Cueuk.exe
Résolu
casimire666
Messages postés
2472
Date d'inscription
Statut
Membre
Dernière intervention
-
casimire666 Messages postés 2472 Date d'inscription Statut Membre Dernière intervention -
casimire666 Messages postés 2472 Date d'inscription Statut Membre Dernière intervention -
Bonjour,
apres uc a 100 pour 100 et apres passage de hijacthis je me retrouve ce programme qui tourne
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:16:44, on 05/03/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgrsx.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpSystemStatusCheck.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\AVG\AVG9\avgwdsvc.exe
C:\PROGRA~1\AVG\AVG9\avgtray.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\FileHippo.com\UpdateChecker.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Documents and Settings\PRIVEE\cueuk.exe
C:\Program Files\AVG\AVG9\avgam.exe
C:\Program Files\Secunia\PSI\psi.exe
C:\Program Files\AVG\AVG9\avgnsx.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [FileHippo.com] "C:\Program Files\FileHippo.com\UpdateChecker.exe" /background
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [cueuk] C:\Documents and Settings\PRIVEE\cueuk.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Secunia PSI.lnk = C:\Program Files\Secunia\PSI\psi.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGR
apres uc a 100 pour 100 et apres passage de hijacthis je me retrouve ce programme qui tourne
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:16:44, on 05/03/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgrsx.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpSystemStatusCheck.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\AVG\AVG9\avgwdsvc.exe
C:\PROGRA~1\AVG\AVG9\avgtray.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\FileHippo.com\UpdateChecker.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Documents and Settings\PRIVEE\cueuk.exe
C:\Program Files\AVG\AVG9\avgam.exe
C:\Program Files\Secunia\PSI\psi.exe
C:\Program Files\AVG\AVG9\avgnsx.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [FileHippo.com] "C:\Program Files\FileHippo.com\UpdateChecker.exe" /background
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [cueuk] C:\Documents and Settings\PRIVEE\cueuk.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Secunia PSI.lnk = C:\Program Files\Secunia\PSI\psi.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGR
27 réponses
Bonjour,
● Désinstalle Favorit.
● Télécharge Ad-Remover (de C_XX) sur ton Bureau.
/!\ Déconnecte-toi d'Internet et ferme toutes applications en cours. /!\
● Double-clique sur le programme AD-R situé sur ton Bureau.
(Sous Vista/Win7, il faut cliquer droit sur AD-R et choisir Exécuter en tant qu'administrateur)
● Choisis la langue F pour Français.
● Au menu principal, choisis l'option L.
● Poste le rapport généré (C:\Ad-Report-CLEAN.log).
(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)
Note : "Process.exe", une composante de l'outil, est détectée par certains antivirus (AntiVir, Kaspersky, etc.) comme étant un RiskTool. Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus. Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
● Désinstalle Favorit.
● Télécharge Ad-Remover (de C_XX) sur ton Bureau.
/!\ Déconnecte-toi d'Internet et ferme toutes applications en cours. /!\
● Double-clique sur le programme AD-R situé sur ton Bureau.
(Sous Vista/Win7, il faut cliquer droit sur AD-R et choisir Exécuter en tant qu'administrateur)
● Choisis la langue F pour Français.
● Au menu principal, choisis l'option L.
● Poste le rapport généré (C:\Ad-Report-CLEAN.log).
(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)
Note : "Process.exe", une composante de l'outil, est détectée par certains antivirus (AntiVir, Kaspersky, etc.) comme étant un RiskTool. Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus. Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
re je poste le rapport
======= RAPPORT D'AD-REMOVER 1.1.4.6_J | UNIQUEMENT XP/VISTA/7 =======
.
Mis à jour par C_XX le 05.02.2010 à 17:34
Contact: AdRemover.contact@gmail.com
Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
.
Lancé à: 14:54:16, 05/03/2010 | Mode Normal | Option: SCAN
Exécuté de: C:\Ad-Remover\
Système d'exploitation: Microsoft® Windows XP™ Service Pack 3 v5.1.2600
Nom du PC: PRIVEE-8323285B | Utilisateur actuel: PRIVEE
.
============== ÉLÉMENT(S) TROUVÉ(S) ==============
.
.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{0E5CBF21-D15F-11D0-8301-00AA005B4383}
.
============== Scan additionnel ==============
.
.
* Mozilla FireFox Version 3.6 [fr] *
.
Nom du profil: zn78c5n1.default (PRIVEE)
.
(PRIVEE, prefs.js) Browser.download.lastDir, C:\Documents and Settings\PRIVEE\Mes documents\Téléchargements
(PRIVEE, prefs.js) Browser.search.selectedEngine, xeoo.com
(PRIVEE, prefs.js) Extensions.enabledItems, {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.1.3,{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}:6.0.16,jqs@sun.com:1.0,{20a82645-c095-46ed-80e3-08825760534b}:0.0.0,{ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.0,{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}:20091028,{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}:6.0.18,{3f963a5b-e555-4543-90e2-c3908898db71}:9.0.0.783,{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6
(PRIVEE, prefs.js) Keyword.URL, hxxp://xeoo.com/?p=url&a=firefox&k=
.
.
.
.
* Internet Explorer Version 8.0.6001.18702 *
.
[HKEY_CURRENT_USER\..\Internet Explorer\Main]
.
Do404Search: 01000000
Local Page: C:\WINDOWS\system32\blank.htm
Show_ToolBar: yes
Start Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Enable Browser Extensions: yes
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]
.
Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=69157
Default_Search_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Search Page: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Delete_Temp_Files_On_Exit: yes
Local Page: C:\WINDOWS\system32\blank.htm
Start Page: hxxp://fr.msn.com/
Search Bar: hxxp://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]
.
Tabs: res://ieframe.dll/tabswelcome.htm
.
============== Suspect (Cracks, Serials, ...) ==============
.
C:\Documents and Settings\PRIVEE\Application Data\uTorrent\DivX.Pro.7.v7.0.Multilangages.Incl-Keygen.torrent
C:\Documents and Settings\PRIVEE\Application Data\uTorrent\Tuneup 2010 Final + serial 100% compatible avec windows 7.torrent
C:\Documents and Settings\PRIVEE\Mes documents\Downloads\DivX.Pro.7.v7.0.Multilangages.Incl-Keygen\DivXInstaller.exe
C:\Documents and Settings\PRIVEE\Mes documents\Downloads\DivX.Pro.7.v7.0.Multilangages.Incl-Keygen\Keygen\Keygen_FFF.exe
C:\Documents and Settings\PRIVEE\Mes documents\Downloads\Tuneup 2010 Final + serial 100% compatible avec windows 7\TU2010TrialEN-US.exe
C:\Documents and Settings\PRIVEE\Mes documents\Downloads\TuneUp.Utilities.2010.v9.0.2000.44.French.Incl.Keymaker-CORE\keygen.exe
.
===================================
.
3184 Octet(s) - C:\Ad-Report-SCAN[1].log
.
75 Fichier(s) - C:\DOCUME~1\PRIVEE\LOCALS~1\Temp
245 Fichier(s) - C:\WINDOWS\Temp
129 Fichier(s) - C:\WINDOWS\Prefetch
.
2 Fichier(s) - C:\Ad-Remover\BACKUP
0 Fichier(s) - C:\Ad-Remover\QUARANTINE
.
Fin à: 15:26:02 | 05/03/2010 - SCAN[1]
.
============== E.O.F ==============
.et je ne trouve pas de favorit
======= RAPPORT D'AD-REMOVER 1.1.4.6_J | UNIQUEMENT XP/VISTA/7 =======
.
Mis à jour par C_XX le 05.02.2010 à 17:34
Contact: AdRemover.contact@gmail.com
Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
.
Lancé à: 14:54:16, 05/03/2010 | Mode Normal | Option: SCAN
Exécuté de: C:\Ad-Remover\
Système d'exploitation: Microsoft® Windows XP™ Service Pack 3 v5.1.2600
Nom du PC: PRIVEE-8323285B | Utilisateur actuel: PRIVEE
.
============== ÉLÉMENT(S) TROUVÉ(S) ==============
.
.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{0E5CBF21-D15F-11D0-8301-00AA005B4383}
.
============== Scan additionnel ==============
.
.
* Mozilla FireFox Version 3.6 [fr] *
.
Nom du profil: zn78c5n1.default (PRIVEE)
.
(PRIVEE, prefs.js) Browser.download.lastDir, C:\Documents and Settings\PRIVEE\Mes documents\Téléchargements
(PRIVEE, prefs.js) Browser.search.selectedEngine, xeoo.com
(PRIVEE, prefs.js) Extensions.enabledItems, {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.1.3,{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}:6.0.16,jqs@sun.com:1.0,{20a82645-c095-46ed-80e3-08825760534b}:0.0.0,{ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.0,{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}:20091028,{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}:6.0.18,{3f963a5b-e555-4543-90e2-c3908898db71}:9.0.0.783,{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6
(PRIVEE, prefs.js) Keyword.URL, hxxp://xeoo.com/?p=url&a=firefox&k=
.
.
.
.
* Internet Explorer Version 8.0.6001.18702 *
.
[HKEY_CURRENT_USER\..\Internet Explorer\Main]
.
Do404Search: 01000000
Local Page: C:\WINDOWS\system32\blank.htm
Show_ToolBar: yes
Start Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Enable Browser Extensions: yes
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]
.
Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=69157
Default_Search_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Search Page: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Delete_Temp_Files_On_Exit: yes
Local Page: C:\WINDOWS\system32\blank.htm
Start Page: hxxp://fr.msn.com/
Search Bar: hxxp://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]
.
Tabs: res://ieframe.dll/tabswelcome.htm
.
============== Suspect (Cracks, Serials, ...) ==============
.
C:\Documents and Settings\PRIVEE\Application Data\uTorrent\DivX.Pro.7.v7.0.Multilangages.Incl-Keygen.torrent
C:\Documents and Settings\PRIVEE\Application Data\uTorrent\Tuneup 2010 Final + serial 100% compatible avec windows 7.torrent
C:\Documents and Settings\PRIVEE\Mes documents\Downloads\DivX.Pro.7.v7.0.Multilangages.Incl-Keygen\DivXInstaller.exe
C:\Documents and Settings\PRIVEE\Mes documents\Downloads\DivX.Pro.7.v7.0.Multilangages.Incl-Keygen\Keygen\Keygen_FFF.exe
C:\Documents and Settings\PRIVEE\Mes documents\Downloads\Tuneup 2010 Final + serial 100% compatible avec windows 7\TU2010TrialEN-US.exe
C:\Documents and Settings\PRIVEE\Mes documents\Downloads\TuneUp.Utilities.2010.v9.0.2000.44.French.Incl.Keymaker-CORE\keygen.exe
.
===================================
.
3184 Octet(s) - C:\Ad-Report-SCAN[1].log
.
75 Fichier(s) - C:\DOCUME~1\PRIVEE\LOCALS~1\Temp
245 Fichier(s) - C:\WINDOWS\Temp
129 Fichier(s) - C:\WINDOWS\Prefetch
.
2 Fichier(s) - C:\Ad-Remover\BACKUP
0 Fichier(s) - C:\Ad-Remover\QUARANTINE
.
Fin à: 15:26:02 | 05/03/2010 - SCAN[1]
.
============== E.O.F ==============
.et je ne trouve pas de favorit
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
--> Désinstalle Ad-Remover.
--> Télécharge OTL (de OldTimer) sur ton Bureau.
--> Double-clique sur OTL pour le lancer.
(Sous Vista/Win7, il faut cliquer droit sur OTL et choisir Exécuter en tant qu'administrateur)
--> Une fenêtre apparaît. Dans la section Output en haut de cette fenêtre, coche Minimal Output.
--> Coche également les cases à côté de LOP Check et Purity Check.
--> Enfin, clique sur le bouton Run Scan. Le scan ne prendra pas beaucoup de temps.
--> Une fois l'analyse terminée, deux fenêtres vont s'ouvrir dans le Bloc-notes : OTL.txt et Extras.txt. Ils se trouvent au même endroit que OTL (donc par défaut sur le Bureau).
Pour me transmettre les rapports :
--> Clique sur ce lien : http://www.cijoint.fr/
--> Clique sur Parcourir... et cherche le fichier du rapport que tu souhaites me transmettre.
--> Clique sur Ouvrir.
--> Clique sur Cliquez ici pour déposer le fichier.
--> Un lien de cette forme, hxxp://www.cijoint.fr/cjlink.php?file=cj200905/cijSKAP5fU.txt, est ajouté dans la page.
--> Copie-colle ce lien dans ta réponse.
--> Télécharge OTL (de OldTimer) sur ton Bureau.
--> Double-clique sur OTL pour le lancer.
(Sous Vista/Win7, il faut cliquer droit sur OTL et choisir Exécuter en tant qu'administrateur)
--> Une fenêtre apparaît. Dans la section Output en haut de cette fenêtre, coche Minimal Output.
--> Coche également les cases à côté de LOP Check et Purity Check.
--> Enfin, clique sur le bouton Run Scan. Le scan ne prendra pas beaucoup de temps.
--> Une fois l'analyse terminée, deux fenêtres vont s'ouvrir dans le Bloc-notes : OTL.txt et Extras.txt. Ils se trouvent au même endroit que OTL (donc par défaut sur le Bureau).
Pour me transmettre les rapports :
--> Clique sur ce lien : http://www.cijoint.fr/
--> Clique sur Parcourir... et cherche le fichier du rapport que tu souhaites me transmettre.
--> Clique sur Ouvrir.
--> Clique sur Cliquez ici pour déposer le fichier.
--> Un lien de cette forme, hxxp://www.cijoint.fr/cjlink.php?file=cj200905/cijSKAP5fU.txt, est ajouté dans la page.
--> Copie-colle ce lien dans ta réponse.
--> Double-clique sur OTL pour le lancer.
(Sous Vista/Win7, il faut cliquer droit sur OTL et choisir Exécuter en tant qu'administrateur)
--> Sous l'onglet Custom Scans/Fixes en bas de la fenêtre, copie-colle le texte suivant (entre les deux espaces) :
:OTL
PRC - C:\Documents and Settings\PRIVEE\cueuk.exe ()
SRV - (Nero BackItUp Scheduler 4.0) -- File not found
O4 - HKCU\..\Run: [cueuk] C:\Documents and Settings\PRIVEE\cueuk.exe ()
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)
[2010/03/02 18:36:29 | 000,000,137 | ---- | M] () -- C:\WINDOWS\System32\svchost.bat
[2010/03/02 18:16:04 | 000,071,168 | RHS- | M] () -- C:\Documents and Settings\PRIVEE\cueuk.exe
:commands
[emptytemp]
[reboot]
--> Puis clique sur le bouton Run Fix en haut de la fenêtre.
--> Laisse le programme travailler, redémarre une fois le fix terminé.
--> Poste le rapport qui s'affichera après redémarrage.
(Sous Vista/Win7, il faut cliquer droit sur OTL et choisir Exécuter en tant qu'administrateur)
--> Sous l'onglet Custom Scans/Fixes en bas de la fenêtre, copie-colle le texte suivant (entre les deux espaces) :
:OTL
PRC - C:\Documents and Settings\PRIVEE\cueuk.exe ()
SRV - (Nero BackItUp Scheduler 4.0) -- File not found
O4 - HKCU\..\Run: [cueuk] C:\Documents and Settings\PRIVEE\cueuk.exe ()
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)
[2010/03/02 18:36:29 | 000,000,137 | ---- | M] () -- C:\WINDOWS\System32\svchost.bat
[2010/03/02 18:16:04 | 000,071,168 | RHS- | M] () -- C:\Documents and Settings\PRIVEE\cueuk.exe
:commands
[emptytemp]
[reboot]
--> Puis clique sur le bouton Run Fix en haut de la fenêtre.
--> Laisse le programme travailler, redémarre une fois le fix terminé.
--> Poste le rapport qui s'affichera après redémarrage.
bon je fais comme tu me le dit
mais quand je cic sur run fix il ne se passe rien le programme ce ferme
mais quand je cic sur run fix il ne se passe rien le programme ce ferme
Tu as bien copié-collé ce texte ?
:OTL
PRC - C:\Documents and Settings\PRIVEE\cueuk.exe ()
SRV - (Nero BackItUp Scheduler 4.0) -- File not found
O4 - HKCU\..\Run: [cueuk] C:\Documents and Settings\PRIVEE\cueuk.exe ()
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)
[2010/03/02 18:36:29 | 000,000,137 | ---- | M] () -- C:\WINDOWS\System32\svchost.bat
[2010/03/02 18:16:04 | 000,071,168 | RHS- | M] () -- C:\Documents and Settings\PRIVEE\cueuk.exe
:commands
[emptytemp]
[reboot]
:OTL
PRC - C:\Documents and Settings\PRIVEE\cueuk.exe ()
SRV - (Nero BackItUp Scheduler 4.0) -- File not found
O4 - HKCU\..\Run: [cueuk] C:\Documents and Settings\PRIVEE\cueuk.exe ()
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)
[2010/03/02 18:36:29 | 000,000,137 | ---- | M] () -- C:\WINDOWS\System32\svchost.bat
[2010/03/02 18:16:04 | 000,071,168 | RHS- | M] () -- C:\Documents and Settings\PRIVEE\cueuk.exe
:commands
[emptytemp]
[reboot]
une erreur de ma part j'ai copie une ligne en en trop
:OTL bon c'est reparer je pense que c'est le rapport(il y en a qu'un seul)
OTL Extras logfile created on: 05/03/2010 16:36:47 - Run 1
OTL by OldTimer - Version 3.1.34.0 Folder = C:\Documents and Settings\PRIVEE\Mes documents\Téléchargements
Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 64,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 85,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 66,71 Gb Total Space | 11,47 Gb Free Space | 17,19% Space Free | Partition Type: NTFS
Drive D: | 7,79 Gb Total Space | 0,99 Gb Free Space | 12,74% Space Free | Partition Type: FAT32
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: PRIVEE-8323285B
Current User Name: PRIVEE
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
[color=#E56717]========== File Associations ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
[color=#E56717]========== Shell Spawning ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[color=#E56717]========== Security Center Settings ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 1
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"26675:TCP" = 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"48113:TCP" = 48113:TCP:LocalSubNet:Enabled:maconfig_tcp
"48113:UDP" = 48113:UDP:LocalSubNet:Enabled:maconfig_udp
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"26675:TCP" = 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22002
[color=#E56717]========== Authorized Applications List ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe" = C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager -- (Microsoft Corporation)
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe" = C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager -- (Microsoft Corporation)
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe" = C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application -- (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" = C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation)
"C:\Program Files\ma-config.com\maconfservice.exe" = C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice -- (CybelSoft)
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe" = C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager -- (Microsoft Corporation)
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe" = C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager -- (Microsoft Corporation)
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe" = C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application -- (Microsoft Corporation)
"C:\Program Files\Fichiers communs\Ahead\Nero Web\SetupX.exe" = C:\Program Files\Fichiers communs\Ahead\Nero Web\SetupX.exe:*:Enabled:Nero ProductSetup -- (Nero AG)
"C:\Program Files\AVG\AVG9\avgam.exe" = C:\Program Files\AVG\AVG9\avgam.exe:*:Enabled:avgam.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgdiagex.exe" = C:\Program Files\AVG\AVG9\avgdiagex.exe:*:Enabled:avgdiagex.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgnsx.exe" = C:\Program Files\AVG\AVG9\avgnsx.exe:*:Enabled:avgnsx.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgupd.exe" = C:\Program Files\AVG\AVG9\avgupd.exe:*:Enabled:avgupd.exe -- (AVG Technologies CZ, s.r.o.)
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{08F32589-5E39-42B8-8BC5-6A8126ED2A70}" = Microsoft Visual C++ 2008 Redistributable Package
"{0BEDBD4E-2D34-47B5-9973-57E62B29307C}" = Panneau de contrôle ATI
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{235BBFC6-D863-4066-A01A-3BD504C31036}" = Nero 7 Ultra Edition
"{26A24AE4-039D-4CA4-87B4-2F83216018FF}" = Java(TM) 6 Update 18
"{2EAF7E61-068E-11DF-953C-005056806466}" = Google Earth
:OTL bon c'est reparer je pense que c'est le rapport(il y en a qu'un seul)
OTL Extras logfile created on: 05/03/2010 16:36:47 - Run 1
OTL by OldTimer - Version 3.1.34.0 Folder = C:\Documents and Settings\PRIVEE\Mes documents\Téléchargements
Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 64,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 85,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 66,71 Gb Total Space | 11,47 Gb Free Space | 17,19% Space Free | Partition Type: NTFS
Drive D: | 7,79 Gb Total Space | 0,99 Gb Free Space | 12,74% Space Free | Partition Type: FAT32
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: PRIVEE-8323285B
Current User Name: PRIVEE
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
[color=#E56717]========== File Associations ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
[color=#E56717]========== Shell Spawning ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[color=#E56717]========== Security Center Settings ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 1
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"26675:TCP" = 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"48113:TCP" = 48113:TCP:LocalSubNet:Enabled:maconfig_tcp
"48113:UDP" = 48113:UDP:LocalSubNet:Enabled:maconfig_udp
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"26675:TCP" = 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22002
[color=#E56717]========== Authorized Applications List ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe" = C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager -- (Microsoft Corporation)
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe" = C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager -- (Microsoft Corporation)
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe" = C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application -- (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" = C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation)
"C:\Program Files\ma-config.com\maconfservice.exe" = C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice -- (CybelSoft)
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe" = C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager -- (Microsoft Corporation)
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe" = C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager -- (Microsoft Corporation)
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe" = C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application -- (Microsoft Corporation)
"C:\Program Files\Fichiers communs\Ahead\Nero Web\SetupX.exe" = C:\Program Files\Fichiers communs\Ahead\Nero Web\SetupX.exe:*:Enabled:Nero ProductSetup -- (Nero AG)
"C:\Program Files\AVG\AVG9\avgam.exe" = C:\Program Files\AVG\AVG9\avgam.exe:*:Enabled:avgam.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgdiagex.exe" = C:\Program Files\AVG\AVG9\avgdiagex.exe:*:Enabled:avgdiagex.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgnsx.exe" = C:\Program Files\AVG\AVG9\avgnsx.exe:*:Enabled:avgnsx.exe -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG9\avgupd.exe" = C:\Program Files\AVG\AVG9\avgupd.exe:*:Enabled:avgupd.exe -- (AVG Technologies CZ, s.r.o.)
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{08F32589-5E39-42B8-8BC5-6A8126ED2A70}" = Microsoft Visual C++ 2008 Redistributable Package
"{0BEDBD4E-2D34-47B5-9973-57E62B29307C}" = Panneau de contrôle ATI
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{235BBFC6-D863-4066-A01A-3BD504C31036}" = Nero 7 Ultra Edition
"{26A24AE4-039D-4CA4-87B4-2F83216018FF}" = Java(TM) 6 Update 18
"{2EAF7E61-068E-11DF-953C-005056806466}" = Google Earth
en essayant d'ouvrir otl il me sort un rapport
All processes killed
Error: Unable to interpret <PRC - C:\Documents and Settings\PRIVEE\cueuk.exe ()> in the current context!
Error: Unable to interpret <SRV - (Nero BackItUp Scheduler 4.0) -- File not found> in the current context!
Error: Unable to interpret <O4 - HKCU\..\Run: [cueuk] C:\Documents and Settings\PRIVEE\cueuk.exe ()> in the current context!
Error: Unable to interpret <O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)> in the current context!
Error: Unable to interpret <O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07)> in the current context!
Error: Unable to interpret <O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)> in the current context!
Error: Unable to interpret <O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)> in the current context!
Error: Unable to interpret <[2010/03/02 18:36:29 | 000,000,137 | ---- | M] () -- C:\WINDOWS\System32\svchost.bat> in the current context!
Error: Unable to interpret <[2010/03/02 18:16:04 | 000,071,168 | RHS- | M] () -- C:\Documents and Settings\PRIVEE\cueuk.exe> in the current context!
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 1416562 bytes
->Flash cache emptied: 2137 bytes
User: PRIVEE
->Temp folder emptied: 16476547 bytes
->Temporary Internet Files folder emptied: 1264576 bytes
->Java cache emptied: 3206 bytes
->FireFox cache emptied: 75895995 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 3056 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 1240390 bytes
%systemroot%\System32 .tmp files removed: 3072 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 65590 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 34313 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 92,00 mb
OTL by OldTimer - Version 3.1.34.0 log created on 03052010_181258
Files\Folders moved on Reboot...
File move failed. C:\Documents and Settings\PRIVEE\Local Settings\Temp\WCESLog.log scheduled to be moved on reboot.
File\Folder C:\Documents and Settings\PRIVEE\Local Settings\Temporary Internet Files\Content.IE5\BUMA3MCG\index[1].php not found!
File\Folder C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_001_ not found!
File\Folder C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_002_ not found!
File\Folder C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_003_ not found!
File\Folder C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_MAP_ not found!
File\Folder C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\urlclassifier3.sqlite not found!
File\Folder C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\XUL.mfl not found!
File\Folder C:\WINDOWS\temp\001f7023-04a1-4c82-9fec-89d384f489d0.tmp not found!
File\Folder C:\WINDOWS\temp\05266539-b73f-4301-a65f-281ff72c85fc.tmp not found!
File\Folder C:\WINDOWS\temp\0b9664de-329c-4aa1-b85d-607160dc7e88.tmp not found!
File\Folder C:\WINDOWS\temp\205a9ee6-043e-41d1-8899-b3ad1938604d.tmp not found!
File\Folder C:\WINDOWS\temp\22bafa4f-85f7-4161-8af3-bb46713ddf1b.tmp not found!
File\Folder C:\WINDOWS\temp\252ca10f-1218-45ad-9995-1335ad9fe920.tmp not found!
File\Folder C:\WINDOWS\temp\26ca07c5-59a2-4b16-b2f1-2ef847c5b889.tmp not found!
File\Folder C:\WINDOWS\temp\26eecdf8-d129-4324-8895-f4b583d2ecfc.tmp not found!
File\Folder C:\WINDOWS\temp\27a4a233-103c-4f33-ad53-12f4218c23c8.tmp not found!
File\Folder C:\WINDOWS\temp\33f8606d-2748-4349-a269-91ceaa52d549.tmp not found!
File\Folder C:\WINDOWS\temp\35481d26-62db-4aca-9ded-1311b32f0455.tmp not found!
File\Folder C:\WINDOWS\temp\36816943-3554-48e7-8569-f367ffcb5cc1.tmp not found!
File\Folder C:\WINDOWS\temp\41258008-91c5-4090-bcc1-41865a226e4d.tmp not found!
File\Folder C:\WINDOWS\temp\46b55d79-20a9-4de3-bdfc-c50898519e3b.tmp not found!
File\Folder C:\WINDOWS\temp\4ad86bee-de12-4ef5-a94e-cdf9ab618e07.tmp not found!
File\Folder C:\WINDOWS\temp\4b4e61be-1733-4a9f-939e-76f68b01ae6d.tmp not found!
File\Folder C:\WINDOWS\temp\4d4a64d5-7a0f-41db-9c4f-807d05631974.tmp not found!
File\Folder C:\WINDOWS\temp\5630689c-d84b-4fba-a5a9-c0c547c2411e.tmp not found!
File\Folder C:\WINDOWS\temp\574c9f85-e679-4c1b-85b7-86d65a60c98e.tmp not found!
File\Folder C:\WINDOWS\temp\5792d174-d67d-43e0-bf81-8c23a8e8aef8.tmp not found!
File\Folder C:\WINDOWS\temp\5c3605b1-d4a6-4567-9e42-b0cbb8e576a8.tmp not found!
File\Folder C:\WINDOWS\temp\5db42fe9-2660-424f-8e1f-3489bace107e.tmp not found!
File\Folder C:\WINDOWS\temp\6095d7e2-01d1-4bd1-8ed8-e99d7ae5d2ee.tmp not found!
File\Folder C:\WINDOWS\temp\62450867-87e4-45a7-9f51-9913df3f8186.tmp not found!
File\Folder C:\WINDOWS\temp\63cbbaed-ffb7-4967-b37a-d0c0ccff8edc.tmp not found!
File\Folder C:\WINDOWS\temp\6d2f475b-b8c6-48df-8801-2e0af998ac08.tmp not found!
File\Folder C:\WINDOWS\temp\6e407ba3-ced8-4bae-bc9f-c227be157224.tmp not found!
File\Folder C:\WINDOWS\temp\6ed92589-b1b0-4c32-b277-c8aab3f8bcad.tmp not found!
File\Folder C:\WINDOWS\temp\6f3b6004-cc8d-41ff-924f-2919c0971a2e.tmp not found!
File\Folder C:\WINDOWS\temp\6fe449ff-9b3e-4187-9849-366176292ef4.tmp not found!
File\Folder C:\WINDOWS\temp\70dce552-1e70-4c72-bece-f10115fa1bbb.tmp not found!
File\Folder C:\WINDOWS\temp\81287d16-2f21-4ac8-8ee7-0a89049cee1a.tmp not found!
File\Folder C:\WINDOWS\temp\8956079c-1376-4407-8aab-bbe585bb82e6.tmp not found!
File\Folder C:\WINDOWS\temp\8b5f9939-1f09-4a1a-bf20-01823f37f343.tmp not found!
File\Folder C:\WINDOWS\temp\8bc02320-27cb-49df-80c3-380c658c75cd.tmp not found!
File\Folder C:\WINDOWS\temp\8c0a6119-2af4-4003-8a3f-ee6cc5f1b9ab.tmp not found!
File\Folder C:\WINDOWS\temp\92eb711f-8282-4c4d-89f9-6b436471aebb.tmp not found!
File\Folder C:\WINDOWS\temp\9c7dae8a-d9b2-48d6-af46-c9598bc26886.tmp not found!
File\Folder C:\WINDOWS\temp\9c7e4323-a89d-4296-9e0e-d7210118dde1.tmp not found!
File\Folder C:\WINDOWS\temp\9f277836-969d-467e-ab5a-1b1a096ddd27.tmp not found!
File\Folder C:\WINDOWS\temp\9ff5b55b-2252-44b7-9526-a294fdb1bc58.tmp not found!
File\Folder C:\WINDOWS\temp\b1e26fda-16d5-4d97-b343-5a74b5332c5a.tmp not found!
File\Folder C:\WINDOWS\temp\b3d20fbc-fc1a-4554-b621-dda2d75868b5.tmp not found!
File\Folder C:\WINDOWS\temp\b4596c23-5c02-4e20-bd17-a3a3e9b81a75.tmp not found!
File\Folder C:\WINDOWS\temp\b63d492f-8db4-4af3-8aa3-2bc97e268557.tmp not found!
File\Folder C:\WINDOWS\temp\b94ef6f9-6b54-4cfc-9098-aba394e4812f.tmp not found!
File\Folder C:\WINDOWS\temp\bff212f4-3b8e-4d5a-828b-a2bdf98a3b6a.tmp not found!
File\Folder C:\WINDOWS\temp\c6e71932-8799-446e-835a-ff40a009601b.tmp not found!
File\Folder C:\WINDOWS\temp\c7bbb630-b7af-4b60-98fd-d69e7abc235b.tmp not found!
File\Folder C:\WINDOWS\temp\ca0a6187-4667-444f-8cf9-752462bba575.tmp not found!
File\Folder C:\WINDOWS\temp\cacbded5-0dfb-4fdb-a305-a0b66c55addb.tmp not found!
File\Folder C:\WINDOWS\temp\cd4c8dbf-b9cb-4b99-b4fe-7c65f027ed8f.tmp not found!
File\Folder C:\WINDOWS\temp\ce58c73e-be02-4f7c-baaf-b2372c3609a8.tmp not found!
File\Folder C:\WINDOWS\temp\cedb4600-cea3-45e1-8438-f32944e989b0.tmp not found!
File\Folder C:\WINDOWS\temp\d66545ae-4639-4250-bb89-22bbb6a3adca.tmp not found!
File\Folder C:\WINDOWS\temp\d6ba5325-8db2-498e-a0c5-fb5cde5914ce.tmp not found!
File\Folder C:\WINDOWS\temp\db97f1e6-eb5f-4752-b880-ef3e68d44683.tmp not found!
File\Folder C:\WINDOWS\temp\e0dadbfa-6540-4d7c-9930-941f8a9543bb.tmp not found!
File\Folder C:\WINDOWS\temp\e19376d3-decb-4ba5-bcf6-3a47c6c40488.tmp not found!
File\Folder C:\WINDOWS\temp\e688d258-c9d7-476a-8700-5780a8b998b2.tmp not found!
File\Folder C:\WINDOWS\temp\effd349a-b532-44a1-bb0a-ba830a7c0407.tmp not found!
File\Folder C:\WINDOWS\temp\f0aa08bc-e687-4c84-a4c9-bbf3d38a8c85.tmp not found!
C:\WINDOWS\temp\f439d23d-0484-4581-b542-5173cf62e033.tmp moved successfully.
C:\WINDOWS\temp\f57269ac-1920-415d-8e6c-2dccfd2b8d14.tmp moved successfully.
C:\WINDOWS\temp\f5ac13aa-31a5-4e66-a9fd-9b2312a012dd.tmp moved successfully.
C:\WINDOWS\temp\f89071ff-32b4-4ecb-a78c-247a8bcaa28a.tmp moved successfully.
C:\WINDOWS\temp\fe1cf306-7ac4-42c8-895a-d8010a1188a8.tmp moved successfully.
C:\WINDOWS\temp\Perflib_Perfdata_3ac.dat moved successfully.
Registry entries deleted on Reboot...
Files\Folders moved on Reboot...
File move failed. C:\Documents and Settings\PRIVEE\Local Settings\Temp\WCESLog.log scheduled to be moved on reboot.
C:\Documents and Settings\PRIVEE\Local Settings\Temporary Internet Files\Content.IE5\BUMA3MCG\index[1].php moved successfully.
C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_001_ moved successfully.
C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_002_ moved successfully.
C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_003_ moved successfully.
C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_MAP_ moved successfully.
C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\urlclassifier3.sqlite moved successfully.
C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\XUL.mfl moved successfully.
C:\WINDOWS\temp\001f7023-04a1-4c82-9fec-89d384f489d0.tmp moved successfully.
C:\WINDOWS\temp\05266539-b73f-4301-a65f-281ff72c85fc.tmp moved successfully.
File\Folder C:\WINDOWS\temp\0b9664de-329c-4aa1-b85d-607160dc7e88.tmp not found!
C:\WINDOWS\temp\205a9ee6-043e-41d1-8899-b3ad1938604d.tmp moved successfully.
C:\WINDOWS\temp\22bafa4f-85f7-4161-8af3-bb46713ddf1b.tmp moved successfully.
C:\WINDOWS\temp\252ca10f-1218-45ad-9995-1335ad9fe920.tmp moved successfully.
C:\WINDOWS\temp\26ca07c5-59a2-4b16-b2f1-2ef847c5b889.tmp moved successfully.
C:\WINDOWS\temp\26eecdf8-d129-4324-8895-f4b583d2ecfc.tmp moved successfully.
C:\WINDOWS\temp\27a4a233-103c-4f33-ad53-12f4218c23c8.tmp moved successfully.
C:\WINDOWS\temp\33f8606d-2748-4349-a269-91ceaa52d549.tmp moved successfully.
C:\WINDOWS\temp\35481d26-62db-4aca-9ded-1311b32f0455.tmp moved successfully.
C:\WINDOWS\temp\36816943-3554-48e7-8569-f367ffcb5cc1.tmp moved successfully.
C:\WINDOWS\temp\41258008-91c5-4090-bcc1-41865a226e4d.tmp moved successfully.
C:\WINDOWS\temp\46b55d79-20a9-4de3-bdfc-c50898519e3b.tmp moved successfully.
C:\WINDOWS\temp\4ad86bee-de12-4ef5-a94e-cdf9ab618e07.tmp moved successfully.
C:\WINDOWS\temp\4b4e61be-1733-4a9f-939e-76f68b01ae6d.tmp moved successfully.
C:\WINDOWS\temp\4d4a64d5-7a0f-41db-9c4f-807d05631974.tmp moved successfully.
C:\WINDOWS\temp\5630689c-d84b-4fba-a5a9-c0c547c2411e.tmp moved successfully.
C:\WINDOWS\temp\574c9f85-e679-4c1b-85b7-86d65a60c98e.tmp moved successfully.
C:\WINDOWS\temp\5792d174-d67d-43e0-bf81-8c23a8e8aef8.tmp moved successfully.
C:\WINDOWS\temp\5c3605b1-d4a6-4567-9e42-b0cbb8e576a8.tmp moved successfully.
C:\WINDOWS\temp\5db42fe9-2660-424f-8e1f-3489bace107e.tmp moved successfully.
C:\WINDOWS\temp\6095d7e2-01d1-4bd1-8ed8-e99d7ae5d2ee.tmp moved successfully.
C:\WINDOWS\temp\62450867-87e4-45a7-9f51-9913df3f8186.tmp moved successfully.
File\Folder C:\WINDOWS\temp\63cbbaed-ffb7-4967-b37a-d0c0ccff8edc.tmp not found!
C:\WINDOWS\temp\6d2f475b-b8c6-48df-8801-2e0af998ac08.tmp moved successfully.
C:\WINDOWS\temp\6e407ba3-ced8-4bae-bc9f-c227be157224.tmp moved successfully.
C:\WINDOWS\temp\6ed92589-b1b0-4c32-b277-c8aab3f8bcad.tmp moved successfully.
C:\WINDOWS\temp\6f3b6004-cc8d-41ff-924f-2919c0971a2e.tmp moved successfully.
C:\WINDOWS\temp\6fe449ff-9b3e-4187-9849-366176292ef4.tmp moved successfully.
C:\WINDOWS\temp\70dce552-1e70-4c72-bece-f10115fa1bbb.tmp moved successfully.
C:\WINDOWS\temp\81287d16-2f21-4ac8-8ee7-0a89049cee1a.tmp moved successfully.
C:\WINDOWS\temp\8956079c-1376-4407-8aab-bbe585bb82e6.tmp moved successfully.
C:\WINDOWS\temp\8b5f9939-1f09-4a1a-bf20-01823f37f343.tmp moved successfully.
C:\WINDOWS\temp\8bc02320-27cb-49df-80c3-380c658c75cd.tmp moved successfully.
C:\WINDOWS\temp\8c0a6119-2af4-4003-8a3f-ee6cc5f1b9ab.tmp moved successfully.
C:\WINDOWS\temp\92eb711f-8282-4c4d-89f9-6b436471aebb.tmp moved successfully.
C:\WINDOWS\temp\9c7dae8a-d9b2-48d6-af46-c9598bc26886.tmp moved successfully.
C:\WINDOWS\temp\9c7e4323-a89d-4296-9e0e-d7210118dde1.tmp moved successfully.
C:\WINDOWS\temp\9f277836-969d-467e-ab5a-1b1a096ddd27.tmp moved successfully.
C:\WINDOWS\temp\9ff5b55b-2252-44b7-9526-a294fdb1bc58.tmp moved successfully.
C:\WINDOWS\temp\b1e26fda-16d5-4d97-b343-5a74b5332c5a.tmp moved successfully.
C:\WINDOWS\temp\b3d20fbc-fc1a-4554-b621-dda2d75868b5.tmp moved successfully.
C:\WINDOWS\temp\b4596c23-5c02-4e20-bd17-a3a3e9b81a75.tmp moved successfully.
C:\WINDOWS\temp\b63d492f-8db4-4af3-8aa3-2bc97e268557.tmp moved successfully.
C:\WINDOWS\temp\b94ef6f9-6b54-4cfc-9098-aba394e4812f.tmp moved successfully.
C:\WINDOWS\temp\bff212f4-3b8e-4d5a-828b-a2bdf98a3b6a.tmp moved successfully.
C:\WINDOWS\temp\c6e71932-8799-446e-835a-ff40a009601b.tmp moved successfully.
C:\WINDOWS\temp\c7bbb630-b7af-4b60-98fd-d69e7abc235b.tmp moved successfully.
C:\WINDOWS\temp\ca0a6187-4667-444f-8cf9-752462bba575.tmp moved successfully.
C:\WINDOWS\temp\cacbded5-0dfb-4fdb-a305-a0b66c55addb.tmp moved successfully.
C:\WINDOWS\temp\cd4c8dbf-b9cb-4b99-b4fe-7c65f027ed8f.tmp moved successfully.
C:\WINDOWS\temp\ce58c73e-be02-4f7c-baaf-b2372c3609a8.tmp moved successfully.
C:\WINDOWS\temp\cedb4600-cea3-45e1-8438-f32944e989b0.tmp moved successfully.
C:\WINDOWS\temp\d66545ae-4639-4250-bb89-22bbb6a3adca.tmp moved successfully.
C:\WINDOWS\temp\d6ba5325-8db2-498e-a0c5-fb5cde5914ce.tmp moved successfully.
C:\WINDOWS\temp\db97f1e6-eb5f-4752-b880-ef3e68d44683.tmp moved successfully.
C:\WINDOWS\temp\e0dadbfa-6540-4d7c-9930-941f8a9543bb.tmp moved successfully.
C:\WINDOWS\temp\e19376d3-decb-4ba5-bcf6-3a47c6c40488.tmp moved successfully.
C:\WINDOWS\temp\e688d258-c9d7-476a-8700-5780a8b998b2.tmp moved successfully.
C:\WINDOWS\temp\effd349a-b532-44a1-bb0a-ba830a7c0407.tmp moved successfully.
C:\WINDOWS\temp\f0aa08bc-e687-4c84-a4c9-bbf3d38a8c85.tmp moved successfully.
C:\WINDOWS\temp\f439d23d-0484-4581-b542-5173cf62e033.tmp moved successfully.
File\Folder C:\WINDOWS\temp\f57269ac-1920-415d-8e6c-2dccfd2b8d14.tmp not found!
File\Folder C:\WINDOWS\temp\f5ac13aa-31a5-4e66-a9fd-9b2312a012dd.tmp not found!
File\Folder C:\WINDOWS\temp\f89071ff-32b4-4ecb-a78c-247a8bcaa28a.tmp not found!
File\Folder C:\WINDOWS\temp\fe1cf306-7ac4-42c8-895a-d8010a1188a8.tmp not found!
File\Folder C:\WINDOWS\temp\Perflib_Perfdata_3ac.dat not found!
Registry entries deleted on Reboot...
j'ajoute que l'ordi a qu'elque difficulte a ouvrir des fichiers
All processes killed
Error: Unable to interpret <PRC - C:\Documents and Settings\PRIVEE\cueuk.exe ()> in the current context!
Error: Unable to interpret <SRV - (Nero BackItUp Scheduler 4.0) -- File not found> in the current context!
Error: Unable to interpret <O4 - HKCU\..\Run: [cueuk] C:\Documents and Settings\PRIVEE\cueuk.exe ()> in the current context!
Error: Unable to interpret <O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)> in the current context!
Error: Unable to interpret <O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07)> in the current context!
Error: Unable to interpret <O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)> in the current context!
Error: Unable to interpret <O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)> in the current context!
Error: Unable to interpret <[2010/03/02 18:36:29 | 000,000,137 | ---- | M] () -- C:\WINDOWS\System32\svchost.bat> in the current context!
Error: Unable to interpret <[2010/03/02 18:16:04 | 000,071,168 | RHS- | M] () -- C:\Documents and Settings\PRIVEE\cueuk.exe> in the current context!
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 1416562 bytes
->Flash cache emptied: 2137 bytes
User: PRIVEE
->Temp folder emptied: 16476547 bytes
->Temporary Internet Files folder emptied: 1264576 bytes
->Java cache emptied: 3206 bytes
->FireFox cache emptied: 75895995 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 3056 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 1240390 bytes
%systemroot%\System32 .tmp files removed: 3072 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 65590 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 34313 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 92,00 mb
OTL by OldTimer - Version 3.1.34.0 log created on 03052010_181258
Files\Folders moved on Reboot...
File move failed. C:\Documents and Settings\PRIVEE\Local Settings\Temp\WCESLog.log scheduled to be moved on reboot.
File\Folder C:\Documents and Settings\PRIVEE\Local Settings\Temporary Internet Files\Content.IE5\BUMA3MCG\index[1].php not found!
File\Folder C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_001_ not found!
File\Folder C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_002_ not found!
File\Folder C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_003_ not found!
File\Folder C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_MAP_ not found!
File\Folder C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\urlclassifier3.sqlite not found!
File\Folder C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\XUL.mfl not found!
File\Folder C:\WINDOWS\temp\001f7023-04a1-4c82-9fec-89d384f489d0.tmp not found!
File\Folder C:\WINDOWS\temp\05266539-b73f-4301-a65f-281ff72c85fc.tmp not found!
File\Folder C:\WINDOWS\temp\0b9664de-329c-4aa1-b85d-607160dc7e88.tmp not found!
File\Folder C:\WINDOWS\temp\205a9ee6-043e-41d1-8899-b3ad1938604d.tmp not found!
File\Folder C:\WINDOWS\temp\22bafa4f-85f7-4161-8af3-bb46713ddf1b.tmp not found!
File\Folder C:\WINDOWS\temp\252ca10f-1218-45ad-9995-1335ad9fe920.tmp not found!
File\Folder C:\WINDOWS\temp\26ca07c5-59a2-4b16-b2f1-2ef847c5b889.tmp not found!
File\Folder C:\WINDOWS\temp\26eecdf8-d129-4324-8895-f4b583d2ecfc.tmp not found!
File\Folder C:\WINDOWS\temp\27a4a233-103c-4f33-ad53-12f4218c23c8.tmp not found!
File\Folder C:\WINDOWS\temp\33f8606d-2748-4349-a269-91ceaa52d549.tmp not found!
File\Folder C:\WINDOWS\temp\35481d26-62db-4aca-9ded-1311b32f0455.tmp not found!
File\Folder C:\WINDOWS\temp\36816943-3554-48e7-8569-f367ffcb5cc1.tmp not found!
File\Folder C:\WINDOWS\temp\41258008-91c5-4090-bcc1-41865a226e4d.tmp not found!
File\Folder C:\WINDOWS\temp\46b55d79-20a9-4de3-bdfc-c50898519e3b.tmp not found!
File\Folder C:\WINDOWS\temp\4ad86bee-de12-4ef5-a94e-cdf9ab618e07.tmp not found!
File\Folder C:\WINDOWS\temp\4b4e61be-1733-4a9f-939e-76f68b01ae6d.tmp not found!
File\Folder C:\WINDOWS\temp\4d4a64d5-7a0f-41db-9c4f-807d05631974.tmp not found!
File\Folder C:\WINDOWS\temp\5630689c-d84b-4fba-a5a9-c0c547c2411e.tmp not found!
File\Folder C:\WINDOWS\temp\574c9f85-e679-4c1b-85b7-86d65a60c98e.tmp not found!
File\Folder C:\WINDOWS\temp\5792d174-d67d-43e0-bf81-8c23a8e8aef8.tmp not found!
File\Folder C:\WINDOWS\temp\5c3605b1-d4a6-4567-9e42-b0cbb8e576a8.tmp not found!
File\Folder C:\WINDOWS\temp\5db42fe9-2660-424f-8e1f-3489bace107e.tmp not found!
File\Folder C:\WINDOWS\temp\6095d7e2-01d1-4bd1-8ed8-e99d7ae5d2ee.tmp not found!
File\Folder C:\WINDOWS\temp\62450867-87e4-45a7-9f51-9913df3f8186.tmp not found!
File\Folder C:\WINDOWS\temp\63cbbaed-ffb7-4967-b37a-d0c0ccff8edc.tmp not found!
File\Folder C:\WINDOWS\temp\6d2f475b-b8c6-48df-8801-2e0af998ac08.tmp not found!
File\Folder C:\WINDOWS\temp\6e407ba3-ced8-4bae-bc9f-c227be157224.tmp not found!
File\Folder C:\WINDOWS\temp\6ed92589-b1b0-4c32-b277-c8aab3f8bcad.tmp not found!
File\Folder C:\WINDOWS\temp\6f3b6004-cc8d-41ff-924f-2919c0971a2e.tmp not found!
File\Folder C:\WINDOWS\temp\6fe449ff-9b3e-4187-9849-366176292ef4.tmp not found!
File\Folder C:\WINDOWS\temp\70dce552-1e70-4c72-bece-f10115fa1bbb.tmp not found!
File\Folder C:\WINDOWS\temp\81287d16-2f21-4ac8-8ee7-0a89049cee1a.tmp not found!
File\Folder C:\WINDOWS\temp\8956079c-1376-4407-8aab-bbe585bb82e6.tmp not found!
File\Folder C:\WINDOWS\temp\8b5f9939-1f09-4a1a-bf20-01823f37f343.tmp not found!
File\Folder C:\WINDOWS\temp\8bc02320-27cb-49df-80c3-380c658c75cd.tmp not found!
File\Folder C:\WINDOWS\temp\8c0a6119-2af4-4003-8a3f-ee6cc5f1b9ab.tmp not found!
File\Folder C:\WINDOWS\temp\92eb711f-8282-4c4d-89f9-6b436471aebb.tmp not found!
File\Folder C:\WINDOWS\temp\9c7dae8a-d9b2-48d6-af46-c9598bc26886.tmp not found!
File\Folder C:\WINDOWS\temp\9c7e4323-a89d-4296-9e0e-d7210118dde1.tmp not found!
File\Folder C:\WINDOWS\temp\9f277836-969d-467e-ab5a-1b1a096ddd27.tmp not found!
File\Folder C:\WINDOWS\temp\9ff5b55b-2252-44b7-9526-a294fdb1bc58.tmp not found!
File\Folder C:\WINDOWS\temp\b1e26fda-16d5-4d97-b343-5a74b5332c5a.tmp not found!
File\Folder C:\WINDOWS\temp\b3d20fbc-fc1a-4554-b621-dda2d75868b5.tmp not found!
File\Folder C:\WINDOWS\temp\b4596c23-5c02-4e20-bd17-a3a3e9b81a75.tmp not found!
File\Folder C:\WINDOWS\temp\b63d492f-8db4-4af3-8aa3-2bc97e268557.tmp not found!
File\Folder C:\WINDOWS\temp\b94ef6f9-6b54-4cfc-9098-aba394e4812f.tmp not found!
File\Folder C:\WINDOWS\temp\bff212f4-3b8e-4d5a-828b-a2bdf98a3b6a.tmp not found!
File\Folder C:\WINDOWS\temp\c6e71932-8799-446e-835a-ff40a009601b.tmp not found!
File\Folder C:\WINDOWS\temp\c7bbb630-b7af-4b60-98fd-d69e7abc235b.tmp not found!
File\Folder C:\WINDOWS\temp\ca0a6187-4667-444f-8cf9-752462bba575.tmp not found!
File\Folder C:\WINDOWS\temp\cacbded5-0dfb-4fdb-a305-a0b66c55addb.tmp not found!
File\Folder C:\WINDOWS\temp\cd4c8dbf-b9cb-4b99-b4fe-7c65f027ed8f.tmp not found!
File\Folder C:\WINDOWS\temp\ce58c73e-be02-4f7c-baaf-b2372c3609a8.tmp not found!
File\Folder C:\WINDOWS\temp\cedb4600-cea3-45e1-8438-f32944e989b0.tmp not found!
File\Folder C:\WINDOWS\temp\d66545ae-4639-4250-bb89-22bbb6a3adca.tmp not found!
File\Folder C:\WINDOWS\temp\d6ba5325-8db2-498e-a0c5-fb5cde5914ce.tmp not found!
File\Folder C:\WINDOWS\temp\db97f1e6-eb5f-4752-b880-ef3e68d44683.tmp not found!
File\Folder C:\WINDOWS\temp\e0dadbfa-6540-4d7c-9930-941f8a9543bb.tmp not found!
File\Folder C:\WINDOWS\temp\e19376d3-decb-4ba5-bcf6-3a47c6c40488.tmp not found!
File\Folder C:\WINDOWS\temp\e688d258-c9d7-476a-8700-5780a8b998b2.tmp not found!
File\Folder C:\WINDOWS\temp\effd349a-b532-44a1-bb0a-ba830a7c0407.tmp not found!
File\Folder C:\WINDOWS\temp\f0aa08bc-e687-4c84-a4c9-bbf3d38a8c85.tmp not found!
C:\WINDOWS\temp\f439d23d-0484-4581-b542-5173cf62e033.tmp moved successfully.
C:\WINDOWS\temp\f57269ac-1920-415d-8e6c-2dccfd2b8d14.tmp moved successfully.
C:\WINDOWS\temp\f5ac13aa-31a5-4e66-a9fd-9b2312a012dd.tmp moved successfully.
C:\WINDOWS\temp\f89071ff-32b4-4ecb-a78c-247a8bcaa28a.tmp moved successfully.
C:\WINDOWS\temp\fe1cf306-7ac4-42c8-895a-d8010a1188a8.tmp moved successfully.
C:\WINDOWS\temp\Perflib_Perfdata_3ac.dat moved successfully.
Registry entries deleted on Reboot...
Files\Folders moved on Reboot...
File move failed. C:\Documents and Settings\PRIVEE\Local Settings\Temp\WCESLog.log scheduled to be moved on reboot.
C:\Documents and Settings\PRIVEE\Local Settings\Temporary Internet Files\Content.IE5\BUMA3MCG\index[1].php moved successfully.
C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_001_ moved successfully.
C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_002_ moved successfully.
C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_003_ moved successfully.
C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_MAP_ moved successfully.
C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\urlclassifier3.sqlite moved successfully.
C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\XUL.mfl moved successfully.
C:\WINDOWS\temp\001f7023-04a1-4c82-9fec-89d384f489d0.tmp moved successfully.
C:\WINDOWS\temp\05266539-b73f-4301-a65f-281ff72c85fc.tmp moved successfully.
File\Folder C:\WINDOWS\temp\0b9664de-329c-4aa1-b85d-607160dc7e88.tmp not found!
C:\WINDOWS\temp\205a9ee6-043e-41d1-8899-b3ad1938604d.tmp moved successfully.
C:\WINDOWS\temp\22bafa4f-85f7-4161-8af3-bb46713ddf1b.tmp moved successfully.
C:\WINDOWS\temp\252ca10f-1218-45ad-9995-1335ad9fe920.tmp moved successfully.
C:\WINDOWS\temp\26ca07c5-59a2-4b16-b2f1-2ef847c5b889.tmp moved successfully.
C:\WINDOWS\temp\26eecdf8-d129-4324-8895-f4b583d2ecfc.tmp moved successfully.
C:\WINDOWS\temp\27a4a233-103c-4f33-ad53-12f4218c23c8.tmp moved successfully.
C:\WINDOWS\temp\33f8606d-2748-4349-a269-91ceaa52d549.tmp moved successfully.
C:\WINDOWS\temp\35481d26-62db-4aca-9ded-1311b32f0455.tmp moved successfully.
C:\WINDOWS\temp\36816943-3554-48e7-8569-f367ffcb5cc1.tmp moved successfully.
C:\WINDOWS\temp\41258008-91c5-4090-bcc1-41865a226e4d.tmp moved successfully.
C:\WINDOWS\temp\46b55d79-20a9-4de3-bdfc-c50898519e3b.tmp moved successfully.
C:\WINDOWS\temp\4ad86bee-de12-4ef5-a94e-cdf9ab618e07.tmp moved successfully.
C:\WINDOWS\temp\4b4e61be-1733-4a9f-939e-76f68b01ae6d.tmp moved successfully.
C:\WINDOWS\temp\4d4a64d5-7a0f-41db-9c4f-807d05631974.tmp moved successfully.
C:\WINDOWS\temp\5630689c-d84b-4fba-a5a9-c0c547c2411e.tmp moved successfully.
C:\WINDOWS\temp\574c9f85-e679-4c1b-85b7-86d65a60c98e.tmp moved successfully.
C:\WINDOWS\temp\5792d174-d67d-43e0-bf81-8c23a8e8aef8.tmp moved successfully.
C:\WINDOWS\temp\5c3605b1-d4a6-4567-9e42-b0cbb8e576a8.tmp moved successfully.
C:\WINDOWS\temp\5db42fe9-2660-424f-8e1f-3489bace107e.tmp moved successfully.
C:\WINDOWS\temp\6095d7e2-01d1-4bd1-8ed8-e99d7ae5d2ee.tmp moved successfully.
C:\WINDOWS\temp\62450867-87e4-45a7-9f51-9913df3f8186.tmp moved successfully.
File\Folder C:\WINDOWS\temp\63cbbaed-ffb7-4967-b37a-d0c0ccff8edc.tmp not found!
C:\WINDOWS\temp\6d2f475b-b8c6-48df-8801-2e0af998ac08.tmp moved successfully.
C:\WINDOWS\temp\6e407ba3-ced8-4bae-bc9f-c227be157224.tmp moved successfully.
C:\WINDOWS\temp\6ed92589-b1b0-4c32-b277-c8aab3f8bcad.tmp moved successfully.
C:\WINDOWS\temp\6f3b6004-cc8d-41ff-924f-2919c0971a2e.tmp moved successfully.
C:\WINDOWS\temp\6fe449ff-9b3e-4187-9849-366176292ef4.tmp moved successfully.
C:\WINDOWS\temp\70dce552-1e70-4c72-bece-f10115fa1bbb.tmp moved successfully.
C:\WINDOWS\temp\81287d16-2f21-4ac8-8ee7-0a89049cee1a.tmp moved successfully.
C:\WINDOWS\temp\8956079c-1376-4407-8aab-bbe585bb82e6.tmp moved successfully.
C:\WINDOWS\temp\8b5f9939-1f09-4a1a-bf20-01823f37f343.tmp moved successfully.
C:\WINDOWS\temp\8bc02320-27cb-49df-80c3-380c658c75cd.tmp moved successfully.
C:\WINDOWS\temp\8c0a6119-2af4-4003-8a3f-ee6cc5f1b9ab.tmp moved successfully.
C:\WINDOWS\temp\92eb711f-8282-4c4d-89f9-6b436471aebb.tmp moved successfully.
C:\WINDOWS\temp\9c7dae8a-d9b2-48d6-af46-c9598bc26886.tmp moved successfully.
C:\WINDOWS\temp\9c7e4323-a89d-4296-9e0e-d7210118dde1.tmp moved successfully.
C:\WINDOWS\temp\9f277836-969d-467e-ab5a-1b1a096ddd27.tmp moved successfully.
C:\WINDOWS\temp\9ff5b55b-2252-44b7-9526-a294fdb1bc58.tmp moved successfully.
C:\WINDOWS\temp\b1e26fda-16d5-4d97-b343-5a74b5332c5a.tmp moved successfully.
C:\WINDOWS\temp\b3d20fbc-fc1a-4554-b621-dda2d75868b5.tmp moved successfully.
C:\WINDOWS\temp\b4596c23-5c02-4e20-bd17-a3a3e9b81a75.tmp moved successfully.
C:\WINDOWS\temp\b63d492f-8db4-4af3-8aa3-2bc97e268557.tmp moved successfully.
C:\WINDOWS\temp\b94ef6f9-6b54-4cfc-9098-aba394e4812f.tmp moved successfully.
C:\WINDOWS\temp\bff212f4-3b8e-4d5a-828b-a2bdf98a3b6a.tmp moved successfully.
C:\WINDOWS\temp\c6e71932-8799-446e-835a-ff40a009601b.tmp moved successfully.
C:\WINDOWS\temp\c7bbb630-b7af-4b60-98fd-d69e7abc235b.tmp moved successfully.
C:\WINDOWS\temp\ca0a6187-4667-444f-8cf9-752462bba575.tmp moved successfully.
C:\WINDOWS\temp\cacbded5-0dfb-4fdb-a305-a0b66c55addb.tmp moved successfully.
C:\WINDOWS\temp\cd4c8dbf-b9cb-4b99-b4fe-7c65f027ed8f.tmp moved successfully.
C:\WINDOWS\temp\ce58c73e-be02-4f7c-baaf-b2372c3609a8.tmp moved successfully.
C:\WINDOWS\temp\cedb4600-cea3-45e1-8438-f32944e989b0.tmp moved successfully.
C:\WINDOWS\temp\d66545ae-4639-4250-bb89-22bbb6a3adca.tmp moved successfully.
C:\WINDOWS\temp\d6ba5325-8db2-498e-a0c5-fb5cde5914ce.tmp moved successfully.
C:\WINDOWS\temp\db97f1e6-eb5f-4752-b880-ef3e68d44683.tmp moved successfully.
C:\WINDOWS\temp\e0dadbfa-6540-4d7c-9930-941f8a9543bb.tmp moved successfully.
C:\WINDOWS\temp\e19376d3-decb-4ba5-bcf6-3a47c6c40488.tmp moved successfully.
C:\WINDOWS\temp\e688d258-c9d7-476a-8700-5780a8b998b2.tmp moved successfully.
C:\WINDOWS\temp\effd349a-b532-44a1-bb0a-ba830a7c0407.tmp moved successfully.
C:\WINDOWS\temp\f0aa08bc-e687-4c84-a4c9-bbf3d38a8c85.tmp moved successfully.
C:\WINDOWS\temp\f439d23d-0484-4581-b542-5173cf62e033.tmp moved successfully.
File\Folder C:\WINDOWS\temp\f57269ac-1920-415d-8e6c-2dccfd2b8d14.tmp not found!
File\Folder C:\WINDOWS\temp\f5ac13aa-31a5-4e66-a9fd-9b2312a012dd.tmp not found!
File\Folder C:\WINDOWS\temp\f89071ff-32b4-4ecb-a78c-247a8bcaa28a.tmp not found!
File\Folder C:\WINDOWS\temp\fe1cf306-7ac4-42c8-895a-d8010a1188a8.tmp not found!
File\Folder C:\WINDOWS\temp\Perflib_Perfdata_3ac.dat not found!
Registry entries deleted on Reboot...
j'ajoute que l'ordi a qu'elque difficulte a ouvrir des fichiers
Mmm...
--> Refais cette procédure :
https://forums.commentcamarche.net/forum/affich-16910428-cueuk-exe#8
--> Refais cette procédure :
https://forums.commentcamarche.net/forum/affich-16910428-cueuk-exe#8
voila
All processes killed
Error: Unable to interpret <PRC - C:\Documents and Settings\PRIVEE\cueuk.exe ()> in the current context!
Error: Unable to interpret <SRV - (Nero BackItUp Scheduler 4.0) -- File not found> in the current context!
Error: Unable to interpret <O4 - HKCU\..\Run: [cueuk] C:\Documents and Settings\PRIVEE\cueuk.exe ()> in the current context!
Error: Unable to interpret <O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)> in the current context!
Error: Unable to interpret <O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07)> in the current context!
Error: Unable to interpret <O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)> in the current context!
Error: Unable to interpret <O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)> in the current context!
Error: Unable to interpret <[2010/03/02 18:36:29 | 000,000,137 | ---- | M] () -- C:\WINDOWS\System32\svchost.bat> in the current context!
Error: Unable to interpret <[2010/03/02 18:16:04 | 000,071,168 | RHS- | M] () -- C:\Documents and Settings\PRIVEE\cueuk.exe> in the current context!
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 163712 bytes
->Flash cache emptied: 0 bytes
User: PRIVEE
->Temp folder emptied: 670927 bytes
->Temporary Internet Files folder emptied: 783810 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 17343695 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 434 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 16384 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 18,00 mb
OTL by OldTimer - Version 3.1.34.0 log created on 03052010_194119
Files\Folders moved on Reboot...
File\Folder C:\Documents and Settings\PRIVEE\Local Settings\Temp\WCESLog.log not found!
C:\Documents and Settings\PRIVEE\Local Settings\Temporary Internet Files\Content.IE5\HHW0S58T\index[1].php moved successfully.
C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_001_ moved successfully.
C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_002_ moved successfully.
C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_003_ moved successfully.
C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_MAP_ moved successfully.
C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\urlclassifier3.sqlite moved successfully.
File\Folder C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\urlclassifier3.sqlite-journal not found!
File\Folder C:\WINDOWS\temp\36f77854-9589-4879-bd0b-fffc6b1a8780.tmp not found!
C:\WINDOWS\temp\b8bc58ff-46ae-4e38-ab0d-2ab713e0065d.tmp moved successfully.
File\Folder C:\WINDOWS\temp\Perflib_Perfdata_6ac.dat not found!
Registry entries deleted on Reboot...
All processes killed
Error: Unable to interpret <PRC - C:\Documents and Settings\PRIVEE\cueuk.exe ()> in the current context!
Error: Unable to interpret <SRV - (Nero BackItUp Scheduler 4.0) -- File not found> in the current context!
Error: Unable to interpret <O4 - HKCU\..\Run: [cueuk] C:\Documents and Settings\PRIVEE\cueuk.exe ()> in the current context!
Error: Unable to interpret <O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)> in the current context!
Error: Unable to interpret <O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07)> in the current context!
Error: Unable to interpret <O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)> in the current context!
Error: Unable to interpret <O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)> in the current context!
Error: Unable to interpret <[2010/03/02 18:36:29 | 000,000,137 | ---- | M] () -- C:\WINDOWS\System32\svchost.bat> in the current context!
Error: Unable to interpret <[2010/03/02 18:16:04 | 000,071,168 | RHS- | M] () -- C:\Documents and Settings\PRIVEE\cueuk.exe> in the current context!
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 163712 bytes
->Flash cache emptied: 0 bytes
User: PRIVEE
->Temp folder emptied: 670927 bytes
->Temporary Internet Files folder emptied: 783810 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 17343695 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 434 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 16384 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 18,00 mb
OTL by OldTimer - Version 3.1.34.0 log created on 03052010_194119
Files\Folders moved on Reboot...
File\Folder C:\Documents and Settings\PRIVEE\Local Settings\Temp\WCESLog.log not found!
C:\Documents and Settings\PRIVEE\Local Settings\Temporary Internet Files\Content.IE5\HHW0S58T\index[1].php moved successfully.
C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_001_ moved successfully.
C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_002_ moved successfully.
C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_003_ moved successfully.
C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_MAP_ moved successfully.
C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\urlclassifier3.sqlite moved successfully.
File\Folder C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\urlclassifier3.sqlite-journal not found!
File\Folder C:\WINDOWS\temp\36f77854-9589-4879-bd0b-fffc6b1a8780.tmp not found!
C:\WINDOWS\temp\b8bc58ff-46ae-4e38-ab0d-2ab713e0065d.tmp moved successfully.
File\Folder C:\WINDOWS\temp\Perflib_Perfdata_6ac.dat not found!
Registry entries deleted on Reboot...
excuse moi mais ce programme cueuk ce relance toujours au demarage je le desactive et il reviens ,maintenant je suis sur un autre ordi je vais le relancer
All processes killed
Error: Unable to interpret <All processes killed> in the current context!
Error: Unable to interpret <Error: Unable to interpret <PRC - C:\Documents and Settings\PRIVEE\cueuk.exe ()> in the current context!> in the current context!
Error: Unable to interpret <Error: Unable to interpret <SRV - (Nero BackItUp Scheduler 4.0) -- File not found> in the current context!> in the current context!
Error: Unable to interpret <Error: Unable to interpret <O4 - HKCU\..\Run: [cueuk] C:\Documents and Settings\PRIVEE\cueuk.exe ()> in the current context!> in the current context!
Error: Unable to interpret <Error: Unable to interpret <O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)> in the current context!> in the current context!
Error: Unable to interpret <Error: Unable to interpret <O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07)> in the current context!> in the current context!
Error: Unable to interpret <Error: Unable to interpret <O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)> in the current context!> in the current context!
Error: Unable to interpret <Error: Unable to interpret <O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)> in the current context!> in the current context!
Error: Unable to interpret <Error: Unable to interpret <[2010/03/02 18:36:29 | 000,000,137 | ---- | M] () -- C:\WINDOWS\System32\svchost.bat> in the current context!> in the current context!
Error: Unable to interpret <Error: Unable to interpret <[2010/03/02 18:16:04 | 000,071,168 | RHS- | M] () -- C:\Documents and Settings\PRIVEE\cueuk.exe> in the current context!> in the current context!
Error: Unable to interpret <========== COMMANDS ==========> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <[EMPTYTEMP]> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <User: All Users> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <User: Default User> in the current context!
Error: Unable to interpret <->Temp folder emptied: 0 bytes> in the current context!
Error: Unable to interpret <->Temporary Internet Files folder emptied: 0 bytes> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <User: LocalService> in the current context!
Error: Unable to interpret <->Temp folder emptied: 0 bytes> in the current context!
Error: Unable to interpret <->Temporary Internet Files folder emptied: 33170 bytes> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <User: NetworkService> in the current context!
Error: Unable to interpret <->Temp folder emptied: 0 bytes> in the current context!
Error: Unable to interpret <->Temporary Internet Files folder emptied: 163712 bytes> in the current context!
Error: Unable to interpret <->Flash cache emptied: 0 bytes> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <User: PRIVEE> in the current context!
Error: Unable to interpret <->Temp folder emptied: 670927 bytes> in the current context!
Error: Unable to interpret <->Temporary Internet Files folder emptied: 783810 bytes> in the current context!
Error: Unable to interpret <->Java cache emptied: 0 bytes> in the current context!
Error: Unable to interpret <->FireFox cache emptied: 17343695 bytes> in the current context!
Error: Unable to interpret <->Google Chrome cache emptied: 0 bytes> in the current context!
Error: Unable to interpret <->Flash cache emptied: 434 bytes> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <%systemdrive% .tmp files removed: 0 bytes> in the current context!
Error: Unable to interpret <%systemroot% .tmp files removed: 0 bytes> in the current context!
Error: Unable to interpret <%systemroot%\System32 .tmp files removed: 0 bytes> in the current context!
Error: Unable to interpret <%systemroot%\System32\dllcache .tmp files removed: 0 bytes> in the current context!
Error: Unable to interpret <%systemroot%\System32\drivers .tmp files removed: 0 bytes> in the current context!
Error: Unable to interpret <Windows Temp folder emptied: 16384 bytes> in the current context!
Error: Unable to interpret <%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes> in the current context!
Error: Unable to interpret <%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes> in the current context!
Error: Unable to interpret <RecycleBin emptied: 0 bytes> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <Total Files Cleaned = 18,00 mb> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <OTL by OldTimer - Version 3.1.34.0 log created on 03052010_194119> in the current context!
Error: Unable to interpret <Files\Folders moved on Reboot...> in the current context!
Error: Unable to interpret <File\Folder C:\Documents and Settings\PRIVEE\Local Settings\Temp\WCESLog.log not found!> in the current context!
Error: Unable to interpret <C:\Documents and Settings\PRIVEE\Local Settings\Temporary Internet Files\Content.IE5\HHW0S58T\index[1].php moved successfully.> in the current context!
Error: Unable to interpret <C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_001_ moved successfully.> in the current context!
Error: Unable to interpret <C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_002_ moved successfully.> in the current context!
Error: Unable to interpret <C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_003_ moved successfully.> in the current context!
Error: Unable to interpret <C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_MAP_ moved successfully.> in the current context!
Error: Unable to interpret <C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\urlclassifier3.sqlite moved successfully.> in the current context!
Error: Unable to interpret <File\Folder C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\urlclassifier3.sqlite-journal not found!> in the current context!
Error: Unable to interpret <File\Folder C:\WINDOWS\temp\36f77854-9589-4879-bd0b-fffc6b1a8780.tmp not found!> in the current context!
Error: Unable to interpret <C:\WINDOWS\temp\b8bc58ff-46ae-4e38-ab0d-2ab713e0065d.tmp moved successfully.> in the current context!
Error: Unable to interpret <File\Folder C:\WINDOWS\temp\Perflib_Perfdata_6ac.dat not found!> in the current context!
Error: Unable to interpret <Registry entries deleted on Reboot...> in the current context!
OTL by OldTimer - Version 3.1.34.0 log created on 03052010_210854
Files\Folders moved on Reboot...
Registry entries deleted on Reboot...
c'est la meme chose il me semble
Error: Unable to interpret <All processes killed> in the current context!
Error: Unable to interpret <Error: Unable to interpret <PRC - C:\Documents and Settings\PRIVEE\cueuk.exe ()> in the current context!> in the current context!
Error: Unable to interpret <Error: Unable to interpret <SRV - (Nero BackItUp Scheduler 4.0) -- File not found> in the current context!> in the current context!
Error: Unable to interpret <Error: Unable to interpret <O4 - HKCU\..\Run: [cueuk] C:\Documents and Settings\PRIVEE\cueuk.exe ()> in the current context!> in the current context!
Error: Unable to interpret <Error: Unable to interpret <O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)> in the current context!> in the current context!
Error: Unable to interpret <Error: Unable to interpret <O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07)> in the current context!> in the current context!
Error: Unable to interpret <Error: Unable to interpret <O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)> in the current context!> in the current context!
Error: Unable to interpret <Error: Unable to interpret <O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)> in the current context!> in the current context!
Error: Unable to interpret <Error: Unable to interpret <[2010/03/02 18:36:29 | 000,000,137 | ---- | M] () -- C:\WINDOWS\System32\svchost.bat> in the current context!> in the current context!
Error: Unable to interpret <Error: Unable to interpret <[2010/03/02 18:16:04 | 000,071,168 | RHS- | M] () -- C:\Documents and Settings\PRIVEE\cueuk.exe> in the current context!> in the current context!
Error: Unable to interpret <========== COMMANDS ==========> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <[EMPTYTEMP]> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <User: All Users> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <User: Default User> in the current context!
Error: Unable to interpret <->Temp folder emptied: 0 bytes> in the current context!
Error: Unable to interpret <->Temporary Internet Files folder emptied: 0 bytes> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <User: LocalService> in the current context!
Error: Unable to interpret <->Temp folder emptied: 0 bytes> in the current context!
Error: Unable to interpret <->Temporary Internet Files folder emptied: 33170 bytes> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <User: NetworkService> in the current context!
Error: Unable to interpret <->Temp folder emptied: 0 bytes> in the current context!
Error: Unable to interpret <->Temporary Internet Files folder emptied: 163712 bytes> in the current context!
Error: Unable to interpret <->Flash cache emptied: 0 bytes> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <User: PRIVEE> in the current context!
Error: Unable to interpret <->Temp folder emptied: 670927 bytes> in the current context!
Error: Unable to interpret <->Temporary Internet Files folder emptied: 783810 bytes> in the current context!
Error: Unable to interpret <->Java cache emptied: 0 bytes> in the current context!
Error: Unable to interpret <->FireFox cache emptied: 17343695 bytes> in the current context!
Error: Unable to interpret <->Google Chrome cache emptied: 0 bytes> in the current context!
Error: Unable to interpret <->Flash cache emptied: 434 bytes> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <%systemdrive% .tmp files removed: 0 bytes> in the current context!
Error: Unable to interpret <%systemroot% .tmp files removed: 0 bytes> in the current context!
Error: Unable to interpret <%systemroot%\System32 .tmp files removed: 0 bytes> in the current context!
Error: Unable to interpret <%systemroot%\System32\dllcache .tmp files removed: 0 bytes> in the current context!
Error: Unable to interpret <%systemroot%\System32\drivers .tmp files removed: 0 bytes> in the current context!
Error: Unable to interpret <Windows Temp folder emptied: 16384 bytes> in the current context!
Error: Unable to interpret <%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes> in the current context!
Error: Unable to interpret <%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes> in the current context!
Error: Unable to interpret <RecycleBin emptied: 0 bytes> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <Total Files Cleaned = 18,00 mb> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <OTL by OldTimer - Version 3.1.34.0 log created on 03052010_194119> in the current context!
Error: Unable to interpret <Files\Folders moved on Reboot...> in the current context!
Error: Unable to interpret <File\Folder C:\Documents and Settings\PRIVEE\Local Settings\Temp\WCESLog.log not found!> in the current context!
Error: Unable to interpret <C:\Documents and Settings\PRIVEE\Local Settings\Temporary Internet Files\Content.IE5\HHW0S58T\index[1].php moved successfully.> in the current context!
Error: Unable to interpret <C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_001_ moved successfully.> in the current context!
Error: Unable to interpret <C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_002_ moved successfully.> in the current context!
Error: Unable to interpret <C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_003_ moved successfully.> in the current context!
Error: Unable to interpret <C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\Cache\_CACHE_MAP_ moved successfully.> in the current context!
Error: Unable to interpret <C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\urlclassifier3.sqlite moved successfully.> in the current context!
Error: Unable to interpret <File\Folder C:\Documents and Settings\PRIVEE\Local Settings\Application Data\Mozilla\Firefox\Profiles\zn78c5n1.default\urlclassifier3.sqlite-journal not found!> in the current context!
Error: Unable to interpret <File\Folder C:\WINDOWS\temp\36f77854-9589-4879-bd0b-fffc6b1a8780.tmp not found!> in the current context!
Error: Unable to interpret <C:\WINDOWS\temp\b8bc58ff-46ae-4e38-ab0d-2ab713e0065d.tmp moved successfully.> in the current context!
Error: Unable to interpret <File\Folder C:\WINDOWS\temp\Perflib_Perfdata_6ac.dat not found!> in the current context!
Error: Unable to interpret <Registry entries deleted on Reboot...> in the current context!
OTL by OldTimer - Version 3.1.34.0 log created on 03052010_210854
Files\Folders moved on Reboot...
Registry entries deleted on Reboot...
c'est la meme chose il me semble
---> Télécharge Malwarebytes' Anti-Malware (MBAM) sur ton Bureau.
---> Double-clique sur le fichier téléchargé pour lancer le processus d'installation.
---> Dans l'onglet Mise à jour, clique sur le bouton Recherche de mise à jour : si le pare-feu demande l'autorisation à MBAM de se connecter à Internet, accepte.
---> Une fois la mise à jour terminée, rends-toi dans l'onglet Recherche.
---> Sélectionne Exécuter un examen rapide.
---> Clique sur Rechercher. L'analyse démarre.
A la fin de l'analyse, un message s'affiche :
L'examen s'est terminé normalement. Cliquez sur 'Afficher les résultats' pour afficher tous les objets trouvés.
---> Clique sur OK pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.
---> Ferme tes navigateurs.
Si des malwares ont été détectés, clique sur Afficher les résultats.
---> Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre infectés et en mettre une copie dans la quarantaine.
---> MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Copie-colle ce rapport dans ta prochaine réponse.
---> Double-clique sur le fichier téléchargé pour lancer le processus d'installation.
---> Dans l'onglet Mise à jour, clique sur le bouton Recherche de mise à jour : si le pare-feu demande l'autorisation à MBAM de se connecter à Internet, accepte.
---> Une fois la mise à jour terminée, rends-toi dans l'onglet Recherche.
---> Sélectionne Exécuter un examen rapide.
---> Clique sur Rechercher. L'analyse démarre.
A la fin de l'analyse, un message s'affiche :
L'examen s'est terminé normalement. Cliquez sur 'Afficher les résultats' pour afficher tous les objets trouvés.
---> Clique sur OK pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.
---> Ferme tes navigateurs.
Si des malwares ont été détectés, clique sur Afficher les résultats.
---> Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre infectés et en mettre une copie dans la quarantaine.
---> MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Copie-colle ce rapport dans ta prochaine réponse.