Se connecter / S'enregistrer
Votre question

Ecran bleu récurrent

Tags :
  • Sécurité
  • Écrans
Dernière réponse : dans Sécurité et virus
11 Août 2011 10:58:53

Bonjour,

Depuis quelques temps, j'ai droit à un écran bleu qui redémarre mon ordi mais depuis quelques jours, ils sont de plus en plus nombreux et je ne sais absolument pas d'où ils proviennent.

Voici le message de Windows qui s'affiche au redémarrage.


Signature du problème :
Nom d’événement de problème: BlueScreen
Version du système: 6.0.6002.2.2.0.768.2
Identificateur de paramètres régionaux: 1036

Informations supplémentaires sur le problème :
BCCode: 1000007e
BCP1: C0000005
BCP2: 82481588
BCP3: 9C48AAA4
BCP4: 9C48A7A0
OS Version: 6_0_6002
Service Pack: 2_0
Product: 768_1

Fichiers aidant à décrire le problème :
C:\Windows\Minidump\Mini081111-01.dmp
C:\Users\Almode\AppData\Local\Temp\WER-97048-0.sysdata.xml
C:\Users\Almode\AppData\Local\Temp\WERB23E.tmp.version.txt

Lire notre déclaration de confidentialité :
http://go.microsoft.com/fwlink/?linkid=50163&clcid=0x04...



Merci d'avance.

Autres pages sur : ecran bleu recurrent

11 Août 2011 11:58:48

salut

Télécharge ici : http://www.nirsoft.net/utils/bluescreenview.zip Blue screen View

Décompresse l'archive sur ton Bureau.
Double clique sur le fichier BlueScreenView.exe pour le lancer. (Clic droit Executer en tant qu'administrateur sous Vista/Seven)

A la fin du scan, , clique sur Edit puis Select All.
Puis Go File et Save Selected Items.
Sauve le rapport sous BSOD.txt.
Ouvre BSOD.txt dans le Bloc-notes, copie son contenu et poste le dans ta réponse.
11 Août 2011 17:43:26

==================================================
Dump File : Mini081111-02.dmp
Crash Time : 11/08/2011 11:19:12
Bug Check String : DRIVER_IRQL_NOT_LESS_OR_EQUAL
Bug Check Code : 0x000000d1
Parameter 1 : 0x00000034
Parameter 2 : 0x00000002
Parameter 3 : 0x00000000
Parameter 4 : 0x82ae88c4
Caused By Driver : storport.sys
Caused By Address : storport.sys+18c4
File Description : Microsoft Storage Port Driver
Product Name : Microsoft® Windows® Operating System
Company : Microsoft Corporation
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Processor : 32-bit
Crash Address : ntkrnlpa.exe+4dfd9
Stack Address 1 : storport.sys+18c4
Stack Address 2 : storport.sys+13c5
Stack Address 3 : nvstor32.sys+40fd
Computer Name :
Full Path : C:\Windows\Minidump\Mini081111-02.dmp
Processors Count : 2
Major Version : 15
Minor Version : 6002
Dump File Size : 152 112
==================================================

==================================================
Dump File : Mini081111-01.dmp
Crash Time : 11/08/2011 10:51:21
Bug Check String : SYSTEM_THREAD_EXCEPTION_NOT_HANDLED
Bug Check Code : 0x1000007e
Parameter 1 : 0xc0000005
Parameter 2 : 0x82481588
Parameter 3 : 0x9c48aaa4
Parameter 4 : 0x9c48a7a0
Caused By Driver : ntkrnlpa.exe
Caused By Address : ntkrnlpa.exe+3e588
File Description : NT Kernel & System
Product Name : Microsoft® Windows® Operating System
Company : Microsoft Corporation
File Version : 6.0.6002.18484 (vistasp2_gdr.110617-0336)
Processor : 32-bit
Crash Address : ntkrnlpa.exe+3e588
Stack Address 1 : ntkrnlpa.exe+3e60c
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\Mini081111-01.dmp
Processors Count : 2
Major Version : 15
Minor Version : 6002
Dump File Size : 152 032
==================================================
Contenus similaires
11 Août 2011 23:26:09

Télécharge http://dl.dropbox.com/u/21363431/Reload_Tdsskiller.exe Reload_TDSSKiller

Lance le

choisis : lancer le nettoyage

le logiciel va automatiquement telecharger la derniere version puis

TDSSKiller va s'ouvrir , clique sur " Start Scan "

une fois qu'il a terminé , redemarre s'il te le demande (Reboot Now)pour finir de nettoyer

sinon , ferme tdssKiller et le rapport s'affichera sur le bureau

Copie/Colle son contenu dans ta prochaine réponse.
12 Août 2011 12:25:36

2011/08/12 10:37:10.0119 5688 TDSS rootkit removing tool 2.5.15.0 Aug 11 2011 16:32:13
2011/08/12 10:37:10.0235 5688 ================================================================================
2011/08/12 10:37:10.0235 5688 SystemInfo:
2011/08/12 10:37:10.0235 5688
2011/08/12 10:37:10.0235 5688 OS Version: 6.0.6002 ServicePack: 2.0
2011/08/12 10:37:10.0235 5688 Product type: Workstation
2011/08/12 10:37:10.0235 5688 ComputerName: PC-DE-AMRAM
2011/08/12 10:37:10.0236 5688 UserName: Almode
2011/08/12 10:37:10.0236 5688 Windows directory: C:\Windows
2011/08/12 10:37:10.0236 5688 System windows directory: C:\Windows
2011/08/12 10:37:10.0236 5688 Processor architecture: Intel x86
2011/08/12 10:37:10.0236 5688 Number of processors: 2
2011/08/12 10:37:10.0236 5688 Page size: 0x1000
2011/08/12 10:37:10.0236 5688 Boot type: Normal boot
2011/08/12 10:37:10.0236 5688 ================================================================================
2011/08/12 10:37:10.0948 5688 Initialize success
2011/08/12 10:37:22.0510 4928 ================================================================================
2011/08/12 10:37:22.0510 4928 Scan started
2011/08/12 10:37:22.0510 4928 Mode: Manual;
2011/08/12 10:37:22.0510 4928 ================================================================================
2011/08/12 10:37:24.0153 4928 61883 (585e64bb6dfbc0a2f1f0b554ded012df) C:\Windows\system32\DRIVERS\61883.sys
2011/08/12 10:37:24.0202 4928 ACEDRV07 (4e5451dd0aec8504d7f8030dd2d4c416) C:\Windows\system32\drivers\ACEDRV07.sys
2011/08/12 10:37:24.0328 4928 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
2011/08/12 10:37:24.0457 4928 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
2011/08/12 10:37:24.0578 4928 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
2011/08/12 10:37:24.0632 4928 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
2011/08/12 10:37:24.0672 4928 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
2011/08/12 10:37:24.0776 4928 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
2011/08/12 10:37:24.0832 4928 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
2011/08/12 10:37:24.0879 4928 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
2011/08/12 10:37:24.0935 4928 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
2011/08/12 10:37:24.0964 4928 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
2011/08/12 10:37:24.0997 4928 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
2011/08/12 10:37:25.0046 4928 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
2011/08/12 10:37:25.0072 4928 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\DRIVERS\amdk8.sys
2011/08/12 10:37:25.0215 4928 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
2011/08/12 10:37:25.0269 4928 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
2011/08/12 10:37:25.0421 4928 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
2011/08/12 10:37:25.0492 4928 atapi (2d9c903dc76a66813d350a562de40ed9) C:\Windows\system32\drivers\atapi.sys
2011/08/12 10:37:25.0613 4928 Avc (f4b56425a00beb32f5fa6603ff7b0ea2) C:\Windows\system32\DRIVERS\avc.sys
2011/08/12 10:37:25.0688 4928 avgio (f1d43170fdd7399ee17ea32d4f868b0c) C:\Program Files\Avira\AntiVir Desktop\avgio.sys
2011/08/12 10:37:25.0783 4928 avgntflt (14fe36d8f2c6a2435275338d061a0b66) C:\Windows\system32\DRIVERS\avgntflt.sys
2011/08/12 10:37:25.0823 4928 avipbb (ad9bd66a862116e79cb45bb6be46055f) C:\Windows\system32\DRIVERS\avipbb.sys
2011/08/12 10:37:25.0887 4928 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
2011/08/12 10:37:25.0953 4928 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
2011/08/12 10:37:26.0006 4928 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
2011/08/12 10:37:26.0057 4928 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
2011/08/12 10:37:26.0087 4928 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
2011/08/12 10:37:26.0122 4928 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
2011/08/12 10:37:26.0153 4928 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
2011/08/12 10:37:26.0189 4928 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
2011/08/12 10:37:26.0221 4928 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
2011/08/12 10:37:26.0252 4928 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
2011/08/12 10:37:26.0289 4928 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
2011/08/12 10:37:26.0331 4928 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
2011/08/12 10:37:26.0370 4928 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
2011/08/12 10:37:26.0416 4928 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
2011/08/12 10:37:26.0482 4928 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
2011/08/12 10:37:26.0513 4928 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys
2011/08/12 10:37:26.0557 4928 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
2011/08/12 10:37:26.0590 4928 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
2011/08/12 10:37:26.0660 4928 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
2011/08/12 10:37:26.0779 4928 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
2011/08/12 10:37:26.0904 4928 Dot4 (4f59c172c094e1a1d46463a8dc061cbd) C:\Windows\system32\DRIVERS\Dot4.sys
2011/08/12 10:37:26.0933 4928 Dot4Print (80bf3ba09f6f2523c8f6b7cc6dbf7bd5) C:\Windows\system32\DRIVERS\Dot4Prt.sys
2011/08/12 10:37:26.0976 4928 dot4usb (c55004ca6b419b6695970dfe849b122f) C:\Windows\system32\DRIVERS\dot4usb.sys
2011/08/12 10:37:27.0032 4928 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
2011/08/12 10:37:27.0085 4928 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
2011/08/12 10:37:27.0147 4928 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
2011/08/12 10:37:27.0228 4928 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
2011/08/12 10:37:27.0317 4928 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
2011/08/12 10:37:27.0371 4928 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
2011/08/12 10:37:27.0445 4928 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
2011/08/12 10:37:27.0523 4928 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
2011/08/12 10:37:27.0596 4928 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
2011/08/12 10:37:27.0646 4928 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
2011/08/12 10:37:27.0693 4928 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
2011/08/12 10:37:27.0803 4928 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
2011/08/12 10:37:27.0861 4928 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
2011/08/12 10:37:27.0945 4928 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
2011/08/12 10:37:27.0972 4928 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
2011/08/12 10:37:28.0093 4928 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
2011/08/12 10:37:28.0138 4928 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
2011/08/12 10:37:28.0163 4928 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
2011/08/12 10:37:28.0212 4928 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
2011/08/12 10:37:28.0313 4928 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
2011/08/12 10:37:28.0381 4928 HTTP (0eeeca26c8d4bde2a4664db058a81937) C:\Windows\system32\drivers\HTTP.sys
2011/08/12 10:37:28.0435 4928 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
2011/08/12 10:37:28.0485 4928 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
2011/08/12 10:37:28.0554 4928 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
2011/08/12 10:37:28.0694 4928 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
2011/08/12 10:37:28.0894 4928 IntcAzAudAddService (903e17b027cf4e6b19a948a84fdbf05d) C:\Windows\system32\drivers\RTKVHDA.sys
2011/08/12 10:37:29.0049 4928 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
2011/08/12 10:37:29.0098 4928 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
2011/08/12 10:37:29.0159 4928 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
2011/08/12 10:37:29.0237 4928 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
2011/08/12 10:37:29.0282 4928 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
2011/08/12 10:37:29.0325 4928 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
2011/08/12 10:37:29.0360 4928 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
2011/08/12 10:37:29.0408 4928 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
2011/08/12 10:37:29.0450 4928 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
2011/08/12 10:37:29.0494 4928 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
2011/08/12 10:37:29.0536 4928 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
2011/08/12 10:37:29.0605 4928 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
2011/08/12 10:37:29.0666 4928 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys
2011/08/12 10:37:29.0751 4928 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
2011/08/12 10:37:29.0799 4928 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
2011/08/12 10:37:29.0835 4928 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
2011/08/12 10:37:29.0873 4928 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
2011/08/12 10:37:29.0898 4928 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
2011/08/12 10:37:29.0943 4928 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
2011/08/12 10:37:29.0989 4928 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
2011/08/12 10:37:30.0032 4928 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
2011/08/12 10:37:30.0079 4928 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
2011/08/12 10:37:30.0111 4928 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
2011/08/12 10:37:30.0140 4928 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
2011/08/12 10:37:30.0171 4928 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
2011/08/12 10:37:30.0215 4928 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
2011/08/12 10:37:30.0258 4928 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
2011/08/12 10:37:30.0312 4928 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
2011/08/12 10:37:30.0359 4928 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
2011/08/12 10:37:30.0406 4928 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
2011/08/12 10:37:30.0458 4928 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
2011/08/12 10:37:30.0528 4928 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
2011/08/12 10:37:30.0579 4928 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
2011/08/12 10:37:30.0642 4928 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
2011/08/12 10:37:30.0769 4928 MSDV (343291a4dfd7c923c3f71f550830ec1c) C:\Windows\system32\DRIVERS\msdv.sys
2011/08/12 10:37:30.0805 4928 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
2011/08/12 10:37:30.0841 4928 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
2011/08/12 10:37:30.0905 4928 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
2011/08/12 10:37:30.0935 4928 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
2011/08/12 10:37:30.0962 4928 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
2011/08/12 10:37:31.0007 4928 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
2011/08/12 10:37:31.0044 4928 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
2011/08/12 10:37:31.0070 4928 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
2011/08/12 10:37:31.0117 4928 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
2011/08/12 10:37:31.0176 4928 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
2011/08/12 10:37:31.0237 4928 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
2011/08/12 10:37:31.0288 4928 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
2011/08/12 10:37:31.0336 4928 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
2011/08/12 10:37:31.0381 4928 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
2011/08/12 10:37:31.0421 4928 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
2011/08/12 10:37:31.0518 4928 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
2011/08/12 10:37:31.0563 4928 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
2011/08/12 10:37:31.0753 4928 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
2011/08/12 10:37:31.0855 4928 nmwcd (cfe3462a9e94a57dcd9676f6b7fe7f67) C:\Windows\system32\drivers\ccdcmb.sys
2011/08/12 10:37:31.0938 4928 nmwcdc (8f2a94f991f8c73cec26b4b5620d1edc) C:\Windows\system32\drivers\ccdcmbo.sys
2011/08/12 10:37:31.0988 4928 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
2011/08/12 10:37:32.0038 4928 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
2011/08/12 10:37:32.0100 4928 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
2011/08/12 10:37:32.0182 4928 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
2011/08/12 10:37:32.0215 4928 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
2011/08/12 10:37:32.0268 4928 NVENETFD (d958a2b5f6ad5c3b8ccdc4d7da62466c) C:\Windows\system32\DRIVERS\nvmfdx32.sys
2011/08/12 10:37:32.0503 4928 nvlddmkm (92c2f98dd35388d2b764824878b1e229) C:\Windows\system32\DRIVERS\nvlddmkm.sys
2011/08/12 10:37:32.0814 4928 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
2011/08/12 10:37:32.0857 4928 nvrd32 (085e88101d0d4b321abf9c7e2b6ee99d) C:\Windows\system32\drivers\nvrd32.sys
2011/08/12 10:37:32.0898 4928 nvsmu (62754e376185eacbb73d06fea0ffc54a) C:\Windows\system32\DRIVERS\nvsmu.sys
2011/08/12 10:37:32.0931 4928 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
2011/08/12 10:37:32.0972 4928 nvstor32 (17e55bacbe90b0e97a2219b4b67a6011) C:\Windows\system32\drivers\nvstor32.sys
2011/08/12 10:37:33.0002 4928 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
2011/08/12 10:37:33.0103 4928 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
2011/08/12 10:37:33.0158 4928 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
2011/08/12 10:37:33.0203 4928 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
2011/08/12 10:37:33.0231 4928 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
2011/08/12 10:37:33.0294 4928 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\Windows\system32\DRIVERS\pccsmcfd.sys
2011/08/12 10:37:33.0394 4928 PCD5SRVC{BD6912E3-AC9D80E8-05040000} (1d4913979f7eab1a8f00cc82d8327df1) C:\PROGRA~1\PC-DOC~1\PCD5SRVC.pkms
2011/08/12 10:37:33.0635 4928 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
2011/08/12 10:37:33.0681 4928 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
2011/08/12 10:37:33.0715 4928 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
2011/08/12 10:37:33.0789 4928 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
2011/08/12 10:37:33.0990 4928 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
2011/08/12 10:37:34.0024 4928 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
2011/08/12 10:37:34.0087 4928 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
2011/08/12 10:37:34.0135 4928 PxHelp20 (b572ed0c3e6165643fa116af20425a54) C:\Windows\system32\DRIVERS\PxHelp20.sys
2011/08/12 10:37:34.0229 4928 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
2011/08/12 10:37:34.0325 4928 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
2011/08/12 10:37:34.0376 4928 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
2011/08/12 10:37:34.0409 4928 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
2011/08/12 10:37:34.0454 4928 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
2011/08/12 10:37:34.0512 4928 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
2011/08/12 10:37:34.0569 4928 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
2011/08/12 10:37:34.0618 4928 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
2011/08/12 10:37:34.0663 4928 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
2011/08/12 10:37:34.0703 4928 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
2011/08/12 10:37:34.0736 4928 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
2011/08/12 10:37:34.0799 4928 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
2011/08/12 10:37:34.0867 4928 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
2011/08/12 10:37:34.0905 4928 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
2011/08/12 10:37:34.0959 4928 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
2011/08/12 10:37:35.0000 4928 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
2011/08/12 10:37:35.0031 4928 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
2011/08/12 10:37:35.0067 4928 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
2011/08/12 10:37:35.0127 4928 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
2011/08/12 10:37:35.0156 4928 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
2011/08/12 10:37:35.0178 4928 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
2011/08/12 10:37:35.0210 4928 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
2011/08/12 10:37:35.0252 4928 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
2011/08/12 10:37:35.0295 4928 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
2011/08/12 10:37:35.0327 4928 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
2011/08/12 10:37:35.0386 4928 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
2011/08/12 10:37:35.0434 4928 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
2011/08/12 10:37:35.0501 4928 sptd (cdddec541bc3c96f91ecb48759673505) C:\Windows\system32\Drivers\sptd.sys
2011/08/12 10:37:35.0501 4928 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: cdddec541bc3c96f91ecb48759673505
2011/08/12 10:37:35.0507 4928 sptd - detected LockedFile.Multi.Generic (1)
2011/08/12 10:37:35.0535 4928 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
2011/08/12 10:37:35.0595 4928 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
2011/08/12 10:37:35.0647 4928 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
2011/08/12 10:37:35.0702 4928 ssmdrv (3ad0362cf68de3ac500e981700242cca) C:\Windows\system32\DRIVERS\ssmdrv.sys
2011/08/12 10:37:35.0761 4928 StarOpen (306521935042fc0a6988d528643619b3) C:\Windows\system32\drivers\StarOpen.sys
2011/08/12 10:37:35.0800 4928 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
2011/08/12 10:37:35.0832 4928 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
2011/08/12 10:37:35.0871 4928 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
2011/08/12 10:37:35.0904 4928 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
2011/08/12 10:37:35.0985 4928 Tcpip (2756186e287139310997090797e0182b) C:\Windows\system32\drivers\tcpip.sys
2011/08/12 10:37:36.0076 4928 Tcpip6 (2756186e287139310997090797e0182b) C:\Windows\system32\DRIVERS\tcpip.sys
2011/08/12 10:37:36.0138 4928 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
2011/08/12 10:37:36.0189 4928 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
2011/08/12 10:37:36.0255 4928 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
2011/08/12 10:37:36.0308 4928 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
2011/08/12 10:37:36.0371 4928 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
2011/08/12 10:37:36.0446 4928 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
2011/08/12 10:37:36.0482 4928 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
2011/08/12 10:37:36.0531 4928 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
2011/08/12 10:37:36.0593 4928 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
2011/08/12 10:37:36.0643 4928 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
2011/08/12 10:37:36.0698 4928 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
2011/08/12 10:37:36.0754 4928 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
2011/08/12 10:37:36.0827 4928 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
2011/08/12 10:37:36.0862 4928 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
2011/08/12 10:37:36.0897 4928 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
2011/08/12 10:37:36.0955 4928 upperdev (ec01da44b090d2651fc032c8b9257232) C:\Windows\system32\DRIVERS\usbser_lowerflt.sys
2011/08/12 10:37:37.0004 4928 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
2011/08/12 10:37:37.0043 4928 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
2011/08/12 10:37:37.0091 4928 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
2011/08/12 10:37:37.0165 4928 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
2011/08/12 10:37:37.0215 4928 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
2011/08/12 10:37:37.0246 4928 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
2011/08/12 10:37:37.0309 4928 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
2011/08/12 10:37:37.0359 4928 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
2011/08/12 10:37:37.0414 4928 usbser (d575246188f63de0accf6eac5fb59e6a) C:\Windows\system32\DRIVERS\usbser.sys
2011/08/12 10:37:37.0455 4928 UsbserFilt (4abd37cfbd710e64f01f9da8710c73f7) C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys
2011/08/12 10:37:37.0495 4928 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
2011/08/12 10:37:37.0531 4928 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
2011/08/12 10:37:37.0596 4928 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
2011/08/12 10:37:37.0631 4928 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
2011/08/12 10:37:37.0663 4928 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
2011/08/12 10:37:37.0702 4928 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
2011/08/12 10:37:37.0772 4928 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
2011/08/12 10:37:37.0810 4928 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
2011/08/12 10:37:37.0865 4928 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
2011/08/12 10:37:37.0920 4928 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
2011/08/12 10:37:37.0981 4928 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
2011/08/12 10:37:38.0058 4928 VX1000 (2fbf9e882fc28a315a86aa1f831c144e) C:\Windows\system32\DRIVERS\VX1000.sys
2011/08/12 10:37:38.0161 4928 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
2011/08/12 10:37:38.0189 4928 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
2011/08/12 10:37:38.0209 4928 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
2011/08/12 10:37:38.0246 4928 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
2011/08/12 10:37:38.0314 4928 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
2011/08/12 10:37:38.0520 4928 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
2011/08/12 10:37:38.0581 4928 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
2011/08/12 10:37:38.0654 4928 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
2011/08/12 10:37:38.0697 4928 WsAudioDevice_383 (85ece26f326c2d07ba77a60343468272) C:\Windows\system32\drivers\WsAudioDevice_383.sys
2011/08/12 10:37:38.0855 4928 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys
2011/08/12 10:37:38.0956 4928 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys
2011/08/12 10:37:39.0000 4928 MBR (0x1B8) (13daecff4c8434452f3fcfeeac8a16f7) \Device\Harddisk0\DR0
2011/08/12 10:37:39.0005 4928 \Device\Harddisk0\DR0 - detected Rootkit.Win32.TDSS.tdl4 (0)
2011/08/12 10:37:39.0017 4928 Boot (0x1200) (33b77c94902fa39ac699d556c315b819) \Device\Harddisk0\DR0\Partition0
2011/08/12 10:37:39.0052 4928 Boot (0x1200) (a5fee117b22c1d38f1d834ce7e8fd912) \Device\Harddisk0\DR0\Partition1
2011/08/12 10:37:39.0060 4928 ================================================================================
2011/08/12 10:37:39.0060 4928 Scan finished
2011/08/12 10:37:39.0060 4928 ================================================================================
2011/08/12 10:37:39.0074 5160 Detected object count: 2
2011/08/12 10:37:39.0074 5160 Actual detected object count: 2
2011/08/12 10:38:13.0574 5160 LockedFile.Multi.Generic(sptd) - User select action: Skip
2011/08/12 10:38:13.0714 5160 \Device\Harddisk0\DR0 (Rootkit.Win32.TDSS.tdl4) - will be cured after reboot
2011/08/12 10:38:13.0715 5160 \Device\Harddisk0\DR0 - ok
2011/08/12 10:38:13.0716 5160 Rootkit.Win32.TDSS.tdl4(\Device\Harddisk0\DR0) - User select action: Cure
2011/08/12 10:38:18.0536 5704 Deinitialize success
13 Août 2011 05:11:46

héhé ^^ on l'a eu le rootkit ^^ mdr il croyait nous feinter ^^

^Télécharge ici : http://www.itxassociates.com/OT-Tools/OTL.exe OTL

enregistre le sur ton Bureau.

si tu as XP => double clique
si tu as Vista ou windows 7 => clic droit "executer en tant que...."


sur OTL.exe pour le lancer.

Coche les 2 cases Lop et Purity

Coche la case devant tous les utilisateurs

règle age du fichier sur "60 jours"

dans la moitié gauche , mets tout sur "tous"

ne modifie pas ceci :

"fichiers créés" et "fichiers Modifiés"


Clic sur Analyse.

A la fin du scan, le Bloc-Notes va s'ouvrir avec le rapport (OTL.txt).

Ce fichier est sur ton Bureau (en général C:\Documents and settings\le_nom_de_ta_session\OTL.txt)

NE LE POSTE PAS SUR LE FORUM (trop long=)

Pour me le transmettre clique sur ce lien : http://www.cijoint.fr/

Clique sur Parcourir et cherche le fichier ci-dessus.

Clique sur Ouvrir.

Clique sur "Cliquez ici pour déposer le fichier".

juste au niveau du bouton , en fin de chargement du fichier , Un lien de cette forme apparaitra :

http://www.cijoint.fr/cjlink.php?file=cjge368/cijSKAP5f...

Copie ce lien dans ta réponse.

Tu feras la meme chose avec le "Extra.txt" qui logiquement sera aussi sur ton bureau.
14 Août 2011 11:29:05

salut desinstalle adobe reader 9

==========================

Télécharge ici : http://www.teamxscript.org/adremoverTelechargement.html Ad-remover sur ton bureau :

Déconnecte toi et ferme toutes applications en cours !

si tu as XP => double clique
si tu as Vista ou windows 7 => clic droit "executer en tant que...."


sur "Ad-R.exe" pour lancer l'installation et laisse les paramètres d'installation par défaut .

clique le raccourci Ad-remover qui est sur ton bureau pour lancer l'outil .

Au menu principal choisis "option Nettoyer " et tape sur [entrée] .

Laisse travailler l'outil et ne touche à rien ...

Poste le rapport qui apparait à la fin , sur le forum ...

( Le rapport est sauvegardé aussi sous C:\Ad-report.log )
( CTRL+A Pour tout sélectionner , CTRL+C pour copier et CTRL+V pour coller )

Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.

=================================================

bonjour :

Télécharge ici : http://www.teamxscript.org/usbfixTelechargement.html USBFIX sur ton bureau

branche tous tes periphériques sans les ouvrir

/!\ Désactive provisoirement et seulement le temps de l'utilisation d'USBFIX, la protection en temps réel de ton Antivirus et de tes Antispywares, qui peuvent gêner fortement la procédure de recherche et de nettoyage de l'outil.

si tu as XP => double clique
si tu as Vista ou windows 7 => clic droit "executer en tant que...."


sur l'icône Usbfix située sur ton Bureau.
Sur la page, clique sur le bouton :

choisi l option Suppression

UsbFix scannera ton pc , laisse travailler l outil.

Ensuite post le rapport UsbFix.txt qui apparaitra avec le bureau .

Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque.( C:\UsbFix.txt )

( CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )

================================================

  • desactive ton antivirus
  • desactive Windows defender si présent
  • desactive ton pare-feu


    Télécharge ici : http://dl.dropbox.com/u/21363431/Pre_scan.exe Pre_Scan , puis enregistre-le sur ton bureau

    s'il n'est pas sur ton bureau coupe-le de ton dossier telechargements et colle-le sur ton bureau

    Avertissement: Il y aura une extinction courte du bureau --> pas de panique.

    une fois telechargé lance-le , laisse faire le scan jusqu'à l'apparition de "Pre_scan.txt" sur le bureau.

  • si l'outil detecte un proxy et que tu n'en as pas installé
    clique sur "supprimer le proxy"

  • si l'outil semble ne pas avoir fonctionné renomme-le winlogon , ou change son extension en .com ou .scr

    Il se peut que l'outil soit un peu long sur la reattribution des fichiers tout depend combien tu en as , laisse-le travailler

  • Poste Pre_Scan.txt qui apparaitra sur le bureau en fin de scan

    NE LE POSTE PAS SUR LE FORUM (il est trop long)

  • clique sur ce lien : http://www.cijoint.fr/

  • Clique sur Parcourir et cherche le fichier ci-dessus.

  • Clique sur Ouvrir.

  • Clique sur "Cliquez ici pour déposer le fichier".

    Un lien de cette forme :

    http://www.cijoint.fr/cjlink.php?file=cjge368/cijSKAP5f...

    est ajouté dans la page.

  • Copie ce lien dans ta réponse.

    14 Août 2011 13:36:31

    Salut, je vais faire ce que tu as dit..
    14 Août 2011 15:46:12

    Sa veux ouvrir Ad-remover ca fait error:not administator
    15 Août 2011 11:45:45

    salut tu respectes bien ceci ?

    si tu as Vista ou windows 7 => clic droit "executer en tant que...."
    16 Août 2011 14:41:23

    Voila le rapport de Ad Remover. J'avais mal lu tes indications et ça m'a induis en erreur. Je te poste les autres rapports dans les minutes à suivre.


    ======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======

    Mis à jour par TeamXscript le 12/04/11
    Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
    Site web: http://www.teamxscript.org

    C:\Program Files\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 14:34:38 le 16/08/2011, Mode normal

    Microsoft® Windows Vista™ Édition Familiale Basique Service Pack 2 (X86)
    Almode@PC-DE-AMRAM (Compaq-Presario NM827AA-ABF CQ5003FR)

    ============== ACTION(S) ==============


    Dossier supprimé: C:\Users\Almode\AppData\Roaming\Mozilla\FireFox\Profiles\usxntigx.default\conduit
    Dossier supprimé: C:\Users\Almode\AppData\Roaming\Mozilla\FireFox\Profiles\usxntigx.default\ConduitEngine
    Dossier supprimé: C:\Users\Almode\AppData\Roaming\Mozilla\FireFox\Profiles\usxntigx.default\extensions\engine@conduit.com
    Dossier supprimé: C:\Users\Almode\AppData\Local\Conduit
    Dossier supprimé: C:\Users\Almode\AppData\LocalLow\Conduit
    Dossier supprimé: C:\Program Files\Conduit
    Dossier supprimé: C:\Users\Almode\AppData\LocalLow\ConduitEngine
    Dossier supprimé: C:\Program Files\ConduitEngine
    Dossier supprimé: C:\Program Files\FunWebProducts
    Dossier supprimé: C:\Users\Almode\AppData\LocalLow\PriceGong

    (!) -- Fichiers temporaires supprimés.


    -- Fichier ouvert: C:\Users\Almode\AppData\Roaming\Mozilla\FireFox\Profiles\usxntigx.default\Prefs.js --
    Ligne supprimée: user_pref("CT2542115.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT254...
    Ligne supprimée: user_pref("CT2905330.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT290...
    Ligne supprimée: user_pref("CommunityToolbar.CantToolbarBeEngineOwner", "CT2905330");
    Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1297255/1292926/FR", "\"0\"...
    Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/909619/905414/FR", "\"0\"")...
    Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/935078/930862/FR", "\"0\"")...
    Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2542115", ...
    Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2905330", ...
    Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&lo...
    Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&loc...
    Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&lo...
    Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&local...
    Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\...
    Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-services.com/DLG.pkg?ver=3.2.5...
    Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.2....
    Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.3....
    Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT2905330",...
    Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/toolbar/", "\"63447123010783...
    Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=0", "63...
    Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=3/13/20...
    Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.conduit-services.com/?ctid=CT2542115&octid=...
    Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.conduit-services.com/?ctid=CT2905330&octid=...
    Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.search.conduit.com/root/CT2542115/CT2542115...
    Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Funky/minimize.gif...
    Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Funky/play.gif", "...
    Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Funky/stop.gif", "...
    Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Funky/stopped.GIF"...
    Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Funky/vol.gif", "\...
    Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=fr-fr", "\"...
    Ligne supprimée: user_pref("CommunityToolbar.EngineOwner", "CT2542115");
    Ligne supprimée: user_pref("CommunityToolbar.EngineOwnerGuid", "{4daac69c-cba7-45e2-9bc8-1044483d3352}");
    Ligne supprimée: user_pref("CommunityToolbar.EngineOwnerToolbarId", "softonic_france");
    Ligne supprimée: user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
    Ligne supprimée: user_pref("CommunityToolbar.OriginalEngineOwner", "CT2542115");
    Ligne supprimée: user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "{4daac69c-cba7-45e2-9bc8-1044483d3352}");
    Ligne supprimée: user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "softonic_france");
    Ligne supprimée: user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://search.yahoo.com/search?ei=UTF-8&...
    Ligne supprimée: user_pref("CommunityToolbar.ToolbarsList", "ConduitEngine,CT2542115,CT2905330");
    Ligne supprimée: user_pref("CommunityToolbar.ToolbarsList2", "CT2542115,CT2905330");
    Ligne supprimée: user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Mon Aug 08 2011 18:40:38 GMT+02...
    Ligne supprimée: user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
    Ligne supprimée: user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Tue Aug 09 2011 22:57:06 GMT+0200");
    Ligne supprimée: user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
    Ligne supprimée: user_pref("CommunityToolbar.alert.locale", "en");
    Ligne supprimée: user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
    Ligne supprimée: user_pref("CommunityToolbar.alert.loginLastCheckTime", "Tue Aug 09 2011 22:56:57 GMT+0200");
    Ligne supprimée: user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1305622559");
    Ligne supprimée: user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
    Ligne supprimée: user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
    Ligne supprimée: user_pref("CommunityToolbar.alert.showTrayIcon", false);
    Ligne supprimée: user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
    Ligne supprimée: user_pref("CommunityToolbar.alert.userId", "dbf39e76-b0d7-4d0b-8231-21ea6fe22c4c");
    Ligne supprimée: user_pref("CommunityToolbar.globalUserId", "c5463f04-b018-4ad6-86f1-ae57491fb69c");
    Ligne supprimée: user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
    Ligne supprimée: user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
    Ligne supprimée: user_pref("ConduitEngine.DialogsGetterLastCheckTime", "Mon Aug 08 2011 19:03:25 GMT+0200");
    Ligne supprimée: user_pref("ConduitEngine.FirstServerDate", "06/07/2011 15");
    Ligne supprimée: user_pref("ConduitEngine.FirstTime", true);
    Ligne supprimée: user_pref("ConduitEngine.FirstTimeFF3", true);
    Ligne supprimée: user_pref("ConduitEngine.HasUserGlobalKeys", true);
    Ligne supprimée: user_pref("ConduitEngine.Initialize", true);
    Ligne supprimée: user_pref("ConduitEngine.InitializeCommonPrefs", true);
    Ligne supprimée: user_pref("ConduitEngine.InstalledDate", "Tue Jun 07 2011 14:29:31 GMT+0200");
    Ligne supprimée: user_pref("ConduitEngine.IsMulticommunity", false);
    Ligne supprimée: user_pref("ConduitEngine.IsOpenThankYouPage", false);
    Ligne supprimée: user_pref("ConduitEngine.IsOpenUninstallPage", true);
    Ligne supprimée: user_pref("ConduitEngine.LanguagePackLastCheckTime", "Tue Aug 09 2011 22:57:08 GMT+0200");
    Ligne supprimée: user_pref("ConduitEngine.LastLogin_3.2.5.2", "Tue Jun 07 2011 14:29:32 GMT+0200");
    Ligne supprimée: user_pref("ConduitEngine.LastLogin_3.3.5.1", "Wed Aug 10 2011 13:33:26 GMT+0200");
    Ligne supprimée: user_pref("ConduitEngine.PublisherContainerWidth", 0);
    Ligne supprimée: user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
    Ligne supprimée: user_pref("ConduitEngine.SettingsLastCheckTime", "Wed Aug 10 2011 13:33:26 GMT+0200");
    Ligne supprimée: user_pref("ConduitEngine.UserID", "UN13945993915811428");
    Ligne supprimée: user_pref("ConduitEngine.engineLocale", "fr");
    Ligne supprimée: user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Tue Aug 09 2011 22:57:08 GMT+0200");
    Ligne supprimée: user_pref("ConduitEngine.globalFirstTimeInfoLastCheckTime", "Wed Aug 10 2011 13:33:26 GMT+0200");
    Ligne supprimée: user_pref("ConduitEngine.initDone", true);
    Ligne supprimée: user_pref("ConduitEngine.isAppTrackingManagerOn", true);
    -- Fichier Fermé --


    Clé supprimée: HKLM\Software\Classes\CLSID\{1D4DB7D2-6EC9-47a3-BD87-1E41684E07BB}
    Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1D4DB7D2-6EC9-47a3-BD87-1E41684E07BB}
    Clé supprimée: HKLM\Software\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
    Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
    Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D}
    Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}
    Clé supprimée: HKLM\Software\Classes\CLSID\{64AC1608-E55E-4ADA-AEB0-7D523C0CA74A}
    Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{64AC1608-E55E-4ADA-AEB0-7D523C0CA74A}
    Clé supprimée: HKLM\Software\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
    Clé supprimée: HKLM\Software\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
    Clé supprimée: HKLM\Software\Classes\TypeLib\{1D4DB7D0-6EC9-47A3-BD87-1E41684E07BB}
    Clé supprimée: HKLM\Software\Classes\Conduit.Engine
    Clé supprimée: HKLM\Software\Classes\FunWebProductsInstaller.Start
    Clé supprimée: HKLM\Software\Classes\FunWebProductsInstaller.Start.1
    Clé supprimée: HKLM\Software\Classes\Toolbar.CT1060933
    Clé supprimée: HKLM\Software\Classes\Toolbar.CT2542115
    Clé supprimée: HKLM\Software\Classes\Toolbar.CT2719315
    Clé supprimée: HKLM\Software\Classes\Toolbar.CT2905330
    Clé supprimée: HKLM\Software\Conduit
    Clé supprimée: HKLM\Software\conduitEngine
    Clé supprimée: HKLM\Software\FunWebProducts
    Clé supprimée: HKCU\Software\AppDataLow\Toolbar
    Clé supprimée: HKCU\Software\AppDataLow\Software\conduitEngine
    Clé supprimée: HKCU\Software\AppDataLow\Software\PriceGong
    Clé supprimée: HKLM\Software\Applian Technologies\OpenCandy
    Clé supprimée: HKLM\Software\Cheat Engine\OpenCandy
    Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
    Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
    Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FE55E93E-1126-4A9C-AB41-B2A5C17287DD}
    Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\conduitEngine
    Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine

    Valeur supprimée: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{30F9B915-B755-4826-820B-08FBA6BD249D}


    ============== SCAN ADDITIONNEL ==============

    **** Mozilla Firefox Version [3.6.13 (fr)] ****

    Plugins\npBitCometAgent.dll (BitComet)
    HKLM_MozillaPlugins\@funwebproducts.com/Plugin (x)
    HKLM_MozillaPlugins\@ngm.nexoneu.com/NxGame (x)
    HKLM_MozillaPlugins\@pandonetworks.com/PandoWebPlugin (x)
    HKLM_Extensions|{A27F3FEF-1113-4cfb-A032-8E12D7D8EE70} - C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension\

    -- C:\Users\Almode\AppData\Roaming\Mozilla\FireFox\Profiles\usxntigx.default --
    Extensions\illimitux@illimitux.net (Illimitux)
    Extensions\toolbar@waltershop.com (WalterShop)
    Extensions\{3d4d238c-9c48-47cd-a95c-53259acf9e56} (Messenger Plus FR Community Toolbar)
    Extensions\{4daac69c-cba7-45e2-9bc8-1044483d3352} (Softonic_France Community Toolbar)
    Prefs.js - browser.download.lastDir, C:\\Users\\Almode\\Desktop
    Prefs.js - browser.search.defaultenginename, Yahoo
    Prefs.js - browser.search.defaulturl, hxxp://search.yahoo.com/search?ei=UTF-8&fr=ytff-&p=
    Prefs.js - browser.search.selectedEngine, Yahoo
    Prefs.js - browser.startup.homepage, hxxp://www.google.fr
    Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.2.13
    Prefs.js - keyword.URL, hxxp://search.yahoo.com/search?ei=UTF-8&fr=ytff-&p=

    ========================================

    **** Google Chrome Version [13.0.782.112] ****

    Extension\jfmjfhklogoienhpfnppmbcbjfjnkonk (C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx) (?)
    Extension\mjafdclidlcgljfnladchfabmhcchnid (C:\Users\Almode\AppData\Local\Temp\mjafdclidlcgljfnladchfabmhcchnid.crx) (x)

    -- C:\Users\Almode\AppData\Local\Google\Chrome\User Data\Default --
    Preferences - default_search_provider: "Google" (Activé: true) (?)
    Preferences - homepage: hxxp://www.yahoo.fr/
    Preferences - homepage_is_newtabpage: false
    Plugin - Chrome NaCl (Activé: false) (C:\Users\Almode\AppData\Local\Google\Chrome\Application\13.0.782.112\ppGoogleNaClPluginChrome.dll)
    Plugin - BitCometAgent (Activé: true) (C:\Program Files\Mozilla Firefox\plugins\npBitCometAgent.dll)
    Plugin - RealJukebox NS Plugin (Activé: true) (C:\Program Files\Mozilla Firefox\plugins\nprjplug.dll)
    Plugin - Pando Web Plugin (Activé: true) (C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll) (x)
    Plugin - Veetle TV Player (Activé: true) (C:\Program Files\Veetle\Player\npvlc.dll) (x)
    Plugin - Veetle TV Core (Activé: true) (C:\Program Files\Veetle\plugins\npVeetle.dll) (x)
    Plugin - 3DVIA player (Activé: true) (C:\Program Files\Virtools\3D Life Player\npvirtools.dll)
    Plugin - "Java" (Activé: true)
    Plugin - "Silverlight" (Activé: true)
    Plugin - "Chrome NaCl" (Activé: false)
    Plugin - "BitCometAgent" (Activé: true)
    Plugin - "RealJukebox NS Plugin" (Activé: true)
    Plugin - "Fun Web Products Plugin Stub" (Activé: true)
    Plugin - "Pando Web Plugin" (Activé: true)
    Plugin - "Veetle TV Player" (Activé: true)
    Plugin - "Veetle TV Core" (Activé: true)
    Plugin - "3DVIA player" (Activé: true)
    Plugin - "Nexon Game Controller" (Activé: true)
    Preferences - urls_to_restore_on_startup: hxxp://www.yahoo.fr/, hxxp://www.google.fr/

    ========================================

    **** Internet Explorer Version [9.0.8112.16421] ****

    HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnh...
    HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896
    HKCU_Main|Start Page - hxxp://fr.msn.com/
    HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
    HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm
    HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKLM_Main|Start Page - hxxp://fr.msn.com/
    HKCU_URLSearchHooks|{4daac69c-cba7-45e2-9bc8-1044483d3352} (x)
    HKCU_URLSearchHooks|{3d4d238c-9c48-47cd-a95c-53259acf9e56} (x)
    HKCU_SearchScopes\{5B291E6C-9A74-4034-971B-A4B007A0B315} - "Web Search..." (hxxp://radiobar.toolbarhome.com/search.aspx?q={searchTerms}&srch=dsp)
    HKCU_SearchScopes\{D6C4D653-1097-4771-831B-F0BB3F117595} - "Kelkoo" (hxxp://fr.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromfor...)
    HKLM_SearchScopes\{D6C4D653-1097-4771-831B-F0BB3F117595} - "Kelkoo" (hxxp://fr.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromfor...)
    HKCU_Toolbar\WebBrowser|{5B291E6C-9A74-4034-971B-A4B007A0B315} (x)
    HKCU_Toolbar\WebBrowser|{1392B8D2-5C05-419F-A8F6-B9F15A596612} (x)
    HKCU_Toolbar\WebBrowser|{B9E20919-FA55-471F-989B-B107BF8DE785} (x)
    HKCU_ElevationPolicy\{0C78FDF8-41B6-4867-A43C-2F148635F24D} - C:\Program Files\RadioBar\lip.exe (x)
    HKCU_ElevationPolicy\{4CC08250-75DD-4A7E-BEDD-E0AE102C9D3C} - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
    HKCU_ElevationPolicy\{5B65C7B7-D078-4662-81CB-ABA482747B38} - C:\Program Files\VideoLAN\VLC\vlc.exe (?)
    HKCU_ElevationPolicy\{F6406B2D-39A7-4566-A174-E19DDD818A95} - C:\Users\Almode\AppData\Local\Yahoo!\BrowserPlus\2.4.21\BrowserPlusCore.exe (x)
    HKLM_ElevationPolicy\492b7cbe-180e-429d-80b2-97af1e4629d8 - C:\Program Files\Freecorder\FreecorderToolbarHelper.exe (x)
    HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files\Internet Explorer\iedw.exe (x)
    HKLM_ElevationPolicy\{A2D14993-7315-4f91-AD76-20605495ED6C} - C:\Program Files\ESTsoft\ALUpdate\ALUpExt.exe (x)
    HKLM_ElevationPolicy\{F2632B95-A2AD-4283-B49A-34D4802BA647} - C:\Program Files\ESTsoft\ALUpdate\ALUpdate.exe (x)
    HKLM_Extensions\{D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - "BitComet" (C:\Program Files\BitComet\tools\BitCometBHO_1.4.11.9.dll,203)
    BHO\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - "BitComet Helper" (C:\Program Files\BitComet\tools\BitCometBHO_1.4.11.9.dll)
    BHO\{5C255C8A-E604-49b4-9D64-90988571CECB} (?)

    ========================================

    C:\Program Files\Ad-Remover\Quarantine: 164 Fichier(s)
    C:\Program Files\Ad-Remover\Backup: 14 Fichier(s)

    C:\Ad-Report-CLEAN[1].txt - 16/08/2011 14:34:42 (17968 Octet(s))

    Fin à: 14:35:55, 16/08/2011

    ============== E.O.F ==============
    16 Août 2011 15:13:23

    Le rapport d'USB Fix


    ############################## | UsbFix 7.056 | [Suppression]

    Utilisateur: Almode (Administrateur) # PC-DE-AMRAM [Compaq-Presario NM827AA-ABF CQ5003FR]
    Mis à jour le 15/08/2011 par El Desaparecido
    Lancé à 14:43:24 | 16/08/2011
    Site Web: http://www.teamxscript.org
    Submit your sample: http://www.teamxscript.org/Upload.php
    Contact: TeamXscript.ElDesaparecido@gmail.com

    CPU: AMD Athlon(tm) 64 X2 Dual Core Processor 5000+
    CPU 2: AMD Athlon(tm) 64 X2 Dual Core Processor 5000+
    Microsoft® Windows Vista™ Édition Familiale Basique (6.0.6002 32-Bit) # Service Pack 2
    Internet Explorer 9.0.8112.16421

    Pare-feu Windows: Activé
    RAM -> 1790 Mo
    C:\ (%systemdrive%) -> Disque fixe # 287 Go (151 Go libre(s) - 53%) [COMPAQ] # NTFS
    D:\ -> Disque fixe # 11 Go (2 Go libre(s) - 14%) [FACTORY_IMAGE] # NTFS
    E:\ -> CD-ROM
    G:\ -> CD-ROM
    H:\ -> Disque amovible # 2 Go (306 Mo libre(s) - 16%) [USB DISK] # FAT

    ################## | Éléments infectieux |

    Supprimé! C:\Users\Almode\fifa.exe
    Supprimé! C:\Windows\system32\autorun.inf
    Supprimé! C:\Windows\Tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job
    Supprimé! C:\Windows\Tasks\{62C40AA6-4406-467a-A5A5-DFDF1B559B7A}.job
    Supprimé! C:\Windows\Tasks\{BBAEAEAF-1275-40e2-BD6C-BC8F88BD114A}.job
    Supprimé! C:\$RECYCLE.BIN\S-1-5-21-1835092046-446308208-1586404005-500
    Supprimé! C:\$RECYCLE.BIN\S-1-5-21-1972301564-3474235584-991511132-1000
    Supprimé! C:\$RECYCLE.BIN\S-1-5-21-4271468853-1555334626-1238916866-1000
    Supprimé! C:\$RECYCLE.BIN\S-1-5-21-4271468853-1555334626-1238916866-1001
    Supprimé! C:\$RECYCLE.BIN\S-1-5-21-4271468853-1555334626-1238916866-500
    Supprimé! C:\$RECYCLE.BIN\S-1-5-21-4271468853-1555334626-1238916866-501
    Supprimé! D:\$RECYCLE.BIN\S-1-5-21-1972301564-3474235584-991511132-1000
    Supprimé! D:\$RECYCLE.BIN\S-1-5-21-4271468853-1555334626-1238916866-1000
    Supprimé! D:\$RECYCLE.BIN\S-1-5-21-4271468853-1555334626-1238916866-1001
    Supprimé! D:\$RECYCLE.BIN\S-1-5-21-4271468853-1555334626-1238916866-500
    Supprimé! D:\$RECYCLE.BIN\S-1-5-21-4271468853-1555334626-1238916866-501

    ################## | Registre |

    Non supprimé ! HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{62C40AA6-4406-467a-A5A5-DFDF1B559B7A}
    Non supprimé ! HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{BBAEAEAF-1275-40e2-BD6C-BC8F88BD114A}
    Supprimé! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System|DisableTaskMgr
    Supprimé! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\explorer|NoClose
    Supprimé! HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run|KUGHGZXAKT
    Supprimé! HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run|Metropolis

    ################## | Mountpoints2 |

    Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{2cdf7a06-ba65-11de-85fb-00248c135240}
    Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{4e03fc45-c350-11df-8eec-00248c135240}
    Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{673be488-2f24-11de-afd6-00248c135240}
    Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{8e6bcc94-8a6a-11df-9014-00248c135240}

    ################## | Listing |

    [16/08/2011 - 14:48:17 | SHD ] C:\$Recycle.Bin
    [25/06/2010 - 12:25:10 | D ] C:\9f07592d6fafae8791f20e2cca94fe16
    [16/08/2011 - 14:35:56 | N | 18108] C:\Ad-Report-CLEAN[1].txt
    [18/09/2006 - 23:43:36 | N | 24] C:\autoexec.bat
    [13/12/2009 - 18:11:58 | D ] C:\BigFishGamesCache
    [09/02/2010 - 20:15:58 | D ] C:\Boonty
    [24/11/2009 - 15:42:09 | D ] C:\Boot
    [11/04/2009 - 08:36:36 | RASH | 333257] C:\bootmgr
    [12/02/2009 - 22:02:53 | N | 8192] C:\BOOTSECT.BAK
    [16/08/2011 - 14:32:42 | D ] C:\Config.Msi
    [18/09/2006 - 23:43:37 | N | 10] C:\config.sys
    [03/04/2011 - 11:36:45 | D ] C:\ConverterOutput
    [02/11/2006 - 14:59:44 | SHD ] C:\Documents and Settings
    [05/03/2011 - 22:06:47 | D ] C:\Downloads
    [07/11/2007 - 08:00:40 | N | 17734] C:\eula.1028.txt
    [07/11/2007 - 08:00:40 | N | 17734] C:\eula.1031.txt
    [07/11/2007 - 08:00:40 | N | 10134] C:\eula.1033.txt
    [07/11/2007 - 08:00:40 | N | 17734] C:\eula.1036.txt
    [07/11/2007 - 08:00:40 | N | 17734] C:\eula.1040.txt
    [07/11/2007 - 08:00:40 | N | 118] C:\eula.1041.txt
    [07/11/2007 - 08:00:40 | N | 17734] C:\eula.1042.txt
    [07/11/2007 - 08:00:40 | N | 17734] C:\eula.2052.txt
    [07/11/2007 - 08:00:40 | N | 17734] C:\eula.3082.txt
    [29/05/2009 - 13:42:13 | N | 125] C:\FINIS_IT.TXT
    [07/11/2007 - 08:00:40 | N | 1110] C:\globdata.ini
    [16/08/2011 - 14:37:44 | ASH | 1878175744] C:\hiberfil.sys
    [07/02/2010 - 13:16:39 | D ] C:\hp
    [11/02/2010 - 20:27:23 | N | 4059] C:\hpfr3320.log
    [11/02/2010 - 20:27:20 | N | 0] C:\hpfr3320.xml
    [08/06/2011 - 21:45:50 | N | 460824] C:\img2-001.raw
    [07/11/2007 - 08:03:18 | N | 562688] C:\install.exe
    [07/11/2007 - 08:00:40 | N | 843] C:\install.ini
    [07/11/2007 - 08:03:18 | N | 76304] C:\install.res.1028.dll
    [07/11/2007 - 08:03:18 | N | 96272] C:\install.res.1031.dll
    [07/11/2007 - 08:03:18 | N | 91152] C:\install.res.1033.dll
    [07/11/2007 - 08:03:18 | N | 97296] C:\install.res.1036.dll
    [07/11/2007 - 08:03:18 | N | 95248] C:\install.res.1040.dll
    [07/11/2007 - 08:03:18 | N | 81424] C:\install.res.1041.dll
    [07/11/2007 - 08:03:18 | N | 79888] C:\install.res.1042.dll
    [07/11/2007 - 08:03:18 | N | 75792] C:\install.res.2052.dll
    [07/11/2007 - 08:03:18 | N | 96272] C:\install.res.3082.dll
    [18/11/2009 - 19:31:16 | N | 0] C:\IO.SYS
    [07/08/2011 - 22:19:11 | D ] C:\MAGIX
    [18/11/2009 - 19:31:16 | N | 0] C:\MSDOS.SYS
    [06/04/2010 - 23:25:43 | RHD ] C:\MSOCache
    [28/09/2010 - 20:43:31 | D ] C:\Netgame
    [03/10/2010 - 22:08:17 | D ] C:\Nexon
    [24/02/2011 - 13:22:27 | D ] C:\OutputFolder
    [16/08/2011 - 14:37:43 | ASH | 2192044032] C:\pagefile.sys
    [21/01/2008 - 04:43:50 | D ] C:\PerfLogs
    [16/08/2011 - 14:35:35 | D ] C:\Program Files
    [11/08/2011 - 11:29:55 | HD ] C:\ProgramData
    [04/08/2011 - 18:17:41 | D ] C:\Romustrike 1.5.4
    [16/08/2011 - 14:31:57 | SHD ] C:\System Volume Information
    [20/10/2010 - 15:01:42 | D ] C:\TEMP
    [12/02/2009 - 14:15:11 | N | 349] C:\updatedatfix.log
    [16/08/2011 - 14:48:17 | D ] C:\UsbFix
    [16/08/2011 - 14:43:27 | A | 6094] C:\UsbFix.txt
    [12/08/2011 - 22:03:28 | D ] C:\Users
    [07/11/2007 - 08:00:40 | N | 5686] C:\vcredist.bmp
    [07/11/2007 - 08:09:22 | N | 1442522] C:\VC_RED.cab
    [07/11/2007 - 08:12:28 | N | 232960] C:\VC_RED.MSI
    [16/08/2011 - 14:39:13 | D ] C:\Windows
    [26/08/2008 - 14:37:52 | N | 458] C:\Windows Sidebar
    [03/04/2011 - 11:37:44 | D ] C:\YouTubeDownload
    [16/08/2011 - 14:48:17 | SHD ] D:\$RECYCLE.BIN
    [22/06/2007 - 17:44:20 | N | 438328] D:\boo.mgr
    [13/02/2009 - 00:17:35 | D ] D:\boot
    [19/01/2008 - 00:45:46 | SH | 333203] D:\bootmgr
    [28/03/2008 - 19:54:00 | SH | 1242] D:\Desktop.ini
    [13/02/2009 - 00:17:39 | D ] D:\hp
    [28/05/2009 - 18:30:26 | N | 22] D:\HPCD.sys
    [28/03/2011 - 07:50:47 | N | 312] D:\MASTER.LOG
    [13/02/2009 - 00:17:39 | D ] D:\PC-Doctor for Win PE
    [06/11/2008 - 17:29:02 | N | 422] D:\pcdr.ini
    [28/05/2009 - 18:30:26 | D ] D:\PRELOAD
    [19/06/2007 - 16:22:02 | N | 112102] D:\protect.arabic
    [19/06/2007 - 16:22:06 | N | 109016] D:\protect.catalan
    [19/06/2007 - 16:22:18 | N | 109342] D:\protect.chinese hong kong
    [19/06/2007 - 16:22:16 | N | 109360] D:\protect.chinese simplified
    [19/06/2007 - 16:22:18 | N | 109342] D:\protect.chinese traditional
    [04/07/2007 - 12:31:56 | N | 111514] D:\protect.czech
    [19/06/2007 - 16:22:04 | N | 109124] D:\protect.danish
    [19/06/2007 - 16:22:12 | N | 109049] D:\protect.dutch
    [19/06/2007 - 16:22:06 | N | 109092] D:\protect.english
    [19/06/2007 - 16:22:06 | N | 109092] D:\protect.finnish
    [19/06/2007 - 16:22:06 | N | 109060] D:\protect.french
    [19/06/2007 - 16:22:04 | N | 109094] D:\protect.german
    [04/07/2007 - 12:33:04 | N | 112496] D:\protect.greek
    [04/07/2007 - 12:36:08 | N | 112439] D:\protect.hebrew
    [19/06/2007 - 16:22:08 | N | 108979] D:\protect.italian
    [19/06/2007 - 16:22:10 | N | 109795] D:\protect.japanese
    [19/06/2007 - 16:22:10 | N | 109487] D:\protect.korean
    [04/07/2007 - 12:39:18 | N | 111341] D:\protect.norwegian
    [04/07/2007 - 12:39:54 | N | 111520] D:\protect.polish
    [04/07/2007 - 12:41:00 | N | 111396] D:\protect.portuguese
    [04/07/2007 - 12:40:26 | N | 111645] D:\protect.portuguese brazilian
    [19/06/2007 - 16:22:14 | N | 163804] D:\protect.russian
    [05/07/2007 - 11:32:26 | N | 111738] D:\protect.serbian latin
    [04/07/2007 - 12:46:48 | N | 111733] D:\protect.slovak
    [19/06/2007 - 16:22:06 | N | 109016] D:\protect.spanish
    [04/07/2007 - 12:43:52 | N | 111384] D:\protect.swedish
    [04/07/2007 - 12:45:02 | N | 111608] D:\protect.turkish
    [28/05/2009 - 16:29:38 | N | 26] D:\RCBoot.sys
    [13/02/2009 - 00:17:35 | RD ] D:\RECOVERY
    [13/02/2009 - 00:17:34 | N | 44] D:\RESTORE.INI
    [13/02/2009 - 00:17:35 | D ] D:\SOURCES
    [04/06/2011 - 17:10:08 | D ] D:\sys
    [07/10/2009 - 20:45:40 | SHD ] D:\System Volume Information

    ################## | Vaccin |

    C:\Autorun.inf -> Vaccin créé par UsbFix (TeamXscript)
    D:\Autorun.inf -> Vaccin créé par UsbFix (TeamXscript)

    ################## | Upload |

    Veuillez envoyer le fichier: C:\UsbFix_Upload_Me_PC-DE-AMRAM.zip
    http://www.teamxscript.org/Upload.php
    Merci de votre contribution.

    ################## | E.O.F |
    16 Août 2011 15:31:57

    C'est bon, j'ai effectué toutes tes démarches jusqu'à maintenant ;) 
    16 Août 2011 21:34:44

    fais glisser une icone n'importe quel fichier sur Pre_scan , pre_script va apparaitre

    ouvre Pre_script et colle ce qui suit en gras, à l'interieur du texte qui s'ouvre ,
    sans les lignes , en une seule fois en le mettant en surbrillance :
    ___________________________________________________
    Registry::
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    ""=-
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "NeroCheck"=-
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
    ""= [?]
    [-HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\permham]
    [-HKEY_CURRENT_USER\Software\cacaoweb]
    [-HKEY_CURRENT_USER\Software\ei78eok2lxf]
    [-HKEY_LOCAL_MACHINE\Software\BrowserChoice]

    file::
    C:\Windows\iun6002.exe
    C:\ProgramData\mtbjfghn.xbe

    folder::
    C:\Users\Almode\AppData\Roaming\Mozilla\Firefox\Profiles\usxntigx.default\extensions\{3d4d238c-9c48-47cd-a95c-53259acf9e56}
    C:\Users\Almode\AppData\Roaming\Mozilla\Firefox\Profiles\usxntigx.default\extensions\{4daac69c-cba7-45e2-9bc8-1044483d3352}
    C:\9f07592d6fafae8791f20e2cca94fe16
    C:\Windows\95431C66CF9A4913BFFF6050785AFB65.TMP
    C:\Users\Almode\AppData\Roaming\cacaoweb

    Host::

    attrib::

    ___________________________________________________

    copie-le (ctrl+c ou clique droit sur la selection puis => copier)

    puis onglet fichier => enregistrer (pas enregistrer sous...) , puis ferme le texte

    des fenetres noires risquent de clignoter , c'est normal , c'est le programme qui travaille

    poste Pre_Script.txt qui apparaitra sur le bureau en fin de travail

    si ton bureau ne reapparait pas => ctrl+alt+supp , gestionnaire des taches => onglet fichier => nouvelle tache puis tape <gras>explorer</gras>
    16 Août 2011 23:43:55

    Voili voilou !


    ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Pre_Script | 1.0.2.55 ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

    ¤¤¤¤¤ XP | Vista | Seven - 32/64 bits ¤¤¤¤¤

    Mise à jour : 25/07/2011 | 17.30 Par g3n-h@ckm@n
    Utilisateur : Almode (Administrateurs)
    Ordinateur : PC-DE-AMRAM
    Système d'exploitation : Windows Vista (TM) Home Basic (32 bits)
    Internet Explorer : 9.0.8112.16421
    Mozilla Firefox : 3.6.13 (fr)

    Switchs possibles :

    processes:: | file:: | folder:: | Registry::
    Driver:: | replace:: | DNS:: | Command::
    attrib:: | txt:: | Host:: | NsLook::
    list:: | IP::

    Script : 23:38:57

    ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
    ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

    Modification du registre effectuéé

    ¤

    Supprimé : C:\Windows\iun6002.exe
    Supprimé : C:\ProgramData\mtbjfghn.xbe

    ¤

    Supprimé : C:\Users\Almode\AppData\Roaming\Mozilla\Firefox\Profiles\usxntigx.default\extensions\{3d4d238c-9c48-47cd-a95c-53259acf9e56}
    Supprimé : C:\Users\Almode\AppData\Roaming\Mozilla\Firefox\Profiles\usxntigx.default\extensions\{4daac69c-cba7-45e2-9bc8-1044483d3352}
    Supprimé : C:\9f07592d6fafae8791f20e2cca94fe16
    Supprimé : C:\Windows\95431C66CF9A4913BFFF6050785AFB65.TMP
    Supprimé : C:\Users\Almode\AppData\Roaming\cacaoweb

    ¤


    ¤ Hosts

    ::1 localhost

    127.0.0.1 www.8minutedating.com
    127.0.0.1 whysohardx.com
    127.0.0.1 protectyourpc-11.com
    127.0.0.1 checkserverstatux.com
    127.0.0.1 xinmin.cn
    127.0.0.1 xy95.cn
    127.0.0.1 koralda.com
    127.0.0.1 weirden.com
    127.0.0.1 nanocloudcontroller.com
    127.0.0.1 coo0lnet.net

    ¤ Hosts Fix

    127.0.0.1 localhost



    ¤

    Disques externes : 145 Objets réattribués
    Disque Local : 10 Objets réattribués
    Utilisateurs : 1 Objets réattribués
    ProgramFiles : 76 Objets réattribués
    Music : 11 Objets réattribués
    Pictures : 9 Objets réattribués
    Videos : 0 Objets réattribués
    Downloads : 0 Objets réattribués
    Desktop : 2 Objets réattribués
    Links : 0 Objets réattribués
    Searches : 3 Objets réattribués
    Contacts : 0 Objets réattribués
    Saved Games : 0 Objets réattribués
    Favorites : 0 Objets réattribués
    Documents : 18 Objets réattribués
    Windows : 63 Objets réattribués
    StartMenu : 2 Objets réattribués
    Librairies : 0 Objets réattribués
    Quick Launch : 0 Objets réattribués
    %AppData% : 31 Objets réattribués

    ¤


    explorer.exe -> Processus redémarré

    Fin : 23:42:23

    ¤¤¤¤¤¤¤¤¤¤ ( EOF ) ¤¤¤¤¤¤¤¤¤¤
    17 Août 2011 00:02:12

    super refais un scan OTL dans les memes conditions stp
    17 Août 2011 10:58:25

    ATTENTION !!! : Script personnalisé pour cette machine uniquement , ne pas reproduire!!

    si tu as XP => double clique
    si tu as Vista ou windows 7 => clic droit "executer en tant que...."


    sur OTL.exe pour le lancer.


    Copie la liste qui se trouve en gras ci-dessous,

    colle-la dans la zone sous "Personnalisation" :


    :p rocesses
    explorer.exe
    iexplore.exe
    firefox.exe
    msnmsgr.exe
    Teatimer.exe

    :o TL
    IE - HKU\S-1-5-21-4271468853-1555334626-1238916866-1000\..\URLSearchHook: {3d4d238c-9c48-47cd-a95c-53259acf9e56} - Reg Error: Key error. File not found
    IE - HKU\S-1-5-21-4271468853-1555334626-1238916866-1000\..\URLSearchHook: {4daac69c-cba7-45e2-9bc8-1044483d3352} - Reg Error: Key error. File not found
    FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}:6.0.16
    FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}:6.0.19
    FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
    FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
    FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
    FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
    FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
    FF - prefs.js..extensions.enabledItems: {4daac69c-cba7-45e2-9bc8-1044483d3352}:3.2.5.2
    FF - prefs.js..extensions.enabledItems: {3d4d238c-9c48-47cd-a95c-53259acf9e56}:3.3.5.1
    FF - HKLM\Software\MozillaPlugins\@funwebproducts.com/Plugin: C:\Program Files\FunWebProducts\Installr\1.bin\NPFunWeb.dll File not found
    FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found
    FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
    [2010/04/02 21:50:57 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}
    [2010/04/04 20:25:12 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}
    [2010/04/22 13:07:13 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
    [2010/08/10 15:34:56 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
    [2010/11/07 13:07:09 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
    [2010/12/23 12:54:15 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
    [2011/03/21 23:02:07 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
    O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {30F9B915-B755-4826-820B-08FBA6BD249D} - No CLSID value found.
    O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {5B291E6C-9A74-4034-971B-A4B007A0B315} - No CLSID value found.
    O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {B9E20919-FA55-471F-989B-B107BF8DE785} - No CLSID value found.
    O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {DE9C389F-3316-41A7-809B-AA305ED9D922} - No CLSID value found.
    O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
    O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {30F9B915-B755-4826-820B-08FBA6BD249D} - No CLSID value found.
    O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {5B291E6C-9A74-4034-971B-A4B007A0B315} - No CLSID value found.
    O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {B9E20919-FA55-471F-989B-B107BF8DE785} - No CLSID value found.
    O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {DE9C389F-3316-41A7-809B-AA305ED9D922} - No CLSID value found.
    O3 - HKU\S-1-5-21-4271468853-1555334626-1238916866-1000\..\Toolbar\WebBrowser: (no name) - {1392B8D2-5C05-419F-A8F6-B9F15A596612} - No CLSID value found.
    O3 - HKU\S-1-5-21-4271468853-1555334626-1238916866-1000\..\Toolbar\WebBrowser: (no name) - {5B291E6C-9A74-4034-971B-A4B007A0B315} - No CLSID value found.
    O3 - HKU\S-1-5-21-4271468853-1555334626-1238916866-1000\..\Toolbar\WebBrowser: (no name) - {B9E20919-FA55-471F-989B-B107BF8DE785} - No CLSID value found.
    O4 - HKU\S-1-5-21-4271468853-1555334626-1238916866-1000\..\Run: [] File not found
    O18 - Protocol\Handler\msdaipp - No CLSID value found
    O20 - Winlogon\Notify\permham: DllName - C:\Windows\system32\config\systemprofile\AppData\Local\permham.dll - File not found
    O29 - HKLM SecurityProviders - (mmkgjtwh.dll) - File not found

    :Reg
    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "NeroCheck"=-

    :commands
    [CLEARALLRESTOREPOINTS]
    [emptytemp]
    [start explorer]
    [reboot]


    Clique sur "Correction" pour lancer la suppression.


    Poste le rapport qui logiquement s'ouvrira tout seul en fin de travail appres le redemarrage.
    17 Août 2011 14:38:42

    All processes killed
    ========== PROCESSES ==========
    Process explorer.exe killed successfully!
    No active process named iexplore.exe was found!
    No active process named firefox.exe was found!
    No active process named msnmsgr.exe was found!
    No active process named Teatimer.exe was found!
    ========== OTL ==========
    Registry value HKEY_USERS\S-1-5-21-4271468853-1555334626-1238916866-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\{3d4d238c-9c48-47cd-a95c-53259acf9e56} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3d4d238c-9c48-47cd-a95c-53259acf9e56}\ not found.
    Registry value HKEY_USERS\S-1-5-21-4271468853-1555334626-1238916866-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\{4daac69c-cba7-45e2-9bc8-1044483d3352} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4daac69c-cba7-45e2-9bc8-1044483d3352}\ not found.
    Prefs.js: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}:6.0.16 removed from extensions.enabledItems
    Prefs.js: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}:6.0.19 removed from extensions.enabledItems
    Prefs.js: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20 removed from extensions.enabledItems
    Prefs.js: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21 removed from extensions.enabledItems
    Prefs.js: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22 removed from extensions.enabledItems
    Prefs.js: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23 removed from extensions.enabledItems
    Prefs.js: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24 removed from extensions.enabledItems
    Prefs.js: {4daac69c-cba7-45e2-9bc8-1044483d3352}:3.2.5.2 removed from extensions.enabledItems
    Prefs.js: {3d4d238c-9c48-47cd-a95c-53259acf9e56}:3.3.5.1 removed from extensions.enabledItems
    Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@funwebproducts.com/Plugin\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=\ deleted successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\chrome\locale\zh-TW\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\chrome\locale\zh-TW folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\chrome\locale\zh-CN\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\chrome\locale\zh-CN folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\chrome\locale\sv-SE\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\chrome\locale\sv-SE folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\chrome\locale\ko-KR\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\chrome\locale\ko-KR folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\chrome\locale\ja-JP\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\chrome\locale\ja-JP folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\chrome\locale\it-IT\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\chrome\locale\it-IT folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\chrome\locale\fr-FR\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\chrome\locale\fr-FR folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\chrome\locale\es-ES\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\chrome\locale\es-ES folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\chrome\locale\en-US\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\chrome\locale\en-US folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\chrome\locale\de-DE\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\chrome\locale\de-DE folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\chrome\locale folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\chrome\content\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\chrome\content folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}\chrome folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}\chrome\locale\zh-TW\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}\chrome\locale\zh-TW folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}\chrome\locale\zh-CN\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}\chrome\locale\zh-CN folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}\chrome\locale\sv-SE\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}\chrome\locale\sv-SE folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}\chrome\locale\ko-KR\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}\chrome\locale\ko-KR folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}\chrome\locale\ja-JP\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}\chrome\locale\ja-JP folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}\chrome\locale\it-IT\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}\chrome\locale\it-IT folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}\chrome\locale\fr-FR\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}\chrome\locale\fr-FR folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}\chrome\locale\es-ES\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}\chrome\locale\es-ES folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}\chrome\locale\en-US\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}\chrome\locale\en-US folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}\chrome\locale\de-DE\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}\chrome\locale\de-DE folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}\chrome\locale folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}\chrome\content\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}\chrome\content folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}\chrome folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA} folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\zh-TW\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\zh-TW folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\zh-CN\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\zh-CN folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\sv-SE\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\sv-SE folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\ko-KR\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\ko-KR folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\ja-JP\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\ja-JP folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\it-IT\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\it-IT folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\fr-FR\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\fr-FR folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\es-ES\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\es-ES folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\en-US\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\en-US folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\de-DE\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale\de-DE folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\locale folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\content\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome\content folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\chrome folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}\chrome\locale\zh-TW\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}\chrome\locale\zh-TW folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}\chrome\locale\zh-CN\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}\chrome\locale\zh-CN folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}\chrome\locale\sv-SE\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}\chrome\locale\sv-SE folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}\chrome\locale\ko-KR\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}\chrome\locale\ko-KR folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}\chrome\locale\ja-JP\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}\chrome\locale\ja-JP folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}\chrome\locale\it-IT\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}\chrome\locale\it-IT folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}\chrome\locale\fr-FR\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}\chrome\locale\fr-FR folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}\chrome\locale\es-ES\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}\chrome\locale\es-ES folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}\chrome\locale\en-US\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}\chrome\locale\en-US folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}\chrome\locale\de-DE\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}\chrome\locale\de-DE folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}\chrome\locale folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}\chrome\content\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}\chrome\content folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}\chrome folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\zh-TW\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\zh-TW folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\zh-CN\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\zh-CN folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\sv-SE\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\sv-SE folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\ko-KR\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\ko-KR folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\ja-JP\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\ja-JP folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\it-IT\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\it-IT folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\fr-FR\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\fr-FR folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\es-ES\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\es-ES folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\en-US\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\en-US folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\de-DE\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\de-DE folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\content\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\content folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\chrome\locale\zh-TW\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\chrome\locale\zh-TW folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\chrome\locale\zh-CN\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\chrome\locale\zh-CN folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\chrome\locale\sv-SE\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\chrome\locale\sv-SE folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\chrome\locale\ko-KR\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\chrome\locale\ko-KR folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\chrome\locale\ja-JP\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\chrome\locale\ja-JP folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\chrome\locale\it-IT\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\chrome\locale\it-IT folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\chrome\locale\fr-FR\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\chrome\locale\fr-FR folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\chrome\locale\es-ES\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\chrome\locale\es-ES folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\chrome\locale\en-US\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\chrome\locale\en-US folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\chrome\locale\de-DE\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\chrome\locale\de-DE folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\chrome\locale folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\chrome\content\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\chrome\content folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\chrome folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\zh-TW\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\zh-TW folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\zh-CN\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\zh-CN folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\sv-SE\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\sv-SE folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\ko-KR\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\ko-KR folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\ja-JP\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\ja-JP folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\it-IT\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\it-IT folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\fr-FR\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\fr-FR folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\es-ES\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\es-ES folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\en-US\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\en-US folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\de-DE\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\de-DE folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\content\ffjcext folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\content folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome folder moved successfully.
    C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} folder moved successfully.
    Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}\ not found.
    Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{5B291E6C-9A74-4034-971B-A4B007A0B315} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5B291E6C-9A74-4034-971B-A4B007A0B315}\ deleted successfully.
    Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{B9E20919-FA55-471F-989B-B107BF8DE785} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B9E20919-FA55-471F-989B-B107BF8DE785}\ not found.
    Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{DE9C389F-3316-41A7-809B-AA305ED9D922} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DE9C389F-3316-41A7-809B-AA305ED9D922}\ not found.
    Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found.
    Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{30F9B915-B755-4826-820B-08FBA6BD249D} not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}\ not found.
    Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{5B291E6C-9A74-4034-971B-A4B007A0B315} not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5B291E6C-9A74-4034-971B-A4B007A0B315}\ not found.
    Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{B9E20919-FA55-471F-989B-B107BF8DE785} not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B9E20919-FA55-471F-989B-B107BF8DE785}\ not found.
    Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{DE9C389F-3316-41A7-809B-AA305ED9D922} not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DE9C389F-3316-41A7-809B-AA305ED9D922}\ not found.
    Registry value HKEY_USERS\S-1-5-21-4271468853-1555334626-1238916866-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{1392B8D2-5C05-419F-A8F6-B9F15A596612} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1392B8D2-5C05-419F-A8F6-B9F15A596612}\ not found.
    Registry value HKEY_USERS\S-1-5-21-4271468853-1555334626-1238916866-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{5B291E6C-9A74-4034-971B-A4B007A0B315} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5B291E6C-9A74-4034-971B-A4B007A0B315}\ not found.
    Registry value HKEY_USERS\S-1-5-21-4271468853-1555334626-1238916866-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{B9E20919-FA55-471F-989B-B107BF8DE785} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B9E20919-FA55-471F-989B-B107BF8DE785}\ not found.
    Registry value HKEY_USERS\S-1-5-21-4271468853-1555334626-1238916866-1000\\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msdaipp\ deleted successfully.
    File Protocol\Handler\msdaipp - No CLSID value found not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\permham\ deleted successfully.
    Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\\SecurityProviders:mmkgjtwh.dll deleted successfully.
    ========== REGISTRY ==========
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\NeroCheck deleted successfully.
    ========== COMMANDS ==========


    [EMPTYTEMP]

    User: All Users

    User: Almode
    ->Temp folder emptied: 3263712 bytes
    ->Temporary Internet Files folder emptied: 10894990 bytes
    ->Java cache emptied: 4563692 bytes
    ->FireFox cache emptied: 91787913 bytes
    ->Google Chrome cache emptied: 390350753 bytes
    ->Apple Safari cache emptied: 0 bytes
    ->Flash cache emptied: 377349 bytes

    User: Default
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 33170 bytes
    ->Flash cache emptied: 56504 bytes

    User: Default User
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 0 bytes
    ->Flash cache emptied: 0 bytes

    User: Invité
    ->Temp folder emptied: 43568440 bytes
    ->Temporary Internet Files folder emptied: 79932438 bytes
    ->Java cache emptied: 0 bytes
    ->Google Chrome cache emptied: 95292846 bytes
    ->Flash cache emptied: 69738 bytes

    User: Public

    %systemdrive% .tmp files removed: 0 bytes
    %systemroot% .tmp files removed: 0 bytes
    %systemroot%\System32 .tmp files removed: 0 bytes
    %systemroot%\System32\drivers .tmp files removed: 0 bytes
    Windows Temp folder emptied: 33372 bytes
    %systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
    RecycleBin emptied: 0 bytes

    Total Files Cleaned = 687,00 mb


    OTL by OldTimer - Version 3.2.26.4 log created on 08172011_143232

    Files\Folders moved on Reboot...

    Registry entries deleted on Reboot...
    18 Août 2011 14:04:40

    salut tes navigateurs doivent aller mieux...

    il faudra fermer toutes les fenêtres et applications lors de l'installation et de l'analyse.



    Télécharge ici :

    http://www.malwarebytes.org/mbam.php Malwarebytes

    Installe le ( choisis bien "francais" ; ne modifie pas les paramètres d'installe ) et mets le à jour

    ( cela dit, il est très simple d'utilisation ).

    relance malwarebytes en suivant scrupuleusement ces consignes :

    ! Déconnecte toi et ferme toutes applications en cours !

    Lance Malwarebyte's .

    Fais un examen dit "Complet" .

    Laisse le programme travailler ( et ne rien faire d'autre avec le PC durant le scan ).
    à la fin tu cliques sur "résultat" .
    Vérifie que tous les objets infectés soient validés, puis clique sur " suppression" .

    Note : si il faut redémarrer ton PC pour finir le nettoyage, fais le !


    Poste le rapport sauvegardé après la suppression des objets infectés (dans l'onglet "rapport/log"de Malwarebytes, le dernier en date)
    19 Août 2011 15:10:55

    Malwarebytes' Anti-Malware 1.51.1.1800
    www.malwarebytes.org

    Version de la base de données: 7506

    Windows 6.0.6002 Service Pack 2
    Internet Explorer 9.0.8112.16421

    19/08/2011 15:00:26
    mbam-log-2011-08-19 (15-00-26).txt

    Type d'examen: Examen complet (C:\|D:\|)
    Elément(s) analysé(s): 176155
    Temps écoulé: 1 heure(s), 24 minute(s), 20 seconde(s)

    Processus mémoire infecté(s): 0
    Module(s) mémoire infecté(s): 0
    Clé(s) du Registre infectée(s): 0
    Valeur(s) du Registre infectée(s): 0
    Elément(s) de données du Registre infecté(s): 0
    Dossier(s) infecté(s): 0
    Fichier(s) infecté(s): 8

    Processus mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Module(s) mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Clé(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Valeur(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Elément(s) de données du Registre infecté(s):
    (Aucun élément nuisible détecté)

    Dossier(s) infecté(s):
    (Aucun élément nuisible détecté)

    Fichier(s) infecté(s):
    c:\program files\ad-remover\quarantine\C\program files\funwebproducts\Installr\1.bin\f3ezsetp.dll.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
    c:\program files\ad-remover\quarantine\C\program files\funwebproducts\Installr\1.bin\f3plugin.dll.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
    c:\program files\ad-remover\quarantine\C\program files\funwebproducts\Installr\1.bin\npfunweb.dll.vir (PUP.FunWebProducts) -> Quarantined and deleted successfully.
    c:\Users\Almode\documents\CLE USB\Logiciel\removewga.exe (PUP.RemoveWGA) -> Quarantined and deleted successfully.
    c:\Users\Almode\downloads\vlcplayer.exe (Trojan.Dropper) -> Quarantined and deleted successfully.
    c:\Users\Almode\downloads\vlc_setup1.1.5-win32 (1).exe (Trojan.Dropper) -> Quarantined and deleted successfully.
    c:\Users\Almode\downloads\vlc_setup1.1.5-win32 (2).exe (Trojan.Dropper) -> Quarantined and deleted successfully.
    c:\Users\Almode\downloads\vlc_setup1.1.5-win32.exe (Trojan.Dropper) -> Quarantined and deleted successfully.
    19 Août 2011 15:47:10

    ok

    des soucis persistent ?
    19 Août 2011 17:08:18

    Euh non maitenant depuis 2/3 jour j'ai plus d'erreur d'écran bleu, merci beaucoup pour ton aide, mais par contre il y'a un autre soucis qui est venue et cela me pose problème.

    Je sais pas si je peux le poster ici mais bon.. Il y'a 3 jours lorsque que j'ai redémarrer mon ordi, mon icone d'internet en bas à droite s'affiche avec une croix rouge mais mon internet fonctionne correctement et je pense pas que c'est un virus, lorsque que je passe ma souris par dessus il y'a marquer " Statue de la connexion inconnu" et juste en bas"Échec de l’exécution du serveur", je comprend pas et lorsque que je fait clique droit/ centre Réseau et partage, la page prend du temps à s'afficher et quand sa s'affiche je peux pas cliquer c'est bloquer et aprés faut que je fasse alt+Crtl+suppr ect pour l’enlever... Pourrais tu m'aider stp ?
    19 Août 2011 21:02:48

    re

    essaie ceci :

    Dans démarrer > tous les programmes > accessoires, clic droit sur invite de commande et "executer en tant qu'administrateur"
    - Dans la nouvelle fenêtre, taper sfc /verifyonly puis entrée
    - Si il y a des erreurs, tapes sfc /scannow dans cette même fenêtre
    Puis tapez ceci
    netsh winsock reset

    Voila puis redémarrer le systéme. ^^
    19 Août 2011 21:49:58

    J'ai fait ce que tu as dit mais rien n'as changé malheureusement...
    19 Août 2011 21:52:06

    tu as essayé cette commande aussi ?

    netsh winsock reset
    20 Août 2011 21:12:27

    Oui
    20 Août 2011 21:17:09

    la connection est normale mise à part ca ou pas ?
    20 Août 2011 21:33:41

    Oui Oui tout est normale
    23 Février 2012 15:12:17

    Bonjour, Je suis a peut pret dans le meme cas sauf que je n'est pas les meme message d'erreur...
    Je dispose d'un pc portable HP compaq nx9030 , système Microsoft Win XP PRO Service Pack 3. Ordinateur Intel(R) Pentium(R)M processor 1.60GHz , 1.60GHz480Mo de ram.
    Depuis une semaine j'ai un problème j'ai allumé mon pc , windows s'ouvre charge et la m'envoi un msg d'erreur , un rapport d'erreur qui me dit
    c:\DOCUME~1\Fred\LOCALS~1\Temp\WER247b.dir00\Mini0 21412-01.dmp
    c:\DOCUME~1\Fred\LOCALS~1\Temp\WER247b.dir00\dir00 \sysdata.xml
    Et apres j'ai un écran bleu avec marquer probleme de driver irql not less or equal .... J'ai déja fait des test des barrete sa ne vient pas de sa, ni du ventillo. Mes Dump donne sa :==================================================
    Dump File : Mini021912-01.dmp
    Crash Time : 19/02/2012 19:20:35
    Bug Check String : DRIVER_IRQL_NOT_LESS_OR_EQUAL
    Bug Check Code : 0x100000d1
    Parameter 1 : 0x0000000c
    Parameter 2 : 0x0000000d
    Parameter 3 : 0x00000001
    Parameter 4 : 0xf73905f7
    Caused By Driver : atapi.sys
    Caused By Address : atapi.sys+85f7
    File Description : IDE/ATAPI Port Driver
    Product Name : Microsoft® Windows® Operating System
    Company : Microsoft Corporation
    File Version : 5.1.2600.5512 (xpsp.080413-2108)
    Processor : 32-bit
    Crash Address : atapi.sys+85f7
    Stack Address 1 : atapi.sys+3b93
    Stack Address 2 : atapi.sys+614b
    Stack Address 3 : ntoskrnl.exe+36ed
    Computer Name :
    Full Path : C:\WINDOWS\MiniDump\Mini021912-01.dmp
    Processors Count : 1
    Major Version : 15
    Minor Version : 2600
    Dump File Size : 98 304
    ==================================================

    ==================================================
    Dump File : Mini021812-01.dmp
    Crash Time : 18/02/2012 16:50:00
    Bug Check String : DRIVER_IRQL_NOT_LESS_OR_EQUAL
    Bug Check Code : 0x100000d1
    Parameter 1 : 0x007600c1
    Parameter 2 : 0x0000000d
    Parameter 3 : 0x00000000
    Parameter 4 : 0xf738dd23
    Caused By Driver : atapi.sys
    Caused By Address : atapi.sys+5d23
    File Description : IDE/ATAPI Port Driver
    Product Name : Microsoft® Windows® Operating System
    Company : Microsoft Corporation
    File Version : 5.1.2600.5512 (xpsp.080413-2108)
    Processor : 32-bit
    Crash Address : atapi.sys+5d23
    Stack Address 1 : atapi.sys+85ee
    Stack Address 2 : atapi.sys+3b93
    Stack Address 3 : atapi.sys+614b
    Computer Name :
    Full Path : C:\WINDOWS\MiniDump\Mini021812-01.dmp
    Processors Count : 1
    Major Version : 15
    Minor Version : 2600
    Dump File Size : 98 304
    ==================================================

    ==================================================
    Dump File : Mini021412-03.dmp
    Crash Time : 14/02/2012 18:37:50
    Bug Check String : DRIVER_IRQL_NOT_LESS_OR_EQUAL
    Bug Check Code : 0x100000d1
    Parameter 1 : 0x97824533
    Parameter 2 : 0x0000000d
    Parameter 3 : 0x00000000
    Parameter 4 : 0xf74ce021
    Caused By Driver : atapi.sys
    Caused By Address : atapi.sys+6021
    File Description : IDE/ATAPI Port Driver
    Product Name : Microsoft® Windows® Operating System
    Company : Microsoft Corporation
    File Version : 5.1.2600.5512 (xpsp.080413-2108)
    Processor : 32-bit
    Crash Address : atapi.sys+6021
    Stack Address 1 : ntoskrnl.exe+36ed
    Stack Address 2 : atapi.sys+707f
    Stack Address 3 : atapi.sys+7a6a
    Computer Name :
    Full Path : C:\WINDOWS\MiniDump\Mini021412-03.dmp
    Processors Count : 1
    Major Version : 15
    Minor Version : 2600
    Dump File Size : 98 304
    ==================================================

    ==================================================
    Dump File : Mini021412-02.dmp
    Crash Time : 14/02/2012 13:05:17
    Bug Check String : DRIVER_IRQL_NOT_LESS_OR_EQUAL
    Bug Check Code : 0x100000d1
    Parameter 1 : 0x0000000c
    Parameter 2 : 0x0000000d
    Parameter 3 : 0x00000001
    Parameter 4 : 0xf74d05f7
    Caused By Driver : atapi.sys
    Caused By Address : atapi.sys+85f7
    File Description : IDE/ATAPI Port Driver
    Product Name : Microsoft® Windows® Operating System
    Company : Microsoft Corporation
    File Version : 5.1.2600.5512 (xpsp.080413-2108)
    Processor : 32-bit
    Crash Address : atapi.sys+85f7
    Stack Address 1 : atapi.sys+3b93
    Stack Address 2 : atapi.sys+614b
    Stack Address 3 : ntoskrnl.exe+36ed
    Computer Name :
    Full Path : C:\WINDOWS\MiniDump\Mini021412-02.dmp
    Processors Count : 1
    Major Version : 15
    Minor Version : 2600
    Dump File Size : 98 304
    ==================================================

    ==================================================
    Dump File : Mini021412-01.dmp
    Crash Time : 14/02/2012 12:42:08
    Bug Check String : DRIVER_IRQL_NOT_LESS_OR_EQUAL
    Bug Check Code : 0x100000d1
    Parameter 1 : 0x80020267
    Parameter 2 : 0x0000000d
    Parameter 3 : 0x00000000
    Parameter 4 : 0xf74cdd23
    Caused By Driver : atapi.sys
    Caused By Address : atapi.sys+5d23
    File Description : IDE/ATAPI Port Driver
    Product Name : Microsoft® Windows® Operating System
    Company : Microsoft Corporation
    File Version : 5.1.2600.5512 (xpsp.080413-2108)
    Processor : 32-bit
    Crash Address : atapi.sys+5d23
    Stack Address 1 : atapi.sys+85ee
    Stack Address 2 : atapi.sys+3b93
    Stack Address 3 : atapi.sys+614b
    Computer Name :
    Full Path : C:\WINDOWS\MiniDump\Mini021412-01.dmp
    Processors Count : 1
    Major Version : 15
    Minor Version : 2600
    Dump File Size : 98 304
    ==================================================
    Auriez vous un petit idées SVP ?

    Cordialement Jordan
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS