Ordi se bloque!!
Résolu/Fermé
A voir également:
- Ordi se bloque!!
- Mon ordi rame que faire - Guide
- Uptobox bloqué - Guide
- Comment reinitialiser un ordi - Guide
- Code puk bloqué - Guide
- Ordi bloque - Guide
59 réponses
Utilisateur anonyme
10 janv. 2009 à 14:31
10 janv. 2009 à 14:31
Re,
▶ Télécharge et installe MalwareByte's Anti-Malware
Malwarebyte
▶ Mets le à jour
▶ Double clique sur le raccourci de MalwareByte's Anti-Malware qui est sur le bureau.
▶ Sélectionne Exécuter un examen complet si ce n'est pas déjà fait
▶ clique sur Rechercher
▶ Une fois le scan terminé, une fenêtre s'ouvre, clique sur sur Ok
▶ Si MalwareByte's n'a rien détecté, clique sur Ok Un rapport va apparaître ferme-le.
▶ Si MalwareByte's a détecté des infections, clique sur Afficher les résultats ensuite sur Supprimer la sélection
▶ Enregistre le rapport sur ton Bureau comme cela il sera plus facile à retrouver, poste ensuite ce rapport.
Note : Si MalwareByte's a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok
Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
Tutoriel pour MalwareByte's
▶ Télécharge et installe MalwareByte's Anti-Malware
Malwarebyte
▶ Mets le à jour
▶ Double clique sur le raccourci de MalwareByte's Anti-Malware qui est sur le bureau.
▶ Sélectionne Exécuter un examen complet si ce n'est pas déjà fait
▶ clique sur Rechercher
▶ Une fois le scan terminé, une fenêtre s'ouvre, clique sur sur Ok
▶ Si MalwareByte's n'a rien détecté, clique sur Ok Un rapport va apparaître ferme-le.
▶ Si MalwareByte's a détecté des infections, clique sur Afficher les résultats ensuite sur Supprimer la sélection
▶ Enregistre le rapport sur ton Bureau comme cela il sera plus facile à retrouver, poste ensuite ce rapport.
Note : Si MalwareByte's a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok
Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
Tutoriel pour MalwareByte's
francky51240
Messages postés
85
Date d'inscription
samedi 1 décembre 2007
Statut
Membre
Dernière intervention
21 avril 2013
42
10 janv. 2009 à 19:52
10 janv. 2009 à 19:52
voici le tout dernier rapport ma malwarebytes :
Malwarebytes' Anti-Malware 1.32
Version de la base de données: 1638
Windows 5.1.2600 Service Pack 3
10/01/2009 19:49:58
mbam-log-2009-01-10 (19-49-58).txt
Type de recherche: Examen complet (C:\|)
Eléments examinés: 185521
Temps écoulé: 1 hour(s), 56 minute(s), 28 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 4
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 1
Fichier(s) infecté(s): 2
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{100eb1fd-d03e-47fd-81f3-ee91287f9465} (Adware.Shopping.Report) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{c5428486-50a0-4a02-9d20-520b59a9f9b2} (Adware.Shopping.Report) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{c5428486-50a0-4a02-9d20-520b59a9f9b3} (Adware.Shopping.Report) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{6fd31ed6-7c94-4bbc-8e95-f927f4d3a949} (Adware.180Solutions) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
C:\resycled (Trojan.DNSChanger) -> Quarantined and deleted successfully.
Fichier(s) infecté(s):
C:\WINDOWS\system32\msqpdxsewxlyxm.dll (Trojan.TDSS) -> Delete on reboot.
C:\WINDOWS\system32\drivers\msqpdxfxmkbphq.sys (Trojan.Agent) -> Quarantined and deleted successfully.
Malwarebytes' Anti-Malware 1.32
Version de la base de données: 1638
Windows 5.1.2600 Service Pack 3
10/01/2009 19:49:58
mbam-log-2009-01-10 (19-49-58).txt
Type de recherche: Examen complet (C:\|)
Eléments examinés: 185521
Temps écoulé: 1 hour(s), 56 minute(s), 28 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 4
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 1
Fichier(s) infecté(s): 2
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{100eb1fd-d03e-47fd-81f3-ee91287f9465} (Adware.Shopping.Report) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{c5428486-50a0-4a02-9d20-520b59a9f9b2} (Adware.Shopping.Report) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{c5428486-50a0-4a02-9d20-520b59a9f9b3} (Adware.Shopping.Report) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{6fd31ed6-7c94-4bbc-8e95-f927f4d3a949} (Adware.180Solutions) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
C:\resycled (Trojan.DNSChanger) -> Quarantined and deleted successfully.
Fichier(s) infecté(s):
C:\WINDOWS\system32\msqpdxsewxlyxm.dll (Trojan.TDSS) -> Delete on reboot.
C:\WINDOWS\system32\drivers\msqpdxfxmkbphq.sys (Trojan.Agent) -> Quarantined and deleted successfully.
Utilisateur anonyme
10 janv. 2009 à 19:55
10 janv. 2009 à 19:55
Re,
Supprime la quarantaine et redémarre ton pc et refait un rapport avec RSIT.
merci
Supprime la quarantaine et redémarre ton pc et refait un rapport avec RSIT.
merci
francky51240
Messages postés
85
Date d'inscription
samedi 1 décembre 2007
Statut
Membre
Dernière intervention
21 avril 2013
42
10 janv. 2009 à 20:07
10 janv. 2009 à 20:07
J'ai déja relancé ADremover, mais je crois que eorenzo et swedim sont toujours là!!
le lance Rsit tout de suite et j'envoi le rapport dans la foulé
Merci
------- Logfile of AD-Remover 1.0.8.6 by C_XX | ONLY XP/VISTA -------
# START at: 20:01:12 | Sam 10/01/2009 | Microsoft® Windows XP™ SP3 (v5.1.2600)
# BOOT MODE: Normal
# OPTION: Scan | EXECUTED FROM: C:\Program Files\Ad-remover\AD-Remover.bat
# PC: PRIVEE-GVSON11N | USER: franck ( Current user is an administrator)
# DRIVE(S):
- C:\ (File System: NTFS)
# Internet Explorer v7.0.5730.11
# RUNNING PROCESSES: 33
+-----------------------| Boonty/Boonty Games Elements found :
.
.
+-----------------------| Eorezo Elements found :
.
.
+-----------------------| Everest Poker Elements found :
.
.
+-----------------------| FunWebProducts/MyWay/MyWebSearch/MyGlobalSearch Elements found :
.
.
+-----------------------| It's TV Elements found :
.
+-----------------------| Sweetim Elements found :
.
.
+-----------------------| ADDED SCAN :
+---------- Scanning prefs.js ... ( # Mozilla User Preferences )
..\rkfa1rct.default\prefs.js :
~~~~ Mozilla FireFox version 3.0.5 ~~~~
* Browser Search Default Engine: "Google"
* Browser Search Default Url: "https://www.google.com/webhp?lr=&ie=UTF-8&oe=UTF-8&gws_rd=ssl"
* Browser Startup HomePage: "http://neufportail.fr/"
.
+---------------------------------------------------------------------------+
+--[HKEY_CURRENT_USER\..\Internet Explorer\MAIN]
Start Page : hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
+--[HKEY_LOCAL_MACHINE\..\Internet Explorer\MAIN]
Start Page : hxxp://www.live.com/\0\0
Start Page : hxxp://fr.msn.com/
+---------------------------------------------------------------------------+
[~654 bytes] - "C:\AD-report-Clean-08.01.2009.log"
[~1995 bytes] - "C:\AD-report-Clean-09.01.2009.log"
[~3195 bytes] - "C:\AD-report-Scan-08.01.2009.log"
[~1827 bytes] - "C:\AD-report-Scan-10.01.2009.log"
# END at: 20:02:28 | 10/01/2009 - Time elapsed: 76.6 seconds
+---------------------------------------------------------------------------+
+------------------------------- [ E.O.F - 41 lines ]
+---------------------------------------------------------------------------+
le lance Rsit tout de suite et j'envoi le rapport dans la foulé
Merci
------- Logfile of AD-Remover 1.0.8.6 by C_XX | ONLY XP/VISTA -------
# START at: 20:01:12 | Sam 10/01/2009 | Microsoft® Windows XP™ SP3 (v5.1.2600)
# BOOT MODE: Normal
# OPTION: Scan | EXECUTED FROM: C:\Program Files\Ad-remover\AD-Remover.bat
# PC: PRIVEE-GVSON11N | USER: franck ( Current user is an administrator)
# DRIVE(S):
- C:\ (File System: NTFS)
# Internet Explorer v7.0.5730.11
# RUNNING PROCESSES: 33
+-----------------------| Boonty/Boonty Games Elements found :
.
.
+-----------------------| Eorezo Elements found :
.
.
+-----------------------| Everest Poker Elements found :
.
.
+-----------------------| FunWebProducts/MyWay/MyWebSearch/MyGlobalSearch Elements found :
.
.
+-----------------------| It's TV Elements found :
.
+-----------------------| Sweetim Elements found :
.
.
+-----------------------| ADDED SCAN :
+---------- Scanning prefs.js ... ( # Mozilla User Preferences )
..\rkfa1rct.default\prefs.js :
~~~~ Mozilla FireFox version 3.0.5 ~~~~
* Browser Search Default Engine: "Google"
* Browser Search Default Url: "https://www.google.com/webhp?lr=&ie=UTF-8&oe=UTF-8&gws_rd=ssl"
* Browser Startup HomePage: "http://neufportail.fr/"
.
+---------------------------------------------------------------------------+
+--[HKEY_CURRENT_USER\..\Internet Explorer\MAIN]
Start Page : hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
+--[HKEY_LOCAL_MACHINE\..\Internet Explorer\MAIN]
Start Page : hxxp://www.live.com/\0\0
Start Page : hxxp://fr.msn.com/
+---------------------------------------------------------------------------+
[~654 bytes] - "C:\AD-report-Clean-08.01.2009.log"
[~1995 bytes] - "C:\AD-report-Clean-09.01.2009.log"
[~3195 bytes] - "C:\AD-report-Scan-08.01.2009.log"
[~1827 bytes] - "C:\AD-report-Scan-10.01.2009.log"
# END at: 20:02:28 | 10/01/2009 - Time elapsed: 76.6 seconds
+---------------------------------------------------------------------------+
+------------------------------- [ E.O.F - 41 lines ]
+---------------------------------------------------------------------------+
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
francky51240
Messages postés
85
Date d'inscription
samedi 1 décembre 2007
Statut
Membre
Dernière intervention
21 avril 2013
42
10 janv. 2009 à 20:11
10 janv. 2009 à 20:11
voilà Rsit :
Logfile of random's system information tool 1.05 (written by random/random)
Run by franck at 2009-01-10 20:08:14
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 56 GB (50%) free of 112 GB
Total RAM: 2047 MB (74% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:08:23, on 10/01/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\a-squared Free\a2service.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Jetico\Jetico Personal Firewall\fwsrv.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\franck\Bureau\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\franck.exe
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer optimisé pour MSN
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [JeticoPFStartup] "C:\Program Files\Jetico\Jetico Personal Firewall\fwsrv.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\\NeroCheck.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w3/pr01/resources/MSNPUpld.cab
O16 - DPF: {54BE6B6F-3056-470B-97E1-BB92E051B6C4} (DeviceEnum Class) - http://h20264.www2.hp.com/ediags/dd/install/HPDriverDiagnosticsxp2k.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) - https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab
O16 - DPF: {9D190AE6-C81E-4039-8061-978EBAD10073} (F-Secure Online Scanner 3.0) - http://securite.neuf.fr/Ols/fscax.cab
O16 - DPF: {B79A53C0-1DAC-4636-BACE-FD086A7A79BF} (AdSignerLCContrl Class) - https://static.impots.gouv.fr/tdir/static/adpform/AdSignerADP-1.1.cab
O16 - DPF: {BDBDE413-7B1C-4C68-A8FF-C5B2B4090876} (F-Secure Online Scanner 3.3) - https://www.f-secure.com/en/home/support
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - http://download.mcafee.com/molbin/iss-loc/mcfscan/2,2,0,5460/mcfscan.cab
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe (file missing)
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
Logfile of random's system information tool 1.05 (written by random/random)
Run by franck at 2009-01-10 20:08:14
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 56 GB (50%) free of 112 GB
Total RAM: 2047 MB (74% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:08:23, on 10/01/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\a-squared Free\a2service.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Jetico\Jetico Personal Firewall\fwsrv.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\franck\Bureau\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\franck.exe
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer optimisé pour MSN
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [JeticoPFStartup] "C:\Program Files\Jetico\Jetico Personal Firewall\fwsrv.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\\NeroCheck.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w3/pr01/resources/MSNPUpld.cab
O16 - DPF: {54BE6B6F-3056-470B-97E1-BB92E051B6C4} (DeviceEnum Class) - http://h20264.www2.hp.com/ediags/dd/install/HPDriverDiagnosticsxp2k.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) - https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab
O16 - DPF: {9D190AE6-C81E-4039-8061-978EBAD10073} (F-Secure Online Scanner 3.0) - http://securite.neuf.fr/Ols/fscax.cab
O16 - DPF: {B79A53C0-1DAC-4636-BACE-FD086A7A79BF} (AdSignerLCContrl Class) - https://static.impots.gouv.fr/tdir/static/adpform/AdSignerADP-1.1.cab
O16 - DPF: {BDBDE413-7B1C-4C68-A8FF-C5B2B4090876} (F-Secure Online Scanner 3.3) - https://www.f-secure.com/en/home/support
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - http://download.mcafee.com/molbin/iss-loc/mcfscan/2,2,0,5460/mcfscan.cab
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe (file missing)
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
Utilisateur anonyme
10 janv. 2009 à 20:14
10 janv. 2009 à 20:14
re,
---> Télécharge OTMoveIt3 (OldTimer) sur ton Bureau :
http://oldtimer.geekstogo.com/OTMoveIt3.exe
---> Double-clique sur OTMoveIt3.exe afin de le lancer.
---> Copie (Ctrl+C) le texte suivant en gras ci-dessous :
:files
c:\program files\mywebs~1\bar\3.bin\m3plugin.dll
:commands
[purity]
[emptytemp]
[reboot]
---> Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.
---> Clique maintenant sur le bouton MoveIt! puis ferme OTMoveIt3.
Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.
---> Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log
---> Télécharge OTMoveIt3 (OldTimer) sur ton Bureau :
http://oldtimer.geekstogo.com/OTMoveIt3.exe
---> Double-clique sur OTMoveIt3.exe afin de le lancer.
---> Copie (Ctrl+C) le texte suivant en gras ci-dessous :
:files
c:\program files\mywebs~1\bar\3.bin\m3plugin.dll
:commands
[purity]
[emptytemp]
[reboot]
---> Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.
---> Clique maintenant sur le bouton MoveIt! puis ferme OTMoveIt3.
Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.
---> Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log
francky51240
Messages postés
85
Date d'inscription
samedi 1 décembre 2007
Statut
Membre
Dernière intervention
21 avril 2013
42
10 janv. 2009 à 22:14
10 janv. 2009 à 22:14
....et encore un petit rapport...:
Error: Unable to interpret <http://oldtimer.geekstogo.com/OTMoveIt3.exe:files> in the current context!
Error: Unable to interpret <c:\program files\mywebs~1\bar\3.bin\m3plugin.dll> in the current context!
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\franck\LOCALS~1\Temp\etilqs_K8gr8aBwCqcGS5gGabi3 scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be deleted on reboot.
Local Service Temp folder emptied.
Local Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_4c4.dat scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\TMP000000252C9225BE3685B5F0 scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\XUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
Error: Unable to interpret <http://oldtimer.geekstogo.com/OTMoveIt3.exe:files> in the current context!
Error: Unable to interpret <c:\program files\mywebs~1\bar\3.bin\m3plugin.dll> in the current context!
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\franck\LOCALS~1\Temp\etilqs_K8gr8aBwCqcGS5gGabi3 scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be deleted on reboot.
Local Service Temp folder emptied.
Local Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_4c4.dat scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\TMP000000252C9225BE3685B5F0 scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\XUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
Error: Unable to interpret <http://oldtimer.geekstogo.com/OTMoveIt3.exe:files> in the current context!
Error: Unable to interpret <c:\program files\mywebs~1\bar\3.bin\m3plugin.dll> in the current context!
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\franck\LOCALS~1\Temp\etilqs_K8gr8aBwCqcGS5gGabi3 scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be deleted on reboot.
Local Service Temp folder emptied.
Local Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_4c4.dat scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\TMP000000252C9225BE3685B5F0 scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\XUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
Error: Unable to interpret <http://oldtimer.geekstogo.com/OTMoveIt3.exe:files> in the current context!
Error: Unable to interpret <c:\program files\mywebs~1\bar\3.bin\m3plugin.dll> in the current context!
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\franck\LOCALS~1\Temp\etilqs_K8gr8aBwCqcGS5gGabi3 scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be deleted on reboot.
Local Service Temp folder emptied.
Local Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_4c4.dat scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\TMP000000252C9225BE3685B5F0 scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\XUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
Error: Unable to interpret <http://oldtimer.geekstogo.com/OTMoveIt3.exe:files> in the current context!
Error: Unable to interpret <c:\program files\mywebs~1\bar\3.bin\m3plugin.dll> in the current context!
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\franck\LOCALS~1\Temp\etilqs_K8gr8aBwCqcGS5gGabi3 scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be deleted on reboot.
Local Service Temp folder emptied.
Local Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_4c4.dat scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\TMP000000252C9225BE3685B5F0 scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\XUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
Error: Unable to interpret <http://oldtimer.geekstogo.com/OTMoveIt3.exe:files> in the current context!
Error: Unable to interpret <c:\program files\mywebs~1\bar\3.bin\m3plugin.dll> in the current context!
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\franck\LOCALS~1\Temp\etilqs_K8gr8aBwCqcGS5gGabi3 scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be deleted on reboot.
Local Service Temp folder emptied.
Local Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_4c4.dat scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\TMP000000252C9225BE3685B5F0 scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\XUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
Error: Unable to interpret <http://oldtimer.geekstogo.com/OTMoveIt3.exe:files> in the current context!
Error: Unable to interpret <c:\program files\mywebs~1\bar\3.bin\m3plugin.dll> in the current context!
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\franck\LOCALS~1\Temp\etilqs_K8gr8aBwCqcGS5gGabi3 scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be deleted on reboot.
Local Service Temp folder emptied.
Local Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_4c4.dat scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\TMP000000252C9225BE3685B5F0 scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\XUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
Error: Unable to interpret <http://oldtimer.geekstogo.com/OTMoveIt3.exe:files> in the current context!
Error: Unable to interpret <c:\program files\mywebs~1\bar\3.bin\m3plugin.dll> in the current context!
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\franck\LOCALS~1\Temp\etilqs_K8gr8aBwCqcGS5gGabi3 scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be deleted on reboot.
Local Service Temp folder emptied.
Local Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_4c4.dat scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\TMP000000252C9225BE3685B5F0 scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\XUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
Error: Unable to interpret <http://oldtimer.geekstogo.com/OTMoveIt3.exe:files> in the current context!
Error: Unable to interpret <c:\program files\mywebs~1\bar\3.bin\m3plugin.dll> in the current context!
OTMoveIt3 by OldTimer - Version 1.0.8.0 log created on 01102009_220631
Files moved on Reboot...
File C:\DOCUME~1\franck\LOCALS~1\Temp\etilqs_K8gr8aBwCqcGS5gGabi3 not found!
File move failed. C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat scheduled to be moved on reboot.
File move failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\index.dat scheduled to be moved on reboot.
File move failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be moved on reboot.
File move failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be moved on reboot.
File C:\WINDOWS\temp\Perflib_Perfdata_4c4.dat not found!
File C:\WINDOWS\temp\TMP000000252C9225BE3685B5F0 not found!
C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_001_ moved successfully.
C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_002_ moved successfully.
C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_003_ moved successfully.
C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_MAP_ moved successfully.
C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\urlclassifier3.sqlite moved successfully.
C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\XUL.mfl moved successfully.
et bien dis donc, ça m'avait l'air pas mal atteind tout ça!!??
Error: Unable to interpret <http://oldtimer.geekstogo.com/OTMoveIt3.exe:files> in the current context!
Error: Unable to interpret <c:\program files\mywebs~1\bar\3.bin\m3plugin.dll> in the current context!
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\franck\LOCALS~1\Temp\etilqs_K8gr8aBwCqcGS5gGabi3 scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be deleted on reboot.
Local Service Temp folder emptied.
Local Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_4c4.dat scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\TMP000000252C9225BE3685B5F0 scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\XUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
Error: Unable to interpret <http://oldtimer.geekstogo.com/OTMoveIt3.exe:files> in the current context!
Error: Unable to interpret <c:\program files\mywebs~1\bar\3.bin\m3plugin.dll> in the current context!
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\franck\LOCALS~1\Temp\etilqs_K8gr8aBwCqcGS5gGabi3 scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be deleted on reboot.
Local Service Temp folder emptied.
Local Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_4c4.dat scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\TMP000000252C9225BE3685B5F0 scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\XUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
Error: Unable to interpret <http://oldtimer.geekstogo.com/OTMoveIt3.exe:files> in the current context!
Error: Unable to interpret <c:\program files\mywebs~1\bar\3.bin\m3plugin.dll> in the current context!
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\franck\LOCALS~1\Temp\etilqs_K8gr8aBwCqcGS5gGabi3 scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be deleted on reboot.
Local Service Temp folder emptied.
Local Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_4c4.dat scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\TMP000000252C9225BE3685B5F0 scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\XUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
Error: Unable to interpret <http://oldtimer.geekstogo.com/OTMoveIt3.exe:files> in the current context!
Error: Unable to interpret <c:\program files\mywebs~1\bar\3.bin\m3plugin.dll> in the current context!
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\franck\LOCALS~1\Temp\etilqs_K8gr8aBwCqcGS5gGabi3 scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be deleted on reboot.
Local Service Temp folder emptied.
Local Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_4c4.dat scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\TMP000000252C9225BE3685B5F0 scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\XUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
Error: Unable to interpret <http://oldtimer.geekstogo.com/OTMoveIt3.exe:files> in the current context!
Error: Unable to interpret <c:\program files\mywebs~1\bar\3.bin\m3plugin.dll> in the current context!
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\franck\LOCALS~1\Temp\etilqs_K8gr8aBwCqcGS5gGabi3 scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be deleted on reboot.
Local Service Temp folder emptied.
Local Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_4c4.dat scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\TMP000000252C9225BE3685B5F0 scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\XUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
Error: Unable to interpret <http://oldtimer.geekstogo.com/OTMoveIt3.exe:files> in the current context!
Error: Unable to interpret <c:\program files\mywebs~1\bar\3.bin\m3plugin.dll> in the current context!
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\franck\LOCALS~1\Temp\etilqs_K8gr8aBwCqcGS5gGabi3 scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be deleted on reboot.
Local Service Temp folder emptied.
Local Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_4c4.dat scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\TMP000000252C9225BE3685B5F0 scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\XUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
Error: Unable to interpret <http://oldtimer.geekstogo.com/OTMoveIt3.exe:files> in the current context!
Error: Unable to interpret <c:\program files\mywebs~1\bar\3.bin\m3plugin.dll> in the current context!
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\franck\LOCALS~1\Temp\etilqs_K8gr8aBwCqcGS5gGabi3 scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be deleted on reboot.
Local Service Temp folder emptied.
Local Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_4c4.dat scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\TMP000000252C9225BE3685B5F0 scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\XUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
Error: Unable to interpret <http://oldtimer.geekstogo.com/OTMoveIt3.exe:files> in the current context!
Error: Unable to interpret <c:\program files\mywebs~1\bar\3.bin\m3plugin.dll> in the current context!
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\franck\LOCALS~1\Temp\etilqs_K8gr8aBwCqcGS5gGabi3 scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be deleted on reboot.
Local Service Temp folder emptied.
Local Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_4c4.dat scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\TMP000000252C9225BE3685B5F0 scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\XUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
Error: Unable to interpret <http://oldtimer.geekstogo.com/OTMoveIt3.exe:files> in the current context!
Error: Unable to interpret <c:\program files\mywebs~1\bar\3.bin\m3plugin.dll> in the current context!
OTMoveIt3 by OldTimer - Version 1.0.8.0 log created on 01102009_220631
Files moved on Reboot...
File C:\DOCUME~1\franck\LOCALS~1\Temp\etilqs_K8gr8aBwCqcGS5gGabi3 not found!
File move failed. C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat scheduled to be moved on reboot.
File move failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\index.dat scheduled to be moved on reboot.
File move failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be moved on reboot.
File move failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be moved on reboot.
File C:\WINDOWS\temp\Perflib_Perfdata_4c4.dat not found!
File C:\WINDOWS\temp\TMP000000252C9225BE3685B5F0 not found!
C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_001_ moved successfully.
C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_002_ moved successfully.
C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_003_ moved successfully.
C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\Cache\_CACHE_MAP_ moved successfully.
C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\urlclassifier3.sqlite moved successfully.
C:\Documents and Settings\franck\Local Settings\Application Data\Mozilla\Firefox\Profiles\rkfa1rct.default\XUL.mfl moved successfully.
et bien dis donc, ça m'avait l'air pas mal atteind tout ça!!??
Utilisateur anonyme
10 janv. 2009 à 22:16
10 janv. 2009 à 22:16
Re,
c pas sa encore
---> Télécharge OTMoveIt3 (OldTimer) sur ton Bureau :
http://oldtimer.geekstogo.com/OTMoveIt3.exe
---> Double-clique sur OTMoveIt3.exe afin de le lancer.
---> Copie (Ctrl+C) le texte suivant en gras ci-dessous :
:files
c:\program files\mywebs~1\bar\3.bin\m3plugin.dll
---> Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.
---> Clique maintenant sur le bouton MoveIt! puis ferme OTMoveIt3.
Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.
---> Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log
c pas sa encore
---> Télécharge OTMoveIt3 (OldTimer) sur ton Bureau :
http://oldtimer.geekstogo.com/OTMoveIt3.exe
---> Double-clique sur OTMoveIt3.exe afin de le lancer.
---> Copie (Ctrl+C) le texte suivant en gras ci-dessous :
:files
c:\program files\mywebs~1\bar\3.bin\m3plugin.dll
---> Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.
---> Clique maintenant sur le bouton MoveIt! puis ferme OTMoveIt3.
Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.
---> Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log
francky51240
Messages postés
85
Date d'inscription
samedi 1 décembre 2007
Statut
Membre
Dernière intervention
21 avril 2013
42
10 janv. 2009 à 22:27
10 janv. 2009 à 22:27
voici la chose ;
File/Folder c:\program files\mywebs~1\bar\3.bin\m3plugin.dll not found.
OTMoveIt3 by OldTimer - Version 1.0.8.0 log created on 01102009_222449
File/Folder c:\program files\mywebs~1\bar\3.bin\m3plugin.dll not found.
OTMoveIt3 by OldTimer - Version 1.0.8.0 log created on 01102009_222449
Utilisateur anonyme
10 janv. 2009 à 22:30
10 janv. 2009 à 22:30
Re,
Cherche ce fichier et supprime le manuellement et vide ta corbeille redémarre ton pc et refait un log rsit.
c:\program files\mywebs~1\bar\3.bin\m3plugin.dll
Cherche ce fichier et supprime le manuellement et vide ta corbeille redémarre ton pc et refait un log rsit.
c:\program files\mywebs~1\bar\3.bin\m3plugin.dll
francky51240
Messages postés
85
Date d'inscription
samedi 1 décembre 2007
Statut
Membre
Dernière intervention
21 avril 2013
42
10 janv. 2009 à 22:47
10 janv. 2009 à 22:47
je suis désolé mais je ne trouve pas ce dossier; j'ai effectué une recherche (avec le petit chien) dans program files, puis pour my webs , mais rien....je suis allé voir dans "poste de travail", program files, et là rien non plus???
où puis le trouver?
où puis le trouver?
francky51240
Messages postés
85
Date d'inscription
samedi 1 décembre 2007
Statut
Membre
Dernière intervention
21 avril 2013
42
10 janv. 2009 à 23:01
10 janv. 2009 à 23:01
le rapport de tolbar S&D
-----------\\ ToolBar S&D 1.2.8 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 2800+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : franck ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1296 [VPS 090110-0] 4.8.1296 (Activated)
C:\ (Local Disk) - NTFS - Total:109 Go (Free:55 Go)
D:\ (USB)
E:\ (USB)
F:\ (USB)
G:\ (USB)
H:\ (CD or DVD)
I:\ (CD or DVD)
"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
Option : [1] ( 10/01/2009|22:55 )
-----------\\ Recherche de Fichiers / Dossiers ...
-----------\\ Extensions
(Carine) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
(franck) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
-----------\\ [..\Internet Explorer\Main]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\windows\\system32\\blank.htm"
"Start Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"SearchAssistant"="https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm"
"CustomizeSearch"="https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchcust.htm"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Local Page"="C:\\windows\\system32\\blank.htm"
"SearchAssistant"="https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm"
"CustomizeSearch"="https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchcust.htm"
"Start Page"="https://www.msn.com/fr-fr"
--------------------\\ Recherche d'autres infections
C:\DOCUME~1\franck\Bureau\Live-Player_setup.exe
[b]==> EGDACCESS <==/b
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\franck\Favoris\This Site is LikeCrack.com -- Like Crack.url
1 - "C:\ToolBar SD\TB_1.txt" - 09/01/2009|15:58 - Option : [1]
2 - "C:\ToolBar SD\TB_2.txt" - 09/01/2009|17:41 - Option : [2]
3 - "C:\ToolBar SD\TB_3.txt" - 10/01/2009|22:59 - Option : [1]
-----------\\ Fin du rapport a 22:59:10,93
-----------\\ ToolBar S&D 1.2.8 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 2800+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : franck ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1296 [VPS 090110-0] 4.8.1296 (Activated)
C:\ (Local Disk) - NTFS - Total:109 Go (Free:55 Go)
D:\ (USB)
E:\ (USB)
F:\ (USB)
G:\ (USB)
H:\ (CD or DVD)
I:\ (CD or DVD)
"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
Option : [1] ( 10/01/2009|22:55 )
-----------\\ Recherche de Fichiers / Dossiers ...
-----------\\ Extensions
(Carine) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
(franck) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
-----------\\ [..\Internet Explorer\Main]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\windows\\system32\\blank.htm"
"Start Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"SearchAssistant"="https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm"
"CustomizeSearch"="https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchcust.htm"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Local Page"="C:\\windows\\system32\\blank.htm"
"SearchAssistant"="https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm"
"CustomizeSearch"="https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchcust.htm"
"Start Page"="https://www.msn.com/fr-fr"
--------------------\\ Recherche d'autres infections
C:\DOCUME~1\franck\Bureau\Live-Player_setup.exe
[b]==> EGDACCESS <==/b
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\franck\Favoris\This Site is LikeCrack.com -- Like Crack.url
1 - "C:\ToolBar SD\TB_1.txt" - 09/01/2009|15:58 - Option : [1]
2 - "C:\ToolBar SD\TB_2.txt" - 09/01/2009|17:41 - Option : [2]
3 - "C:\ToolBar SD\TB_3.txt" - 10/01/2009|22:59 - Option : [1]
-----------\\ Fin du rapport a 22:59:10,93
anthony5151
Messages postés
10573
Date d'inscription
vendredi 27 juin 2008
Statut
Contributeur sécurité
Dernière intervention
2 mars 2015
790
11 janv. 2009 à 01:58
11 janv. 2009 à 01:58
Bonsoir à tous les deux,
@ V-X :
"Relance navilog option1"
==> Ca c'est de l'explication, bravo !
Au passage, tu devrais regarder un peu les rapports des programmes que tu demandes à la chaine !
"C:\WINDOWS\system32\msqpdxsewxlyxm.dll (Trojan.TDSS) -> Delete on reboot"
==> Suite à ça, il faut :
1) Demander à francky51240 de redémarrer son ordinateur
2) S'il y a bien un trojan TDSS sur l'ordinateur, MalwareBytes ne suffit pas ! Il faut passer SDFix derrière (au minimum)...
@ francky51240 :
Il y a apparemment encore deux infections sur ton ordinateur... Fais ce qui suit pour t'en débarrasser stp :
1) Télécharge SDFix (créé par AndyManchesta) et sauvegarde le sur ton Bureau.
• Double clique sur SDFix.exe et choisis Install pour l'extraire dans un dossier dédié sur le Bureau.
• Puis redémarre ton ordinateur en mode sans échec en suivant la procédure que voici : Redémarre ton ordinateur, puis tapote sur la touche F8 (F5 sur certains PC) juste avant l’apparition du logo Windows. Un menu va apparaître, tu devra choisir de démarrer en mode sans échec. Ouvre ensuite ta session habituelle (si nécessaire) et ne t'inquiète pas si les couleurs et la taille des icônes changent par rapport à d'habitude.
• Puis, ouvre le dossier SDFix qui vient d'être créé sur le Bureau et double clique sur RunThis.bat pour lancer le script et laisse toi guider.
• Il va supprimer les services et les entrées du Registre de certains trojans trouvés puis te demandera d'appuyer sur une touche pour redémarrer.
• Ton système sera plus long pour redémarrer qu'à l'accoutumée car l'outil va continuer à s'exécuter et supprimer des fichiers.
• Après le chargement du Bureau, l'outil terminera son travail et affichera Finished.
• Appuie sur une touche pour finir l'exécution du script et charger les icônes de ton Bureau.
• Le rapport SDFix s'ouvrira alors à l'écran et s'enregistrera aussi dans le dossier SDFix sous le nom Report.txt.
• Enfin, copie/colle le contenu du fichier Report.txt dans ta prochaine réponse sur le forum, avec un nouveau rapport Hijackthis !
2) Ton ordinateur est infecté par MagicControl/navipromo, qui s'installe via des programmes dits "gratuits", dont ceux-ci :
• go-astro
• GoRecord
• HotTVPlayer / HotTVPlayer & Paris Hilton
• Live-Player
• MailSkinner
• Messenger Skinner
• Instant Access
• InternetGameBox
• Officiale Emule (Version d'Emule modifiée)
• Sudoplanet
• Webmediaplayer
Pour désinfecter, merci de suivre exactement cette procédure :
# Désactive le TeaTimer de Spybot (tu le réactiveras après ta désinfection) :
Lance Spybot --> clique sur Mode => coche Mode avancé => Outils => Résident => décoche la case Résident Tea Timer
# Télécharge maintenant Navilog1 (de IL-MAFIOSO) depuis-ce lien : http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe
• Enregistrer la cible (du lien) sous... et enregistre-le sur ton Bureau.
• Ensuite double clique sur navilog1.exe pour lancer l'installation.
• Une fois l'installation terminée, lance Navilog depuis le raccourci présent sur le Bureau
• Au menu principal, Fais le choix 1
• Laisse toi guider et patiente.
• Patiente jusqu'au message : "Analyse Termine le..."
• Appuie sur une touche, le bloc note va s'ouvrir.
• Copie-colle l'intégralité du rapport ici.
@ V-X :
"Relance navilog option1"
==> Ca c'est de l'explication, bravo !
Au passage, tu devrais regarder un peu les rapports des programmes que tu demandes à la chaine !
"C:\WINDOWS\system32\msqpdxsewxlyxm.dll (Trojan.TDSS) -> Delete on reboot"
==> Suite à ça, il faut :
1) Demander à francky51240 de redémarrer son ordinateur
2) S'il y a bien un trojan TDSS sur l'ordinateur, MalwareBytes ne suffit pas ! Il faut passer SDFix derrière (au minimum)...
@ francky51240 :
Il y a apparemment encore deux infections sur ton ordinateur... Fais ce qui suit pour t'en débarrasser stp :
1) Télécharge SDFix (créé par AndyManchesta) et sauvegarde le sur ton Bureau.
• Double clique sur SDFix.exe et choisis Install pour l'extraire dans un dossier dédié sur le Bureau.
• Puis redémarre ton ordinateur en mode sans échec en suivant la procédure que voici : Redémarre ton ordinateur, puis tapote sur la touche F8 (F5 sur certains PC) juste avant l’apparition du logo Windows. Un menu va apparaître, tu devra choisir de démarrer en mode sans échec. Ouvre ensuite ta session habituelle (si nécessaire) et ne t'inquiète pas si les couleurs et la taille des icônes changent par rapport à d'habitude.
• Puis, ouvre le dossier SDFix qui vient d'être créé sur le Bureau et double clique sur RunThis.bat pour lancer le script et laisse toi guider.
• Il va supprimer les services et les entrées du Registre de certains trojans trouvés puis te demandera d'appuyer sur une touche pour redémarrer.
• Ton système sera plus long pour redémarrer qu'à l'accoutumée car l'outil va continuer à s'exécuter et supprimer des fichiers.
• Après le chargement du Bureau, l'outil terminera son travail et affichera Finished.
• Appuie sur une touche pour finir l'exécution du script et charger les icônes de ton Bureau.
• Le rapport SDFix s'ouvrira alors à l'écran et s'enregistrera aussi dans le dossier SDFix sous le nom Report.txt.
• Enfin, copie/colle le contenu du fichier Report.txt dans ta prochaine réponse sur le forum, avec un nouveau rapport Hijackthis !
2) Ton ordinateur est infecté par MagicControl/navipromo, qui s'installe via des programmes dits "gratuits", dont ceux-ci :
• go-astro
• GoRecord
• HotTVPlayer / HotTVPlayer & Paris Hilton
• Live-Player
• MailSkinner
• Messenger Skinner
• Instant Access
• InternetGameBox
• Officiale Emule (Version d'Emule modifiée)
• Sudoplanet
• Webmediaplayer
Pour désinfecter, merci de suivre exactement cette procédure :
# Désactive le TeaTimer de Spybot (tu le réactiveras après ta désinfection) :
Lance Spybot --> clique sur Mode => coche Mode avancé => Outils => Résident => décoche la case Résident Tea Timer
# Télécharge maintenant Navilog1 (de IL-MAFIOSO) depuis-ce lien : http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe
• Enregistrer la cible (du lien) sous... et enregistre-le sur ton Bureau.
• Ensuite double clique sur navilog1.exe pour lancer l'installation.
• Une fois l'installation terminée, lance Navilog depuis le raccourci présent sur le Bureau
• Au menu principal, Fais le choix 1
• Laisse toi guider et patiente.
• Patiente jusqu'au message : "Analyse Termine le..."
• Appuie sur une touche, le bloc note va s'ouvrir.
• Copie-colle l'intégralité du rapport ici.
Utilisateur anonyme
11 janv. 2009 à 02:00
11 janv. 2009 à 02:00
Re,
Oui monsieur le formateur.
De plus relit le topic et tu verras que je lelui et demander.
Poste 28
CIAO
Fini le maintenant.
Oui monsieur le formateur.
De plus relit le topic et tu verras que je lelui et demander.
Re, Supprime la quarantaine et redémarre ton pc et refait un rapport avec RSIT. merci
Poste 28
CIAO
Fini le maintenant.
francky51240
Messages postés
85
Date d'inscription
samedi 1 décembre 2007
Statut
Membre
Dernière intervention
21 avril 2013
42
11 janv. 2009 à 09:10
11 janv. 2009 à 09:10
Bonjour,
je n'arrive pas à aller au bout de l'analyse de Navilog1; il y a bien plusieurs recherches qui s'effectuent, mais dès que j'arrive à la ligne "recherche avec Catche par gmer; l'analyse peut prendre une dizaine de minutes", tout se rebloque et je peux attendre et attendre plusieurs dizaines de minutes , mais rien, il semble arrêté la dessus; j'ai essayé de redémarrer deux fois avant de retenter la manip, mais toujours le même scénario.
pas facile tout de même!!
Merci en tout cas pour tout ce temps qui m'est consacré;
Merci aussi à Anthony5151 de se pencher sur mon cas, je pense que par rapport à tous ces rapports écrits en "chinois", deux têtes pensantes ne sont pas de trop!!
en tout cas un grand merci et un grand bravo
je n'arrive pas à aller au bout de l'analyse de Navilog1; il y a bien plusieurs recherches qui s'effectuent, mais dès que j'arrive à la ligne "recherche avec Catche par gmer; l'analyse peut prendre une dizaine de minutes", tout se rebloque et je peux attendre et attendre plusieurs dizaines de minutes , mais rien, il semble arrêté la dessus; j'ai essayé de redémarrer deux fois avant de retenter la manip, mais toujours le même scénario.
pas facile tout de même!!
Merci en tout cas pour tout ce temps qui m'est consacré;
Merci aussi à Anthony5151 de se pencher sur mon cas, je pense que par rapport à tous ces rapports écrits en "chinois", deux têtes pensantes ne sont pas de trop!!
en tout cas un grand merci et un grand bravo
anthony5151
Messages postés
10573
Date d'inscription
vendredi 27 juin 2008
Statut
Contributeur sécurité
Dernière intervention
2 mars 2015
790
11 janv. 2009 à 14:45
11 janv. 2009 à 14:45
Commence par SDFix stp ;) On verra plus tard pour l'infection navipromo, elle est moins importante.
francky51240
Messages postés
85
Date d'inscription
samedi 1 décembre 2007
Statut
Membre
Dernière intervention
21 avril 2013
42
11 janv. 2009 à 15:36
11 janv. 2009 à 15:36
Bonjour, et merci pour votre disponibilité....
en revanche je n'ai pas téléchargé SDFix, et je ne sait pas où le chercher sur "comment ça marche"
merci
en revanche je n'ai pas téléchargé SDFix, et je ne sait pas où le chercher sur "comment ça marche"
merci
anthony5151
Messages postés
10573
Date d'inscription
vendredi 27 juin 2008
Statut
Contributeur sécurité
Dernière intervention
2 mars 2015
790
11 janv. 2009 à 15:38
11 janv. 2009 à 15:38
Je t'ai expliqué comment le télécharger et l'utiliser au message 40 ;)
Je reposte ici :
Télécharge SDFix (créé par AndyManchesta) et sauvegarde le sur ton Bureau.
• Double clique sur SDFix.exe et choisis Install pour l'extraire dans un dossier dédié sur le Bureau.
• Puis redémarre ton ordinateur en mode sans échec en suivant la procédure que voici : Redémarre ton ordinateur, puis tapote sur la touche F8 (F5 sur certains PC) juste avant l’apparition du logo Windows. Un menu va apparaître, tu devra choisir de démarrer en mode sans échec. Ouvre ensuite ta session habituelle (si nécessaire) et ne t'inquiète pas si les couleurs et la taille des icônes changent par rapport à d'habitude.
• Puis, ouvre le dossier SDFix qui vient d'être créé sur le Bureau et double clique sur RunThis.bat pour lancer le script et laisse toi guider.
• Il va supprimer les services et les entrées du Registre de certains trojans trouvés puis te demandera d'appuyer sur une touche pour redémarrer.
• Ton système sera plus long pour redémarrer qu'à l'accoutumée car l'outil va continuer à s'exécuter et supprimer des fichiers.
• Après le chargement du Bureau, l'outil terminera son travail et affichera Finished.
• Appuie sur une touche pour finir l'exécution du script et charger les icônes de ton Bureau.
• Le rapport SDFix s'ouvrira alors à l'écran et s'enregistrera aussi dans le dossier SDFix sous le nom Report.txt.
• Enfin, copie/colle le contenu du fichier Report.txt dans ta prochaine réponse sur le forum, avec un nouveau rapport Hijackthis !
Je reposte ici :
Télécharge SDFix (créé par AndyManchesta) et sauvegarde le sur ton Bureau.
• Double clique sur SDFix.exe et choisis Install pour l'extraire dans un dossier dédié sur le Bureau.
• Puis redémarre ton ordinateur en mode sans échec en suivant la procédure que voici : Redémarre ton ordinateur, puis tapote sur la touche F8 (F5 sur certains PC) juste avant l’apparition du logo Windows. Un menu va apparaître, tu devra choisir de démarrer en mode sans échec. Ouvre ensuite ta session habituelle (si nécessaire) et ne t'inquiète pas si les couleurs et la taille des icônes changent par rapport à d'habitude.
• Puis, ouvre le dossier SDFix qui vient d'être créé sur le Bureau et double clique sur RunThis.bat pour lancer le script et laisse toi guider.
• Il va supprimer les services et les entrées du Registre de certains trojans trouvés puis te demandera d'appuyer sur une touche pour redémarrer.
• Ton système sera plus long pour redémarrer qu'à l'accoutumée car l'outil va continuer à s'exécuter et supprimer des fichiers.
• Après le chargement du Bureau, l'outil terminera son travail et affichera Finished.
• Appuie sur une touche pour finir l'exécution du script et charger les icônes de ton Bureau.
• Le rapport SDFix s'ouvrira alors à l'écran et s'enregistrera aussi dans le dossier SDFix sous le nom Report.txt.
• Enfin, copie/colle le contenu du fichier Report.txt dans ta prochaine réponse sur le forum, avec un nouveau rapport Hijackthis !
francky51240
Messages postés
85
Date d'inscription
samedi 1 décembre 2007
Statut
Membre
Dernière intervention
21 avril 2013
42
12 janv. 2009 à 10:59
12 janv. 2009 à 10:59
je ne sais plus à qui je dois m'adresser (anthony5151 ou VX), mais je n'ai pas pu effectuer la derniere manoeuvre, je ne voit aucune case intitulée "RunThis .bat"; quand je redémarre en mode sans échec et que je clic sur SDFix, je tombe directement sur "exécuter".....j'ai peut-être raté une étape :-(
merci
Franck
merci
Franck
