A voir également:
- Probleme avec antivir le parapluie
- Avira antivir - Télécharger - Antivirus & Antimalwares
- Avira antivir rescue system - Télécharger - Antivirus & Antimalwares
- Jeu du parapluie google - Guide
153 réponses
loloetseb
Messages postés
5508
Date d'inscription
dimanche 14 décembre 2008
Statut
Membre
Dernière intervention
22 avril 2012
174
15 févr. 2009 à 23:28
15 févr. 2009 à 23:28
Bon ,on a du revenir avant les scipts alors a quelque chose pret
Utilisateur anonyme
15 févr. 2009 à 23:32
15 févr. 2009 à 23:32
mon pc faisait des trucs bizar a l'allumage apres combo g eu peur.
loloetseb
Messages postés
5508
Date d'inscription
dimanche 14 décembre 2008
Statut
Membre
Dernière intervention
22 avril 2012
174
16 févr. 2009 à 00:08
16 févr. 2009 à 00:08
Les scripts demande un temps d'analyse donc pas d'inquietude ,on est la
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Utilisateur anonyme
16 févr. 2009 à 00:14
16 févr. 2009 à 00:14
========== PROCESSES ==========
Process explorer.exe killed successfully.
========== FILES ==========
C:\8a951c6a5f9b6ce034b909 moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\zh-TW moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\zh-CN moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\tr moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\sv moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\ru moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\pt-PT moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\pt-BR moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\pl moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\no moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\nl moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\zh-CHT moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\zh-CHS moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\tr moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\sv moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\ru moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\pt-PT moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\pt-BR moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\pl moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\no moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\nl moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\ko moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\ja moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\it moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\hu moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\he moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\fr moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\fi moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\es moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\en moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\el moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\de moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\da moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\cs moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\ar moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\ko moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\ja moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\it moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\images moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\hu moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\he moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\fr moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\fi moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\es moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\en moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\el moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\zh-TW moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\zh-CN moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\tr moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\sv moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\ru moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\pt-PT moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\pt-BR moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\pl moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\no moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\nl moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\ko moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\ja moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\it moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\hu moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\he moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\fr moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\fi moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\es moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\en moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\el moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\de moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\da moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\cs moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\ar moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\de moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\da moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\cs moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\ar moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c moved successfully.
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\UTILIS~1\LOCALS~1\Temp\etilqs_Lxpoa67AYZTeFxczoZAs scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
Local Service Temp folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
Local Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\usgthrsvc\Perflib_Perfdata_3b4.dat scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_d0.dat scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
File delete failed. C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\wpjh302w.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\wpjh302w.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\wpjh302w.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\wpjh302w.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\wpjh302w.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\wpjh302w.default\XUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
Explorer started successfully
OTMoveIt3 by OldTimer - Version 1.0.8.0 log created on 02162009_001132
Process explorer.exe killed successfully.
========== FILES ==========
C:\8a951c6a5f9b6ce034b909 moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\zh-TW moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\zh-CN moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\tr moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\sv moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\ru moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\pt-PT moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\pt-BR moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\pl moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\no moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\nl moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\zh-CHT moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\zh-CHS moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\tr moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\sv moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\ru moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\pt-PT moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\pt-BR moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\pl moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\no moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\nl moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\ko moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\ja moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\it moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\hu moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\he moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\fr moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\fi moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\es moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\en moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\el moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\de moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\da moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\cs moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks\ar moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\Langpacks moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\ko moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\ja moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\it moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\images moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\hu moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\he moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\fr moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\fi moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\es moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\en moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\el moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\zh-TW moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\zh-CN moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\tr moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\sv moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\ru moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\pt-PT moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\pt-BR moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\pl moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\no moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\nl moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\ko moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\ja moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\it moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\hu moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\he moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\fr moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\fi moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\es moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\en moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\el moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\de moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\da moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\cs moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx\ar moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\DotNetClientFx moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\de moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\da moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\cs moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c\ar moved successfully.
C:\4ff2ceec88d71beb2106d94f03c8678c moved successfully.
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\UTILIS~1\LOCALS~1\Temp\etilqs_Lxpoa67AYZTeFxczoZAs scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
Local Service Temp folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
Local Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\usgthrsvc\Perflib_Perfdata_3b4.dat scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_d0.dat scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
File delete failed. C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\wpjh302w.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\wpjh302w.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\wpjh302w.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\wpjh302w.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\wpjh302w.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\wpjh302w.default\XUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
Explorer started successfully
OTMoveIt3 by OldTimer - Version 1.0.8.0 log created on 02162009_001132
loloetseb
Messages postés
5508
Date d'inscription
dimanche 14 décembre 2008
Statut
Membre
Dernière intervention
22 avril 2012
174
16 févr. 2009 à 00:23
16 févr. 2009 à 00:23
Ah la y'a que genhackman qui peut te repondre,ce script me depasse.Surement un prog malveillant dans cette suite de numero
Utilisateur anonyme
16 févr. 2009 à 00:24
16 févr. 2009 à 00:24
redemarre ton pc et avant toute action renvoie un rsit s'il te plait
loloetseb : gen-hackman s'il te plait :)
loloetseb : gen-hackman s'il te plait :)
Utilisateur anonyme
16 févr. 2009 à 00:28
16 févr. 2009 à 00:28
Logfile of random's system information tool 1.05 (written by random/random)
Run by Utilisateur at 2009-02-16 00:26:39
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 52 GB (68%) free of 76 GB
Total RAM: 2038 MB (71% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 00:26:44, on 16/02/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16791)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\a-squared Free\a2service.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Utilisateur\Bureau\SECURITE\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Utilisateur.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://mystart.incredimail.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.update.microsoft.com/windowsupdate/v6/default.aspx
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [PC Booster] C:\Program Files\inKline Global\PC Booster\PCBooster.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\RunOnce: [OTMoveIt] C:\Documents and Settings\Utilisateur\Bureau\SECURITE\OTMoveIt3.exe
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} (MksSkanerOnline Class) - http://www.mks.com.pl/skaner/SkanerOnline.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: Planificateur Avira AntiVir Personal - Free Antivirus (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: Broadcom Wireless LAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE
Run by Utilisateur at 2009-02-16 00:26:39
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 52 GB (68%) free of 76 GB
Total RAM: 2038 MB (71% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 00:26:44, on 16/02/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16791)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\a-squared Free\a2service.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Utilisateur\Bureau\SECURITE\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Utilisateur.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://mystart.incredimail.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.update.microsoft.com/windowsupdate/v6/default.aspx
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [PC Booster] C:\Program Files\inKline Global\PC Booster\PCBooster.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\RunOnce: [OTMoveIt] C:\Documents and Settings\Utilisateur\Bureau\SECURITE\OTMoveIt3.exe
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} (MksSkanerOnline Class) - http://www.mks.com.pl/skaner/SkanerOnline.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: Planificateur Avira AntiVir Personal - Free Antivirus (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: Broadcom Wireless LAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE
loloetseb
Messages postés
5508
Date d'inscription
dimanche 14 décembre 2008
Statut
Membre
Dernière intervention
22 avril 2012
174
16 févr. 2009 à 00:45
16 févr. 2009 à 00:45
Ça doit être une bébêtes du sud qui apprécie le soleil et qui doit pas avoir envie de voir le parapluie d'antivir
loloetseb
Messages postés
5508
Date d'inscription
dimanche 14 décembre 2008
Statut
Membre
Dernière intervention
22 avril 2012
174
16 févr. 2009 à 01:12
16 févr. 2009 à 01:12
==> Télécharge OAD http://sosvirus.changelog.fr/OAD.exe
- Enregistre le sur ton bureau
Double clique sur le OAD pour le lancer
- nom de fichier à rechercher tape ou fais un copier coller de : valeur_à rechercher
sysrestore
- Type de recherche : sélectionne l'option 6 puis valide [entree]
OAD va maintenant rechercher le fichier. Laisse le travailler jusqu'à ce qu'il en ai terminé.
Le rapport de recherche s'affichera automatiquement à dès qu'il en aura terminé.
- Fais un copier / coller de ce rapport dans ton prochain post.
Note importante : Suivant la taille des disques dur cette recherche peut prendre plusieurs minutes. Sois patient
- Enregistre le sur ton bureau
Double clique sur le OAD pour le lancer
- nom de fichier à rechercher tape ou fais un copier coller de : valeur_à rechercher
sysrestore
- Type de recherche : sélectionne l'option 6 puis valide [entree]
OAD va maintenant rechercher le fichier. Laisse le travailler jusqu'à ce qu'il en ai terminé.
Le rapport de recherche s'affichera automatiquement à dès qu'il en aura terminé.
- Fais un copier / coller de ce rapport dans ton prochain post.
Note importante : Suivant la taille des disques dur cette recherche peut prendre plusieurs minutes. Sois patient
Utilisateur anonyme
16 févr. 2009 à 11:26
16 févr. 2009 à 11:26
16/02/2009 ---- 11:24:12,68
----------------------------------
§§§§§§ [sysrestore ] §§§§§§
----------------------------------
[X] Registre
-------------- [ ] rapide
-- Fichier --- [ ] disque systeme
------------- [X] complete
********************
[Registre]
********************
Aucune entrée détectée
*******************
[Fichier]
*******************
*********************
[Même date]
*********************
Aucun fichier créé à la même date détecté
Outil Aide Diagnostic By !aur3n7 Version 1.1
----------------------------------
§§§§§ Fin Rapport §§§§§
----------------------------------
----------------------------------
§§§§§§ [sysrestore ] §§§§§§
----------------------------------
[X] Registre
-------------- [ ] rapide
-- Fichier --- [ ] disque systeme
------------- [X] complete
********************
[Registre]
********************
Aucune entrée détectée
*******************
[Fichier]
*******************
*********************
[Même date]
*********************
Aucun fichier créé à la même date détecté
Outil Aide Diagnostic By !aur3n7 Version 1.1
----------------------------------
§§§§§ Fin Rapport §§§§§
----------------------------------
