Nettoyage, rapport hijackthis
Résolu/Fermé
Mikarel1971
Messages postés
50
Date d'inscription
lundi 3 septembre 2012
Statut
Membre
Dernière intervention
18 novembre 2015
-
18 nov. 2012 à 22:09
juju666 Messages postés 35445 Date d'inscription jeudi 18 décembre 2008 Statut Contributeur sécurité Dernière intervention 5 mai 2017 - 22 nov. 2012 à 00:16
juju666 Messages postés 35445 Date d'inscription jeudi 18 décembre 2008 Statut Contributeur sécurité Dernière intervention 5 mai 2017 - 22 nov. 2012 à 00:16
A voir également:
- Nettoyage, rapport hijackthis
- Nettoyage mac - Guide
- Nettoyage pc lent - Guide
- Nettoyage pc gratuit - Guide
- Nettoyage de disque - Guide
- Hijackthis windows 10 - Télécharger - Antivirus & Antimalwares
14 réponses
juju666
Messages postés
35445
Date d'inscription
jeudi 18 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
5 mai 2017
4 795
Modifié par juju666 le 19/11/2012 à 00:50
Modifié par juju666 le 19/11/2012 à 00:50
Hello le Québec, ici la belgique :p
Rien de grave :-)
▶ Télécharge sur cette page: AdwCleaner (de Xplode)
▶ Lance-le
clique sur Suppression et patiente le temps du nettoyage.
▶ Poste le contenu du rapport que tu trouveras dans ton disque dur c:\ADwcleaner[Sx].txt ou son contenu s'il s'ouvre.
.::. Contributeur Sécurité .::.
Rien de grave :-)
▶ Télécharge sur cette page: AdwCleaner (de Xplode)
▶ Lance-le
clique sur Suppression et patiente le temps du nettoyage.
▶ Poste le contenu du rapport que tu trouveras dans ton disque dur c:\ADwcleaner[Sx].txt ou son contenu s'il s'ouvre.
.::. Contributeur Sécurité .::.
Mikarel1971
Messages postés
50
Date d'inscription
lundi 3 septembre 2012
Statut
Membre
Dernière intervention
18 novembre 2015
1
19 nov. 2012 à 02:07
19 nov. 2012 à 02:07
Merci beaucoup la Belgique !!
Voici le contenu :
# AdwCleaner v2.008 - Logfile created 11/18/2012 at 20:01:36
# Updated 17/11/2012 by Xplode
# Operating system : Windows 7 Ultimate Service Pack 1 (64 bits)
# User : d - D-PC
# Boot Mode : Normal
# Running from : C:\Users\d\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LBUXOHYD\adwcleaner.exe
# Option [Search]
***** [Services] *****
***** [Files / Folders] *****
File Found : C:\user.js
File Found : C:\Users\d\Appdata\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_home.sweetim.com_0.localstorage
Folder Found : C:\Program Files (x86)\Free Offers from Freeze.com
Folder Found : C:\Program Files (x86)\Wajam
Folder Found : C:\ProgramData\Babylon
Folder Found : C:\ProgramData\boost_interprocess
Folder Found : C:\ProgramData\Tarma Installer
Folder Found : C:\Users\d\Appdata\Local\APN
Folder Found : C:\Users\d\Appdata\Local\Babylon
Folder Found : C:\Users\d\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkomkajifikmkfnjgphkjcfeepbnojok
Folder Found : C:\Users\d\AppData\Local\Google\Chrome\User Data\Default\Extensions\niapdbllcanepiiimjjndipklodoedlc
Folder Found : C:\Users\d\Appdata\LocalLow\BabylonToolbar
Folder Found : C:\Users\d\Appdata\Roaming\Babylon
Folder Found : C:\Users\d\Appdata\Roaming\OpenCandy
***** [Registry] *****
Key Found : HKCU\Software\Alexa Internet
Key Found : HKCU\Software\AppDataLow\Software\PriceGong
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{69A72A8A-84ED-4a75-8CE7-263DBEF3E5D3}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Found : HKLM\Software\Babylon
Key Found : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Found : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Found : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Found : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\wajam.DLL
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\Software\Freeze.com
Key Found : HKLM\Software\Iminent
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A7BC02AF-1128-4A31-BCF8-1A3EE803D3B3}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A81A974F-8A22-43E6-9243-5198FF758DA1}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A7BC02AF-1128-4A31-BCF8-1A3EE803D3B3}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A81A974F-8A22-43E6-9243-5198FF758DA1}
Key Found : HKLM\SOFTWARE\Tarma Installer
Key Found : HKU\S-1-5-21-2461543870-2843713146-2677231239-1001\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]
***** [Internet Browsers] *****
-\\ Internet Explorer v9.0.8112.16421
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main - Start Page] = hxxp://home.sweetim.com
-\\ Google Chrome v [Unable to get version]
File : C:\Users\d\Appdata\Local\Google\Chrome\User data\default\Preferences
Found [l.446] : homepage = "hxxp://home.sweetim.com/?barid={1E9CA8B0-81E6-11E1-B0A2-4061865F73E7}",
*************************
AdwCleaner[R1].txt - [3991 octets] - [18/11/2012 20:01:36]
########## EOF - C:\AdwCleaner[R1].txt - [4051 octets] ##########
Voici le contenu :
# AdwCleaner v2.008 - Logfile created 11/18/2012 at 20:01:36
# Updated 17/11/2012 by Xplode
# Operating system : Windows 7 Ultimate Service Pack 1 (64 bits)
# User : d - D-PC
# Boot Mode : Normal
# Running from : C:\Users\d\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LBUXOHYD\adwcleaner.exe
# Option [Search]
***** [Services] *****
***** [Files / Folders] *****
File Found : C:\user.js
File Found : C:\Users\d\Appdata\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_home.sweetim.com_0.localstorage
Folder Found : C:\Program Files (x86)\Free Offers from Freeze.com
Folder Found : C:\Program Files (x86)\Wajam
Folder Found : C:\ProgramData\Babylon
Folder Found : C:\ProgramData\boost_interprocess
Folder Found : C:\ProgramData\Tarma Installer
Folder Found : C:\Users\d\Appdata\Local\APN
Folder Found : C:\Users\d\Appdata\Local\Babylon
Folder Found : C:\Users\d\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkomkajifikmkfnjgphkjcfeepbnojok
Folder Found : C:\Users\d\AppData\Local\Google\Chrome\User Data\Default\Extensions\niapdbllcanepiiimjjndipklodoedlc
Folder Found : C:\Users\d\Appdata\LocalLow\BabylonToolbar
Folder Found : C:\Users\d\Appdata\Roaming\Babylon
Folder Found : C:\Users\d\Appdata\Roaming\OpenCandy
***** [Registry] *****
Key Found : HKCU\Software\Alexa Internet
Key Found : HKCU\Software\AppDataLow\Software\PriceGong
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{69A72A8A-84ED-4a75-8CE7-263DBEF3E5D3}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Found : HKLM\Software\Babylon
Key Found : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Found : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Found : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Found : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\wajam.DLL
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\Software\Freeze.com
Key Found : HKLM\Software\Iminent
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A7BC02AF-1128-4A31-BCF8-1A3EE803D3B3}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A81A974F-8A22-43E6-9243-5198FF758DA1}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A7BC02AF-1128-4A31-BCF8-1A3EE803D3B3}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A81A974F-8A22-43E6-9243-5198FF758DA1}
Key Found : HKLM\SOFTWARE\Tarma Installer
Key Found : HKU\S-1-5-21-2461543870-2843713146-2677231239-1001\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]
***** [Internet Browsers] *****
-\\ Internet Explorer v9.0.8112.16421
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main - Start Page] = hxxp://home.sweetim.com
-\\ Google Chrome v [Unable to get version]
File : C:\Users\d\Appdata\Local\Google\Chrome\User data\default\Preferences
Found [l.446] : homepage = "hxxp://home.sweetim.com/?barid={1E9CA8B0-81E6-11E1-B0A2-4061865F73E7}",
*************************
AdwCleaner[R1].txt - [3991 octets] - [18/11/2012 20:01:36]
########## EOF - C:\AdwCleaner[R1].txt - [4051 octets] ##########
juju666
Messages postés
35445
Date d'inscription
jeudi 18 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
5 mai 2017
4 795
19 nov. 2012 à 02:16
19 nov. 2012 à 02:16
Ah ton computer est en anglais ;)
Fais le Delete avec AdwCleaner :)
Fais le Delete avec AdwCleaner :)
Mikarel1971
Messages postés
50
Date d'inscription
lundi 3 septembre 2012
Statut
Membre
Dernière intervention
18 novembre 2015
1
19 nov. 2012 à 04:29
19 nov. 2012 à 04:29
# AdwCleaner v2.008 - Logfile created 11/18/2012 at 22:11:02
# Updated 17/11/2012 by Xplode
# Operating system : Windows 7 Ultimate Service Pack 1 (64 bits)
# User : d - D-PC
# Boot Mode : Normal
# Running from : C:\Users\d\Downloads\adwcleaner.exe
# Option [Delete]
***** [Services] *****
***** [Files / Folders] *****
File Deleted : C:\user.js
File Deleted : C:\Users\d\Appdata\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_home.sweetim.com_0.localstorage
Folder Deleted : C:\Program Files (x86)\Free Offers from Freeze.com
Folder Deleted : C:\Program Files (x86)\Wajam
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\Users\d\Appdata\Local\APN
Folder Deleted : C:\Users\d\Appdata\Local\Babylon
Folder Deleted : C:\Users\d\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkomkajifikmkfnjgphkjcfeepbnojok
Folder Deleted : C:\Users\d\AppData\Local\Google\Chrome\User Data\Default\Extensions\niapdbllcanepiiimjjndipklodoedlc
Folder Deleted : C:\Users\d\Appdata\LocalLow\BabylonToolbar
Folder Deleted : C:\Users\d\Appdata\Roaming\Babylon
Folder Deleted : C:\Users\d\Appdata\Roaming\OpenCandy
***** [Registry] *****
Key Deleted : HKCU\Software\Alexa Internet
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{69A72A8A-84ED-4a75-8CE7-263DBEF3E5D3}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\wajam.DLL
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\Software\Freeze.com
Key Deleted : HKLM\Software\Iminent
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A7BC02AF-1128-4A31-BCF8-1A3EE803D3B3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A81A974F-8A22-43E6-9243-5198FF758DA1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A7BC02AF-1128-4A31-BCF8-1A3EE803D3B3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A81A974F-8A22-43E6-9243-5198FF758DA1}
Key Deleted : HKLM\SOFTWARE\Tarma Installer
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]
***** [Internet Browsers] *****
-\\ Internet Explorer v9.0.8112.16421
Replaced : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main - Start Page] = hxxp://home.sweetim.com --> hxxp://www.google.com
-\\ Mozilla Firefox v16.0.2 (fr)
Profile name : default
File : C:\Users\d\Appdata\Roaming\Mozilla\Firefox\Profiles\v2mld4j4.default\prefs.js
[OK] File is clean.
-\\ Google Chrome v [Unable to get version]
File : C:\Users\d\Appdata\Local\Google\Chrome\User data\default\Preferences
Deleted [l.446] : homepage = "hxxp://home.sweetim.com/?barid={1E9CA8B0-81E6-11E1-B0A2-4061865F73E7}",
*************************
AdwCleaner[R1].txt - [4112 octets] - [18/11/2012 20:01:36]
AdwCleaner[S1].txt - [4119 octets] - [18/11/2012 22:11:02]
########## EOF - C:\AdwCleaner[S1].txt - [4179 octets] ##########
# Updated 17/11/2012 by Xplode
# Operating system : Windows 7 Ultimate Service Pack 1 (64 bits)
# User : d - D-PC
# Boot Mode : Normal
# Running from : C:\Users\d\Downloads\adwcleaner.exe
# Option [Delete]
***** [Services] *****
***** [Files / Folders] *****
File Deleted : C:\user.js
File Deleted : C:\Users\d\Appdata\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_home.sweetim.com_0.localstorage
Folder Deleted : C:\Program Files (x86)\Free Offers from Freeze.com
Folder Deleted : C:\Program Files (x86)\Wajam
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\Users\d\Appdata\Local\APN
Folder Deleted : C:\Users\d\Appdata\Local\Babylon
Folder Deleted : C:\Users\d\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkomkajifikmkfnjgphkjcfeepbnojok
Folder Deleted : C:\Users\d\AppData\Local\Google\Chrome\User Data\Default\Extensions\niapdbllcanepiiimjjndipklodoedlc
Folder Deleted : C:\Users\d\Appdata\LocalLow\BabylonToolbar
Folder Deleted : C:\Users\d\Appdata\Roaming\Babylon
Folder Deleted : C:\Users\d\Appdata\Roaming\OpenCandy
***** [Registry] *****
Key Deleted : HKCU\Software\Alexa Internet
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{69A72A8A-84ED-4a75-8CE7-263DBEF3E5D3}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\wajam.DLL
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\Software\Freeze.com
Key Deleted : HKLM\Software\Iminent
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A7BC02AF-1128-4A31-BCF8-1A3EE803D3B3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A81A974F-8A22-43E6-9243-5198FF758DA1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A7BC02AF-1128-4A31-BCF8-1A3EE803D3B3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A81A974F-8A22-43E6-9243-5198FF758DA1}
Key Deleted : HKLM\SOFTWARE\Tarma Installer
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]
***** [Internet Browsers] *****
-\\ Internet Explorer v9.0.8112.16421
Replaced : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main - Start Page] = hxxp://home.sweetim.com --> hxxp://www.google.com
-\\ Mozilla Firefox v16.0.2 (fr)
Profile name : default
File : C:\Users\d\Appdata\Roaming\Mozilla\Firefox\Profiles\v2mld4j4.default\prefs.js
[OK] File is clean.
-\\ Google Chrome v [Unable to get version]
File : C:\Users\d\Appdata\Local\Google\Chrome\User data\default\Preferences
Deleted [l.446] : homepage = "hxxp://home.sweetim.com/?barid={1E9CA8B0-81E6-11E1-B0A2-4061865F73E7}",
*************************
AdwCleaner[R1].txt - [4112 octets] - [18/11/2012 20:01:36]
AdwCleaner[S1].txt - [4119 octets] - [18/11/2012 22:11:02]
########## EOF - C:\AdwCleaner[S1].txt - [4179 octets] ##########
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
juju666
Messages postés
35445
Date d'inscription
jeudi 18 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
5 mai 2017
4 795
19 nov. 2012 à 09:39
19 nov. 2012 à 09:39
Hi,
J'ai été me coucher, il était 3h du matin en Belgique ! ;)
Avançons :
▶ Télécharge et installe Malwarebytes' Anti-Malware (MBAM).
▶ Exécute-le. Accepte la mise à jour.
● Uniquement en cas de problème de mise à jour:
● Télécharger mises à jour manuelles MBAM
● Exécute le fichier après l'installation de MBAM
▶ Sélectionne "Exécuter un examen complet"
▶ Clique sur "Rechercher"
▶ L'analyse démarre, le scan est relativement long, c'est normal.
A la fin de l'analyse, un message s'affiche :
Citation :
L'examen s'est terminé normalement. Clique sur 'Afficher les résultats' pour afficher tous les objets trouvés.
▶ Clique sur "Ok" pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.
▶ Ferme tes navigateurs.
▶ Si des malwares ont été détectés, clique sur Afficher les résultats.
▶ Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.
MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse : ferme le.
Si MBAM demande à redémarrer le pc : ▶ fais-le.
Au redémarrage, relance MBAM, onglet "Rapport/Logs", copie/colle celui qui correspond à l'analyse effectuée.
J'ai été me coucher, il était 3h du matin en Belgique ! ;)
Avançons :
▶ Télécharge et installe Malwarebytes' Anti-Malware (MBAM).
▶ Exécute-le. Accepte la mise à jour.
● Uniquement en cas de problème de mise à jour:
● Télécharger mises à jour manuelles MBAM
● Exécute le fichier après l'installation de MBAM
▶ Sélectionne "Exécuter un examen complet"
▶ Clique sur "Rechercher"
▶ L'analyse démarre, le scan est relativement long, c'est normal.
A la fin de l'analyse, un message s'affiche :
Citation :
L'examen s'est terminé normalement. Clique sur 'Afficher les résultats' pour afficher tous les objets trouvés.
▶ Clique sur "Ok" pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.
▶ Ferme tes navigateurs.
▶ Si des malwares ont été détectés, clique sur Afficher les résultats.
▶ Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.
MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse : ferme le.
Si MBAM demande à redémarrer le pc : ▶ fais-le.
Au redémarrage, relance MBAM, onglet "Rapport/Logs", copie/colle celui qui correspond à l'analyse effectuée.
Mikarel1971
Messages postés
50
Date d'inscription
lundi 3 septembre 2012
Statut
Membre
Dernière intervention
18 novembre 2015
1
20 nov. 2012 à 00:58
20 nov. 2012 à 00:58
Re-bonjour-bonsoir,
et merci encore !!
voici le rapport :
Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org
Database version: v2012.11.19.09
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
d :: D-PC [administrator]
11/19/2012 5:57:00 PM
mbam-log-2012-11-19 (17-57-00).txt
Scan type: Full scan (C:\|E:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 364842
Time elapsed: 41 minute(s), 42 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 1
HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\MCMPENG.EXE (Security.Hijack) -> Quarantined and deleted successfully.
Registry Values Detected: 1
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mcmpeng.exe|Debugger (Security.Hijack) -> Data: svchost.exe -> Quarantined and deleted successfully.
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 8
C:\Downloads\Windows 7 Loader and Activator\Windows Loader\Windows Loader.exe (PUP.HackTool.H) -> No action taken.
C:\Program Files (x86)\4zUninstall VideoDownloadConverter.dll (PUP.MyWebSearch) -> No action taken.
C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zskin.dll (PUP.MyWebSearch) -> No action taken.
C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zskplay.exe (PUP.MyWebSearch) -> No action taken.
C:\Downloads\Windows 7 Loader and Activator\7Loader Release 5.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Downloads\Windows 7 Loader and Activator\Se7en Activator v3\Se7en Activator v3.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Vee-Software\VeeSee\VeeSee.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Users\d\Desktop\setup\setup.exe (Rogue.Installer.SFXGen1) -> Quarantined and deleted successfully.
(end)
et merci encore !!
voici le rapport :
Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org
Database version: v2012.11.19.09
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
d :: D-PC [administrator]
11/19/2012 5:57:00 PM
mbam-log-2012-11-19 (17-57-00).txt
Scan type: Full scan (C:\|E:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 364842
Time elapsed: 41 minute(s), 42 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 1
HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\MCMPENG.EXE (Security.Hijack) -> Quarantined and deleted successfully.
Registry Values Detected: 1
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mcmpeng.exe|Debugger (Security.Hijack) -> Data: svchost.exe -> Quarantined and deleted successfully.
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 8
C:\Downloads\Windows 7 Loader and Activator\Windows Loader\Windows Loader.exe (PUP.HackTool.H) -> No action taken.
C:\Program Files (x86)\4zUninstall VideoDownloadConverter.dll (PUP.MyWebSearch) -> No action taken.
C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zskin.dll (PUP.MyWebSearch) -> No action taken.
C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zskplay.exe (PUP.MyWebSearch) -> No action taken.
C:\Downloads\Windows 7 Loader and Activator\7Loader Release 5.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Downloads\Windows 7 Loader and Activator\Se7en Activator v3\Se7en Activator v3.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Vee-Software\VeeSee\VeeSee.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Users\d\Desktop\setup\setup.exe (Rogue.Installer.SFXGen1) -> Quarantined and deleted successfully.
(end)
juju666
Messages postés
35445
Date d'inscription
jeudi 18 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
5 mai 2017
4 795
20 nov. 2012 à 01:13
20 nov. 2012 à 01:13
Hi,
Pourquoi tu les as pas virés ça ?
C:\Program Files (x86)\4zUninstall VideoDownloadConverter.dll (PUP.MyWebSearch) -> No action taken. C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zskin.dll (PUP.MyWebSearch) -> No action taken. C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zskplay.exe (PUP.MyWebSearch) -> No action taken.
Pourquoi tu les as pas virés ça ?
Mikarel1971
Messages postés
50
Date d'inscription
lundi 3 septembre 2012
Statut
Membre
Dernière intervention
18 novembre 2015
1
20 nov. 2012 à 01:37
20 nov. 2012 à 01:37
Ouin, je crois qu'ils n'étaient pas cochés.
Ok je re-scan et efface tout ?
scan en cours
Ok je re-scan et efface tout ?
scan en cours
Mikarel1971
Messages postés
50
Date d'inscription
lundi 3 septembre 2012
Statut
Membre
Dernière intervention
18 novembre 2015
1
20 nov. 2012 à 02:29
20 nov. 2012 à 02:29
?Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org
Database version: v2012.11.19.09
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
d :: D-PC [administrator]
11/19/2012 7:41:13 PM
mbam-log-2012-11-19 (19-41-13).txt
Scan type: Full scan (C:\|E:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 364496
Time elapsed: 42 minute(s), 7 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 4
C:\Downloads\Windows 7 Loader and Activator\Windows Loader\Windows Loader.exe (PUP.HackTool.H) -> Quarantined and deleted successfully.
C:\Program Files (x86)\4zUninstall VideoDownloadConverter.dll (PUP.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zskin.dll (PUP.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zskplay.exe (PUP.MyWebSearch) -> Quarantined and deleted successfully.
(end)
www.malwarebytes.org
Database version: v2012.11.19.09
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
d :: D-PC [administrator]
11/19/2012 7:41:13 PM
mbam-log-2012-11-19 (19-41-13).txt
Scan type: Full scan (C:\|E:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 364496
Time elapsed: 42 minute(s), 7 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 4
C:\Downloads\Windows 7 Loader and Activator\Windows Loader\Windows Loader.exe (PUP.HackTool.H) -> Quarantined and deleted successfully.
C:\Program Files (x86)\4zUninstall VideoDownloadConverter.dll (PUP.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zskin.dll (PUP.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zskplay.exe (PUP.MyWebSearch) -> Quarantined and deleted successfully.
(end)
juju666
Messages postés
35445
Date d'inscription
jeudi 18 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
5 mai 2017
4 795
20 nov. 2012 à 08:18
20 nov. 2012 à 08:18
Hi,
Voilà qui est mieux ! :-)
Télécharge ici :OTL
▶ enregistre le sur ton Bureau.
si tu as XP => double clique
si tu as Vista ou windows 7 => clic droit "executer en tant que...."
sur OTL.exe pour le lancer.
▶ => Clique ici pour voir la Configuration
▶ Copie et colle le contenu de ce qui suit en gras dans la partie inférieure d'OTL "Personnalisation"
/md5start
explorer.exe
winlogon.exe
wininit.exe
/md5stop
netsvcs
safebootminimal
safebootnetwork
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\*.ini
%systemroot%\Tasks\*.*
%systemroot%\system32\Tasks\*.*
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\config\*.exe /s
%systemroot%\system32\*.sys
HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa /s
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon
CREATERESTOREPOINT
SAVEMBR:0
▶ Clic sur Analyse.
A la fin du scan, le Bloc-Notes va s'ouvrir avec le rapport (OTL.txt).
Ce fichier est sur ton Bureau (en général C:\Documents and settings\le_nom_de_ta_session\<Bureau ou Desktop>\OTL.txt)
▶▶▶ NE LE POSTE PAS SUR LE FORUM (il est trop long)
heberge OTL.txt et extra.txt sur FEC Upload et donne les liens obtenus en échange
Voilà qui est mieux ! :-)
Télécharge ici :OTL
▶ enregistre le sur ton Bureau.
si tu as XP => double clique
si tu as Vista ou windows 7 => clic droit "executer en tant que...."
sur OTL.exe pour le lancer.
▶ => Clique ici pour voir la Configuration
▶ Copie et colle le contenu de ce qui suit en gras dans la partie inférieure d'OTL "Personnalisation"
/md5start
explorer.exe
winlogon.exe
wininit.exe
/md5stop
netsvcs
safebootminimal
safebootnetwork
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\*.ini
%systemroot%\Tasks\*.*
%systemroot%\system32\Tasks\*.*
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\config\*.exe /s
%systemroot%\system32\*.sys
HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa /s
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon
CREATERESTOREPOINT
SAVEMBR:0
▶ Clic sur Analyse.
A la fin du scan, le Bloc-Notes va s'ouvrir avec le rapport (OTL.txt).
Ce fichier est sur ton Bureau (en général C:\Documents and settings\le_nom_de_ta_session\<Bureau ou Desktop>\OTL.txt)
▶▶▶ NE LE POSTE PAS SUR LE FORUM (il est trop long)
heberge OTL.txt et extra.txt sur FEC Upload et donne les liens obtenus en échange
Mikarel1971
Messages postés
50
Date d'inscription
lundi 3 septembre 2012
Statut
Membre
Dernière intervention
18 novembre 2015
1
20 nov. 2012 à 23:06
20 nov. 2012 à 23:06
OTL :
https://forums-fec.be/upload/www/?a=d&i=6116417332
Extras :
https://forums-fec.be/upload/www/?a=d&i=8944682083
https://forums-fec.be/upload/www/?a=d&i=6116417332
Extras :
https://forums-fec.be/upload/www/?a=d&i=8944682083
juju666
Messages postés
35445
Date d'inscription
jeudi 18 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
5 mai 2017
4 795
21 nov. 2012 à 11:44
21 nov. 2012 à 11:44
Hello,
ATTENTION !!! : Script personnalisé pour cette machine uniquement , ne pas reproduire !!
si tu as XP => double clique
si tu as Vista ou windows 7 => clic droit "executer en tant que...."
sur OTL.exe pour le lancer.
▶Copie la liste qui se trouve en gras ci-dessous,
▶ colle-la dans la zone sous "Personnalisation" :
:OTL
IE - HKLM\..\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}: "URL" = https://hp.mywebsearch.com/mywebsearch/index.html
IE - HKU\S-1-5-21-2461543870-2843713146-2677231239-1001\..\SearchScopes\{6922528B-1718-49F9-9375-CE95D79CBE03}: "URL" = http://www.search.ask.com/?l=dis{searchTerms}&locale=en_US&apn_ptnrs=RY&apn_dtid=YYYYYYYYCA&apn_uid
IE - HKU\S-1-5-21-2461543870-2843713146-2677231239-1001\..\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}: "URL" = https://hp.mywebsearch.com/mywebsearch/index.html
IE - HKU\S-1-5-21-2461543870-2843713146-2677231239-1001\..\SearchScopes\{FCDA2DD1-89EB-402B-ADF1-DBE7E684C1AA}: "URL" = http://search.toolbars.alexa.com/?src={referrer:source}&q={searchTerms}
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4 - HKU\S-1-5-21-2461543870-2843713146-2677231239-1001\..\Run: [AdobeBridge] File not found
O8 - Extra context menu item: Search the Web - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\menuext.html File not found
O8 - Extra context menu item: Search the Web - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\menuext.html File not found
@Alternate Data Stream - 180 bytes -> C:\ProgramData\TEMP:CDF51F17
@Alternate Data Stream - 175 bytes -> C:\ProgramData\TEMP:157E1AD3
@Alternate Data Stream - 162 bytes -> C:\ProgramData\TEMP:5FC93B4C
:Commands
[EMPTYTEMP]
▶ Clique sur "Correction" pour lancer la suppression.
▶ Poste le rapport qui logiquement s'ouvrira tout seul en fin de travail apres le redemarrage.
ATTENTION !!! : Script personnalisé pour cette machine uniquement , ne pas reproduire !!
si tu as XP => double clique
si tu as Vista ou windows 7 => clic droit "executer en tant que...."
sur OTL.exe pour le lancer.
▶Copie la liste qui se trouve en gras ci-dessous,
▶ colle-la dans la zone sous "Personnalisation" :
:OTL
IE - HKLM\..\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}: "URL" = https://hp.mywebsearch.com/mywebsearch/index.html
IE - HKU\S-1-5-21-2461543870-2843713146-2677231239-1001\..\SearchScopes\{6922528B-1718-49F9-9375-CE95D79CBE03}: "URL" = http://www.search.ask.com/?l=dis{searchTerms}&locale=en_US&apn_ptnrs=RY&apn_dtid=YYYYYYYYCA&apn_uid
IE - HKU\S-1-5-21-2461543870-2843713146-2677231239-1001\..\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}: "URL" = https://hp.mywebsearch.com/mywebsearch/index.html
IE - HKU\S-1-5-21-2461543870-2843713146-2677231239-1001\..\SearchScopes\{FCDA2DD1-89EB-402B-ADF1-DBE7E684C1AA}: "URL" = http://search.toolbars.alexa.com/?src={referrer:source}&q={searchTerms}
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4 - HKU\S-1-5-21-2461543870-2843713146-2677231239-1001\..\Run: [AdobeBridge] File not found
O8 - Extra context menu item: Search the Web - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\menuext.html File not found
O8 - Extra context menu item: Search the Web - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\menuext.html File not found
@Alternate Data Stream - 180 bytes -> C:\ProgramData\TEMP:CDF51F17
@Alternate Data Stream - 175 bytes -> C:\ProgramData\TEMP:157E1AD3
@Alternate Data Stream - 162 bytes -> C:\ProgramData\TEMP:5FC93B4C
:Commands
[EMPTYTEMP]
▶ Clique sur "Correction" pour lancer la suppression.
▶ Poste le rapport qui logiquement s'ouvrira tout seul en fin de travail apres le redemarrage.
Mikarel1971
Messages postés
50
Date d'inscription
lundi 3 septembre 2012
Statut
Membre
Dernière intervention
18 novembre 2015
1
22 nov. 2012 à 00:13
22 nov. 2012 à 00:13
RE-BONSOIR LA BELGIQUE,
ENCORE ET TOUJOURS MERCI !! :)
All processes killed
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}\ not found.
Registry key HKEY_USERS\S-1-5-21-2461543870-2843713146-2677231239-1001\Software\Microsoft\Internet Explorer\SearchScopes\{6922528B-1718-49F9-9375-CE95D79CBE03}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6922528B-1718-49F9-9375-CE95D79CBE03}\ not found.
Registry key HKEY_USERS\S-1-5-21-2461543870-2843713146-2677231239-1001\Software\Microsoft\Internet Explorer\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}\ not found.
Registry key HKEY_USERS\S-1-5-21-2461543870-2843713146-2677231239-1001\Software\Microsoft\Internet Explorer\SearchScopes\{FCDA2DD1-89EB-402B-ADF1-DBE7E684C1AA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FCDA2DD1-89EB-402B-ADF1-DBE7E684C1AA}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked not found.
Registry value HKEY_USERS\S-1-5-21-2461543870-2843713146-2677231239-1001\\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Search the Web\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Search the Web\ not found.
ADS C:\ProgramData\TEMP:CDF51F17 deleted successfully.
ADS C:\ProgramData\TEMP:157E1AD3 deleted successfully.
ADS C:\ProgramData\TEMP:5FC93B4C deleted successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: d
->Temp folder emptied: 316440 bytes
->Temporary Internet Files folder emptied: 26993379 bytes
->FireFox cache emptied: 741486 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 506 bytes
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 56504 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 9386088 bytes
%systemroot%\System32 (64bit) .tmp files removed: 14681912 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 50.00 mb
OTL by OldTimer - Version 3.2.69.0 log created on 11212012_180621
Files\Folders moved on Reboot...
C:\Users\d\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
ENCORE ET TOUJOURS MERCI !! :)
All processes killed
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}\ not found.
Registry key HKEY_USERS\S-1-5-21-2461543870-2843713146-2677231239-1001\Software\Microsoft\Internet Explorer\SearchScopes\{6922528B-1718-49F9-9375-CE95D79CBE03}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6922528B-1718-49F9-9375-CE95D79CBE03}\ not found.
Registry key HKEY_USERS\S-1-5-21-2461543870-2843713146-2677231239-1001\Software\Microsoft\Internet Explorer\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}\ not found.
Registry key HKEY_USERS\S-1-5-21-2461543870-2843713146-2677231239-1001\Software\Microsoft\Internet Explorer\SearchScopes\{FCDA2DD1-89EB-402B-ADF1-DBE7E684C1AA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FCDA2DD1-89EB-402B-ADF1-DBE7E684C1AA}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked not found.
Registry value HKEY_USERS\S-1-5-21-2461543870-2843713146-2677231239-1001\\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Search the Web\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Search the Web\ not found.
ADS C:\ProgramData\TEMP:CDF51F17 deleted successfully.
ADS C:\ProgramData\TEMP:157E1AD3 deleted successfully.
ADS C:\ProgramData\TEMP:5FC93B4C deleted successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: d
->Temp folder emptied: 316440 bytes
->Temporary Internet Files folder emptied: 26993379 bytes
->FireFox cache emptied: 741486 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 506 bytes
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 56504 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 9386088 bytes
%systemroot%\System32 (64bit) .tmp files removed: 14681912 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 50.00 mb
OTL by OldTimer - Version 3.2.69.0 log created on 11212012_180621
Files\Folders moved on Reboot...
C:\Users\d\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
juju666
Messages postés
35445
Date d'inscription
jeudi 18 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
5 mai 2017
4 795
22 nov. 2012 à 00:16
22 nov. 2012 à 00:16
Hello le Québec !
Quel temps chez vous ?
Ici froid et humide (4°C).
Si ton PC est OK, il te reste le ménage final à réaliser : https://forums-fec.be/entraide/viewtopic.php?f=11&t=229
:-)
Quel temps chez vous ?
Ici froid et humide (4°C).
Si ton PC est OK, il te reste le ménage final à réaliser : https://forums-fec.be/entraide/viewtopic.php?f=11&t=229
:-)
