Pourriez vous verifier mon pc
Résolu
latchatchapaty
Messages postés
541
Date d'inscription
Statut
Membre
Dernière intervention
-
latchatchapaty Messages postés 541 Date d'inscription Statut Membre Dernière intervention -
latchatchapaty Messages postés 541 Date d'inscription Statut Membre Dernière intervention -
Bonjour,
pourriez vous me dire ce que je dois faire pour que vous puissiez verifier mon pc
je crois avoir quelques saletes car j'ai netoyer mon disque dur mais ce n'est pas terrible
d'avance merci
pourriez vous me dire ce que je dois faire pour que vous puissiez verifier mon pc
je crois avoir quelques saletes car j'ai netoyer mon disque dur mais ce n'est pas terrible
d'avance merci
A voir également:
- Pourriez vous verifier mon pc
- Mon pc est lent - Guide
- Reinitialiser pc - Guide
- Test performance pc - Guide
- Plus de son sur mon pc - Guide
- Downloader for pc - Télécharger - Téléchargement & Transfert
93 réponses
ATTENTION !!! : Script personnalisé pour cette machine uniquement , ne pas reproduire !!
si tu as XP => double clique
si tu as Vista ou windows 7 => clic droit "executer en tant que...."
sur OTL.exe pour le lancer.
▶Copie la liste qui se trouve en gras ci-dessous,
▶ colle-la dans la zone sous "Personnalisation" :
:processes
explorer.exe
iexplore.exe
firefox.exe
msnmsgr.exe
Teatimer.exe
upnpuiwow.exe
D.tmp
Rundll32.exe
netui032.exe
msrle3232.exe
:Services
Messenger32
:OTL
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = E3 AE A4 00 1E 78 18 4B 80 F1 7C 0C 62 B1 62 35 [binary data]
IE - HKCU\..\URLSearchHook: {05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {d1a1c8f1-e3d9-48df-802f-20201061ef61} - C:\Program Files\Messenger_Plus_Live_Belgium\prxtbMes0.dll (Conduit Ltd.)
O2 - BHO: (no name) - {00A4AEE3-781E-4B18-80F1-7C0C62B16235} - C:\WINDOWS\system32\atl32.dll (Borland Software Corporation)
O2 - BHO: (CescrtHlpr Object) - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.19.19\bh\BabylonToolbar.dll (Babylon BHO)
O2 - BHO: (Messenger Plus Live Belgium Toolbar) - {d1a1c8f1-e3d9-48df-802f-20201061ef61} - C:\Program Files\Messenger_Plus_Live_Belgium\prxtbMes0.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (no name) - {05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarTlbr.dll (Babylon Ltd.)
O3 - HKLM\..\Toolbar: (no name) - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Messenger Plus Live Belgium Toolbar) - {d1a1c8f1-e3d9-48df-802f-20201061ef61} - C:\Program Files\Messenger_Plus_Live_Belgium\prxtbMes0.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {BC4FFE41-DE9F-46FA-B455-AAD49B9F9938} - No CLSID value found.
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (Messenger Plus Live Belgium Toolbar) - {D1A1C8F1-E3D9-48DF-802F-20201061EF61} - C:\Program Files\Messenger_Plus_Live_Belgium\prxtbMes0.dll (Conduit Ltd.)
O4 - HKLM\..\Run: [BabylonToolbar] C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarsrv.exe (Babylon Ltd.) => Babylon Ltd®Babylon Toolbar
O4 - HKLM\..\Run: [Cmaudio] File not found
O4 - HKLM\..\Run: [NPSStartup] File not found
O4 - HKLM\..\Run: [upnpuiwow.exe] C:\WINDOWS\upnpuiwow.exe ()
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited) => Safer Net Working®Spybot S&D
O16 - DPF: {32C3FEAE-0877-4767-8C20-62A5829A0945} http://static.ak.facebook.com/fbplugin/win32/axfbootloader.cab?1271605607984 (Reg Error: Key error.)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
[2011/04/07 21:28:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\latchatchapaty\Application Data\BabylonToolbar
[2011/04/05 13:46:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\191459548
[2011/04/05 13:41:38 | 000,264,192 | ---- | C] (Borland Software Corporation) -- C:\WINDOWS\System32\msidntld32.dll
[2011/04/05 13:41:20 | 000,417,280 | ---- | C] (Borland Software Corporation) -- C:\WINDOWS\System32\atl32.dll
[2011/04/03 19:32:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\latchatchapaty\Application Data\ML
[2011/03/31 13:28:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\35A8249A185D243CAC8D468C9A8EED1D
[2011/04/07 22:08:22 | 000,520,704 | -HS- | M] () -- C:\WINDOWS\kbdswwow.exe
[2011/04/07 18:59:45 | 000,520,704 | -HS- | M] () -- C:\WINDOWS\ncxpntwow.exe
[2011/04/07 10:39:16 | 002,951,802 | ---- | M] (InstallShield Software Corporation) -- C:\Documents and Settings\latchatchapaty\Mes documents\easycleaner.exe
[2011/04/07 09:06:01 | 000,520,704 | -HS- | M] () -- C:\WINDOWS\offfiltwow.exe
[2011/04/06 18:04:20 | 000,520,704 | -HS- | M] () -- C:\WINDOWS\wstdecodwow.exe
[2011/04/05 13:43:14 | 000,203,776 | -HS- | M] () -- C:\WINDOWS\System32\unrar.exe
[2011/04/05 13:41:40 | 000,000,097 | ---- | M] () -- C:\WINDOWS\System32\1851847220
[2011/04/05 13:41:38 | 000,264,192 | ---- | M] (Borland Software Corporation) -- C:\WINDOWS\System32\msidntld32.dll
[2011/04/05 13:41:26 | 000,193,024 | ---- | M] () -- C:\WINDOWS\System32\msidntld32.exe
[2011/04/05 13:41:21 | 000,417,280 | ---- | M] (Borland Software Corporation) -- C:\WINDOWS\System32\atl32.dll
[2011/04/05 13:41:18 | 001,410,560 | ---- | M] () -- C:\WINDOWS\System32\netui032.exe
[2011/04/05 13:41:18 | 001,410,560 | ---- | M] () -- C:\WINDOWS\System32\msrle3232.exe
:Reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=-
"IMJPMIG8.1"=-
"MSPY2002"=-
"NeroFilterCheck"=-
"PHIME2002A"=-
"PHIME2002ASync"=-
"RemoteControl"=-
"SunJavaUpdateSched"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"=""
:Files
C:\WINDOWS\upnpuiwow.exe
C:\WINDOWS\system32\D.tmp
C:\WINDOWS\system32\netui032.exe
C:\WINDOWS\system32\msrle3232.exe
C:\Program Files\Spybot - Search & Destroy
C:\Program Files\BabylonToolbar
C:\WINDOWS\system32\msidntld32.dll
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Multi Virus Cleaner 2011
C:\Documents and Settings\All Users\Application Data\hpe1A.dll
C:\WINDOWS\System32\GnuHashes.ini
C:\WINDOWS\System32\1151251731
C:\Documents and Settings\latchatchapaty\Mes documents\malware.exe
C:\WINDOWS\System32\msimsg32.exe
@Alternate Data Stream - 104 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D1B5B4F1
:commands
[emptytemp]
[start explorer]
[reboot]
▶ Clique sur "Correction" pour lancer la suppression.
▶ Poste le rapport qui logiquement s'ouvrira tout seul en fin de travail appres le redemarrage.
si tu as XP => double clique
si tu as Vista ou windows 7 => clic droit "executer en tant que...."
sur OTL.exe pour le lancer.
▶Copie la liste qui se trouve en gras ci-dessous,
▶ colle-la dans la zone sous "Personnalisation" :
:processes
explorer.exe
iexplore.exe
firefox.exe
msnmsgr.exe
Teatimer.exe
upnpuiwow.exe
D.tmp
Rundll32.exe
netui032.exe
msrle3232.exe
:Services
Messenger32
:OTL
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = E3 AE A4 00 1E 78 18 4B 80 F1 7C 0C 62 B1 62 35 [binary data]
IE - HKCU\..\URLSearchHook: {05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {d1a1c8f1-e3d9-48df-802f-20201061ef61} - C:\Program Files\Messenger_Plus_Live_Belgium\prxtbMes0.dll (Conduit Ltd.)
O2 - BHO: (no name) - {00A4AEE3-781E-4B18-80F1-7C0C62B16235} - C:\WINDOWS\system32\atl32.dll (Borland Software Corporation)
O2 - BHO: (CescrtHlpr Object) - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.19.19\bh\BabylonToolbar.dll (Babylon BHO)
O2 - BHO: (Messenger Plus Live Belgium Toolbar) - {d1a1c8f1-e3d9-48df-802f-20201061ef61} - C:\Program Files\Messenger_Plus_Live_Belgium\prxtbMes0.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (no name) - {05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarTlbr.dll (Babylon Ltd.)
O3 - HKLM\..\Toolbar: (no name) - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Messenger Plus Live Belgium Toolbar) - {d1a1c8f1-e3d9-48df-802f-20201061ef61} - C:\Program Files\Messenger_Plus_Live_Belgium\prxtbMes0.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {BC4FFE41-DE9F-46FA-B455-AAD49B9F9938} - No CLSID value found.
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (Messenger Plus Live Belgium Toolbar) - {D1A1C8F1-E3D9-48DF-802F-20201061EF61} - C:\Program Files\Messenger_Plus_Live_Belgium\prxtbMes0.dll (Conduit Ltd.)
O4 - HKLM\..\Run: [BabylonToolbar] C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarsrv.exe (Babylon Ltd.) => Babylon Ltd®Babylon Toolbar
O4 - HKLM\..\Run: [Cmaudio] File not found
O4 - HKLM\..\Run: [NPSStartup] File not found
O4 - HKLM\..\Run: [upnpuiwow.exe] C:\WINDOWS\upnpuiwow.exe ()
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited) => Safer Net Working®Spybot S&D
O16 - DPF: {32C3FEAE-0877-4767-8C20-62A5829A0945} http://static.ak.facebook.com/fbplugin/win32/axfbootloader.cab?1271605607984 (Reg Error: Key error.)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
[2011/04/07 21:28:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\latchatchapaty\Application Data\BabylonToolbar
[2011/04/05 13:46:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\191459548
[2011/04/05 13:41:38 | 000,264,192 | ---- | C] (Borland Software Corporation) -- C:\WINDOWS\System32\msidntld32.dll
[2011/04/05 13:41:20 | 000,417,280 | ---- | C] (Borland Software Corporation) -- C:\WINDOWS\System32\atl32.dll
[2011/04/03 19:32:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\latchatchapaty\Application Data\ML
[2011/03/31 13:28:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\35A8249A185D243CAC8D468C9A8EED1D
[2011/04/07 22:08:22 | 000,520,704 | -HS- | M] () -- C:\WINDOWS\kbdswwow.exe
[2011/04/07 18:59:45 | 000,520,704 | -HS- | M] () -- C:\WINDOWS\ncxpntwow.exe
[2011/04/07 10:39:16 | 002,951,802 | ---- | M] (InstallShield Software Corporation) -- C:\Documents and Settings\latchatchapaty\Mes documents\easycleaner.exe
[2011/04/07 09:06:01 | 000,520,704 | -HS- | M] () -- C:\WINDOWS\offfiltwow.exe
[2011/04/06 18:04:20 | 000,520,704 | -HS- | M] () -- C:\WINDOWS\wstdecodwow.exe
[2011/04/05 13:43:14 | 000,203,776 | -HS- | M] () -- C:\WINDOWS\System32\unrar.exe
[2011/04/05 13:41:40 | 000,000,097 | ---- | M] () -- C:\WINDOWS\System32\1851847220
[2011/04/05 13:41:38 | 000,264,192 | ---- | M] (Borland Software Corporation) -- C:\WINDOWS\System32\msidntld32.dll
[2011/04/05 13:41:26 | 000,193,024 | ---- | M] () -- C:\WINDOWS\System32\msidntld32.exe
[2011/04/05 13:41:21 | 000,417,280 | ---- | M] (Borland Software Corporation) -- C:\WINDOWS\System32\atl32.dll
[2011/04/05 13:41:18 | 001,410,560 | ---- | M] () -- C:\WINDOWS\System32\netui032.exe
[2011/04/05 13:41:18 | 001,410,560 | ---- | M] () -- C:\WINDOWS\System32\msrle3232.exe
:Reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=-
"IMJPMIG8.1"=-
"MSPY2002"=-
"NeroFilterCheck"=-
"PHIME2002A"=-
"PHIME2002ASync"=-
"RemoteControl"=-
"SunJavaUpdateSched"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"=""
:Files
C:\WINDOWS\upnpuiwow.exe
C:\WINDOWS\system32\D.tmp
C:\WINDOWS\system32\netui032.exe
C:\WINDOWS\system32\msrle3232.exe
C:\Program Files\Spybot - Search & Destroy
C:\Program Files\BabylonToolbar
C:\WINDOWS\system32\msidntld32.dll
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Multi Virus Cleaner 2011
C:\Documents and Settings\All Users\Application Data\hpe1A.dll
C:\WINDOWS\System32\GnuHashes.ini
C:\WINDOWS\System32\1151251731
C:\Documents and Settings\latchatchapaty\Mes documents\malware.exe
C:\WINDOWS\System32\msimsg32.exe
@Alternate Data Stream - 104 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D1B5B4F1
:commands
[emptytemp]
[start explorer]
[reboot]
▶ Clique sur "Correction" pour lancer la suppression.
▶ Poste le rapport qui logiquement s'ouvrira tout seul en fin de travail appres le redemarrage.
All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
Process iexplore.exe killed successfully!
No active process named firefox.exe was found!
Process msnmsgr.exe killed successfully!
No active process named Teatimer.exe was found!
Unable to kill active process upnpuiwow.exe!
No active process named D.tmp was found!
No active process named Rundll32.exe was found!
No active process named netui032.exe was found!
No active process named msrle3232.exe was found!
========== SERVICES/DRIVERS ==========
Service Messenger32 stopped successfully!
Service Messenger32 deleted successfully!
========== OTL ==========
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\XMLHTTP_UUID_Default| /E : value set successfully!
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\ not found.
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{d1a1c8f1-e3d9-48df-802f-20201061ef61} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d1a1c8f1-e3d9-48df-802f-20201061ef61}\ deleted successfully.
C:\Program Files\Messenger_Plus_Live_Belgium\prxtbMes0.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00A4AEE3-781E-4B18-80F1-7C0C62B16235}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00A4AEE3-781E-4B18-80F1-7C0C62B16235}\ deleted successfully.
C:\WINDOWS\system32\atl32.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2EECD738-5844-4a99-B4B6-146BF802613B}\ deleted successfully.
C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.19.19\bh\BabylonToolbar.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d1a1c8f1-e3d9-48df-802f-20201061ef61}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d1a1c8f1-e3d9-48df-802f-20201061ef61}\ not found.
File C:\Program Files\Messenger_Plus_Live_Belgium\prxtbMes0.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{98889811-442D-49dd-99D7-DC866BE87DBC} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{98889811-442D-49dd-99D7-DC866BE87DBC}\ deleted successfully.
C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarTlbr.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BC4FFE41-DE9F-46fa-B455-AAD49B9F9938}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{d1a1c8f1-e3d9-48df-802f-20201061ef61} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d1a1c8f1-e3d9-48df-802f-20201061ef61}\ not found.
File C:\Program Files\Messenger_Plus_Live_Belgium\prxtbMes0.dll not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\\{BC4FFE41-DE9F-46FA-B455-AAD49B9F9938} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BC4FFE41-DE9F-46FA-B455-AAD49B9F9938}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\\{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D1A1C8F1-E3D9-48DF-802F-20201061EF61} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D1A1C8F1-E3D9-48DF-802F-20201061EF61}\ not found.
File C:\Program Files\Messenger_Plus_Live_Belgium\prxtbMes0.dll not found.
Registry key HKEY_LOCAL_MACHINE\\Software\Microsoft\Windows\CurrentVersion\Run not found.
C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarsrv.exe moved successfully.
Registry key HKEY_LOCAL_MACHINE\\Software\Microsoft\Windows\CurrentVersion\Run not found.
Registry key HKEY_LOCAL_MACHINE\\Software\Microsoft\Windows\CurrentVersion\Run not found.
Registry key HKEY_LOCAL_MACHINE\\Software\Microsoft\Windows\CurrentVersion\Run not found.
C:\WINDOWS\upnpuiwow.exe moved successfully.
Registry key HKEY_CURRENT_USER\\Software\Microsoft\Windows\CurrentVersion\Run not found.
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe moved successfully.
Starting removal of ActiveX control {32C3FEAE-0877-4767-8C20-62A5829A0945}
C:\WINDOWS\Downloaded Program Files\axfbootloader.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{32C3FEAE-0877-4767-8C20-62A5829A0945}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32C3FEAE-0877-4767-8C20-62A5829A0945}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{32C3FEAE-0877-4767-8C20-62A5829A0945}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{32C3FEAE-0877-4767-8C20-62A5829A0945}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32C3FEAE-0877-4767-8C20-62A5829A0945}\ not found.
Starting removal of ActiveX control {7530BFB8-7293-4D34-9923-61A11451AFC5}
C:\WINDOWS\Downloaded Program Files\OnlineScanner.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{7530BFB8-7293-4D34-9923-61A11451AFC5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7530BFB8-7293-4D34-9923-61A11451AFC5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7530BFB8-7293-4D34-9923-61A11451AFC5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7530BFB8-7293-4D34-9923-61A11451AFC5}\ not found.
Starting removal of ActiveX control {8AD9C840-044E-11D1-B3E9-00805F499D93}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {E2883E8F-472F-4FB0-9522-AC9BF37916A7}
C:\WINDOWS\Downloaded Program Files\gp.inf not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
C:\Documents and Settings\latchatchapaty\Application Data\BabylonToolbar\BabylonToolbar folder moved successfully.
C:\WINDOWS\System32\191459548 folder moved successfully.
C:\WINDOWS\system32\msidntld32.dll moved successfully.
File C:\WINDOWS\System32\atl32.dll not found.
C:\Documents and Settings\latchatchapaty\Application Data\ML\MLNetFilter folder moved successfully.
C:\Documents and Settings\latchatchapaty\Application Data\ML folder moved successfully.
C:\WINDOWS\System32\35A8249A185D243CAC8D468C9A8EED1D\conf\templates folder moved successfully.
C:\WINDOWS\System32\35A8249A185D243CAC8D468C9A8EED1D\conf\names folder moved successfully.
C:\WINDOWS\System32\35A8249A185D243CAC8D468C9A8EED1D\conf folder moved successfully.
C:\WINDOWS\System32\35A8249A185D243CAC8D468C9A8EED1D folder moved successfully.
C:\WINDOWS\kbdswwow.exe moved successfully.
C:\WINDOWS\ncxpntwow.exe moved successfully.
C:\Documents and Settings\latchatchapaty\Mes documents\easycleaner.exe moved successfully.
C:\WINDOWS\offfiltwow.exe moved successfully.
C:\WINDOWS\wstdecodwow.exe moved successfully.
C:\WINDOWS\system32\unrar.exe moved successfully.
C:\WINDOWS\system32\1851847220 moved successfully.
File C:\WINDOWS\System32\msidntld32.dll not found.
C:\WINDOWS\system32\msidntld32.exe moved successfully.
File C:\WINDOWS\System32\atl32.dll not found.
C:\WINDOWS\system32\netui032.exe moved successfully.
C:\WINDOWS\system32\msrle3232.exe moved successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe Reader Speed Launcher deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\IMJPMIG8.1 not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\MSPY2002 not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\NeroFilterCheck not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\PHIME2002A not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\PHIME2002ASync not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\RemoteControl not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\"AppInit_DLLS"|"" /E : value set successfully!
========== FILES ==========
File\Folder C:\WINDOWS\upnpuiwow.exe not found.
C:\WINDOWS\system32\D.tmp moved successfully.
File\Folder C:\WINDOWS\system32\netui032.exe not found.
File\Folder C:\WINDOWS\system32\msrle3232.exe not found.
C:\Program Files\Spybot - Search & Destroy folder moved successfully.
C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.19.19\bh folder moved successfully.
C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.19.19 folder moved successfully.
C:\Program Files\BabylonToolbar\BabylonToolbar folder moved successfully.
C:\Program Files\BabylonToolbar folder moved successfully.
File\Folder C:\WINDOWS\system32\msidntld32.dll not found.
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Snapshots2 folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Snapshots folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Logs folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Excludes folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Backups folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy folder moved successfully.
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Multi Virus Cleaner 2011 folder moved successfully.
C:\Documents and Settings\All Users\Application Data\hpe1A.dll moved successfully.
C:\WINDOWS\System32\GnuHashes.ini moved successfully.
C:\WINDOWS\System32\1151251731 moved successfully.
C:\Documents and Settings\latchatchapaty\Mes documents\malware.exe moved successfully.
C:\WINDOWS\System32\msimsg32.exe moved successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:D1B5B4F1 deleted successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: client
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 2043225 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: latchatchapaty
->Temp folder emptied: 13298148 bytes
->Temporary Internet Files folder emptied: 63904135 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 15374 bytes
User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 7106938 bytes
User: NetworkService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 92734 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 4619776 bytes
%systemroot%\System32\dllcache .tmp files removed: 1099264 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 255 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 40804200 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 127,00 mb
OTL by OldTimer - Version 3.2.22.3 log created on 04152011_202501
Files\Folders moved on Reboot...
Registry entries deleted on Reboot...
voila le rapport
========== PROCESSES ==========
No active process named explorer.exe was found!
Process iexplore.exe killed successfully!
No active process named firefox.exe was found!
Process msnmsgr.exe killed successfully!
No active process named Teatimer.exe was found!
Unable to kill active process upnpuiwow.exe!
No active process named D.tmp was found!
No active process named Rundll32.exe was found!
No active process named netui032.exe was found!
No active process named msrle3232.exe was found!
========== SERVICES/DRIVERS ==========
Service Messenger32 stopped successfully!
Service Messenger32 deleted successfully!
========== OTL ==========
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\XMLHTTP_UUID_Default| /E : value set successfully!
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\ not found.
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{d1a1c8f1-e3d9-48df-802f-20201061ef61} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d1a1c8f1-e3d9-48df-802f-20201061ef61}\ deleted successfully.
C:\Program Files\Messenger_Plus_Live_Belgium\prxtbMes0.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00A4AEE3-781E-4B18-80F1-7C0C62B16235}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00A4AEE3-781E-4B18-80F1-7C0C62B16235}\ deleted successfully.
C:\WINDOWS\system32\atl32.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2EECD738-5844-4a99-B4B6-146BF802613B}\ deleted successfully.
C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.19.19\bh\BabylonToolbar.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d1a1c8f1-e3d9-48df-802f-20201061ef61}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d1a1c8f1-e3d9-48df-802f-20201061ef61}\ not found.
File C:\Program Files\Messenger_Plus_Live_Belgium\prxtbMes0.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{98889811-442D-49dd-99D7-DC866BE87DBC} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{98889811-442D-49dd-99D7-DC866BE87DBC}\ deleted successfully.
C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarTlbr.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BC4FFE41-DE9F-46fa-B455-AAD49B9F9938}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{d1a1c8f1-e3d9-48df-802f-20201061ef61} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d1a1c8f1-e3d9-48df-802f-20201061ef61}\ not found.
File C:\Program Files\Messenger_Plus_Live_Belgium\prxtbMes0.dll not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\\{BC4FFE41-DE9F-46FA-B455-AAD49B9F9938} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BC4FFE41-DE9F-46FA-B455-AAD49B9F9938}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\\{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D1A1C8F1-E3D9-48DF-802F-20201061EF61} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D1A1C8F1-E3D9-48DF-802F-20201061EF61}\ not found.
File C:\Program Files\Messenger_Plus_Live_Belgium\prxtbMes0.dll not found.
Registry key HKEY_LOCAL_MACHINE\\Software\Microsoft\Windows\CurrentVersion\Run not found.
C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarsrv.exe moved successfully.
Registry key HKEY_LOCAL_MACHINE\\Software\Microsoft\Windows\CurrentVersion\Run not found.
Registry key HKEY_LOCAL_MACHINE\\Software\Microsoft\Windows\CurrentVersion\Run not found.
Registry key HKEY_LOCAL_MACHINE\\Software\Microsoft\Windows\CurrentVersion\Run not found.
C:\WINDOWS\upnpuiwow.exe moved successfully.
Registry key HKEY_CURRENT_USER\\Software\Microsoft\Windows\CurrentVersion\Run not found.
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe moved successfully.
Starting removal of ActiveX control {32C3FEAE-0877-4767-8C20-62A5829A0945}
C:\WINDOWS\Downloaded Program Files\axfbootloader.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{32C3FEAE-0877-4767-8C20-62A5829A0945}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32C3FEAE-0877-4767-8C20-62A5829A0945}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{32C3FEAE-0877-4767-8C20-62A5829A0945}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{32C3FEAE-0877-4767-8C20-62A5829A0945}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32C3FEAE-0877-4767-8C20-62A5829A0945}\ not found.
Starting removal of ActiveX control {7530BFB8-7293-4D34-9923-61A11451AFC5}
C:\WINDOWS\Downloaded Program Files\OnlineScanner.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{7530BFB8-7293-4D34-9923-61A11451AFC5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7530BFB8-7293-4D34-9923-61A11451AFC5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7530BFB8-7293-4D34-9923-61A11451AFC5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7530BFB8-7293-4D34-9923-61A11451AFC5}\ not found.
Starting removal of ActiveX control {8AD9C840-044E-11D1-B3E9-00805F499D93}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {E2883E8F-472F-4FB0-9522-AC9BF37916A7}
C:\WINDOWS\Downloaded Program Files\gp.inf not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
C:\Documents and Settings\latchatchapaty\Application Data\BabylonToolbar\BabylonToolbar folder moved successfully.
C:\WINDOWS\System32\191459548 folder moved successfully.
C:\WINDOWS\system32\msidntld32.dll moved successfully.
File C:\WINDOWS\System32\atl32.dll not found.
C:\Documents and Settings\latchatchapaty\Application Data\ML\MLNetFilter folder moved successfully.
C:\Documents and Settings\latchatchapaty\Application Data\ML folder moved successfully.
C:\WINDOWS\System32\35A8249A185D243CAC8D468C9A8EED1D\conf\templates folder moved successfully.
C:\WINDOWS\System32\35A8249A185D243CAC8D468C9A8EED1D\conf\names folder moved successfully.
C:\WINDOWS\System32\35A8249A185D243CAC8D468C9A8EED1D\conf folder moved successfully.
C:\WINDOWS\System32\35A8249A185D243CAC8D468C9A8EED1D folder moved successfully.
C:\WINDOWS\kbdswwow.exe moved successfully.
C:\WINDOWS\ncxpntwow.exe moved successfully.
C:\Documents and Settings\latchatchapaty\Mes documents\easycleaner.exe moved successfully.
C:\WINDOWS\offfiltwow.exe moved successfully.
C:\WINDOWS\wstdecodwow.exe moved successfully.
C:\WINDOWS\system32\unrar.exe moved successfully.
C:\WINDOWS\system32\1851847220 moved successfully.
File C:\WINDOWS\System32\msidntld32.dll not found.
C:\WINDOWS\system32\msidntld32.exe moved successfully.
File C:\WINDOWS\System32\atl32.dll not found.
C:\WINDOWS\system32\netui032.exe moved successfully.
C:\WINDOWS\system32\msrle3232.exe moved successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe Reader Speed Launcher deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\IMJPMIG8.1 not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\MSPY2002 not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\NeroFilterCheck not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\PHIME2002A not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\PHIME2002ASync not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\RemoteControl not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\"AppInit_DLLS"|"" /E : value set successfully!
========== FILES ==========
File\Folder C:\WINDOWS\upnpuiwow.exe not found.
C:\WINDOWS\system32\D.tmp moved successfully.
File\Folder C:\WINDOWS\system32\netui032.exe not found.
File\Folder C:\WINDOWS\system32\msrle3232.exe not found.
C:\Program Files\Spybot - Search & Destroy folder moved successfully.
C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.19.19\bh folder moved successfully.
C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.19.19 folder moved successfully.
C:\Program Files\BabylonToolbar\BabylonToolbar folder moved successfully.
C:\Program Files\BabylonToolbar folder moved successfully.
File\Folder C:\WINDOWS\system32\msidntld32.dll not found.
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Snapshots2 folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Snapshots folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Logs folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Excludes folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Backups folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy folder moved successfully.
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Multi Virus Cleaner 2011 folder moved successfully.
C:\Documents and Settings\All Users\Application Data\hpe1A.dll moved successfully.
C:\WINDOWS\System32\GnuHashes.ini moved successfully.
C:\WINDOWS\System32\1151251731 moved successfully.
C:\Documents and Settings\latchatchapaty\Mes documents\malware.exe moved successfully.
C:\WINDOWS\System32\msimsg32.exe moved successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:D1B5B4F1 deleted successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: client
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 2043225 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: latchatchapaty
->Temp folder emptied: 13298148 bytes
->Temporary Internet Files folder emptied: 63904135 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 15374 bytes
User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 7106938 bytes
User: NetworkService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 92734 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 4619776 bytes
%systemroot%\System32\dllcache .tmp files removed: 1099264 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 255 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 40804200 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 127,00 mb
OTL by OldTimer - Version 3.2.22.3 log created on 04152011_202501
Files\Folders moved on Reboot...
Registry entries deleted on Reboot...
voila le rapport
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Bonjour
voila le nouveau rapport
mais on dirais que le pc fonctionne vraiment bien
j'attend ton verdict
http://www.cijoint.fr/cjlink.php?file=cj201104/cij9ATtflj.txt
voila le nouveau rapport
mais on dirais que le pc fonctionne vraiment bien
j'attend ton verdict
http://www.cijoint.fr/cjlink.php?file=cj201104/cij9ATtflj.txt
Fais analyser le(s) fichier(s) suivants sur Virustotal :
Virus Total
clique sur "Parcourir" et trouve puis selectionne ce(s) fichier(s) :
C:\WINDOWS\system32\printhook.exe
* Clique maintenant sur Envoyer le fichier. et laisse travailler tant que "Situation actuelle : en cours d'analyse" est affiché.
* Il est possible que le fichier soit mis en file d'attente en raison d'un grand nombre de demandes d'analyses. En ce cas, il te faudra patienter sans actualiser la page.
* Lorsque l'analyse est terminée colle le lien de(s)( la) page(s) dans ta prochaine réponse.
Virus Total
clique sur "Parcourir" et trouve puis selectionne ce(s) fichier(s) :
C:\WINDOWS\system32\printhook.exe
* Clique maintenant sur Envoyer le fichier. et laisse travailler tant que "Situation actuelle : en cours d'analyse" est affiché.
* Il est possible que le fichier soit mis en file d'attente en raison d'un grand nombre de demandes d'analyses. En ce cas, il te faudra patienter sans actualiser la page.
* Lorsque l'analyse est terminée colle le lien de(s)( la) page(s) dans ta prochaine réponse.
Bonjour
je ne sais vraiment pas si c'est cela qu'il fallait tous en anglais
Antivirus Version Last update Result
AhnLab-V3 2011.04.18.02 2011.04.18 -
AntiVir 7.11.6.169 2011.04.18 TR/Crypt.EPACK.Gen2
Antiy-AVL 2.0.3.7 2011.04.18 -
Avast 4.8.1351.0 2011.04.18 Win32:Zboter-B
Avast5 5.0.677.0 2011.04.18 Win32:Zboter-B
AVG 10.0.0.1190 2011.04.18 -
BitDefender 7.2 2011.04.18 Gen:Variant.Kazy.17351
CAT-QuickHeal 11.00 2011.04.18 (Suspicious) - DNAScan
ClamAV 0.97.0.0 2011.04.18 -
Commtouch 5.3.2.6 2011.04.18 -
Comodo 8388 2011.04.18 TrojWare.Win32.Kryptik.LNM
DrWeb 5.0.2.03300 2011.04.18 -
Emsisoft 5.1.0.5 2011.04.18 Gen.Variant.Zbot!IK
eSafe 7.0.17.0 2011.04.17 -
eTrust-Vet 36.1.8277 2011.04.18 -
F-Prot 4.6.2.117 2011.04.17 -
F-Secure 9.0.16440.0 2011.04.18 Gen:Variant.Kazy.17351
Fortinet 4.2.257.0 2011.04.18 -
GData 22 2011.04.18 Gen:Variant.Kazy.17351
Ikarus T3.1.1.103.0 2011.04.18 Gen.Variant.Zbot
Jiangmin 13.0.900 2011.04.18 -
K7AntiVirus 9.96.4412 2011.04.18 -
Kaspersky 7.0.0.125 2011.04.18 -
McAfee 5.400.0.1158 2011.04.18 -
McAfee-GW-Edition 2010.1D 2011.04.18 -
Microsoft 1.6702 2011.04.18 -
NOD32 6052 2011.04.18 a variant of Win32/Kryptik.MLX
Norman 6.07.07 2011.04.18 -
Panda 10.0.3.5 2011.04.17 -
PCTools 7.0.3.5 2011.04.18 -
Prevx 3.0 2011.04.18 -
Rising 23.54.00.06 2011.04.18 -
Sophos 4.64.0 2011.04.18 -
SUPERAntiSpyware 4.40.0.1006 2011.04.16 -
Symantec 20101.3.2.89 2011.04.18 WS.Reputation.1
TheHacker 6.7.0.1.176 2011.04.17 -
TrendMicro 9.200.0.1012 2011.04.18 -
TrendMicro-HouseCall 9.200.0.1012 2011.04.18 -
VBA32 3.12.16.0 2011.04.18 -
VIPRE 9050 2011.04.18 Trojan.Win32.Kryptik.mgs (v)
ViRobot 2011.4.18.4416 2011.04.18 -
VirusBuster 13.6.310.0 2011.04.18 -
MD5: f2d457d45740508283c4d008d768688b
SHA1: 23771adb3dd0a65236600d40711a03cd86dfb750
SHA256: bcd7e647278c5699701dd2bfdc8e8127856aac0dd116a47088d66a9248bd1f16
File size: 565760 bytes
Scan date: 2011-04-18 14:52:50 (UTC)
je ne sais vraiment pas si c'est cela qu'il fallait tous en anglais
Antivirus Version Last update Result
AhnLab-V3 2011.04.18.02 2011.04.18 -
AntiVir 7.11.6.169 2011.04.18 TR/Crypt.EPACK.Gen2
Antiy-AVL 2.0.3.7 2011.04.18 -
Avast 4.8.1351.0 2011.04.18 Win32:Zboter-B
Avast5 5.0.677.0 2011.04.18 Win32:Zboter-B
AVG 10.0.0.1190 2011.04.18 -
BitDefender 7.2 2011.04.18 Gen:Variant.Kazy.17351
CAT-QuickHeal 11.00 2011.04.18 (Suspicious) - DNAScan
ClamAV 0.97.0.0 2011.04.18 -
Commtouch 5.3.2.6 2011.04.18 -
Comodo 8388 2011.04.18 TrojWare.Win32.Kryptik.LNM
DrWeb 5.0.2.03300 2011.04.18 -
Emsisoft 5.1.0.5 2011.04.18 Gen.Variant.Zbot!IK
eSafe 7.0.17.0 2011.04.17 -
eTrust-Vet 36.1.8277 2011.04.18 -
F-Prot 4.6.2.117 2011.04.17 -
F-Secure 9.0.16440.0 2011.04.18 Gen:Variant.Kazy.17351
Fortinet 4.2.257.0 2011.04.18 -
GData 22 2011.04.18 Gen:Variant.Kazy.17351
Ikarus T3.1.1.103.0 2011.04.18 Gen.Variant.Zbot
Jiangmin 13.0.900 2011.04.18 -
K7AntiVirus 9.96.4412 2011.04.18 -
Kaspersky 7.0.0.125 2011.04.18 -
McAfee 5.400.0.1158 2011.04.18 -
McAfee-GW-Edition 2010.1D 2011.04.18 -
Microsoft 1.6702 2011.04.18 -
NOD32 6052 2011.04.18 a variant of Win32/Kryptik.MLX
Norman 6.07.07 2011.04.18 -
Panda 10.0.3.5 2011.04.17 -
PCTools 7.0.3.5 2011.04.18 -
Prevx 3.0 2011.04.18 -
Rising 23.54.00.06 2011.04.18 -
Sophos 4.64.0 2011.04.18 -
SUPERAntiSpyware 4.40.0.1006 2011.04.16 -
Symantec 20101.3.2.89 2011.04.18 WS.Reputation.1
TheHacker 6.7.0.1.176 2011.04.17 -
TrendMicro 9.200.0.1012 2011.04.18 -
TrendMicro-HouseCall 9.200.0.1012 2011.04.18 -
VBA32 3.12.16.0 2011.04.18 -
VIPRE 9050 2011.04.18 Trojan.Win32.Kryptik.mgs (v)
ViRobot 2011.4.18.4416 2011.04.18 -
VirusBuster 13.6.310.0 2011.04.18 -
MD5: f2d457d45740508283c4d008d768688b
SHA1: 23771adb3dd0a65236600d40711a03cd86dfb750
SHA256: bcd7e647278c5699701dd2bfdc8e8127856aac0dd116a47088d66a9248bd1f16
File size: 565760 bytes
Scan date: 2011-04-18 14:52:50 (UTC)
0 VT Community user(s) with a total of 0 reputation credit(s) say(s) this sample is goodware. 0 VT Community user(s) with a total of 0 reputation credit(s) say(s) this sample is malware.
File name: printhook.exe
Submission date: 2011-04-18 14:52:50 (UTC)
Current status: queued (#33) queued (#34) analysing finished
Result: 13/ 42 (31.0%)
File name: printhook.exe
Submission date: 2011-04-18 14:52:50 (UTC)
Current status: queued (#33) queued (#34) analysing finished
Result: 13/ 42 (31.0%)
Bonjour
quel fichier celui qui est dans le pc ou celui de l'analyse
le c windows....
quel fichier celui qui est dans le pc ou celui de l'analyse
le c windows....
je viens de regarde encore 1 x ce que c'est le fichier mais je ne sais ps si c'est le bon
description:games for windows-live splach screen
entreprises:microsoft corporation
vresrion du fichier:3.0.86.0
date de creation :31/03/2011 13:27
taille:552ko
donc cela c'est une choses et le fichier a cote c'est
type: document texte
date de modification: 18/04/2011 19:33
taille:0 octets
ensuite a cote plein de fichier qui corespondent aux meme nom
description:games for windows-live splach screen
entreprises:microsoft corporation
vresrion du fichier:3.0.86.0
date de creation :31/03/2011 13:27
taille:552ko
donc cela c'est une choses et le fichier a cote c'est
type: document texte
date de modification: 18/04/2011 19:33
taille:0 octets
ensuite a cote plein de fichier qui corespondent aux meme nom
Bonjour
desolée mais je ne sais pàs faire de copier coller avec ce fichier
mais dit moi si deja ce que j'ai fait pour le trouve c'est bon
donc j'ai ouvert le disque local
ensuite le dossier windows j'ai trouve un dossier system 32
j'ai auvert ce fichier et dedans j'ai trouve le printhook.exe
comment dois je faire
merci
desolée mais je ne sais pàs faire de copier coller avec ce fichier
mais dit moi si deja ce que j'ai fait pour le trouve c'est bon
donc j'ai ouvert le disque local
ensuite le dossier windows j'ai trouve un dossier system 32
j'ai auvert ce fichier et dedans j'ai trouve le printhook.exe
comment dois je faire
merci
hello
clic droit dessus , envoyer vers , dossiers compressés , puis tu envoies l'archive via cijoint.fr
clic droit dessus , envoyer vers , dossiers compressés , puis tu envoies l'archive via cijoint.fr
http://www.cijoint.fr/cjlink.php?file=cj201104/cijGnzskZv.zip
voila je crois que c'est cela etmilles excuses pour la lenteur
et mon idiotie
j'aurais du le savoir mais j'avais oublie comment il fallait faire
merci de ta patience
voila je crois que c'est cela etmilles excuses pour la lenteur
et mon idiotie
j'aurais du le savoir mais j'avais oublie comment il fallait faire
merci de ta patience
refais un scan en mode sans echec avec malwarebytes , mais avant fais une mise à jour de ce dernier en mode normal
telecharge le fichier de mise a jour manuelle
http://data.mbamupdates.com/tools/mbam-rules.exe
sinon y a un message d'eereur ?
http://data.mbamupdates.com/tools/mbam-rules.exe
sinon y a un message d'eereur ?
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Version de la base de données: 5363
Windows 5.1.2600 Service Pack 3
Internet Explorer 7.0.5730.13
21/04/2011 17:10:18
mbam-log-2011-04-21 (17-10-09).txt
Type d'examen: Examen rapide
Elément(s) analysé(s): 145076
Temps écoulé: 11 minute(s), 45 seconde(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 1
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 5
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\.fsharproj (Trojan.BHO) -> No action taken.
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
c:\WINDOWS\system32\02000000b46dab331235c.manifest (Malware.Trace) -> No action taken.
c:\WINDOWS\system32\02000000b46dab331235o.manifest (Malware.Trace) -> No action taken.
c:\WINDOWS\system32\02000000b46dab331235p.manifest (Malware.Trace) -> No action taken.
c:\WINDOWS\system32\02000000b46dab331235s.manifest (Malware.Trace) -> No action taken.
c:\WINDOWS\system32\gnuhashes.ini (Trojan.Tracur) -> No action taken.
www.malwarebytes.org
Version de la base de données: 5363
Windows 5.1.2600 Service Pack 3
Internet Explorer 7.0.5730.13
21/04/2011 17:10:18
mbam-log-2011-04-21 (17-10-09).txt
Type d'examen: Examen rapide
Elément(s) analysé(s): 145076
Temps écoulé: 11 minute(s), 45 seconde(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 1
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 5
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\.fsharproj (Trojan.BHO) -> No action taken.
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
c:\WINDOWS\system32\02000000b46dab331235c.manifest (Malware.Trace) -> No action taken.
c:\WINDOWS\system32\02000000b46dab331235o.manifest (Malware.Trace) -> No action taken.
c:\WINDOWS\system32\02000000b46dab331235p.manifest (Malware.Trace) -> No action taken.
c:\WINDOWS\system32\02000000b46dab331235s.manifest (Malware.Trace) -> No action taken.
c:\WINDOWS\system32\gnuhashes.ini (Trojan.Tracur) -> No action taken.