Fenêtres de pub intempestives
Résolu
toast3r
Messages postés
68
Date d'inscription
Statut
Membre
Dernière intervention
-
g3n-h@ckm@n Messages postés 13238 Date d'inscription Statut Membre Dernière intervention -
g3n-h@ckm@n Messages postés 13238 Date d'inscription Statut Membre Dernière intervention -
Bonjour,
Depuis quelques temps mon serveur m'ouvre des fenêtres de pub intempestives à chaque fois que je me connecte sur internet, rendant parfois la navigation impossible.
J'aurais besoin d'un peu d'aide à ce niveau.
Depuis quelques temps mon serveur m'ouvre des fenêtres de pub intempestives à chaque fois que je me connecte sur internet, rendant parfois la navigation impossible.
J'aurais besoin d'un peu d'aide à ce niveau.
A voir également:
- Fenêtres de pub intempestives
- Supprimer pub youtube - Accueil - Streaming
- Stop pub gratuit - Télécharger - Divers Utilitaires
- Supprimer la pub - Guide
- Netflix avec pub avis - Accueil - Streaming
- Mon clavier n'écrit plus et ouvre des fenetres ✓ - Forum Windows Vista
34 réponses
Télécharge Junkware Removal Tool :
https://www.bleepingcomputer.com/download/junkware-removal-tool/dl/131/
ne clique pas sur Download , attends que la fenetre de telechargement arrive pour confirmation
enregistre ce fichier sur le bureau.
Ferme tout tes navigateurs Sous XP, double-clique sur l'icône et presse une touche lorsque cela sera demandé.
Sous Vista/7/8, clic droit et Exécuter en temps qu'administrateur.
NB: Le bureau disparaitra un instant, c'est normal.
Laisse le programme travailler ne touche plus à rien
Poste le rapport généré à la fin de l'analyse.
Tuto : http://hackinginterdit.blogspot.fr/2013/02/junkware-removal-tool.html
https://www.bleepingcomputer.com/download/junkware-removal-tool/dl/131/
ne clique pas sur Download , attends que la fenetre de telechargement arrive pour confirmation
enregistre ce fichier sur le bureau.
Ferme tout tes navigateurs Sous XP, double-clique sur l'icône et presse une touche lorsque cela sera demandé.
Sous Vista/7/8, clic droit et Exécuter en temps qu'administrateur.
NB: Le bureau disparaitra un instant, c'est normal.
Laisse le programme travailler ne touche plus à rien
Poste le rapport généré à la fin de l'analyse.
Tuto : http://hackinginterdit.blogspot.fr/2013/02/junkware-removal-tool.html
Voilà le log:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.3.9 (08.09.2013:1)
OS: Windows Server 2008 R2 Enterprise x64
Ran by dom on 09/08/2013 at 14:40:44,58
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\lyricspal
~~~ Files
Successfully deleted [File] C:\Windows\tasks\Lyrics-Pal Update.job
~~~ Folders
Successfully deleted: [Folder] "C:\ProgramData\boost_interprocess"
Successfully deleted: [Folder] "C:\Program Files (x86)\lyricspal"
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 09/08/2013 at 14:49:15,53
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Le rapport OTL: https://www.cjoint.com/?3HjpZuu4lks
Le rapport Extras: https://www.cjoint.com/?3Hjp0srio9f
Le rapport Extras: https://www.cjoint.com/?3Hjp0srio9f
Fais analyser le(s) fichier(s) suivants sur Virustotal :
Virus Total
clique sur "Parcourir" et trouve puis selectionne ce(s) fichier(s) :
C:\Windows\SysNative\spep6ci.dll
* Clique maintenant sur Envoyer le fichier. et laisse travailler tant que "Situation actuelle : en cours d'analyse" est affiché.
* Il est possible que le fichier soit mis en file d'attente en raison d'un grand nombre de demandes d'analyses. En ce cas, il te faudra patienter sans actualiser la page.
* Lorsque l'analyse est terminée colle le lien de(s)( la) page(s) dans ta prochaine réponse.
=======
desinstalle tout java
désinstalle ca : "bi_uninstaller" = Bundled software uninstaller
=======
ATTENTION !!! : Script personnalisé pour cette machine uniquement , ne pas reproduire !!
si tu as XP => double clique
si tu as Vista ou windows 7 => clic droit "executer en tant que...."
sur OTL.exe pour le lancer.
▶Copie la liste qui se trouve en gras ci-dessous,
▶ colle-la dans la zone sous "Personnalisation" :
:processes
explorer.exe
iexplore.exe
firefox.exe
msnmsgr.exe
Teatimer.exe
:OTL
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_268.dll File not found
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{9309FA47-1B48-4768-AFA4-9E0556F5DC81}: C:\Program Files (x86)\LyricsPal\125.xpi
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab (Java Plug-in 1.6.0_35)
O16 - DPF: {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab (Java Plug-in 1.6.0_35)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_21-windows-i586.cab (Java Plug-in 10.25.2)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 10.25.2)
[56 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
:Reg
[-HKEY_CURRENT_USER\Software\BI]
[-HKEY_CURRENT_USER\Software\Softonic]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=DWORD:0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications"=DWORD:0
"EnableFirewall"=DWORD:0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications"=DWORD:0
:Files
C:\.dir
C:\ProgramData\.zreglib
C:\Users\Administrateur\AppData\Local\Bundled software uninstaller
C:\Windows\Temp\*
:commands
[RESETHOSTS]
[emptytemp]
▶ Clique sur "Correction" pour lancer la suppression.
▶ Poste le rapport qui logiquement s'ouvrira tout seul en fin de travail appres le redemarrage.
Virus Total
clique sur "Parcourir" et trouve puis selectionne ce(s) fichier(s) :
C:\Windows\SysNative\spep6ci.dll
* Clique maintenant sur Envoyer le fichier. et laisse travailler tant que "Situation actuelle : en cours d'analyse" est affiché.
* Il est possible que le fichier soit mis en file d'attente en raison d'un grand nombre de demandes d'analyses. En ce cas, il te faudra patienter sans actualiser la page.
* Lorsque l'analyse est terminée colle le lien de(s)( la) page(s) dans ta prochaine réponse.
=======
desinstalle tout java
désinstalle ca : "bi_uninstaller" = Bundled software uninstaller
=======
ATTENTION !!! : Script personnalisé pour cette machine uniquement , ne pas reproduire !!
si tu as XP => double clique
si tu as Vista ou windows 7 => clic droit "executer en tant que...."
sur OTL.exe pour le lancer.
▶Copie la liste qui se trouve en gras ci-dessous,
▶ colle-la dans la zone sous "Personnalisation" :
:processes
explorer.exe
iexplore.exe
firefox.exe
msnmsgr.exe
Teatimer.exe
:OTL
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_268.dll File not found
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{9309FA47-1B48-4768-AFA4-9E0556F5DC81}: C:\Program Files (x86)\LyricsPal\125.xpi
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab (Java Plug-in 1.6.0_35)
O16 - DPF: {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab (Java Plug-in 1.6.0_35)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_21-windows-i586.cab (Java Plug-in 10.25.2)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 10.25.2)
[56 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
:Reg
[-HKEY_CURRENT_USER\Software\BI]
[-HKEY_CURRENT_USER\Software\Softonic]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=DWORD:0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications"=DWORD:0
"EnableFirewall"=DWORD:0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications"=DWORD:0
:Files
C:\.dir
C:\ProgramData\.zreglib
C:\Users\Administrateur\AppData\Local\Bundled software uninstaller
C:\Windows\Temp\*
:commands
[RESETHOSTS]
[emptytemp]
▶ Clique sur "Correction" pour lancer la suppression.
▶ Poste le rapport qui logiquement s'ouvrira tout seul en fin de travail appres le redemarrage.
Ca commence mal, je suis incapable de trouver la dll que tu m'as indiqué et encore moins le dossier qui est censé la contenir.
Je zappe l'étape Virus total?
Je zappe l'étape Virus total?
Voilà le rapport OTL:
All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
No active process named iexplore.exe was found!
No active process named firefox.exe was found!
No active process named msnmsgr.exe was found!
No active process named Teatimer.exe was found!
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@adobe.com/FlashPlayer\ deleted successfully.
Registry value HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{9309FA47-1B48-4768-AFA4-9E0556F5DC81} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9309FA47-1B48-4768-AFA4-9E0556F5DC81}\ not found.
File C:\Program Files (x86)\LyricsPal\125.xpi not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktop deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktopChanges deleted successfully.
Starting removal of ActiveX control {8AD9C840-044E-11D1-B3E9-00805F499D93}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {8AD9C840-044E-11D1-B3E9-00805F499D93}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
C:\Windows\Temp\e4j2B72.tmp_dir1368667654\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4j2B72.tmp_dir1368667654\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4j2B72.tmp_dir1368667654 folder deleted successfully.
C:\Windows\Temp\e4j2D18.tmp_dir1360808795\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4j2D18.tmp_dir1360808795\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4j2D18.tmp_dir1360808795 folder deleted successfully.
C:\Windows\Temp\e4j33EB.tmp_dir1365557051\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4j33EB.tmp_dir1365557051\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4j33EB.tmp_dir1365557051 folder deleted successfully.
C:\Windows\Temp\e4j451A.tmp_dir1373419860\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4j451A.tmp_dir1373419860\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4j451A.tmp_dir1373419860 folder deleted successfully.
C:\Windows\Temp\e4j8489.tmp_dir1359234076\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4j8489.tmp_dir1359234076\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4j8489.tmp_dir1359234076 folder deleted successfully.
C:\Windows\Temp\e4j8E59.tmp_dir1367935400\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4j8E59.tmp_dir1367935400\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4j8E59.tmp_dir1367935400 folder deleted successfully.
C:\Windows\Temp\e4j96A3.tmp_dir1358158209\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4j96A3.tmp_dir1358158209\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4j96A3.tmp_dir1358158209 folder deleted successfully.
C:\Windows\Temp\e4j9753.tmp_dir1363897125\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4j9753.tmp_dir1363897125\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4j9753.tmp_dir1363897125 folder deleted successfully.
C:\Windows\Temp\e4j99ED.tmp_dir1358084527\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4j99ED.tmp_dir1358084527\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4j99ED.tmp_dir1358084527 folder deleted successfully.
C:\Windows\Temp\e4j9E60.tmp_dir1358104598\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4j9E60.tmp_dir1358104598\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4j9E60.tmp_dir1358104598 folder deleted successfully.
C:\Windows\Temp\e4j9EBE.tmp_dir1363897378\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4j9EBE.tmp_dir1363897378\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4j9EBE.tmp_dir1363897378 folder deleted successfully.
C:\Windows\Temp\e4jA0E0.tmp_dir1365140276\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jA0E0.tmp_dir1365140276\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jA0E0.tmp_dir1365140276 folder deleted successfully.
C:\Windows\Temp\e4jA11E.tmp_dir1358083716\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jA11E.tmp_dir1358083716\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jA11E.tmp_dir1358083716 folder deleted successfully.
C:\Windows\Temp\e4jA256.tmp_dir1358100002\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jA256.tmp_dir1358100002\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jA256.tmp_dir1358100002 folder deleted successfully.
C:\Windows\Temp\e4jA591.tmp_dir1358157982\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jA591.tmp_dir1358157982\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jA591.tmp_dir1358157982 folder deleted successfully.
C:\Windows\Temp\e4jA6B9.tmp_dir1367861041\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jA6B9.tmp_dir1367861041\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jA6B9.tmp_dir1367861041 folder deleted successfully.
C:\Windows\Temp\e4jA7C3.tmp_dir1368683099\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jA7C3.tmp_dir1368683099\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jA7C3.tmp_dir1368683099 folder deleted successfully.
C:\Windows\Temp\e4jA9C5.tmp_dir1367932107\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jA9C5.tmp_dir1367932107\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jA9C5.tmp_dir1367932107 folder deleted successfully.
C:\Windows\Temp\e4jAA04.tmp_dir1358022270\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jAA04.tmp_dir1358022270\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jAA04.tmp_dir1358022270 folder deleted successfully.
C:\Windows\Temp\e4jAA42.tmp_dir1358024636\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jAA42.tmp_dir1358024636\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jAA42.tmp_dir1358024636 folder deleted successfully.
C:\Windows\Temp\e4jAAFD.tmp_dir1359253302\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jAAFD.tmp_dir1359253302\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jAAFD.tmp_dir1359253302 folder deleted successfully.
C:\Windows\Temp\e4jAB40.tmp_dir1365139935\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jAB40.tmp_dir1365139935\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jAB40.tmp_dir1365139935 folder deleted successfully.
C:\Windows\Temp\e4jABA9.tmp_dir1366852808\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jABA9.tmp_dir1366852808\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jABA9.tmp_dir1366852808 folder deleted successfully.
C:\Windows\Temp\e4jAD9C.tmp_dir1368556953\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jAD9C.tmp_dir1368556953\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jAD9C.tmp_dir1368556953 folder deleted successfully.
C:\Windows\Temp\e4jAE96.tmp_dir1361739977\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jAE96.tmp_dir1361739977\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jAE96.tmp_dir1361739977 folder deleted successfully.
C:\Windows\Temp\e4jAEC5.tmp_dir1373504781\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jAEC5.tmp_dir1373504781\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jAEC5.tmp_dir1373504781 folder deleted successfully.
C:\Windows\Temp\e4jB1D1.tmp deleted successfully.
C:\Windows\Temp\e4jB1D1.tmp_dir1375977186\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jB1D1.tmp_dir1375977186\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jB1D1.tmp_dir1375977186 folder deleted successfully.
C:\Windows\Temp\e4jB29B.tmp_dir1371259195\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jB29B.tmp_dir1371259195\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jB29B.tmp_dir1371259195 folder deleted successfully.
C:\Windows\Temp\e4jB309.tmp_dir1360518789\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jB309.tmp_dir1360518789\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jB309.tmp_dir1360518789 folder deleted successfully.
C:\Windows\Temp\e4jB605.tmp_dir1373038983\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jB605.tmp_dir1373038983\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jB605.tmp_dir1373038983 folder deleted successfully.
C:\Windows\Temp\e4jB6A1.tmp deleted successfully.
C:\Windows\Temp\e4jB6A1.tmp_dir1376045925\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jB6A1.tmp_dir1376045925\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jB6A1.tmp_dir1376045925 folder deleted successfully.
C:\Windows\Temp\e4jB74D.tmp_dir1359883538\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jB74D.tmp_dir1359883538\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jB74D.tmp_dir1359883538 folder deleted successfully.
C:\Windows\Temp\e4jB75C.tmp_dir1360521361\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jB75C.tmp_dir1360521361\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jB75C.tmp_dir1360521361 folder deleted successfully.
C:\Windows\Temp\e4jB8E2.tmp_dir1368559315\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jB8E2.tmp_dir1368559315\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jB8E2.tmp_dir1368559315 folder deleted successfully.
C:\Windows\Temp\e4jB96F.tmp_dir1362018086\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jB96F.tmp_dir1362018086\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jB96F.tmp_dir1362018086 folder deleted successfully.
C:\Windows\Temp\e4jB98E.tmp_dir1361217951\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jB98E.tmp_dir1361217951\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jB98E.tmp_dir1361217951 folder deleted successfully.
C:\Windows\Temp\e4jBA97.tmp_dir1375885356\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jBA97.tmp_dir1375885356\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jBA97.tmp_dir1375885356 folder deleted successfully.
C:\Windows\Temp\e4jBB14.tmp_dir1367843041\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jBB14.tmp_dir1367843041\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jBB14.tmp_dir1367843041 folder deleted successfully.
C:\Windows\Temp\e4jBDB3.tmp_dir1371000133\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jBDB3.tmp_dir1371000133\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jBDB3.tmp_dir1371000133 folder deleted successfully.
C:\Windows\Temp\e4jBE20.tmp deleted successfully.
C:\Windows\Temp\e4jC0AF.tmp_dir1358100191\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jC0AF.tmp_dir1358100191\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jC0AF.tmp_dir1358100191 folder deleted successfully.
C:\Windows\Temp\e4jC189.tmp_dir1375946090\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jC189.tmp_dir1375946090\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jC189.tmp_dir1375946090 folder deleted successfully.
C:\Windows\Temp\e4jC457.tmp_dir1375943326\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jC457.tmp_dir1375943326\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jC457.tmp_dir1375943326 folder deleted successfully.
C:\Windows\Temp\e4jC512.tmp_dir1360319364\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jC512.tmp_dir1360319364\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jC512.tmp_dir1360319364 folder deleted successfully.
C:\Windows\Temp\e4jC5ED.tmp_dir1359234366\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jC5ED.tmp_dir1359234366\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jC5ED.tmp_dir1359234366 folder deleted successfully.
C:\Windows\Temp\e4jC679.tmp_dir1370532712\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jC679.tmp_dir1370532712\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jC679.tmp_dir1370532712 folder deleted successfully.
C:\Windows\Temp\e4jDD34.tmp_dir1358192937\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jDD34.tmp_dir1358192937\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jDD34.tmp_dir1358192937 folder deleted successfully.
C:\Windows\Temp\e4jE04F.tmp_dir1367501406\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jE04F.tmp_dir1367501406\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jE04F.tmp_dir1367501406 folder deleted successfully.
C:\Windows\Temp\e4jFAB2.tmp_dir1358007983\exe4jlib.jar deleted successfully.
C:\Windows\Temp\e4jFAB2.tmp_dir1358007983\i4jdel.exe deleted successfully.
C:\Windows\Temp\e4jFAB2.tmp_dir1358007983 folder deleted successfully.
C:\Windows\Temp\i4j4406208424359778422.tmp deleted successfully.
C:\Windows\Temp\i4j4914797665992618465.tmp deleted successfully.
C:\Windows\Temp\IE62D7.tmp\Windows6.1-KB2533623-x64.cab deleted successfully.
C:\Windows\Temp\IE62D7.tmp folder deleted successfully.
C:\Windows\Temp\IE64CA.tmp\Windows6.1-KB2670838-x64.cab deleted successfully.
C:\Windows\Temp\IE64CA.tmp folder deleted successfully.
C:\Windows\Temp\IE65A5.tmp\Windows6.1-KB2729094-v2-x64.cab deleted successfully.
C:\Windows\Temp\IE65A5.tmp folder deleted successfully.
C:\Windows\Temp\lu3hto.tmp folder deleted successfully.
C:\Windows\Temp\sv1ow9.tmp folder deleted successfully.
========== REGISTRY ==========
Registry key HKEY_CURRENT_USER\Software\BI\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Softonic\ deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus\\"DisableMonitoring"|DWORD:0 /E : value set successfully!
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\\"DisableNotifications"|DWORD:0 /E : value set successfully!
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\\"EnableFirewall"|DWORD:0 /E : value set successfully!
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile\\"DisableNotifications"|DWORD:0 /E : value set successfully!
========== FILES ==========
C:\.dir moved successfully.
C:\ProgramData\.zreglib moved successfully.
C:\Users\Administrateur\AppData\Local\Bundled software uninstaller folder moved successfully.
C:\Windows\Temp\BootClean.log moved successfully.
C:\Windows\Temp\hsperfdata_T300-DOM$ folder moved successfully.
C:\Windows\Temp\i4jdel0.exe moved successfully.
C:\Windows\Temp\ib2 moved successfully.
C:\Windows\Temp\ib3 moved successfully.
C:\Windows\Temp\ib4 moved successfully.
C:\Windows\Temp\ib5 moved successfully.
C:\Windows\Temp\KB2789642_10.0.30319 folder moved successfully.
C:\Windows\Temp\KB2804576_10.0.30319 folder moved successfully.
C:\Windows\Temp\KB2835393_10.0.30319 folder moved successfully.
C:\Windows\Temp\KB2836939_10.0.30319 folder moved successfully.
C:\Windows\Temp\KB2840628_10.0.30319 folder moved successfully.
C:\Windows\Temp\MpCmdRun.log moved successfully.
C:\Windows\Temp\MPInstrumentation folder moved successfully.
C:\Windows\Temp\MpSigStub.log moved successfully.
C:\Windows\Temp\Nuance\OmniPageCSDK16 folder moved successfully.
C:\Windows\Temp\Nuance folder moved successfully.
C:\Windows\Temp\Serviio folder moved successfully.
C:\Windows\Temp\sess_sqadh51cn3opeb2he6vfqjrpg6 moved successfully.
Folder move failed. C:\Windows\Temp\~3H8MIQ~.~-~ scheduled to be moved on reboot.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
[EMPTYTEMP]
User: Administrateur
->Temp folder emptied: 8019159 bytes
->Temporary Internet Files folder emptied: 613150 bytes
->Java cache emptied: 451990 bytes
->Google Chrome cache emptied: 53613976 bytes
->Flash cache emptied: 1058 bytes
User: All Users
User: Classic .NET AppPool
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: dom
->Temp folder emptied: 11136977 bytes
->Temporary Internet Files folder emptied: 189184945 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 12642531 bytes
->Flash cache emptied: 12499 bytes
User: Public
User: Toast3r
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 25808896 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
Session Manager Temp folder emptied: 0 bytes
Session Manager Tmp folder emptied: 0 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 95683 bytes
%systemroot%\sysnative\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 751 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 288,00 mb
OTL by OldTimer - Version 3.2.69.0 log created on 08092013_195307
Files\Folders moved on Reboot...
File\Folder C:\Windows\Temp\~3H8MIQ~.~-~ not found!
File\Folder C:\Users\Administrateur\AppData\Local\Temp\2\~XF6CWO~.~-~\workfile.lck not found!
File\Folder C:\Windows\temp\~3H8MIQ~.~-~\workfile.lck not found!
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
ok fais le ménage alors... ^^
=> http://security-helpzone.com/gen-hackman/nettoyage-en-fin-de-desinfection/
=> http://security-helpzone.com/gen-hackman/nettoyage-en-fin-de-desinfection/
Le rapport Delfix:
# DelFix v10.4 - Rapport créé le 10/08/2013 à 10:12:43 # Mis à jour le 19/07/2013 par Xplode # Nom d'utilisateur : Administrateur - T300-DOM # Système d'exploitation : Windows Server 2008 R2 Enterprise Service Pack 1 (64 bits) ~ Activation de l'UAC ... OK ~ Suppression des outils de désinfection ... Supprimé : C:\USBFix Supprimé : C:\_OTL Supprimé : C:\UsbFix [Clean 2] T300-DOM.txt Supprimé : C:\UsbFix [Clean 3] T300-DOM.txt Supprimé : C:\UsbFix [Clean 4] T300-DOM.txt Supprimé : C:\Users\Administrateur\Desktop\Extras (2).Txt Supprimé : C:\Users\Administrateur\Desktop\Extras.Txt Supprimé : C:\Users\Administrateur\Desktop\OTL (2).Txt Supprimé : C:\Users\Administrateur\Desktop\OTL.Txt Supprimé : C:\Users\Administrateur\Desktop\OTL.exe Supprimé : C:\Users\Administrateur\Desktop\UsbFix.exe Supprimée : HKCU\Software\USBFix Supprimée : HKLM\SOFTWARE\OldTimer Tools Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\USBFix ~ Sauvegarde de la base de registre ... OK ~ Purge de la restauration système ... Nouveau point de restauration créé ! ~ Réinitialisation des paramètres système ... OK ########## - EOF - ##########
