3798790659-292467720-500 moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\Credentials moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\Address Book moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Identities\{03089365-441A-4383-BA8D-4736B9AC7834} moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Identities moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Apple Computer\iTunes moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Apple Computer moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data moved successfully.
File\Folder C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\SampleView not found.
C:\Documents and Settings\Default User\Application Data\SampleView moved successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: Administrateur
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
User: Administrateur.BOURGEY
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
User: Administrateur.BOURGEY.000
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Administrateur.NOM-EB85C523610
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->FireFox cache emptied: 3011649 bytes
User: All Users
User: BABETH
User: Default User
->Temp folder emptied: 18090 bytes
->Temporary Internet Files folder emptied: 32768 bytes
User: HP_Propriétaire
User: HP_Propriétaire.BOURGEY
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 5554242 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 47800797 bytes
->Opera cache emptied: 1492720 bytes
User: HP_Propriétaire.NOM-EB85C523610
File delete failed. C:\Documents and Settings\HP_Propriétaire.NOM-EB85C523610\Local Settings\Temp\BITE.tmp scheduled to be deleted on reboot.
->Temp folder emptied: 38025855 bytes
File delete failed. C:\Documents and Settings\HP_Propriétaire.NOM-EB85C523610\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
->Temporary Internet Files folder emptied: 11949277 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 85667115 bytes
User: Kévin
User: LocalService
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Historique\History.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be deleted on reboot.
->Temp folder emptied: 65716 bytes
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
->Temporary Internet Files folder emptied: 32902 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
%systemdrive% .tmp files removed: 660516 bytes
C:\WINDOWS\msdownld.tmp folder deleted successfully.
%systemroot% .tmp files removed: 890190 bytes
%systemroot%\System32 .tmp files removed: 4939776 bytes
Windows Temp folder emptied: 618305 bytes
RecycleBin emptied: 13522970 bytes
Total Files Cleaned = 204,39 mb
OTL by OldTimer - Version 3.0.6.5 log created on 07152009_002235
Files\Folders moved on Reboot...
File move failed. C:\Documents and Settings\HP_Propriétaire.NOM-EB85C523610\Local Settings\Temp\BITE.tmp scheduled to be moved on reboot.
Registry entries deleted on Reboot...
========== PROCESSES ==========
No active process named explorer.exe was found!
No active process named iexplore.exe was found!
Process firefox.exe killed successfully!
No active process named msnmsgr.exe was found!
No active process named TeaTimer.exe was found!
========== SERVICES/DRIVERS ==========
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7E853D72-626A-48EC-A868-BA8D5E23E045}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\ deleted successfully.
Registry value HKEY_USERS\S-1-5-21-4146051209-3798790659-292467720-1008\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\\{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Infodelivery\ deleted successfully.
Registry key HKEY_USERS\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry key HKEY_USERS\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry key HKEY_USERS\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry key HKEY_USERS\S-1-5-19_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry key HKEY_USERS\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry key HKEY_USERS\S-1-5-20_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry key HKEY_USERS\S-1-5-21-4146051209-3798790659-292467720-1008\Software\Policies\Microsoft\Internet Explorer\Control Panel\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-4146051209-3798790659-292467720-1008_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ipp\ deleted successfully.
File Protocol\Handler\ipp - No CLSID value found not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msdaipp\ deleted successfully.
File Protocol\Handler\msdaipp - No CLSID value found not found.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:A3C30D38 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2 deleted successfully.
========== FILES ==========
C:\Program Files\Circle Developemet moved successfully.
C:\found.000\dir0000.chk moved successfully.
C:\found.000 moved successfully.
C:\found.001 moved successfully.
C:\found.002 moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY\Application Data\SampleView moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Symantec moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\SampleView moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\SystemCertificates\My\CTLs moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\SystemCertificates\My\CRLs moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\SystemCertificates\My\Certificates moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\SystemCertificates\My moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\SystemCertificates moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\Protect\S-1-5-21-3052455505-2124113384-3927977952-1003 moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\Protect\S-1-5-21-1645522239-764733703-725345543-1003 moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\Protect moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\MMC moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\Media Player moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\Internet Explorer\Quick Launch moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\Internet Explorer\Lancement rapide moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\Internet Explorer moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\Crypto\RSA moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\Crypto moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\Credentials\S-1-5-21-3710852563-2570412010-4205390597-500 moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\Credentials moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft\Address Book moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Microsoft moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Identities\{03089365-441A-4383-BA8D-4736B9AC7834} moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Identities moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Apple Computer\iTunes moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\Apple Computer moved successfully.
C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data moved successfully.
File\Folder C:\Documents and Settings\Administrateur.BOURGEY.000\Application Data\SampleView not found.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Symantec moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\SampleView moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Mozilla\Firefox\Profiles\83ypkou2.default\minidumps moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Mozilla\Firefox\Profiles\83ypkou2.default\extensions moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Mozilla\Firefox\Profiles\83ypkou2.default\chrome moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Mozilla\Firefox\Profiles\83ypkou2.default\bookmarkbackups moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Mozilla\Firefox\Profiles\83ypkou2.default moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Mozilla\Firefox\Profiles moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Mozilla\Firefox\Crash Reports moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Mozilla\Firefox moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Mozilla\Extensions moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Mozilla moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\Windows\Themes moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\Windows moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\SystemCertificates\My\CTLs moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\SystemCertificates\My\CRLs moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\SystemCertificates\My\Certificates moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\SystemCertificates\My moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\SystemCertificates moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\Protect\S-1-5-21-3052455505-2124113384-3927977952-1003 moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\Protect\S-1-5-21-1645522239-764733703-725345543-1003 moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\Protect moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\MMC moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\Media Player moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\Internet Explorer\Quick Launch moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\Internet Explorer\Lancement rapide moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\Internet Explorer moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\Crypto\RSA moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\Crypto moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\Credentials\S-1-5-21-4146051209-3798790659-292467720-500 moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\Credentials moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft\Address Book moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Microsoft moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Identities\{03089365-441A-4383-BA8D-4736B9AC7834} moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Identities moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Apple Computer\iTunes moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\Apple Computer moved successfully.
C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data moved successfully.
File\Folder C:\Documents and Settings\Administrateur.NOM-EB85C523610\Application Data\SampleView not found.
C:\Documents and Settings\Default User\Application Data\SampleView moved successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: Administrateur
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
User: Administrateur.BOURGEY
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
User: Administrateur.BOURGEY.000
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Administrateur.NOM-EB85C523610
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->FireFox cache emptied: 3011649 bytes
User: All Users
User: BABETH
User: Default User
->Temp folder emptied: 18090 bytes
->Temporary Internet Files folder emptied: 32768 bytes
User: HP_Propriétaire
User: HP_Propriétaire.BOURGEY
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 5554242 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 47800797 bytes
->Opera cache emptied: 1492720 bytes
User: HP_Propriétaire.NOM-EB85C523610
File delete failed. C:\Documents and Settings\HP_Propriétaire.NOM-EB85C523610\Local Settings\Temp\BITE.tmp scheduled to be deleted on reboot.
->Temp folder emptied: 38025855 bytes
File delete failed. C:\Documents and Settings\HP_Propriétaire.NOM-EB85C523610\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
->Temporary Internet Files folder emptied: 11949277 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 85667115 bytes
User: Kévin
User: LocalService
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Historique\History.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be deleted on reboot.
->Temp folder emptied: 65716 bytes
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
->Temporary Internet Files folder emptied: 32902 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
%systemdrive% .tmp files removed: 660516 bytes
C:\WINDOWS\msdownld.tmp folder deleted successfully.
%systemroot% .tmp files removed: 890190 bytes
%systemroot%\System32 .tmp files removed: 4939776 bytes
Windows Temp folder emptied: 618305 bytes
RecycleBin emptied: 13522970 bytes
Total Files Cleaned = 204,39 mb
OTL by OldTimer - Version 3.0.6.5 log created on 07152009_002235
Files\Folders moved on Reboot...
File move failed. C:\Documents and Settings\HP_Propriétaire.NOM-EB85C523610\Local Settings\Temp\BITE.tmp scheduled to be moved on reboot.
Registry entries deleted on Reboot...
Utilisateur anonyme
15 juil. 2009 à 15:09
15 juil. 2009 à 15:09
bon je vais essayer de pousser plus loin :
♦ Desactive ton Anti-virus le temps de la manip car il est detecte a tort comme infection puis :
♦ Télécharge List_All (de g3n-h@ckm@n)
et enregistre-le sur ton bureau et pas ailleurs
♦ Execute-le en double clic (clic droit et "en tant qu'administrateur" sous vista)pour le lancer
♦ choisis la langue d'utilisation
♦ choisis l'option en gras ci-dessous :
1 : Elements du panneau de configuration (cpl)
2 : Liste des .dll systeme
3 : Listes des executables (.exe)
4 : Liste des fichiers systeme (Drivers)
5 : Liste du system32
6 : Liste de tout le systeme
7 : Liste des fichiers .tmp
8 : Liste des fichiers racine
9 : Liste des fichiers cachés
0 : Liste des Processus Console
puis "entrée"
♦ rends-toi récupérer le rapport où il t'est indiqué ,
♦ envoie-le sur : http://www.cijoint.fr/ , fais-toi parcourir ,
puis envoie le fichier.
♦ un lien de cette forme va apparaitre :
http://www.cijoint.fr/cjlink.php?file=cjge368/cijSKAP5fU.txt
♦ renvoie le lien tout frais dans ta prochaine reponse .
♦ Desactive ton Anti-virus le temps de la manip car il est detecte a tort comme infection puis :
♦ Télécharge List_All (de g3n-h@ckm@n)
et enregistre-le sur ton bureau et pas ailleurs
♦ Execute-le en double clic (clic droit et "en tant qu'administrateur" sous vista)pour le lancer
♦ choisis la langue d'utilisation
♦ choisis l'option en gras ci-dessous :
1 : Elements du panneau de configuration (cpl)
2 : Liste des .dll systeme
3 : Listes des executables (.exe)
4 : Liste des fichiers systeme (Drivers)
5 : Liste du system32
6 : Liste de tout le systeme
7 : Liste des fichiers .tmp
8 : Liste des fichiers racine
9 : Liste des fichiers cachés
0 : Liste des Processus Console
puis "entrée"
♦ rends-toi récupérer le rapport où il t'est indiqué ,
♦ envoie-le sur : http://www.cijoint.fr/ , fais-toi parcourir ,
puis envoie le fichier.
♦ un lien de cette forme va apparaitre :
http://www.cijoint.fr/cjlink.php?file=cjge368/cijSKAP5fU.txt
♦ renvoie le lien tout frais dans ta prochaine reponse .
Utilisateur anonyme
15 juil. 2009 à 17:27
15 juil. 2009 à 17:27
peux-tu me copier le contenu de ce fichier ? C:\WINDOWS\system32\$ncsp$.inf
