Pages de pubs (CID) à longueur de journée
rambolita01
-
Utilisateur anonyme -
Utilisateur anonyme -
Bonjour à tous :)
Voilà depuis peut-être 1 mois j'ai des pages de pub qui souvrent constamment la plus part du temps commençant par "CID" puis le site..
A savoir que les pages s'ouvrent quand je suis sur internet mais également quand je n'y suis pas.
-J'ai supprimer le sponsor d'msn+ je l'ai désinstallé et reinstallé (sans sponsor) par précaution!
-J'ai BitDefender Free Edition 2009 comme anti-virus
-J'ai Ccleaner et Spybot S&D
J'aurai voulu savoir si ces fameuses pages "CID" sont des virus ou non ?
Voilà si quelqu'un voudrait bien m'aider ça serai bien sympathique :)
ps: je ne suis pas très douée en informatique..
Merci d'avance !
Voilà depuis peut-être 1 mois j'ai des pages de pub qui souvrent constamment la plus part du temps commençant par "CID" puis le site..
A savoir que les pages s'ouvrent quand je suis sur internet mais également quand je n'y suis pas.
-J'ai supprimer le sponsor d'msn+ je l'ai désinstallé et reinstallé (sans sponsor) par précaution!
-J'ai BitDefender Free Edition 2009 comme anti-virus
-J'ai Ccleaner et Spybot S&D
J'aurai voulu savoir si ces fameuses pages "CID" sont des virus ou non ?
Voilà si quelqu'un voudrait bien m'aider ça serai bien sympathique :)
ps: je ne suis pas très douée en informatique..
Merci d'avance !
A voir également:
- Pages de pubs (CID) à longueur de journée
- Impossible de supprimer une page word - Guide
- Bloquer les pubs youtube - Accueil - Streaming
- Supprimer les pubs - Guide
- 1 page word = combien de pages roman - Forum Loisirs / Divertissements
- Word numéro de page 1/2 - Guide
62 réponses
Bon j'ai fait la touche f3 y trouve rien !! Et pour les dossiers faut que je fasse dossier par dossier ou y aurait-il pas une ptite touche magique comme f3 pour une recherche globale et rapide ?
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
tu peux virer ad-remover et findykill
=================================
Télécharge OTL de OLDTimer
▶ enregistre le sur ton Bureau.
▶ Double clic ( pour vista => clic droit "executer en tant qu'administrateur") sur OTL.exe pour le lancer.
▶ Coche les 2 cases Lop et Purity
▶ Coche la case devant scan all users
▶ règle-le sur "60 Days"
▶ dans la colonne de gauche , mets tout sur all
ne modifie pas ceci :
"files created whithin" et "files modified whithin"
▶Clic sur Run Scan.
A la fin du scan, le Bloc-Notes va s'ouvrir avec le rapport (OTL.txt).
Ce fichier est sur ton Bureau (en général C:\Documents and settings\le_nom_de_ta_session\OTL.txt)
▶▶▶ NE LE POSTE PAS SUR LE FORUM
Pour me le transmettre clique sur ce lien : http://www.cijoint.fr/
▶ Clique sur Parcourir et cherche le fichier ci-dessus.
▶ Clique sur Ouvrir.
▶ Clique sur "Cliquez ici pour déposer le fichier".
Un lien de cette forme :
http://www.cijoint.fr/cjlink.php?file=cjge368/cijSKAP5fU.txt
est ajouté dans la page.
▶ Copie ce lien dans ta réponse.
▶▶ Tu feras la meme chose avec le "Extra.txt".
=================================
Télécharge OTL de OLDTimer
▶ enregistre le sur ton Bureau.
▶ Double clic ( pour vista => clic droit "executer en tant qu'administrateur") sur OTL.exe pour le lancer.
▶ Coche les 2 cases Lop et Purity
▶ Coche la case devant scan all users
▶ règle-le sur "60 Days"
▶ dans la colonne de gauche , mets tout sur all
ne modifie pas ceci :
"files created whithin" et "files modified whithin"
▶Clic sur Run Scan.
A la fin du scan, le Bloc-Notes va s'ouvrir avec le rapport (OTL.txt).
Ce fichier est sur ton Bureau (en général C:\Documents and settings\le_nom_de_ta_session\OTL.txt)
▶▶▶ NE LE POSTE PAS SUR LE FORUM
Pour me le transmettre clique sur ce lien : http://www.cijoint.fr/
▶ Clique sur Parcourir et cherche le fichier ci-dessus.
▶ Clique sur Ouvrir.
▶ Clique sur "Cliquez ici pour déposer le fichier".
Un lien de cette forme :
http://www.cijoint.fr/cjlink.php?file=cjge368/cijSKAP5fU.txt
est ajouté dans la page.
▶ Copie ce lien dans ta réponse.
▶▶ Tu feras la meme chose avec le "Extra.txt".
OTL txt:
http://www.cijoint.fr/cjlink.php?file=cj200911/cijpJREQjS.txt
Extras Txt:
http://www.cijoint.fr/cjlink.php?file=cj200911/cijVboDJCj.txt
http://www.cijoint.fr/cjlink.php?file=cj200911/cijpJREQjS.txt
Extras Txt:
http://www.cijoint.fr/cjlink.php?file=cj200911/cijVboDJCj.txt
▶ Clique sur le menu Demarrer /Panneau de configuration/Options des dossiers/ puis dans l'onglet Affichage
* - Coche Afficher les fichiers et dossiers cachés
* - Décoche Masquer les extensions des fichiers dont le type est connu
* - Décoche Masquer les fichiers protégés du système d'exploitation (recommandé)
▶ clique sur Appliquer, puis OK.
N'oublie pas de recacher à nouveau les fichiers cachés et protégés du système d'exploitation en fin de désinfection, c'est important
Fais analyser le(s) fichier(s) suivants sur Virustotal :
Virus Total
* Clique sur Parcourir en haut, choisis Poste de travail et cherche ces fichiers :
C:\Windows\System32\xreglib.dll
* Clique maintenant sur Envoyer le fichier. et laisse travailler tant que "Situation actuelle : en cours d'analyse" est affiché.
* Il est possible que le fichier soit mis en file d'attente en raison d'un grand nombre de demandes d'analyses. En ce cas, il te faudra patienter sans actualiser la page.
* Lorsque l'analyse est terminée ("Situation actuelle: terminé"), clique sur Formaté
* Une nouvelle fenêtre de ton navigateur va apparaître
* Clique alors sur les deux fleches
* Fais un clic droit sur la page, et choisis Sélectionner tout, puis copier
* Enfin colle le résultat dans ta prochaine réponse.
Note : Pour analyser un autre fichier, clique en bas sur Autre fichier.
ensuite :
▶ Double clic sur OTL.exe pour le lancer.
▶Copie la liste qui se trouve en gras ci-dessous,
▶ colle-la dans la zone sous Customs Scans/Fixes :
:processes
explorer.exe
iexplore.exe
firefox.exe
msnmsgr.exe
Teatimer.exe
:OTL
IE - HKLM\..\URLSearchHook: {f592709f-ff4a-4862-b659-4afabda56312} - C:\Program Files\Mininova\tbMini.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-703948299-1005296000-2518214268-1000\..\URLSearchHook: {f592709f-ff4a-4862-b659-4afabda56312} - C:\Program Files\Mininova\tbMini.dll (Conduit Ltd.)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Mininova Toolbar) - {f592709f-ff4a-4862-b659-4afabda56312} - C:\Program Files\Mininova\tbMini.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Mininova Toolbar) - {f592709f-ff4a-4862-b659-4afabda56312} - C:\Program Files\Mininova\tbMini.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-703948299-1005296000-2518214268-1000\..\Toolbar\WebBrowser: (Mininova Toolbar) - {F592709F-FF4A-4862-B659-4AFABDA56312} - C:\Program Files\Mininova\tbMini.dll (Conduit Ltd.)
O4 - HKLM..\Run: [eRecoveryService] File not found
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: CabBuilder http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab (Reg Error: Key error.)
O33 - MountPoints2\{1c294237-bcd6-11dd-b297-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{1c294237-bcd6-11dd-b297-806e6f6e6963}\Shell\AutoRun\command - "" = E:\setup.exe -- [2009/05/05 13:57:01 | 00,310,085 | R--- | M] ( )
O33 - MountPoints2\{6c18391c-ed5b-11dd-b436-00238b3b955e}\Shell\AutoRun\command - "" = F:\setupSNK.exe -- File not found
@Alternate Data Stream - 135 bytes -> C:\ProgramData\TEMP:E36F5B57
@Alternate Data Stream - 131 bytes -> C:\ProgramData\TEMP:8AB6C1D7
@Alternate Data Stream - 122 bytes -> C:\ProgramData\TEMP:2B99FE60
@Alternate Data Stream - 118 bytes -> C:\ProgramData\TEMP:4CF61E54
@Alternate Data Stream - 115 bytes -> C:\ProgramData\TEMP:4F636E25
@Alternate Data Stream - 109 bytes -> C:\ProgramData\TEMP:580E04D8
:reg
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=-
"TkBellExe"=-
:Files
C:\ProgramData\poke two wait
C:\ProgramData\Vc Nurb That Dent
C:\Users\Céli-Flo\AppData\Roaming\.#
:commands
[emptytemp]
[start explorer]
[reboot]
▶ Clique sur RunFix pour lancer la suppression.
▶ Poste le rapport.
* - Coche Afficher les fichiers et dossiers cachés
* - Décoche Masquer les extensions des fichiers dont le type est connu
* - Décoche Masquer les fichiers protégés du système d'exploitation (recommandé)
▶ clique sur Appliquer, puis OK.
N'oublie pas de recacher à nouveau les fichiers cachés et protégés du système d'exploitation en fin de désinfection, c'est important
Fais analyser le(s) fichier(s) suivants sur Virustotal :
Virus Total
* Clique sur Parcourir en haut, choisis Poste de travail et cherche ces fichiers :
C:\Windows\System32\xreglib.dll
* Clique maintenant sur Envoyer le fichier. et laisse travailler tant que "Situation actuelle : en cours d'analyse" est affiché.
* Il est possible que le fichier soit mis en file d'attente en raison d'un grand nombre de demandes d'analyses. En ce cas, il te faudra patienter sans actualiser la page.
* Lorsque l'analyse est terminée ("Situation actuelle: terminé"), clique sur Formaté
* Une nouvelle fenêtre de ton navigateur va apparaître
* Clique alors sur les deux fleches
* Fais un clic droit sur la page, et choisis Sélectionner tout, puis copier
* Enfin colle le résultat dans ta prochaine réponse.
Note : Pour analyser un autre fichier, clique en bas sur Autre fichier.
ensuite :
▶ Double clic sur OTL.exe pour le lancer.
▶Copie la liste qui se trouve en gras ci-dessous,
▶ colle-la dans la zone sous Customs Scans/Fixes :
:processes
explorer.exe
iexplore.exe
firefox.exe
msnmsgr.exe
Teatimer.exe
:OTL
IE - HKLM\..\URLSearchHook: {f592709f-ff4a-4862-b659-4afabda56312} - C:\Program Files\Mininova\tbMini.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-703948299-1005296000-2518214268-1000\..\URLSearchHook: {f592709f-ff4a-4862-b659-4afabda56312} - C:\Program Files\Mininova\tbMini.dll (Conduit Ltd.)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Mininova Toolbar) - {f592709f-ff4a-4862-b659-4afabda56312} - C:\Program Files\Mininova\tbMini.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Mininova Toolbar) - {f592709f-ff4a-4862-b659-4afabda56312} - C:\Program Files\Mininova\tbMini.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-703948299-1005296000-2518214268-1000\..\Toolbar\WebBrowser: (Mininova Toolbar) - {F592709F-FF4A-4862-B659-4AFABDA56312} - C:\Program Files\Mininova\tbMini.dll (Conduit Ltd.)
O4 - HKLM..\Run: [eRecoveryService] File not found
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: CabBuilder http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab (Reg Error: Key error.)
O33 - MountPoints2\{1c294237-bcd6-11dd-b297-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{1c294237-bcd6-11dd-b297-806e6f6e6963}\Shell\AutoRun\command - "" = E:\setup.exe -- [2009/05/05 13:57:01 | 00,310,085 | R--- | M] ( )
O33 - MountPoints2\{6c18391c-ed5b-11dd-b436-00238b3b955e}\Shell\AutoRun\command - "" = F:\setupSNK.exe -- File not found
@Alternate Data Stream - 135 bytes -> C:\ProgramData\TEMP:E36F5B57
@Alternate Data Stream - 131 bytes -> C:\ProgramData\TEMP:8AB6C1D7
@Alternate Data Stream - 122 bytes -> C:\ProgramData\TEMP:2B99FE60
@Alternate Data Stream - 118 bytes -> C:\ProgramData\TEMP:4CF61E54
@Alternate Data Stream - 115 bytes -> C:\ProgramData\TEMP:4F636E25
@Alternate Data Stream - 109 bytes -> C:\ProgramData\TEMP:580E04D8
:reg
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=-
"TkBellExe"=-
:Files
C:\ProgramData\poke two wait
C:\ProgramData\Vc Nurb That Dent
C:\Users\Céli-Flo\AppData\Roaming\.#
:commands
[emptytemp]
[start explorer]
[reboot]
▶ Clique sur RunFix pour lancer la suppression.
▶ Poste le rapport.
Virus total:
Fichier xreglib.dll reçu le 2009.11.23 00:41:43 (UTC)Antivirus Version Dernière mise à jour Résultat
a-squared 4.5.0.41 2009.11.22 -
AhnLab-V3 5.0.0.2 2009.11.20 -
AntiVir 7.9.1.72 2009.11.22 -
Antiy-AVL 2.0.3.7 2009.11.20 -
Authentium 5.2.0.5 2009.11.22 -
Avast 4.8.1351.0 2009.11.22 -
AVG 8.5.0.425 2009.11.22 -
BitDefender 7.2 2009.11.23 -
CAT-QuickHeal 10.00 2009.11.21 -
ClamAV 0.94.1 2009.11.22 -
Comodo 3003 2009.11.23 -
DrWeb 5.0.0.12182 2009.11.23 -
eSafe 7.0.17.0 2009.11.19 -
eTrust-Vet 35.1.7133 2009.11.20 -
F-Prot 4.5.1.85 2009.11.22 -
F-Secure 9.0.15370.0 2009.11.20 -
Fortinet 3.120.0.0 2009.11.22 -
GData 19 2009.11.23 -
Ikarus T3.1.1.74.0 2009.11.22 -
Jiangmin 11.0.800 2009.11.22 -
K7AntiVirus 7.10.901 2009.11.20 -
Kaspersky 7.0.0.125 2009.11.23 -
McAfee 5810 2009.11.22 -
McAfee+Artemis 5810 2009.11.22 -
McAfee-GW-Edition 6.8.5 2009.11.22 -
Microsoft 1.5302 2009.11.23 -
NOD32 4628 2009.11.22 -
Norman 6.03.02 2009.11.21 -
nProtect 2009.1.8.0 2009.11.22 -
Panda 10.0.2.2 2009.11.22 -
PCTools 7.0.3.5 2009.11.23 -
Prevx 3.0 2009.11.23 -
Rising 22.22.06.04 2009.11.22 -
Sophos 4.47.0 2009.11.23 -
Sunbelt 3.2.1858.2 2009.11.22 -
Symantec 1.4.4.12 2009.11.23 -
TheHacker 6.5.0.2.075 2009.11.20 -
TrendMicro 9.0.0.1003 2009.11.22 -
VBA32 3.12.12.0 2009.11.22 -
ViRobot 2009.11.20.2047 2009.11.20 -
VirusBuster None 2009.11.22 -
Information additionnelle
File size: 913408 bytes
MD5...: 4e32603a149b607bf37a2cdf6a1b0ec9
SHA1..: b6c879d0343225cacff528bf2072184969211dad
SHA256: b1d2b08412d02f6d6ce5f4edd5c9713b96002d8d5bbb0718f1998995c9c5e80f
ssdeep: 24576:UGoSMVR8+HY1pIo0bk7kP7NMBq6pXjGww2w:5mH8LqoMhQvpzGww2w<BR>
PEiD..: -
PEInfo: PE Structure information<BR><BR>( base data )<BR>entrypointaddress.: 0x8e3aa<BR>timedatestamp.....: 0x45c08286 (Wed Jan 31 11:50:30 2007)<BR>machinetype.......: 0x14c (I386)<BR><BR>( 4 sections )<BR>name viradd virsiz rawdsiz ntrpy md5<BR>.text 0x1000 0x9a12a 0x9b000 6.57 118e69656a940dbbba0d48fcce11e7d2<BR>.rdata 0x9c000 0x2861b 0x29000 6.16 22675950b797cfba58836d35225d8b2c<BR>.data 0xc5000 0x11da0 0x10000 5.51 3da2b3fc83df7c5a76d64910893a920b<BR>.reloc 0xd7000 0x95e4 0xa000 6.34 a0907df9810081e792d76d6e7cf3527c<BR><BR>( 7 imports ) <BR>> WSOCK32.dll: -, -, -, -, -, -, -, -, -, -, -, -, -, -<BR>> KERNEL32.dll: InterlockedDecrement, CreateSemaphoreA, WaitForSingleObject, ReleaseSemaphore, CloseHandle, CreateEventA, Sleep, SetEvent, InterlockedIncrement, ResetEvent, WaitForMultipleObjects, OpenEventA, GetCurrentThreadId, GetVersion, GetFileType, GetStdHandle, GetTickCount, QueryPerformanceCounter, GetCurrentProcessId, GlobalMemoryStatus, FreeLibrary, GetProcAddress, LoadLibraryA, GetVersionExA, SetLastError, InterlockedCompareExchange, FindNextFileA, FindFirstFileA, FindClose, FlushConsoleInputBuffer, GetLastError<BR>> USER32.dll: MessageBoxA, GetDesktopWindow, GetProcessWindowStation, GetUserObjectInformationW<BR>> GDI32.dll: CreateDCA, DeleteObject, GetBitmapBits, BitBlt, GetObjectA, CreateCompatibleDC, GetDeviceCaps, CreateCompatibleBitmap, SelectObject, DeleteDC<BR>> ADVAPI32.dll: RegisterEventSourceA, ReportEventA, DeregisterEventSource<BR>> MSVCR71.dll: fgets, _errno, isxdigit, getenv, strtol, gmtime, isupper, strncmp, strrchr, strtoul, __1type_info@@UAE@XZ, __dllonexit, _onexit, _initterm, _adjust_fdiv, __CppXcptFilter, _except_handler3, _terminate@@YAXXZ, fseek, ftell, _setmode, fopen, fflush, fwrite, fread, _getch, abort, vfprintf, wcsstr, isalnum, isdigit, localtime, time, strerror, _iob, fprintf, qsort, strcmp, atoi, _snprintf, sscanf, strstr, sprintf, strncpy, memmove, isspace, strchr, tolower, _CxxThrowException, __0bad_cast@@QAE@PBD@Z, __1bad_cast@@UAE@XZ, __0bad_cast@@QAE@ABV0@@Z, __0exception@@QAE@ABV0@@Z, __0exception@@QAE@XZ, __1exception@@UAE@XZ, free, realloc, malloc, __CxxFrameHandler, perror, _vsnprintf, _purecall, __3@YAXPAX@Z, __2@YAPAXI@Z, _strdup, _fileno, fputs, signal, _stat, memchr, fclose<BR>> MSVCP71.dll: _sbumpc@_$basic_streambuf@_WU_$char_traits@_W@std@@@std@@QAEGXZ, _sputc@_$basic_streambuf@_WU_$char_traits@_W@std@@@std@@QAEG_W@Z, _widen@_$basic_ios@DU_$char_traits@D@std@@@std@@QBEDD@Z, _widen@_$basic_ios@_WU_$char_traits@_W@std@@@std@@QBE_WD@Z, __4_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV01@PBD@Z, __4_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV01@ABV01@@Z, __$_8DU_$char_traits@D@std@@V_$allocator@D@1@@std@@YA_NABV_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@0@PBD@Z, _snextc@_$basic_streambuf@_WU_$char_traits@_W@std@@@std@@QAEGXZ, _append@_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAEAAV12@I_W@Z, _is@_$ctype@_W@std@@QBE_NF_W@Z, _sgetc@_$basic_streambuf@_WU_$char_traits@_W@std@@@std@@QAEGXZ, _max_size@_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QBEIXZ, _npos@_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@2IB, _sputc@_$basic_streambuf@DU_$char_traits@D@std@@@std@@QAEHD@Z, _sbumpc@_$basic_streambuf@DU_$char_traits@D@std@@@std@@QAEHXZ, _getloc@ios_base@std@@QBE_AVlocale@2@XZ, __1locale@std@@QAE@XZ, _npos@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@2IB, _erase@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV12@II@Z, _max_size@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QBEIXZ, _sgetc@_$basic_streambuf@DU_$char_traits@D@std@@@std@@QAEHXZ, _append@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV12@ID@Z, _snextc@_$basic_streambuf@DU_$char_traits@D@std@@@std@@QAEHXZ, _clear@ios_base@std@@QAEXH_N@Z, __Osfx@_$basic_ostream@_WU_$char_traits@_W@std@@@std@@QAEXXZ, _flush@_$basic_ostream@_WU_$char_traits@_W@std@@@std@@QAEAAV12@XZ, _uncaught_exception@std@@YA_NXZ, __Osfx@_$basic_ostream@DU_$char_traits@D@std@@@std@@QAEXXZ, _flush@_$basic_ostream@DU_$char_traits@D@std@@@std@@QAEAAV12@XZ, __Ipfx@_$basic_istream@_WU_$char_traits@_W@std@@@std@@QAE_N_N@Z, __Ipfx@_$basic_istream@DU_$char_traits@D@std@@@std@@QAE_N_N@Z, __Y_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAEAAV01@_W@Z, __Y_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAEAAV01@PB_W@Z, __0_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAE@I_W@Z, __0_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAE@PB_W@Z, __0_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAE@ABV01@@Z, __Y_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z, __1_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAE@XZ, __Y_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV01@D@Z, __Y_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV01@PBD@Z, __0_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAE@ID@Z, _erase@_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAEAAV12@II@Z, __0_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAE@PBD@Z, __Y_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV01@ABV01@@Z, _id@_$ctype@_W@std@@2V0locale@2@A, __Getcat@_$ctype@_W@std@@SAIPAPBVfacet@locale@2@@Z, __0_Lockit@std@@QAE@H@Z, _id@_$ctype@D@std@@2V0locale@2@A, __1_Lockit@std@@QAE@XZ, __Id_cnt@id@locale@std@@0HA, __Getfacet@locale@std@@QBEPBVfacet@12@I@Z, __Getcat@_$ctype@D@std@@SAIPAPBVfacet@locale@2@@Z, __Incref@facet@locale@std@@QAEXXZ, __Register@facet@locale@std@@QAEXXZ, __$_MDU_$char_traits@D@std@@V_$allocator@D@1@@std@@YA_NABV_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@0@0@Z, __Lock@_Mutex@std@@QAEXXZ, __0_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAE@XZ, __Unlock@_Mutex@std@@QAEXXZ, __0_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAE@ABV01@@Z, __1_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAE@XZ<BR><BR>( 19 exports ) <BR>XRegAddKey, XRegAddKey2, XRegCancelNotify, XRegChPass, XRegChPass2, XRegDelKey, XRegEnumClose, XRegEnumOpen, XRegEnumRead, XRegGetValue, XRegInit, XRegInit2, XRegLogin, XRegLogin2, XRegLogout, XRegPlaceNotify, XRegSetValue, XRegUninit, XRegWaitNotify<BR>
RDS...: NSRL Reference Data Set<BR>-
pdfid.: -
trid..: Win32 Executable Generic (42.3%)<BR>Win32 Dynamic Link Library (generic) (37.6%)<BR>Generic Win/DOS Executable (9.9%)<BR>DOS Executable Generic (9.9%)<BR>Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
sigcheck:<BR>publisher....: n/a<BR>copyright....: n/a<BR>product......: n/a<BR>description..: n/a<BR>original name: n/a<BR>internal name: n/a<BR>file version.: n/a<BR>comments.....: n/a<BR>signers......: -<BR>signing date.: -<BR>verified.....: Unsigned<BR>
Antivirus Version Dernière mise à jour Résultat
a-squared 4.5.0.41 2009.11.22 -
AhnLab-V3 5.0.0.2 2009.11.20 -
AntiVir 7.9.1.72 2009.11.22 -
Antiy-AVL 2.0.3.7 2009.11.20 -
Authentium 5.2.0.5 2009.11.22 -
Avast 4.8.1351.0 2009.11.22 -
AVG 8.5.0.425 2009.11.22 -
BitDefender 7.2 2009.11.23 -
CAT-QuickHeal 10.00 2009.11.21 -
ClamAV 0.94.1 2009.11.22 -
Comodo 3003 2009.11.23 -
DrWeb 5.0.0.12182 2009.11.23 -
eSafe 7.0.17.0 2009.11.19 -
eTrust-Vet 35.1.7133 2009.11.20 -
F-Prot 4.5.1.85 2009.11.22 -
F-Secure 9.0.15370.0 2009.11.20 -
Fortinet 3.120.0.0 2009.11.22 -
GData 19 2009.11.23 -
Ikarus T3.1.1.74.0 2009.11.22 -
Jiangmin 11.0.800 2009.11.22 -
K7AntiVirus 7.10.901 2009.11.20 -
Kaspersky 7.0.0.125 2009.11.23 -
McAfee 5810 2009.11.22 -
McAfee+Artemis 5810 2009.11.22 -
McAfee-GW-Edition 6.8.5 2009.11.22 -
Microsoft 1.5302 2009.11.23 -
NOD32 4628 2009.11.22 -
Norman 6.03.02 2009.11.21 -
nProtect 2009.1.8.0 2009.11.22 -
Panda 10.0.2.2 2009.11.22 -
PCTools 7.0.3.5 2009.11.23 -
Prevx 3.0 2009.11.23 -
Rising 22.22.06.04 2009.11.22 -
Sophos 4.47.0 2009.11.23 -
Sunbelt 3.2.1858.2 2009.11.22 -
Symantec 1.4.4.12 2009.11.23 -
TheHacker 6.5.0.2.075 2009.11.20 -
TrendMicro 9.0.0.1003 2009.11.22 -
VBA32 3.12.12.0 2009.11.22 -
ViRobot 2009.11.20.2047 2009.11.20 -
VirusBuster None 2009.11.22 -
Information additionnelle
File size: 913408 bytes
MD5...: 4e32603a149b607bf37a2cdf6a1b0ec9
SHA1..: b6c879d0343225cacff528bf2072184969211dad
SHA256: b1d2b08412d02f6d6ce5f4edd5c9713b96002d8d5bbb0718f1998995c9c5e80f
ssdeep: 24576:UGoSMVR8+HY1pIo0bk7kP7NMBq6pXjGww2w:5mH8LqoMhQvpzGww2w<BR>
PEiD..: -
PEInfo: PE Structure information<BR><BR>( base data )<BR>entrypointaddress.: 0x8e3aa<BR>timedatestamp.....: 0x45c08286 (Wed Jan 31 11:50:30 2007)<BR>machinetype.......: 0x14c (I386)<BR><BR>( 4 sections )<BR>name viradd virsiz rawdsiz ntrpy md5<BR>.text 0x1000 0x9a12a 0x9b000 6.57 118e69656a940dbbba0d48fcce11e7d2<BR>.rdata 0x9c000 0x2861b 0x29000 6.16 22675950b797cfba58836d35225d8b2c<BR>.data 0xc5000 0x11da0 0x10000 5.51 3da2b3fc83df7c5a76d64910893a920b<BR>.reloc 0xd7000 0x95e4 0xa000 6.34 a0907df9810081e792d76d6e7cf3527c<BR><BR>( 7 imports ) <BR>> WSOCK32.dll: -, -, -, -, -, -, -, -, -, -, -, -, -, -<BR>> KERNEL32.dll: InterlockedDecrement, CreateSemaphoreA, WaitForSingleObject, ReleaseSemaphore, CloseHandle, CreateEventA, Sleep, SetEvent, InterlockedIncrement, ResetEvent, WaitForMultipleObjects, OpenEventA, GetCurrentThreadId, GetVersion, GetFileType, GetStdHandle, GetTickCount, QueryPerformanceCounter, GetCurrentProcessId, GlobalMemoryStatus, FreeLibrary, GetProcAddress, LoadLibraryA, GetVersionExA, SetLastError, InterlockedCompareExchange, FindNextFileA, FindFirstFileA, FindClose, FlushConsoleInputBuffer, GetLastError<BR>> USER32.dll: MessageBoxA, GetDesktopWindow, GetProcessWindowStation, GetUserObjectInformationW<BR>> GDI32.dll: CreateDCA, DeleteObject, GetBitmapBits, BitBlt, GetObjectA, CreateCompatibleDC, GetDeviceCaps, CreateCompatibleBitmap, SelectObject, DeleteDC<BR>> ADVAPI32.dll: RegisterEventSourceA, ReportEventA, DeregisterEventSource<BR>> MSVCR71.dll: fgets, _errno, isxdigit, getenv, strtol, gmtime, isupper, strncmp, strrchr, strtoul, __1type_info@@UAE@XZ, __dllonexit, _onexit, _initterm, _adjust_fdiv, __CppXcptFilter, _except_handler3, _terminate@@YAXXZ, fseek, ftell, _setmode, fopen, fflush, fwrite, fread, _getch, abort, vfprintf, wcsstr, isalnum, isdigit, localtime, time, strerror, _iob, fprintf, qsort, strcmp, atoi, _snprintf, sscanf, strstr, sprintf, strncpy, memmove, isspace, strchr, tolower, _CxxThrowException, __0bad_cast@@QAE@PBD@Z, __1bad_cast@@UAE@XZ, __0bad_cast@@QAE@ABV0@@Z, __0exception@@QAE@ABV0@@Z, __0exception@@QAE@XZ, __1exception@@UAE@XZ, free, realloc, malloc, __CxxFrameHandler, perror, _vsnprintf, _purecall, __3@YAXPAX@Z, __2@YAPAXI@Z, _strdup, _fileno, fputs, signal, _stat, memchr, fclose<BR>> MSVCP71.dll: _sbumpc@_$basic_streambuf@_WU_$char_traits@_W@std@@@std@@QAEGXZ, _sputc@_$basic_streambuf@_WU_$char_traits@_W@std@@@std@@QAEG_W@Z, _widen@_$basic_ios@DU_$char_traits@D@std@@@std@@QBEDD@Z, _widen@_$basic_ios@_WU_$char_traits@_W@std@@@std@@QBE_WD@Z, __4_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV01@PBD@Z, __4_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV01@ABV01@@Z, __$_8DU_$char_traits@D@std@@V_$allocator@D@1@@std@@YA_NABV_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@0@PBD@Z, _snextc@_$basic_streambuf@_WU_$char_traits@_W@std@@@std@@QAEGXZ, _append@_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAEAAV12@I_W@Z, _is@_$ctype@_W@std@@QBE_NF_W@Z, _sgetc@_$basic_streambuf@_WU_$char_traits@_W@std@@@std@@QAEGXZ, _max_size@_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QBEIXZ, _npos@_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@2IB, _sputc@_$basic_streambuf@DU_$char_traits@D@std@@@std@@QAEHD@Z, _sbumpc@_$basic_streambuf@DU_$char_traits@D@std@@@std@@QAEHXZ, _getloc@ios_base@std@@QBE_AVlocale@2@XZ, __1locale@std@@QAE@XZ, _npos@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@2IB, _erase@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV12@II@Z, _max_size@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QBEIXZ, _sgetc@_$basic_streambuf@DU_$char_traits@D@std@@@std@@QAEHXZ, _append@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV12@ID@Z, _snextc@_$basic_streambuf@DU_$char_traits@D@std@@@std@@QAEHXZ, _clear@ios_base@std@@QAEXH_N@Z, __Osfx@_$basic_ostream@_WU_$char_traits@_W@std@@@std@@QAEXXZ, _flush@_$basic_ostream@_WU_$char_traits@_W@std@@@std@@QAEAAV12@XZ, _uncaught_exception@std@@YA_NXZ, __Osfx@_$basic_ostream@DU_$char_traits@D@std@@@std@@QAEXXZ, _flush@_$basic_ostream@DU_$char_traits@D@std@@@std@@QAEAAV12@XZ, __Ipfx@_$basic_istream@_WU_$char_traits@_W@std@@@std@@QAE_N_N@Z, __Ipfx@_$basic_istream@DU_$char_traits@D@std@@@std@@QAE_N_N@Z, __Y_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAEAAV01@_W@Z, __Y_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAEAAV01@PB_W@Z, __0_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAE@I_W@Z, __0_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAE@PB_W@Z, __0_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAE@ABV01@@Z, __Y_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z, __1_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAE@XZ, __Y_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV01@D@Z, __Y_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV01@PBD@Z, __0_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAE@ID@Z, _erase@_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAEAAV12@II@Z, __0_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAE@PBD@Z, __Y_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV01@ABV01@@Z, _id@_$ctype@_W@std@@2V0locale@2@A, __Getcat@_$ctype@_W@std@@SAIPAPBVfacet@locale@2@@Z, __0_Lockit@std@@QAE@H@Z, _id@_$ctype@D@std@@2V0locale@2@A, __1_Lockit@std@@QAE@XZ, __Id_cnt@id@locale@std@@0HA, __Getfacet@locale@std@@QBEPBVfacet@12@I@Z, __Getcat@_$ctype@D@std@@SAIPAPBVfacet@locale@2@@Z, __Incref@facet@locale@std@@QAEXXZ, __Register@facet@locale@std@@QAEXXZ, __$_MDU_$char_traits@D@std@@V_$allocator@D@1@@std@@YA_NABV_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@0@0@Z, __Lock@_Mutex@std@@QAEXXZ, __0_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAE@XZ, __Unlock@_Mutex@std@@QAEXXZ, __0_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAE@ABV01@@Z, __1_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAE@XZ<BR><BR>( 19 exports ) <BR>XRegAddKey, XRegAddKey2, XRegCancelNotify, XRegChPass, XRegChPass2, XRegDelKey, XRegEnumClose, XRegEnumOpen, XRegEnumRead, XRegGetValue, XRegInit, XRegInit2, XRegLogin, XRegLogin2, XRegLogout, XRegPlaceNotify, XRegSetValue, XRegUninit, XRegWaitNotify<BR>
RDS...: NSRL Reference Data Set<BR>-
pdfid.: -
trid..: Win32 Executable Generic (42.3%)<BR>Win32 Dynamic Link Library (generic) (37.6%)<BR>Generic Win/DOS Executable (9.9%)<BR>DOS Executable Generic (9.9%)<BR>Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
sigcheck:<BR>publisher....: n/a<BR>copyright....: n/a<BR>product......: n/a<BR>description..: n/a<BR>original name: n/a<BR>internal name: n/a<BR>file version.: n/a<BR>comments.....: n/a<BR>signers......: -<BR>signing date.: -<BR>verified.....: Unsigned<BR>
Fichier xreglib.dll reçu le 2009.11.23 00:41:43 (UTC)Antivirus Version Dernière mise à jour Résultat
a-squared 4.5.0.41 2009.11.22 -
AhnLab-V3 5.0.0.2 2009.11.20 -
AntiVir 7.9.1.72 2009.11.22 -
Antiy-AVL 2.0.3.7 2009.11.20 -
Authentium 5.2.0.5 2009.11.22 -
Avast 4.8.1351.0 2009.11.22 -
AVG 8.5.0.425 2009.11.22 -
BitDefender 7.2 2009.11.23 -
CAT-QuickHeal 10.00 2009.11.21 -
ClamAV 0.94.1 2009.11.22 -
Comodo 3003 2009.11.23 -
DrWeb 5.0.0.12182 2009.11.23 -
eSafe 7.0.17.0 2009.11.19 -
eTrust-Vet 35.1.7133 2009.11.20 -
F-Prot 4.5.1.85 2009.11.22 -
F-Secure 9.0.15370.0 2009.11.20 -
Fortinet 3.120.0.0 2009.11.22 -
GData 19 2009.11.23 -
Ikarus T3.1.1.74.0 2009.11.22 -
Jiangmin 11.0.800 2009.11.22 -
K7AntiVirus 7.10.901 2009.11.20 -
Kaspersky 7.0.0.125 2009.11.23 -
McAfee 5810 2009.11.22 -
McAfee+Artemis 5810 2009.11.22 -
McAfee-GW-Edition 6.8.5 2009.11.22 -
Microsoft 1.5302 2009.11.23 -
NOD32 4628 2009.11.22 -
Norman 6.03.02 2009.11.21 -
nProtect 2009.1.8.0 2009.11.22 -
Panda 10.0.2.2 2009.11.22 -
PCTools 7.0.3.5 2009.11.23 -
Prevx 3.0 2009.11.23 -
Rising 22.22.06.04 2009.11.22 -
Sophos 4.47.0 2009.11.23 -
Sunbelt 3.2.1858.2 2009.11.22 -
Symantec 1.4.4.12 2009.11.23 -
TheHacker 6.5.0.2.075 2009.11.20 -
TrendMicro 9.0.0.1003 2009.11.22 -
VBA32 3.12.12.0 2009.11.22 -
ViRobot 2009.11.20.2047 2009.11.20 -
VirusBuster None 2009.11.22 -
Information additionnelle
File size: 913408 bytes
MD5...: 4e32603a149b607bf37a2cdf6a1b0ec9
SHA1..: b6c879d0343225cacff528bf2072184969211dad
SHA256: b1d2b08412d02f6d6ce5f4edd5c9713b96002d8d5bbb0718f1998995c9c5e80f
ssdeep: 24576:UGoSMVR8+HY1pIo0bk7kP7NMBq6pXjGww2w:5mH8LqoMhQvpzGww2w<BR>
PEiD..: -
PEInfo: PE Structure information<BR><BR>( base data )<BR>entrypointaddress.: 0x8e3aa<BR>timedatestamp.....: 0x45c08286 (Wed Jan 31 11:50:30 2007)<BR>machinetype.......: 0x14c (I386)<BR><BR>( 4 sections )<BR>name viradd virsiz rawdsiz ntrpy md5<BR>.text 0x1000 0x9a12a 0x9b000 6.57 118e69656a940dbbba0d48fcce11e7d2<BR>.rdata 0x9c000 0x2861b 0x29000 6.16 22675950b797cfba58836d35225d8b2c<BR>.data 0xc5000 0x11da0 0x10000 5.51 3da2b3fc83df7c5a76d64910893a920b<BR>.reloc 0xd7000 0x95e4 0xa000 6.34 a0907df9810081e792d76d6e7cf3527c<BR><BR>( 7 imports ) <BR>> WSOCK32.dll: -, -, -, -, -, -, -, -, -, -, -, -, -, -<BR>> KERNEL32.dll: InterlockedDecrement, CreateSemaphoreA, WaitForSingleObject, ReleaseSemaphore, CloseHandle, CreateEventA, Sleep, SetEvent, InterlockedIncrement, ResetEvent, WaitForMultipleObjects, OpenEventA, GetCurrentThreadId, GetVersion, GetFileType, GetStdHandle, GetTickCount, QueryPerformanceCounter, GetCurrentProcessId, GlobalMemoryStatus, FreeLibrary, GetProcAddress, LoadLibraryA, GetVersionExA, SetLastError, InterlockedCompareExchange, FindNextFileA, FindFirstFileA, FindClose, FlushConsoleInputBuffer, GetLastError<BR>> USER32.dll: MessageBoxA, GetDesktopWindow, GetProcessWindowStation, GetUserObjectInformationW<BR>> GDI32.dll: CreateDCA, DeleteObject, GetBitmapBits, BitBlt, GetObjectA, CreateCompatibleDC, GetDeviceCaps, CreateCompatibleBitmap, SelectObject, DeleteDC<BR>> ADVAPI32.dll: RegisterEventSourceA, ReportEventA, DeregisterEventSource<BR>> MSVCR71.dll: fgets, _errno, isxdigit, getenv, strtol, gmtime, isupper, strncmp, strrchr, strtoul, __1type_info@@UAE@XZ, __dllonexit, _onexit, _initterm, _adjust_fdiv, __CppXcptFilter, _except_handler3, _terminate@@YAXXZ, fseek, ftell, _setmode, fopen, fflush, fwrite, fread, _getch, abort, vfprintf, wcsstr, isalnum, isdigit, localtime, time, strerror, _iob, fprintf, qsort, strcmp, atoi, _snprintf, sscanf, strstr, sprintf, strncpy, memmove, isspace, strchr, tolower, _CxxThrowException, __0bad_cast@@QAE@PBD@Z, __1bad_cast@@UAE@XZ, __0bad_cast@@QAE@ABV0@@Z, __0exception@@QAE@ABV0@@Z, __0exception@@QAE@XZ, __1exception@@UAE@XZ, free, realloc, malloc, __CxxFrameHandler, perror, _vsnprintf, _purecall, __3@YAXPAX@Z, __2@YAPAXI@Z, _strdup, _fileno, fputs, signal, _stat, memchr, fclose<BR>> MSVCP71.dll: _sbumpc@_$basic_streambuf@_WU_$char_traits@_W@std@@@std@@QAEGXZ, _sputc@_$basic_streambuf@_WU_$char_traits@_W@std@@@std@@QAEG_W@Z, _widen@_$basic_ios@DU_$char_traits@D@std@@@std@@QBEDD@Z, _widen@_$basic_ios@_WU_$char_traits@_W@std@@@std@@QBE_WD@Z, __4_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV01@PBD@Z, __4_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV01@ABV01@@Z, __$_8DU_$char_traits@D@std@@V_$allocator@D@1@@std@@YA_NABV_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@0@PBD@Z, _snextc@_$basic_streambuf@_WU_$char_traits@_W@std@@@std@@QAEGXZ, _append@_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAEAAV12@I_W@Z, _is@_$ctype@_W@std@@QBE_NF_W@Z, _sgetc@_$basic_streambuf@_WU_$char_traits@_W@std@@@std@@QAEGXZ, _max_size@_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QBEIXZ, _npos@_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@2IB, _sputc@_$basic_streambuf@DU_$char_traits@D@std@@@std@@QAEHD@Z, _sbumpc@_$basic_streambuf@DU_$char_traits@D@std@@@std@@QAEHXZ, _getloc@ios_base@std@@QBE_AVlocale@2@XZ, __1locale@std@@QAE@XZ, _npos@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@2IB, _erase@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV12@II@Z, _max_size@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QBEIXZ, _sgetc@_$basic_streambuf@DU_$char_traits@D@std@@@std@@QAEHXZ, _append@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV12@ID@Z, _snextc@_$basic_streambuf@DU_$char_traits@D@std@@@std@@QAEHXZ, _clear@ios_base@std@@QAEXH_N@Z, __Osfx@_$basic_ostream@_WU_$char_traits@_W@std@@@std@@QAEXXZ, _flush@_$basic_ostream@_WU_$char_traits@_W@std@@@std@@QAEAAV12@XZ, _uncaught_exception@std@@YA_NXZ, __Osfx@_$basic_ostream@DU_$char_traits@D@std@@@std@@QAEXXZ, _flush@_$basic_ostream@DU_$char_traits@D@std@@@std@@QAEAAV12@XZ, __Ipfx@_$basic_istream@_WU_$char_traits@_W@std@@@std@@QAE_N_N@Z, __Ipfx@_$basic_istream@DU_$char_traits@D@std@@@std@@QAE_N_N@Z, __Y_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAEAAV01@_W@Z, __Y_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAEAAV01@PB_W@Z, __0_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAE@I_W@Z, __0_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAE@PB_W@Z, __0_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAE@ABV01@@Z, __Y_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z, __1_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAE@XZ, __Y_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV01@D@Z, __Y_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV01@PBD@Z, __0_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAE@ID@Z, _erase@_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAEAAV12@II@Z, __0_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAE@PBD@Z, __Y_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV01@ABV01@@Z, _id@_$ctype@_W@std@@2V0locale@2@A, __Getcat@_$ctype@_W@std@@SAIPAPBVfacet@locale@2@@Z, __0_Lockit@std@@QAE@H@Z, _id@_$ctype@D@std@@2V0locale@2@A, __1_Lockit@std@@QAE@XZ, __Id_cnt@id@locale@std@@0HA, __Getfacet@locale@std@@QBEPBVfacet@12@I@Z, __Getcat@_$ctype@D@std@@SAIPAPBVfacet@locale@2@@Z, __Incref@facet@locale@std@@QAEXXZ, __Register@facet@locale@std@@QAEXXZ, __$_MDU_$char_traits@D@std@@V_$allocator@D@1@@std@@YA_NABV_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@0@0@Z, __Lock@_Mutex@std@@QAEXXZ, __0_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAE@XZ, __Unlock@_Mutex@std@@QAEXXZ, __0_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAE@ABV01@@Z, __1_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAE@XZ<BR><BR>( 19 exports ) <BR>XRegAddKey, XRegAddKey2, XRegCancelNotify, XRegChPass, XRegChPass2, XRegDelKey, XRegEnumClose, XRegEnumOpen, XRegEnumRead, XRegGetValue, XRegInit, XRegInit2, XRegLogin, XRegLogin2, XRegLogout, XRegPlaceNotify, XRegSetValue, XRegUninit, XRegWaitNotify<BR>
RDS...: NSRL Reference Data Set<BR>-
pdfid.: -
trid..: Win32 Executable Generic (42.3%)<BR>Win32 Dynamic Link Library (generic) (37.6%)<BR>Generic Win/DOS Executable (9.9%)<BR>DOS Executable Generic (9.9%)<BR>Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
sigcheck:<BR>publisher....: n/a<BR>copyright....: n/a<BR>product......: n/a<BR>description..: n/a<BR>original name: n/a<BR>internal name: n/a<BR>file version.: n/a<BR>comments.....: n/a<BR>signers......: -<BR>signing date.: -<BR>verified.....: Unsigned<BR>
Antivirus Version Dernière mise à jour Résultat
a-squared 4.5.0.41 2009.11.22 -
AhnLab-V3 5.0.0.2 2009.11.20 -
AntiVir 7.9.1.72 2009.11.22 -
Antiy-AVL 2.0.3.7 2009.11.20 -
Authentium 5.2.0.5 2009.11.22 -
Avast 4.8.1351.0 2009.11.22 -
AVG 8.5.0.425 2009.11.22 -
BitDefender 7.2 2009.11.23 -
CAT-QuickHeal 10.00 2009.11.21 -
ClamAV 0.94.1 2009.11.22 -
Comodo 3003 2009.11.23 -
DrWeb 5.0.0.12182 2009.11.23 -
eSafe 7.0.17.0 2009.11.19 -
eTrust-Vet 35.1.7133 2009.11.20 -
F-Prot 4.5.1.85 2009.11.22 -
F-Secure 9.0.15370.0 2009.11.20 -
Fortinet 3.120.0.0 2009.11.22 -
GData 19 2009.11.23 -
Ikarus T3.1.1.74.0 2009.11.22 -
Jiangmin 11.0.800 2009.11.22 -
K7AntiVirus 7.10.901 2009.11.20 -
Kaspersky 7.0.0.125 2009.11.23 -
McAfee 5810 2009.11.22 -
McAfee+Artemis 5810 2009.11.22 -
McAfee-GW-Edition 6.8.5 2009.11.22 -
Microsoft 1.5302 2009.11.23 -
NOD32 4628 2009.11.22 -
Norman 6.03.02 2009.11.21 -
nProtect 2009.1.8.0 2009.11.22 -
Panda 10.0.2.2 2009.11.22 -
PCTools 7.0.3.5 2009.11.23 -
Prevx 3.0 2009.11.23 -
Rising 22.22.06.04 2009.11.22 -
Sophos 4.47.0 2009.11.23 -
Sunbelt 3.2.1858.2 2009.11.22 -
Symantec 1.4.4.12 2009.11.23 -
TheHacker 6.5.0.2.075 2009.11.20 -
TrendMicro 9.0.0.1003 2009.11.22 -
VBA32 3.12.12.0 2009.11.22 -
ViRobot 2009.11.20.2047 2009.11.20 -
VirusBuster None 2009.11.22 -
Information additionnelle
File size: 913408 bytes
MD5...: 4e32603a149b607bf37a2cdf6a1b0ec9
SHA1..: b6c879d0343225cacff528bf2072184969211dad
SHA256: b1d2b08412d02f6d6ce5f4edd5c9713b96002d8d5bbb0718f1998995c9c5e80f
ssdeep: 24576:UGoSMVR8+HY1pIo0bk7kP7NMBq6pXjGww2w:5mH8LqoMhQvpzGww2w<BR>
PEiD..: -
PEInfo: PE Structure information<BR><BR>( base data )<BR>entrypointaddress.: 0x8e3aa<BR>timedatestamp.....: 0x45c08286 (Wed Jan 31 11:50:30 2007)<BR>machinetype.......: 0x14c (I386)<BR><BR>( 4 sections )<BR>name viradd virsiz rawdsiz ntrpy md5<BR>.text 0x1000 0x9a12a 0x9b000 6.57 118e69656a940dbbba0d48fcce11e7d2<BR>.rdata 0x9c000 0x2861b 0x29000 6.16 22675950b797cfba58836d35225d8b2c<BR>.data 0xc5000 0x11da0 0x10000 5.51 3da2b3fc83df7c5a76d64910893a920b<BR>.reloc 0xd7000 0x95e4 0xa000 6.34 a0907df9810081e792d76d6e7cf3527c<BR><BR>( 7 imports ) <BR>> WSOCK32.dll: -, -, -, -, -, -, -, -, -, -, -, -, -, -<BR>> KERNEL32.dll: InterlockedDecrement, CreateSemaphoreA, WaitForSingleObject, ReleaseSemaphore, CloseHandle, CreateEventA, Sleep, SetEvent, InterlockedIncrement, ResetEvent, WaitForMultipleObjects, OpenEventA, GetCurrentThreadId, GetVersion, GetFileType, GetStdHandle, GetTickCount, QueryPerformanceCounter, GetCurrentProcessId, GlobalMemoryStatus, FreeLibrary, GetProcAddress, LoadLibraryA, GetVersionExA, SetLastError, InterlockedCompareExchange, FindNextFileA, FindFirstFileA, FindClose, FlushConsoleInputBuffer, GetLastError<BR>> USER32.dll: MessageBoxA, GetDesktopWindow, GetProcessWindowStation, GetUserObjectInformationW<BR>> GDI32.dll: CreateDCA, DeleteObject, GetBitmapBits, BitBlt, GetObjectA, CreateCompatibleDC, GetDeviceCaps, CreateCompatibleBitmap, SelectObject, DeleteDC<BR>> ADVAPI32.dll: RegisterEventSourceA, ReportEventA, DeregisterEventSource<BR>> MSVCR71.dll: fgets, _errno, isxdigit, getenv, strtol, gmtime, isupper, strncmp, strrchr, strtoul, __1type_info@@UAE@XZ, __dllonexit, _onexit, _initterm, _adjust_fdiv, __CppXcptFilter, _except_handler3, _terminate@@YAXXZ, fseek, ftell, _setmode, fopen, fflush, fwrite, fread, _getch, abort, vfprintf, wcsstr, isalnum, isdigit, localtime, time, strerror, _iob, fprintf, qsort, strcmp, atoi, _snprintf, sscanf, strstr, sprintf, strncpy, memmove, isspace, strchr, tolower, _CxxThrowException, __0bad_cast@@QAE@PBD@Z, __1bad_cast@@UAE@XZ, __0bad_cast@@QAE@ABV0@@Z, __0exception@@QAE@ABV0@@Z, __0exception@@QAE@XZ, __1exception@@UAE@XZ, free, realloc, malloc, __CxxFrameHandler, perror, _vsnprintf, _purecall, __3@YAXPAX@Z, __2@YAPAXI@Z, _strdup, _fileno, fputs, signal, _stat, memchr, fclose<BR>> MSVCP71.dll: _sbumpc@_$basic_streambuf@_WU_$char_traits@_W@std@@@std@@QAEGXZ, _sputc@_$basic_streambuf@_WU_$char_traits@_W@std@@@std@@QAEG_W@Z, _widen@_$basic_ios@DU_$char_traits@D@std@@@std@@QBEDD@Z, _widen@_$basic_ios@_WU_$char_traits@_W@std@@@std@@QBE_WD@Z, __4_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV01@PBD@Z, __4_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV01@ABV01@@Z, __$_8DU_$char_traits@D@std@@V_$allocator@D@1@@std@@YA_NABV_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@0@PBD@Z, _snextc@_$basic_streambuf@_WU_$char_traits@_W@std@@@std@@QAEGXZ, _append@_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAEAAV12@I_W@Z, _is@_$ctype@_W@std@@QBE_NF_W@Z, _sgetc@_$basic_streambuf@_WU_$char_traits@_W@std@@@std@@QAEGXZ, _max_size@_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QBEIXZ, _npos@_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@2IB, _sputc@_$basic_streambuf@DU_$char_traits@D@std@@@std@@QAEHD@Z, _sbumpc@_$basic_streambuf@DU_$char_traits@D@std@@@std@@QAEHXZ, _getloc@ios_base@std@@QBE_AVlocale@2@XZ, __1locale@std@@QAE@XZ, _npos@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@2IB, _erase@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV12@II@Z, _max_size@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QBEIXZ, _sgetc@_$basic_streambuf@DU_$char_traits@D@std@@@std@@QAEHXZ, _append@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV12@ID@Z, _snextc@_$basic_streambuf@DU_$char_traits@D@std@@@std@@QAEHXZ, _clear@ios_base@std@@QAEXH_N@Z, __Osfx@_$basic_ostream@_WU_$char_traits@_W@std@@@std@@QAEXXZ, _flush@_$basic_ostream@_WU_$char_traits@_W@std@@@std@@QAEAAV12@XZ, _uncaught_exception@std@@YA_NXZ, __Osfx@_$basic_ostream@DU_$char_traits@D@std@@@std@@QAEXXZ, _flush@_$basic_ostream@DU_$char_traits@D@std@@@std@@QAEAAV12@XZ, __Ipfx@_$basic_istream@_WU_$char_traits@_W@std@@@std@@QAE_N_N@Z, __Ipfx@_$basic_istream@DU_$char_traits@D@std@@@std@@QAE_N_N@Z, __Y_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAEAAV01@_W@Z, __Y_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAEAAV01@PB_W@Z, __0_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAE@I_W@Z, __0_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAE@PB_W@Z, __0_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAE@ABV01@@Z, __Y_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z, __1_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAE@XZ, __Y_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV01@D@Z, __Y_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV01@PBD@Z, __0_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAE@ID@Z, _erase@_$basic_string@_WU_$char_traits@_W@std@@V_$allocator@_W@2@@std@@QAEAAV12@II@Z, __0_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAE@PBD@Z, __Y_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV01@ABV01@@Z, _id@_$ctype@_W@std@@2V0locale@2@A, __Getcat@_$ctype@_W@std@@SAIPAPBVfacet@locale@2@@Z, __0_Lockit@std@@QAE@H@Z, _id@_$ctype@D@std@@2V0locale@2@A, __1_Lockit@std@@QAE@XZ, __Id_cnt@id@locale@std@@0HA, __Getfacet@locale@std@@QBEPBVfacet@12@I@Z, __Getcat@_$ctype@D@std@@SAIPAPBVfacet@locale@2@@Z, __Incref@facet@locale@std@@QAEXXZ, __Register@facet@locale@std@@QAEXXZ, __$_MDU_$char_traits@D@std@@V_$allocator@D@1@@std@@YA_NABV_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@0@0@Z, __Lock@_Mutex@std@@QAEXXZ, __0_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAE@XZ, __Unlock@_Mutex@std@@QAEXXZ, __0_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAE@ABV01@@Z, __1_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAE@XZ<BR><BR>( 19 exports ) <BR>XRegAddKey, XRegAddKey2, XRegCancelNotify, XRegChPass, XRegChPass2, XRegDelKey, XRegEnumClose, XRegEnumOpen, XRegEnumRead, XRegGetValue, XRegInit, XRegInit2, XRegLogin, XRegLogin2, XRegLogout, XRegPlaceNotify, XRegSetValue, XRegUninit, XRegWaitNotify<BR>
RDS...: NSRL Reference Data Set<BR>-
pdfid.: -
trid..: Win32 Executable Generic (42.3%)<BR>Win32 Dynamic Link Library (generic) (37.6%)<BR>Generic Win/DOS Executable (9.9%)<BR>DOS Executable Generic (9.9%)<BR>Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
sigcheck:<BR>publisher....: n/a<BR>copyright....: n/a<BR>product......: n/a<BR>description..: n/a<BR>original name: n/a<BR>internal name: n/a<BR>file version.: n/a<BR>comments.....: n/a<BR>signers......: -<BR>signing date.: -<BR>verified.....: Unsigned<BR>
Rapport OTL (je pense que j'ai fais une boulette pour OTL ..)
All processes killed
Error: Unable to interpret <[emptytemp] > in the current context!
Error: Unable to interpret <[start explorer] > in the current context!
Error: Unable to interpret <[reboot] > in the current context!
OTL by OldTimer - Version 3.1.7.0 log created on 11232009_013716
Files\Folders moved on Reboot...
File move failed. E:\setup.exe scheduled to be moved on reboot.
Registry entries deleted on Reboot...
All processes killed
Error: Unable to interpret <[emptytemp] > in the current context!
Error: Unable to interpret <[start explorer] > in the current context!
Error: Unable to interpret <[reboot] > in the current context!
OTL by OldTimer - Version 3.1.7.0 log created on 11232009_013716
Files\Folders moved on Reboot...
File move failed. E:\setup.exe scheduled to be moved on reboot.
Registry entries deleted on Reboot...
Au faite est-ce que je retirer mes clès usb et mon disque dur externe ? Est-ce que je peux aussi re-activer le contrôle des comptes utilisateurs que Nath m'avait demandée de desasctiver ?
Au faite est-ce que je retirer mes clès usb et mon disque dur externe ?
oui
Est-ce que je peux aussi re-activer le contrôle des comptes utilisateurs que Nath m'avait demandée de desasctiver ?
non on s'en occupera au menage final tout te sera indiqué
oui
Est-ce que je peux aussi re-activer le contrôle des comptes utilisateurs que Nath m'avait demandée de desasctiver ?
non on s'en occupera au menage final tout te sera indiqué
Voici le rapport OTL
All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
No active process named iexplore.exe was found!
No active process named firefox.exe was found!
No active process named msnmsgr.exe was found!
No active process named Teatimer.exe was found!
========== OTL ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{f592709f-ff4a-4862-b659-4afabda56312} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f592709f-ff4a-4862-b659-4afabda56312}\ not found.
File C:\Program Files\Mininova\tbMini.dll not found.
Registry value HKEY_USERS\S-1-5-21-703948299-1005296000-2518214268-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\{f592709f-ff4a-4862-b659-4afabda56312} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f592709f-ff4a-4862-b659-4afabda56312}\ not found.
File C:\Program Files\Mininova\tbMini.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{02478D38-C3F9-4efb-9B51-7695ECA05670}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{f592709f-ff4a-4862-b659-4afabda56312}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f592709f-ff4a-4862-b659-4afabda56312}\ not found.
File C:\Program Files\Mininova\tbMini.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{f592709f-ff4a-4862-b659-4afabda56312} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f592709f-ff4a-4862-b659-4afabda56312}\ not found.
File C:\Program Files\Mininova\tbMini.dll not found.
Registry value HKEY_USERS\S-1-5-21-703948299-1005296000-2518214268-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{F592709F-FF4A-4862-B659-4AFABDA56312} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F592709F-FF4A-4862-B659-4AFABDA56312}\ not found.
File C:\Program Files\Mininova\tbMini.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\eRecoveryService not found.
Starting removal of ActiveX control {E2883E8F-472F-4FB0-9522-AC9BF37916A7}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Starting removal of ActiveX control CabBuilder
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\CabBuilder\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\CabBuilder\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1c294237-bcd6-11dd-b297-806e6f6e6963}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1c294237-bcd6-11dd-b297-806e6f6e6963}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1c294237-bcd6-11dd-b297-806e6f6e6963}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1c294237-bcd6-11dd-b297-806e6f6e6963}\ not found.
File move failed. E:\setup.exe scheduled to be moved on reboot.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6c18391c-ed5b-11dd-b436-00238b3b955e}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6c18391c-ed5b-11dd-b436-00238b3b955e}\ not found.
File F:\setupSNK.exe not found.
Unable to delete ADS C:\ProgramData\TEMP:E36F5B57 .
Unable to delete ADS C:\ProgramData\TEMP:8AB6C1D7 .
Unable to delete ADS C:\ProgramData\TEMP:2B99FE60 .
Unable to delete ADS C:\ProgramData\TEMP:4CF61E54 .
Unable to delete ADS C:\ProgramData\TEMP:4F636E25 .
Unable to delete ADS C:\ProgramData\TEMP:580E04D8 .
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\Adobe Reader Speed Launcher not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\TkBellExe not found.
========== FILES ==========
File\Folder C:\ProgramData\poke two wait not found.
File\Folder C:\ProgramData\Vc Nurb That Dent not found.
File\Folder C:\Users\Céli-Flo\AppData\Roaming\.# not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Céli-Flo
->Temp folder emptied: 236632 bytes
->Temporary Internet Files folder emptied: 75454062 bytes
->Google Chrome cache emptied: 0 bytes
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 72,18 mb
OTL by OldTimer - Version 3.1.7.0 log created on 11232009_015054
Files\Folders moved on Reboot...
File move failed. E:\setup.exe scheduled to be moved on reboot.
Registry entries deleted on Reboot...
All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
No active process named iexplore.exe was found!
No active process named firefox.exe was found!
No active process named msnmsgr.exe was found!
No active process named Teatimer.exe was found!
========== OTL ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{f592709f-ff4a-4862-b659-4afabda56312} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f592709f-ff4a-4862-b659-4afabda56312}\ not found.
File C:\Program Files\Mininova\tbMini.dll not found.
Registry value HKEY_USERS\S-1-5-21-703948299-1005296000-2518214268-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\{f592709f-ff4a-4862-b659-4afabda56312} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f592709f-ff4a-4862-b659-4afabda56312}\ not found.
File C:\Program Files\Mininova\tbMini.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{02478D38-C3F9-4efb-9B51-7695ECA05670}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{f592709f-ff4a-4862-b659-4afabda56312}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f592709f-ff4a-4862-b659-4afabda56312}\ not found.
File C:\Program Files\Mininova\tbMini.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{f592709f-ff4a-4862-b659-4afabda56312} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f592709f-ff4a-4862-b659-4afabda56312}\ not found.
File C:\Program Files\Mininova\tbMini.dll not found.
Registry value HKEY_USERS\S-1-5-21-703948299-1005296000-2518214268-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{F592709F-FF4A-4862-B659-4AFABDA56312} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F592709F-FF4A-4862-B659-4AFABDA56312}\ not found.
File C:\Program Files\Mininova\tbMini.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\eRecoveryService not found.
Starting removal of ActiveX control {E2883E8F-472F-4FB0-9522-AC9BF37916A7}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Starting removal of ActiveX control CabBuilder
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\CabBuilder\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\CabBuilder\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1c294237-bcd6-11dd-b297-806e6f6e6963}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1c294237-bcd6-11dd-b297-806e6f6e6963}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1c294237-bcd6-11dd-b297-806e6f6e6963}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1c294237-bcd6-11dd-b297-806e6f6e6963}\ not found.
File move failed. E:\setup.exe scheduled to be moved on reboot.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6c18391c-ed5b-11dd-b436-00238b3b955e}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6c18391c-ed5b-11dd-b436-00238b3b955e}\ not found.
File F:\setupSNK.exe not found.
Unable to delete ADS C:\ProgramData\TEMP:E36F5B57 .
Unable to delete ADS C:\ProgramData\TEMP:8AB6C1D7 .
Unable to delete ADS C:\ProgramData\TEMP:2B99FE60 .
Unable to delete ADS C:\ProgramData\TEMP:4CF61E54 .
Unable to delete ADS C:\ProgramData\TEMP:4F636E25 .
Unable to delete ADS C:\ProgramData\TEMP:580E04D8 .
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\Adobe Reader Speed Launcher not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\TkBellExe not found.
========== FILES ==========
File\Folder C:\ProgramData\poke two wait not found.
File\Folder C:\ProgramData\Vc Nurb That Dent not found.
File\Folder C:\Users\Céli-Flo\AppData\Roaming\.# not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Céli-Flo
->Temp folder emptied: 236632 bytes
->Temporary Internet Files folder emptied: 75454062 bytes
->Google Chrome cache emptied: 0 bytes
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 72,18 mb
OTL by OldTimer - Version 3.1.7.0 log created on 11232009_015054
Files\Folders moved on Reboot...
File move failed. E:\setup.exe scheduled to be moved on reboot.
Registry entries deleted on Reboot...
All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
No active process named iexplore.exe was found!
No active process named firefox.exe was found!
No active process named msnmsgr.exe was found!
No active process named Teatimer.exe was found!
========== OTL ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{f592709f-ff4a-4862-b659-4afabda56312} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f592709f-ff4a-4862-b659-4afabda56312}\ not found.
File C:\Program Files\Mininova\tbMini.dll not found.
Registry value HKEY_USERS\S-1-5-21-703948299-1005296000-2518214268-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\{f592709f-ff4a-4862-b659-4afabda56312} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f592709f-ff4a-4862-b659-4afabda56312}\ not found.
File C:\Program Files\Mininova\tbMini.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{02478D38-C3F9-4efb-9B51-7695ECA05670}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{f592709f-ff4a-4862-b659-4afabda56312}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f592709f-ff4a-4862-b659-4afabda56312}\ not found.
File C:\Program Files\Mininova\tbMini.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{f592709f-ff4a-4862-b659-4afabda56312} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f592709f-ff4a-4862-b659-4afabda56312}\ not found.
File C:\Program Files\Mininova\tbMini.dll not found.
Registry value HKEY_USERS\S-1-5-21-703948299-1005296000-2518214268-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{F592709F-FF4A-4862-B659-4AFABDA56312} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F592709F-FF4A-4862-B659-4AFABDA56312}\ not found.
File C:\Program Files\Mininova\tbMini.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\eRecoveryService not found.
Starting removal of ActiveX control {E2883E8F-472F-4FB0-9522-AC9BF37916A7}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Starting removal of ActiveX control CabBuilder
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\CabBuilder\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\CabBuilder\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1c294237-bcd6-11dd-b297-806e6f6e6963}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1c294237-bcd6-11dd-b297-806e6f6e6963}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1c294237-bcd6-11dd-b297-806e6f6e6963}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1c294237-bcd6-11dd-b297-806e6f6e6963}\ not found.
File move failed. E:\setup.exe scheduled to be moved on reboot.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6c18391c-ed5b-11dd-b436-00238b3b955e}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6c18391c-ed5b-11dd-b436-00238b3b955e}\ not found.
File F:\setupSNK.exe not found.
Unable to delete ADS C:\ProgramData\TEMP:E36F5B57 .
Unable to delete ADS C:\ProgramData\TEMP:8AB6C1D7 .
Unable to delete ADS C:\ProgramData\TEMP:2B99FE60 .
Unable to delete ADS C:\ProgramData\TEMP:4CF61E54 .
Unable to delete ADS C:\ProgramData\TEMP:4F636E25 .
Unable to delete ADS C:\ProgramData\TEMP:580E04D8 .
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\Adobe Reader Speed Launcher not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\TkBellExe not found.
========== FILES ==========
File\Folder C:\ProgramData\poke two wait not found.
File\Folder C:\ProgramData\Vc Nurb That Dent not found.
File\Folder C:\Users\Céli-Flo\AppData\Roaming\.# not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Céli-Flo
->Temp folder emptied: 236632 bytes
->Temporary Internet Files folder emptied: 3485612 bytes
->Google Chrome cache emptied: 0 bytes
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
Windows Temp folder emptied: 1266 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 3,55 mb
OTL by OldTimer - Version 3.1.7.0 log created on 11232009_020551
Files\Folders moved on Reboot...
File move failed. E:\setup.exe scheduled to be moved on reboot.
Registry entries deleted on Reboot...
========== PROCESSES ==========
No active process named explorer.exe was found!
No active process named iexplore.exe was found!
No active process named firefox.exe was found!
No active process named msnmsgr.exe was found!
No active process named Teatimer.exe was found!
========== OTL ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{f592709f-ff4a-4862-b659-4afabda56312} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f592709f-ff4a-4862-b659-4afabda56312}\ not found.
File C:\Program Files\Mininova\tbMini.dll not found.
Registry value HKEY_USERS\S-1-5-21-703948299-1005296000-2518214268-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\{f592709f-ff4a-4862-b659-4afabda56312} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f592709f-ff4a-4862-b659-4afabda56312}\ not found.
File C:\Program Files\Mininova\tbMini.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{02478D38-C3F9-4efb-9B51-7695ECA05670}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{f592709f-ff4a-4862-b659-4afabda56312}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f592709f-ff4a-4862-b659-4afabda56312}\ not found.
File C:\Program Files\Mininova\tbMini.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{f592709f-ff4a-4862-b659-4afabda56312} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f592709f-ff4a-4862-b659-4afabda56312}\ not found.
File C:\Program Files\Mininova\tbMini.dll not found.
Registry value HKEY_USERS\S-1-5-21-703948299-1005296000-2518214268-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{F592709F-FF4A-4862-B659-4AFABDA56312} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F592709F-FF4A-4862-B659-4AFABDA56312}\ not found.
File C:\Program Files\Mininova\tbMini.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\eRecoveryService not found.
Starting removal of ActiveX control {E2883E8F-472F-4FB0-9522-AC9BF37916A7}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Starting removal of ActiveX control CabBuilder
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\CabBuilder\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\CabBuilder\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1c294237-bcd6-11dd-b297-806e6f6e6963}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1c294237-bcd6-11dd-b297-806e6f6e6963}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1c294237-bcd6-11dd-b297-806e6f6e6963}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1c294237-bcd6-11dd-b297-806e6f6e6963}\ not found.
File move failed. E:\setup.exe scheduled to be moved on reboot.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6c18391c-ed5b-11dd-b436-00238b3b955e}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6c18391c-ed5b-11dd-b436-00238b3b955e}\ not found.
File F:\setupSNK.exe not found.
Unable to delete ADS C:\ProgramData\TEMP:E36F5B57 .
Unable to delete ADS C:\ProgramData\TEMP:8AB6C1D7 .
Unable to delete ADS C:\ProgramData\TEMP:2B99FE60 .
Unable to delete ADS C:\ProgramData\TEMP:4CF61E54 .
Unable to delete ADS C:\ProgramData\TEMP:4F636E25 .
Unable to delete ADS C:\ProgramData\TEMP:580E04D8 .
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\Adobe Reader Speed Launcher not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\TkBellExe not found.
========== FILES ==========
File\Folder C:\ProgramData\poke two wait not found.
File\Folder C:\ProgramData\Vc Nurb That Dent not found.
File\Folder C:\Users\Céli-Flo\AppData\Roaming\.# not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Céli-Flo
->Temp folder emptied: 236632 bytes
->Temporary Internet Files folder emptied: 3485612 bytes
->Google Chrome cache emptied: 0 bytes
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
Windows Temp folder emptied: 1266 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 3,55 mb
OTL by OldTimer - Version 3.1.7.0 log created on 11232009_020551
Files\Folders moved on Reboot...
File move failed. E:\setup.exe scheduled to be moved on reboot.
Registry entries deleted on Reboot...
Bonjour Gen-Hackman :)
Bah j'en sais rien , je suis passée en mode sans echec et j'ai collée la liste dans OTL et j'ai lancé le scan..
Bah j'en sais rien , je suis passée en mode sans echec et j'ai collée la liste dans OTL et j'ai lancé le scan..
