Delta search - Page 2

Précédent
  • 1
  • 2
  • 3
Réponse 21 / 50
florentOOO Messages postés 26 Date d'inscription   Statut Membre Dernière intervention  
 
voila les liens:

extra : https://www.cjoint.com/c/CCCar0qBJKK

OTL : https://www.cjoint.com/c/CCCau3YMgF3
0
Réponse 22 / 50
g3n-h@ckm@n Messages postés 14350 Statut Membre 948
 
ATTENTION !!! : Script personnalisé pour cette machine uniquement , ne pas reproduire !!

si tu as XP => double clique
si tu as Vista ou windows 7 => clic droit "executer en tant que...."

sur OTL.exe pour le lancer.

▶Copie la liste qui se trouve en gras ci-dessous,

▶ colle-la dans la zone sous "Personnalisation" :


:processes
explorer.exe
iexplore.exe
firefox.exe
msnmsgr.exe
Teatimer.exe

:reg
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"QuickTime Task"=-
"iTunesHelper"=-
[HKLM\SOFTWARE\wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"QuickTime Task"=-
"iTunesHelper"=-
[HKU\S-1-5-21-162775216-1638663927-2644177568-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
Akamai NetSession Interface"=-
[HKLM\Software\mozilla\Firefox\Extensions]
"crossriderapp498@crossrider.com"=-
[HKLM\Software\wow6432Node\mozilla\Firefox\Extensions
"crossriderapp498@crossrider.com"=-
[-HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}]
[-HKCR\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}]
[-HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}]
[-HKCR\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}]
[-HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}]
[-HKCR\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}]
[-HKLM\SOFTWARE\Wow6432Node\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}]
[-HKLM\SOFTWARE\Wow6432Node\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}]
[-HKLM\SOFTWARE\Wow6432Node\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}]
[-HKLM\Software\SweetIM]
[-HKLM\Software\Wow6432Node\SweetIM]
[-HKCR\CLSID\{BDA89DCD-8B25-48c7-B1E2-07CA622E0CA8}]
[-HKCR\Installer\Products\F479A18A22A86E3429341589FF57D81A]

:files
C:\Windows\syswow64\searchplugins
C:\Windows\syswow64\Extensions
C:\90e29d1f48d9dd00f4
C:\Windows\Installer\{A81A974F-8A22-43E6-9243-5198FF758DA1}
C:\Users\Florent\AppData\Local\{*}
C:\Users\Florent_2\AppData\Local\_
C:\Users\Florent_2\AppData\Local\Supreme Savings
C:\Windows\Tasks\OptimizerProUpdaterTask{BD0482A2-5520-40D3-B3E3-542C65B03B17}.job
C:\Windows\System32\Tasks\CreateChoiceProcessTask
C:\Windows\System32\Tasks\OptimizerProUpdaterTask{BD0482A2-5520-40D3-B3E3-542C65B03B17}

:Services
MFEAPFK
MFEAVFK
MFEAVFK01
MFEFIREK
MFEHIDK
MFEWFPK

:commands
[CLEARALLRESTOREPOINTS]
[emptytemp]
[start explorer]
[reboot]


▶ Clique sur "Correction" pour lancer la suppression.

▶ Poste le rapport qui logiquement s'ouvrira tout seul en fin de travail appres le redemarrage.

0
Réponse 23 / 50
florentOOO Messages postés 26 Date d'inscription   Statut Membre Dernière intervention  
 
je paramêtre OTL comme avant ?
0
g3n-h@ckm@n Messages postés 14350 Statut Membre 948
 
non pas là
0
Réponse 24 / 50
florentOOO Messages postés 26 Date d'inscription   Statut Membre Dernière intervention  
 
Voila le rapport :

All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
No active process named iexplore.exe was found!
No active process named firefox.exe was found!
No active process named msnmsgr.exe was found!
No active process named Teatimer.exe was found!
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\iTunesHelper deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\wow6432Node\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\wow6432Node\Microsoft\Windows\CurrentVersion\Run\\iTunesHelper not found.
Registry value HKEY_USERS\S-1-5-21-162775216-1638663927-2644177568-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\Akamai NetSession Interface" not found.
Registry value HKEY_LOCAL_MACHINE\Software\mozilla\Firefox\Extensions\\crossriderapp498@crossrider.com deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\wow6432Node\mozilla\Firefox\Extension not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_CLASSES_ROOT\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CLASSES_ROOT\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CLASSES_ROOT\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\SweetIM\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Wow6432Node\SweetIM\ not found.
Registry key HKEY_CLASSES_ROOT\CLSID\{BDA89DCD-8B25-48c7-B1E2-07CA622E0CA8}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BDA89DCD-8B25-48c7-B1E2-07CA622E0CA8}\ not found.
Registry key HKEY_CLASSES_ROOT\Installer\Products\F479A18A22A86E3429341589FF57D81A\ deleted successfully.
========== FILES ==========
C:\Windows\syswow64\searchplugins folder moved successfully.
C:\Windows\syswow64\Extensions folder moved successfully.
C:\90e29d1f48d9dd00f4 folder moved successfully.
C:\Windows\Installer\{A81A974F-8A22-43E6-9243-5198FF758DA1} folder moved successfully.
C:\Users\Florent\AppData\Local\{51919263-49DC-48A8-AFBD-396C6C08B0D9} folder moved successfully.
C:\Users\Florent\AppData\Local\{CC2E6FD4-EF74-4CBE-BD84-344A3F7B35A8} folder moved successfully.
C:\Users\Florent_2\AppData\Local\_\FileViewPro.exe_Url_jn4xqozlzppxcht2yt2wvho2bxkp31wm\1.5.0.0 folder moved successfully.
C:\Users\Florent_2\AppData\Local\_\FileViewPro.exe_Url_jn4xqozlzppxcht2yt2wvho2bxkp31wm folder moved successfully.
C:\Users\Florent_2\AppData\Local\_ folder moved successfully.
C:\Users\Florent_2\AppData\Local\Supreme Savings folder moved successfully.
C:\Windows\Tasks\OptimizerProUpdaterTask{BD0482A2-5520-40D3-B3E3-542C65B03B17}.job moved successfully.
File\Folder C:\Windows\System32\Tasks\CreateChoiceProcessTask not found.
File\Folder C:\Windows\System32\Tasks\OptimizerProUpdaterTask{BD0482A2-5520-40D3-B3E3-542C65B03B17} not found.
========== SERVICES/DRIVERS ==========
Error: No service named MFEAPFK was found to stop!
Service\Driver key MFEAPFK not found.
Error: No service named MFEAVFK was found to stop!
Service\Driver key MFEAVFK not found.
Error: No service named MFEAVFK01 was found to stop!
Service\Driver key MFEAVFK01 not found.
Error: No service named MFEFIREK was found to stop!
Service\Driver key MFEFIREK not found.
Error: No service named MFEHIDK was found to stop!
Service\Driver key MFEHIDK not found.
Error: No service named MFEWFPK was found to stop!
Service\Driver key MFEWFPK not found.
========== COMMANDS ==========
Restore point Set: OTL Restore Point

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Florent
->Temp folder emptied: 168184 bytes
->Temporary Internet Files folder emptied: 4328520 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 6456393 bytes
->Flash cache emptied: 611 bytes

User: Florent_2
->Temp folder emptied: 8345474 bytes
->Temporary Internet Files folder emptied: 7109316 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 365134038 bytes
->Flash cache emptied: 861 bytes

User: hedev
->Temp folder emptied: 43164427 bytes

User: Public

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 938707 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 68111 bytes
%systemroot%\sysnative\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 757 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 416,00 mb

OTL by OldTimer - Version 3.2.69.0 log created on 03282013_190856

Files\Folders moved on Reboot...
C:\Users\Florent_2\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File move failed. C:\Windows\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 50
g3n-h@ckm@n Messages postés 14350 Statut Membre 948
 
ok refais OTL avec les reglages en analyse stp
0
Réponse 26 / 50
florentOOO Messages postés 26 Date d'inscription   Statut Membre Dernière intervention  
 
je n'ai trouvé qu'un seul rapport:

https://www.cjoint.com/c/CCCudMDFQdB
0
Réponse 27 / 50
g3n-h@ckm@n Messages postés 14350 Statut Membre 948
 
tu m'as remis le rapport d'avant lol OTL.txt est à coté de l'executable
0
Réponse 28 / 50
florentOOO Messages postés 26 Date d'inscription   Statut Membre Dernière intervention  
 
All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
No active process named iexplore.exe was found!
No active process named firefox.exe was found!
No active process named msnmsgr.exe was found!
No active process named Teatimer.exe was found!
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\iTunesHelper deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\wow6432Node\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\wow6432Node\Microsoft\Windows\CurrentVersion\Run\\iTunesHelper not found.
Registry value HKEY_USERS\S-1-5-21-162775216-1638663927-2644177568-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\Akamai NetSession Interface" not found.
Registry value HKEY_LOCAL_MACHINE\Software\mozilla\Firefox\Extensions\\crossriderapp498@crossrider.com deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\wow6432Node\mozilla\Firefox\Extension not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_CLASSES_ROOT\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CLASSES_ROOT\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CLASSES_ROOT\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\SweetIM\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Wow6432Node\SweetIM\ not found.
Registry key HKEY_CLASSES_ROOT\CLSID\{BDA89DCD-8B25-48c7-B1E2-07CA622E0CA8}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BDA89DCD-8B25-48c7-B1E2-07CA622E0CA8}\ not found.
Registry key HKEY_CLASSES_ROOT\Installer\Products\F479A18A22A86E3429341589FF57D81A\ deleted successfully.
========== FILES ==========
C:\Windows\syswow64\searchplugins folder moved successfully.
C:\Windows\syswow64\Extensions folder moved successfully.
C:\90e29d1f48d9dd00f4 folder moved successfully.
C:\Windows\Installer\{A81A974F-8A22-43E6-9243-5198FF758DA1} folder moved successfully.
C:\Users\Florent\AppData\Local\{51919263-49DC-48A8-AFBD-396C6C08B0D9} folder moved successfully.
C:\Users\Florent\AppData\Local\{CC2E6FD4-EF74-4CBE-BD84-344A3F7B35A8} folder moved successfully.
C:\Users\Florent_2\AppData\Local\_\FileViewPro.exe_Url_jn4xqozlzppxcht2yt2wvho2bxkp31wm\1.5.0.0 folder moved successfully.
C:\Users\Florent_2\AppData\Local\_\FileViewPro.exe_Url_jn4xqozlzppxcht2yt2wvho2bxkp31wm folder moved successfully.
C:\Users\Florent_2\AppData\Local\_ folder moved successfully.
C:\Users\Florent_2\AppData\Local\Supreme Savings folder moved successfully.
C:\Windows\Tasks\OptimizerProUpdaterTask{BD0482A2-5520-40D3-B3E3-542C65B03B17}.job moved successfully.
File\Folder C:\Windows\System32\Tasks\CreateChoiceProcessTask not found.
File\Folder C:\Windows\System32\Tasks\OptimizerProUpdaterTask{BD0482A2-5520-40D3-B3E3-542C65B03B17} not found.
========== SERVICES/DRIVERS ==========
Error: No service named MFEAPFK was found to stop!
Service\Driver key MFEAPFK not found.
Error: No service named MFEAVFK was found to stop!
Service\Driver key MFEAVFK not found.
Error: No service named MFEAVFK01 was found to stop!
Service\Driver key MFEAVFK01 not found.
Error: No service named MFEFIREK was found to stop!
Service\Driver key MFEFIREK not found.
Error: No service named MFEHIDK was found to stop!
Service\Driver key MFEHIDK not found.
Error: No service named MFEWFPK was found to stop!
Service\Driver key MFEWFPK not found.
========== COMMANDS ==========
Restore point Set: OTL Restore Point

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Florent
->Temp folder emptied: 168184 bytes
->Temporary Internet Files folder emptied: 4328520 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 6456393 bytes
->Flash cache emptied: 611 bytes

User: Florent_2
->Temp folder emptied: 8345474 bytes
->Temporary Internet Files folder emptied: 7109316 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 365134038 bytes
->Flash cache emptied: 861 bytes

User: hedev
->Temp folder emptied: 43164427 bytes

User: Public

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 938707 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 68111 bytes
%systemroot%\sysnative\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 757 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 416,00 mb

OTL by OldTimer - Version 3.2.69.0 log created on 03282013_190856

Files\Folders moved on Reboot...
C:\Users\Florent_2\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File move failed. C:\Windows\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
0
Réponse 29 / 50
g3n-h@ckm@n Messages postés 14350 Statut Membre 948
 
on peut savoir ce que tu fais ? lol
0
Réponse 30 / 50
florentOOO Messages postés 26 Date d'inscription   Statut Membre Dernière intervention  
 
ba ecoute je trouve pas le rapport j'ai que les anciens !
0
Réponse 31 / 50
g3n-h@ckm@n Messages postés 14350 Statut Membre 948
 
mais tu refais bien une analyse avec les reglages que j'ai donnés plus haut ?
0
Réponse 32 / 50
florentOOO Messages postés 26 Date d'inscription   Statut Membre Dernière intervention  
 
ba ouais j'ai fait "correction" avec tes réglages et "analyse" avec les autres réglages.
0
Réponse 33 / 50
g3n-h@ckm@n Messages postés 14350 Statut Membre 948
 
et sur tout l ordinateur tu n'as pas le OTL.txt que je voudrais ???? c'est quoi ce truc de fou !!
0
Réponse 34 / 50
florentOOO Messages postés 26 Date d'inscription   Statut Membre Dernière intervention  
 
j'ai supprimé les anciens et je vais recommencer
0
Réponse 35 / 50
florentOOO Messages postés 26 Date d'inscription   Statut Membre Dernière intervention  
 
extras: https://www.cjoint.com/c/CCCuPL4cawv

OTL : http://cjoint.com/?CCCuQN0riIQ

normalement c'est les bons ;)
0
Réponse 36 / 50
g3n-h@ckm@n Messages postés 14350 Statut Membre 948
 
il semblerait que tu aies eu des soucis avec ta carte graphique dernierement....

=======================

ATTENTION !!! : Script personnalisé pour cette machine uniquement , ne pas reproduire !!

si tu as XP => double clique
si tu as Vista ou windows 7 => clic droit "executer en tant que...."

sur OTL.exe pour le lancer.

▶Copie la liste qui se trouve en gras ci-dessous,

▶ colle-la dans la zone sous "Personnalisation" :


:processes
explorer.exe
iexplore.exe
firefox.exe
msnmsgr.exe
Teatimer.exe

:OTL
IE - HKU\S-1-5-21-162775216-1638663927-2644177568-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll File not found
O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll File not found
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4 - HKLM\..\Run: [IntelTBRunOnce] wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs" File not found
O4 - Startup: C:\Users\Florent\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk
O4 - Startup: C:\Users\Florent_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1

:Reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"QuickTime Task"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Akamai NetSession Interface"=-
"QuickTime Task"=-

:Files
C:\Windows\SysWow64\shortcut_ex.dat

:commands
[emptytemp]
[reboot]


▶ Clique sur "Correction" pour lancer la suppression.

▶ Poste le rapport qui logiquement s'ouvrira tout seul en fin de travail appres le redemarrage.

0
Réponse 37 / 50
florentOOO Messages postés 26 Date d'inscription   Statut Membre Dernière intervention  
 
tu vois je ne savais même pas que j'avais eu un problème avec ma carte graphique^^

voila le rapport :

All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
No active process named iexplore.exe was found!
No active process named firefox.exe was found!
No active process named msnmsgr.exe was found!
No active process named Teatimer.exe was found!
========== OTL ==========
HKU\S-1-5-21-162775216-1638663927-2644177568-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyOverride| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/GENUINE\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@Apple.com/iTunes,version=\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry key HKEY_LOCAL_MACHINE\\Software\Microsoft\Windows\CurrentVersion\RunOnce not found.
C:\Users\Florent\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk moved successfully.
C:\Users\Florent_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktop deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktopChanges deleted successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Akamai NetSession Interface deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task deleted successfully.
========== FILES ==========
C:\Windows\SysWow64\shortcut_ex.dat moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Florent
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Florent_2
->Temp folder emptied: 203518 bytes
->Temporary Internet Files folder emptied: 60306 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 222719447 bytes
->Flash cache emptied: 0 bytes

User: hedev
->Temp folder emptied: 0 bytes

User: Public

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33170 bytes
%systemroot%\system32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 761 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 0 bytes
%systemroot%\sysnative\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 0 bytes
RecycleBin emptied: 2683352 bytes

Total Files Cleaned = 215,00 mb

OTL by OldTimer - Version 3.2.69.0 log created on 03282013_225639

Files\Folders moved on Reboot...
C:\Users\Florent_2\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File move failed. C:\Windows\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
0
Réponse 38 / 50
g3n-h@ckm@n Messages postés 14350 Statut Membre 948
 
fermer toutes les fenêtres et applications lors de l'installation et de l'analyse.

▶ Télécharge ici :

Malwarebytes

▶ Installe le ( choisis bien "francais" ; ne modifie pas les paramètres d'installe ) et mets le à jour .

relance malwarebytes en suivant scrupuleusement ces consignes :

! Déconnecte toi et ferme toutes applications en cours !

▶ Lance Malwarebyte's .

Fais un examen dit "Complet" .

▶ Laisse le programme travailler ( et ne rien faire d'autre avec le PC durant le scan ).
▶ à la fin tu cliques sur "résultat" .
Vérifie que tous les objets infectés soient validés, puis clique sur " suppression " .

Note : si il faut redémarrer ton PC pour finir le nettoyage, fais le !

Poste le rapport sauvegardé après la suppression des objets infectés (dans l'onglet "rapport/log"de Malwarebytes, le dernier en date)

0
Réponse 39 / 50
florentOOO Messages postés 26 Date d'inscription   Statut Membre Dernière intervention  
 
voila le rapport :

Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Version de la base de données: v2013.03.23.11

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Florent_2 :: FLORENTXPS [administrateur]

28/03/2013 23:59:20
mbam-log-2013-03-28 (23-59-20).txt

Type d'examen: Examen complet (C:\|)
Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM
Options d'examen désactivées: P2P
Elément(s) analysé(s): 419170
Temps écoulé: 59 minute(s), 17 seconde(s)

Processus mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Module(s) mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Clé(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)

Valeur(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)

Elément(s) de données du Registre détecté(s): 0
(Aucun élément nuisible détecté)

Dossier(s) détecté(s): 0
(Aucun élément nuisible détecté)

Fichier(s) détecté(s): 3
C:\Pre_Scan\Quarantine\C'_Users_Florent_2_AppData_LocalLow_Sun_Java_Deployment_cache_6.0.P_S\32\7ce1ca0-2f96f8fe (Trojan.Downloader.lb) -> Mis en quarantaine et supprimé avec succès.
C:\Pre_Scan\Quarantine\C'_Users_Florent_2_AppData_LocalLow_Sun_Java_Deployment_cache_6.0.P_S\52\1cc2fd74-2a9d30a3 (Trojan.Downloader) -> Mis en quarantaine et supprimé avec succès.
C:\Users\Florent_2\Downloads\winlogon.exe (Heuristics.Reserved.Word.Exploit) -> Mis en quarantaine et supprimé avec succès.

(fin)
0
Réponse 40 / 50
g3n-h@ckm@n Messages postés 14350 Statut Membre 948
 
ok des soucis persistent ?
0
Précédent
  • 1
  • 2
  • 3

Discussions similaires

processus searchfilterhost
sisylphe -
Xblade -

4 réponses
mon ordinateurs portable asus in search of incredible bug trop
Mateo -
jumulka -

1 réponse
Freebox delta server : Freeplugs
Whill_39 -
bazfile -

19 réponses
mode emploi delta dore driver 520 en français
mimitte -
Colinette -

3 réponses