FORUM D’ENTRAIDE INFORMATIQUE (FEI)
Site d’assistance et de sécurité informatique

Aide à la désinfection (pages publicitaires, moteur de recherche remplacé, redirections, virus...).
Règles du forum : Entraide concernant la désinfection et la sécurité informatique : en cas de publicités intempestives, pop-up, redirections, logiciels indésirables, ralentissements suspects, virus, etc.
Une désinfection complète vous sera assurée : désinfection, sécurisation, puis prévention.
Seuls les helpers (personnes qualifiées et formées à la désinfection) ainsi que le staff sont autorisés à apporter leur aide dans cette section.
Merci également de prendre connaissance de la charte générale du forum.
  • Avatar du membre
  • Avatar du membre
  • Avatar du membre
Avatar du membre
par ancf
#62671
Bonjour,

comme beaucoup je suis embêté (pour être poli) par QV06.

J'ai essayé plusieurs choses mais pour l'instant il reste bien inscrusté !
par Dori@n
#62688
Salut,

Télécharges cet utilitaire sur ton bureau-- AdwCleaner (d'Xplode)
Clic droit dessus et lances-le "en tant qu'administrateur"
Cliques sur "Scanner".

Cliques ensuite sur Nettoyer

Postes le rapport dans ton prochain message.

Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S0].txt


============================

Télécharges Junkware Removal Tool (le téléchargement va débuter automatiquement)
Enregistres le sur le bureau.
Fermes toutes les applications en cours.
Lances le (Sous Windows Vista / 7 ou 8, faites clic droit = Exécuter en tant qu'administrateur)
Une fois le logiciel ouvert, appuyes sur la touche Entrée.
Patientes le temps que l'outil travaille : le bureau va disparaître quelques instants, c'est tout à fait normal.
À la fin de l'analyse, un rapport nommé JRT.txt va s'ouvrir. Héberges-le sur http://www.cjoint.com/ et postes le lien obtenu dans ta prochaine réponse.
Avatar du membre
par ancf
#62689
voici le rapport :

# AdwCleaner v3.003 - Rapport créé le 13/09/2013 à 23:34:46
# Mis à jour le 07/09/2013 par Xplode
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
# Nom d'utilisateur : Cyrille - CYRILLE-PC
# Exécuté depuis : C:\Users\Cyrille\Desktop\Downloads\adwcleaner (1).exe
# Option : Nettoyer

***** [ Services ] *****


***** [ Fichiers / Dossiers ] *****

Dossier Supprimé : C:\ProgramData\eSafe
Dossier Supprimé : C:\Program Files (x86)\Nosibay
Dossier Supprimé : C:\Program Files (x86)\optimizer pro
Dossier Supprimé : C:\Users\Cyrille\AppData\Local\lollipop
Dossier Supprimé : C:\Users\Cyrille\AppData\Local\Temp\eIntaller
Dossier Supprimé : C:\Users\Cyrille\AppData\Roaming\Nosibay
Dossier Supprimé : C:\Users\Cyrille\Documents\optimizer pro
Fichier Supprimé : C:\Users\Cyrille\AppData\Roaming\Mozilla\Firefox\Profiles\9h6m1j9i.default\user.js
Fichier Supprimé : C:\Users\Cyrille\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage
Fichier Supprimé : C:\Users\Cyrille\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage-journal

***** [ Raccourcis ] *****

Raccourci Désinfecté : C:\Users\Public\Desktop\Mozilla Firefox.lnk
Raccourci Désinfecté : C:\Users\Cyrille\Desktop\Google Chrome.lnk
Raccourci Désinfecté : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
Raccourci Désinfecté : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Packard Bell - Security Support\Contact.lnk
Raccourci Désinfecté : C:\Users\Cyrille\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Raccourci Désinfecté : C:\Users\Cyrille\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
Raccourci Désinfecté : C:\Users\Cyrille\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
Raccourci Désinfecté : C:\Users\Cyrille\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Raccourci Désinfecté : C:\Users\Cyrille\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk
Raccourci Désinfecté : C:\Users\Cyrille\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk
Raccourci Désinfecté : C:\Users\Cyrille\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk

***** [ Registre ] *****

Valeur Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Bubble Dock]
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\Complitly.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
Clé Supprimée : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
Clé Supprimée : HKLM\SOFTWARE\Classes\Prod.cap
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASAPI32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASMANCS
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\IminentSetup_RASAPI32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\IminentSetup_RASMANCS
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Clé Supprimée : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_pour_format-factory_RASAPI32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_pour_format-factory_RASMANCS
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{23AF19F7-1D5B-442C-B14C-3D1081953C94}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{23AF19F7-1D5B-442C-B14C-3D1081953C94}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{23AF19F7-1D5B-442C-B14C-3D1081953C94}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{23AF19F7-1D5B-442C-B14C-3D1081953C94}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Donnée Restaurée : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Donnée Restaurée : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command
Donnée Restaurée : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command
Clé Supprimée : HKCU\Software\APN PIP
Clé Supprimée : HKCU\Software\lollipop
Clé Supprimée : HKCU\Software\Nosibay
Clé Supprimée : HKCU\Software\PIP
Clé Supprimée : HKCU\Software\Softonic
Clé Supprimée : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Clé Supprimée : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Clé Supprimée : HKLM\Software\Iminent
Clé Supprimée : HKLM\Software\PIP
Clé Supprimée : HKLM\Software\qvo6Software
Clé Supprimée : HKLM\Software\SimplyGen
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4FFBB818-B13C-11E0-931D-B2664824019B}_is1
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP

***** [ Navigateurs ] *****

-\\ Internet Explorer v10.0.9200.16686

Paramètre Restauré : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Paramètre Restauré : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Paramètre Restauré : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Paramètre Restauré : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]

-\\ Mozilla Firefox v23.0.1 (fr)

[ Fichier : C:\Users\Cyrille\AppData\Roaming\Mozilla\Firefox\Profiles\9h6m1j9i.default\prefs.js ]

Ligne Supprimée : user_pref("browser.search.defaultenginename", "qvo6");
Ligne Supprimée : user_pref("browser.search.order.1", "qvo6");

-\\ Google Chrome v

[ Fichier : C:\Users\Cyrille\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Supprimée : homepage
Supprimée : search_url
Supprimée : keyword
Supprimée : urls_to_restore_on_startup

*************************

AdwCleaner[R0].txt - [14885 octets] - [13/09/2013 23:33:28]
AdwCleaner[S0].txt - [11582 octets] - [13/09/2013 23:34:46]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [11643 octets] ##########
par Dori@n
#62690
après m'avoir donné le rapport JRT, tu me feras ça:
  • Télécharge OTL sur ton bureau.
  • Fais un double clic sur l'icône pour le lancer. Vérifie que toutes les autres fenêtres sont fermées afin qu'il s'exécute sans interruption.
  • Quand la fenêtre apparaît, coche la case Tous les utilisateurs.
  • Sous Processus, Modules, Services, Pilotes, Registre: standard, Registre: approfondi coche Tous.
  • Coche également les cases Recherche Lop et Recherche Purity.
  • Dans la partie Personnalisation, colle ceci :

    HKCU\Software
    HKLM\Software
    HKCU\Software\Microsoft\Command Processor /s
    HKLM\Software\Microsoft\Command Processor /s
    %Homedrive%\*
    %Homedrive%\*.
    %Userprofile%\*
    %Userprofile%\*.
    %Allusersprofile%\*
    %Allusersprofile%\*.
    %LocalAppData%\*
    %LocalAppData%\*.
    %Userprofile%\Local Settings\Application Data\*
    %Userprofile%\Local Settings\Application Data\*.
    %programFiles%\*
    %programfiles%\Google\Desktop\Install /s
    %programFiles%\*.
    %Systemroot%\Installer\*.
    %Systemroot%\Temp\*.exe /s
    %systemroot%\system32\*.dll /lockedfiles
    %systemroot%\system32\*.exe /lockedfiles
    %systemroot%\system32\*.in*
    %systemroot%\Tasks\*
    %systemroot%\Tasks\*.
    %systemroot%\system32\Tasks\*
    %systemroot%\system32\Tasks\*.
    %systemroot%\system32\drivers\*.sy* /lockedfiles
    %systemroot%\system32\config\*.exe /s
    %Systemroot%\ServiceProfiles\*.exe /s
    %systemroot%\system32\*.sys
    dir %Homedrive%\* /S /A:L /C
    msconfig
    activex
    /md5start
    explorer.exe
    winlogon.exe
    wininit.exe
    volsnap.sys
    atapi.sys
    ndis.sys
    cdrom.sys
    i8042prt.sys
    iastor.sys
    tdx.sys
    netbt.sys
    afd.sys
    /md5stop
    netsvcs
    safebootminimal
    safebootnetwork
    CREATERESTOREPOINT
  • Clique sur le bouton Analyse. L'analyse ne va pas durer longtemps.
  • Quand l'analyse est terminée, deux fenêtres du Bloc-notes vont s'ouvrir. OTL.Txt et Extras.Txt. Ces fichiers sont sauvegardés au même endroit que OTL.
  • Héberge-les, comme ceci.
Avatar du membre
par ancf
#62693
Je m'étais arrêté a ton trait

voici le rapport JRT, je fais OTL ensuite :

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.1 (09.15.2013:1)
OS: Windows 7 Home Premium x64
Ran by Admin on 19/09/2013 at 17:41:00,87
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-3763821033-858617334-2237367008-1002\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\dsiteproducts
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\conduit
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Toolbar.CT3307695
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}



~~~ Files

Successfully deleted: [File] C:\Windows\Tasks\digitalsite.job
Successfully deleted: [File] "C:\end"
Successfully disinfected: [Shortcut] C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
Successfully disinfected: [Shortcut] C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Successfully disinfected: [Shortcut] C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk
Successfully disinfected: [Shortcut] C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk
Successfully disinfected: [Shortcut] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
Successfully disinfected: [Shortcut] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Packard Bell - Security Support\Contact.lnk
Successfully disinfected: [Shortcut] C:\Users\Admin\AppData\Roaming\microsoft\windows\start menu\Programs\Internet Explorer.lnk
Successfully disinfected: [Shortcut] C:\Users\Admin\AppData\Roaming\microsoft\windows\start menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
Successfully disinfected: [Shortcut] C:\Users\Public\Desktop\Google Chrome.lnk



~~~ Folders

Successfully deleted: [Folder] "C:\Users\Admin\AppData\Roaming\digitalsite"
Successfully deleted: [Folder] "C:\Program Files (x86)\conduit"
Successfully deleted: [Folder] "C:\Program Files (x86)\nosibay"
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{123B9B16-FCAA-4710-B3D5-E50B2E711F50}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{59F27A02-89D0-4113-BCC9-17B8A144FFE9}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{71B44FBC-6D98-4292-9877-C1D6951546D2}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{95699F97-C093-4434-8789-CF8F35C0CFA2}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{E4CA7ED7-8FDE-4B32-A60B-438C6ED45D34}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{FC099E91-7F85-45A1-9434-4B70A91F2D18}



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 19/09/2013 at 17:48:11,21
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
par Dori@n
#62711
Ce script va cibler certains éléments à supprimer :

• Lance OTL.
• Copie/colle dans la zone "Personnalisation" de OTL le script en qui est indiqué ci-dessous :


:OTL
PRC - [2013/09/12 23:29:11 | 000,342,592 | ---- | M] (Woodtale Technology Inc) -- C:\Users\Cyrille\AppData\Local\DProtect\DProtectSvc.exe
PRC - [2013/02/05 17:48:44 | 000,272,248 | ---- | M] (McAfee, Inc.) -- C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe
PRC - [2012/02/10 11:28:06 | 000,240,408 | ---- | M] (Microsoft Corporation.) -- C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.EXE
MOD - [2013/09/12 23:29:11 | 000,506,944 | ---- | M] () -- C:\Users\Cyrille\AppData\Local\DProtect\eBP.dll
MOD - [2013/09/12 23:29:11 | 000,062,016 | ---- | M] () -- C:\Users\Cyrille\AppData\Local\DProtect\eBPSD.dll
MOD - [2013/02/05 17:48:44 | 000,272,248 | ---- | M] (McAfee, Inc.) -- C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe
SRV - [2013/09/12 23:29:11 | 000,342,592 | ---- | M] (Woodtale Technology Inc) [Auto | Running] -- C:\Users\Cyrille\AppData\Local\DProtect\DProtectSvc.exe -- (DPService)
SRV - [2012/02/10 11:28:06 | 000,240,408 | ---- | M] (Microsoft Corporation.) [On_Demand | Running] -- C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.EXE -- (BBUpdate)
SRV - [2012/02/10 11:28:06 | 000,193,816 | ---- | M] (Microsoft Corporation.) [Auto | Stopped] -- C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.EXE -- (BBSvc)
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.qvo6.com/?utm_source=butm_me ... 1379585359 b[Pays - ]/b
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.qvo6.com/?utm_source=butm_me ... 1379585359 b[Pays - ]/b
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
IE - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
IE - HKU\S-1-5-21-3763821033-858617334-2237367008-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.qvo6.com/?utm_source=butm_me ... 1379155005 b[Pays - ]/b
IE - HKU\S-1-5-21-3763821033-858617334-2237367008-1000\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: URL = http://search.qvo6.com/web/?utm_source= ... 1379155005 b[Pays - ]/b
IE - HKU\S-1-5-21-3763821033-858617334-2237367008-1000\..\SearchScopes\{844BF0C5-95F3-4464-86E5-5D49DA5D9383}: URL = http://search.conduit.com/ResultsExt.as ... 713325UM=3 b[Pays NL - 195.78.120.88]/b
IE - HKU\S-1-5-21-3763821033-858617334-2237367008-1002\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
FF - HKLM\Software\MozillaPlugins\@mcafee.com/McAfeeMssPlugin: C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll (McAfee, Inc.)
CHR - default_search_provider: qvo6 (Enabled)
CHR - default_search_provider: search_url = http://search.qvo6.com/web/?utm_source= ... earchTerms} b[Pays - ]/b
CHR - homepage: http://www.qvo6.com/?utm_source=butm_me ... 1379607024 b[Pays - ]/b
CHR - plugin: McAfee Security Scanner + (Enabled) = C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll
CHR - Extension: 01NET.com V1 = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\biahaobfpkgeiomkihcdgknebbhadonc\10.19.2.5_0\
CHR - plugin: Mailocash (Enabled) = C:\Program Files (x86)\Mailocash\np_mc_ns_invoke_helper_Win32.dll
O2:64bit: - BHO: (Mailocash Information) - {5C3FF33E-6686-49f1-B4DB-8D24CD1FCF6F} - C:\Program Files (x86)\Mailocash\x64\MailoramaBHO_Win64.dll ()
O2 - BHO: (MSS+ Identifier) - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files (x86)\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll (McAfee, Inc.)
O2 - BHO: (Bubble Dock SurfMatch) - {23AF19F7-1D5B-442c-B14C-3D1081953C94} - C:\Program Files (x86)\Nosibay\Bubble Dock\extensions\axSurfMatch.dll File not found
O2 - BHO: (Mailocash Information) - {5C3FF33E-6686-49f1-B4DB-8D24CD1FCF6F} - C:\Program Files (x86)\Mailocash\MailoramaBHO_Win32.dll ()
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BingExt.dll (Microsoft Corporation.)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4 - HKU\S-1-5-21-3763821033-858617334-2237367008-1000..\Run: [ConduitFloatingPlugin_biahaobfpkgeiomkihcdgknebbhadonc] C:\Windows\SysWOW64\Rundll32.exe C:\Program Files (x86)\Conduit\CT3307695\plugins\TBVerifier.dll,RunConduitFloatingPlugin biahaobfpkgeiomkihcdgknebbhadonc File not found
O20 - AppInit_DLLs: (C:\Users\Cyrille\AppData\Local\DProtect\eBP.dll) - C:\Users\Cyrille\AppData\Local\DProtect\eBP.dll ()
O20 - AppInit_DLLs: (C:\Users\Cyrille\AppData\Local\DProtect\eBPSD.dll) - C:\Users\Cyrille\AppData\Local\DProtect\eBPSD.dll ()
[2011/04/02 19:18:26 | 000,000,000 | -H-D | M] -- C:\OEM
@Alternate Data Stream - 112 bytes - C:\ProgramData\TEMP:D1B5B4F1
:REG
[HKEY_CURRENT_USER\Software\MCAFEE]=-
[HKEY_LOCAL_MACHINE\Software\DProtect]=-
[HKEY_LOCAL_MACHINE\Software\mcafeeupdater]=-
:COMMANDS
[EMTYTEMP]
• Clique sur « Correction » et laisse l'outil travailler. Il est possible que l'ordinateur redémarre.
• Copie/colle la totalité du rapport dans ta prochaine réponse.
Avatar du membre
par ancf
#62725
========== OTL ==========
Process DProtectSvc.exe killed successfully!
Process SSScheduler.exe killed successfully!
Process SeaPort.EXE killed successfully!
Releasing module C:\Users\Cyrille\AppData\Local\DProtect\eBP.dll
File move failed. C:\Users\Cyrille\AppData\Local\DProtect\eBP.dll scheduled to be moved on reboot.
Releasing module C:\Users\Cyrille\AppData\Local\DProtect\eBPSD.dll
File move failed. C:\Users\Cyrille\AppData\Local\DProtect\eBPSD.dll scheduled to be moved on reboot.
Service DPService stopped successfully!
Service DPService deleted successfully!
File move failed. C:\Users\Cyrille\AppData\Local\DProtect\DProtectSvc.exe scheduled to be moved on reboot.
Service BBUpdate stopped successfully!
Service BBUpdate deleted successfully!
C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.EXE moved successfully.
Service BBSvc stopped successfully!
Service BBSvc deleted successfully!
C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.EXE moved successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
HKU\S-1-5-21-3763821033-858617334-2237367008-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-3763821033-858617334-2237367008-1000\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86}\ not found.
Registry key HKEY_USERS\S-1-5-21-3763821033-858617334-2237367008-1000\Software\Microsoft\Internet Explorer\SearchScopes\{844BF0C5-95F3-4464-86E5-5D49DA5D9383}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{844BF0C5-95F3-4464-86E5-5D49DA5D9383}\ not found.
HKEY_USERS\S-1-5-21-3763821033-858617334-2237367008-1002\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@mcafee.com/McAfeeMssPlugin\ deleted successfully.
C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll moved successfully.
Use Chrome's Settings page to remove the default_search_provider items.
Use Chrome's Settings page to remove the default_search_provider items.
Use Chrome's Settings page to change the HomePage.
File C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll not found.
File C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\biahaobfpkgeiomkihcdgknebbhadonc\10.19.2.5_0 not found.
C:\Program Files (x86)\Mailocash\np_mc_ns_invoke_helper_Win32.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}\ deleted successfully.
C:\Program Files (x86)\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{23AF19F7-1D5B-442c-B14C-3D1081953C94}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{23AF19F7-1D5B-442c-B14C-3D1081953C94}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C3FF33E-6686-49f1-B4DB-8D24CD1FCF6F}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C3FF33E-6686-49f1-B4DB-8D24CD1FCF6F}\ deleted successfully.
C:\Program Files (x86)\Mailocash\MailoramaBHO_Win32.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}\ deleted successfully.
C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BingExt.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8dcb7100-df86-4384-8842-8fa844297b3f}\ deleted successfully.
File C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BingExt.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_USERS\S-1-5-21-3763821033-858617334-2237367008-1000\Software\Microsoft\Windows\CurrentVersion\Run\\ConduitFloatingPlugin_biahaobfpkgeiomkihcdgknebbhadonc deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:C:\Users\Cyrille\AppData\Local\DProtect\eBP.dll deleted successfully.
File move failed. C:\Users\Cyrille\AppData\Local\DProtect\eBP.dll scheduled to be moved on reboot.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:C:\Users\Cyrille\AppData\Local\DProtect\eBPSD.dll deleted successfully.
File move failed. C:\Users\Cyrille\AppData\Local\DProtect\eBPSD.dll scheduled to be moved on reboot.
C:\OEM\TASKKILLER folder moved successfully.
C:\OEM\Registration folder moved successfully.
C:\OEM\Preload\utility\setEventLog folder moved successfully.
C:\OEM\Preload\utility\OOBEOffer folder moved successfully.
C:\OEM\Preload\utility folder moved successfully.
C:\OEM\Preload\SetScreenSaverLog folder moved successfully.
C:\OEM\Preload\SetLocalizedName_log folder moved successfully.
C:\OEM\Preload\RunCmdLog folder moved successfully.
C:\OEM\Preload\PatchLog\CodeTracer folder moved successfully.
C:\OEM\Preload\PatchLog folder moved successfully.
C:\OEM\Preload\OEM\Recovery\HPartition folder moved successfully.
C:\OEM\Preload\OEM\Recovery\4 folder moved successfully.
C:\OEM\Preload\OEM\Recovery\3 folder moved successfully.
C:\OEM\Preload\OEM\Recovery\2 folder moved successfully.
C:\OEM\Preload\OEM\Recovery\1 folder moved successfully.
C:\OEM\Preload\OEM\Recovery folder moved successfully.
C:\OEM\Preload\OEM folder moved successfully.
C:\OEM\Preload\MSDRV folder moved successfully.
C:\OEM\Preload\DeployWinRE_log folder moved successfully.
C:\OEM\Preload\Command\WinSAT\DataStore folder moved successfully.
C:\OEM\Preload\Command\WinSAT folder moved successfully.
C:\OEM\Preload\Command\PAP folder moved successfully.
C:\OEM\Preload\Command\mui folder moved successfully.
C:\OEM\Preload\Command\AlaunchX\Resource\Packardbell\Backgrounds folder moved successfully.
C:\OEM\Preload\Command\AlaunchX\Resource\Packardbell folder moved successfully.
C:\OEM\Preload\Command\AlaunchX\Resource\Gateway\Backgrounds folder moved successfully.
C:\OEM\Preload\Command\AlaunchX\Resource\Gateway folder moved successfully.
C:\OEM\Preload\Command\AlaunchX\Resource\eMachines\Backgrounds folder moved successfully.
C:\OEM\Preload\Command\AlaunchX\Resource\eMachines folder moved successfully.
C:\OEM\Preload\Command\AlaunchX\Resource\acer\Backgrounds folder moved successfully.
C:\OEM\Preload\Command\AlaunchX\Resource\acer folder moved successfully.
C:\OEM\Preload\Command\AlaunchX\Resource folder moved successfully.
C:\OEM\Preload\Command\AlaunchX\CodeTracer\setEventLog folder moved successfully.
C:\OEM\Preload\Command\AlaunchX\CodeTracer\AppInRun folder moved successfully.
C:\OEM\Preload\Command\AlaunchX\CodeTracer folder moved successfully.
C:\OEM\Preload\Command\AlaunchX folder moved successfully.
C:\OEM\Preload\Command folder moved successfully.
C:\OEM\Preload\Autorun\SET\Wallpaper folder moved successfully.
C:\OEM\Preload\Autorun\SET\Packard Bell screen saver folder moved successfully.
C:\OEM\Preload\Autorun\SET folder moved successfully.
C:\OEM\Preload\Autorun\GUI\PackardBell InfoCentre\SV folder moved successfully.
C:\OEM\Preload\Autorun\GUI\PackardBell InfoCentre\RU folder moved successfully.
C:\OEM\Preload\Autorun\GUI\PackardBell InfoCentre\PT folder moved successfully.
C:\OEM\Preload\Autorun\GUI\PackardBell InfoCentre\PL folder moved successfully.
C:\OEM\Preload\Autorun\GUI\PackardBell InfoCentre\NO folder moved successfully.
C:\OEM\Preload\Autorun\GUI\PackardBell InfoCentre\NL folder moved successfully.
C:\OEM\Preload\Autorun\GUI\PackardBell InfoCentre\IT folder moved successfully.
C:\OEM\Preload\Autorun\GUI\PackardBell InfoCentre\FR folder moved successfully.
C:\OEM\Preload\Autorun\GUI\PackardBell InfoCentre\FI folder moved successfully.
C:\OEM\Preload\Autorun\GUI\PackardBell InfoCentre\ES folder moved successfully.
C:\OEM\Preload\Autorun\GUI\PackardBell InfoCentre\EN folder moved successfully.
C:\OEM\Preload\Autorun\GUI\PackardBell InfoCentre\DE folder moved successfully.
C:\OEM\Preload\Autorun\GUI\PackardBell InfoCentre\DA folder moved successfully.
C:\OEM\Preload\Autorun\GUI\PackardBell InfoCentre folder moved successfully.
C:\OEM\Preload\Autorun\GUI\Packard Bell Packard Bell Quick Start Guide\TR folder moved successfully.
C:\OEM\Preload\Autorun\GUI\Packard Bell Packard Bell Quick Start Guide\SV folder moved successfully.
C:\OEM\Preload\Autorun\GUI\Packard Bell Packard Bell Quick Start Guide\RU folder moved successfully.
C:\OEM\Preload\Autorun\GUI\Packard Bell Packard Bell Quick Start Guide\RO folder moved successfully.
C:\OEM\Preload\Autorun\GUI\Packard Bell Packard Bell Quick Start Guide\PT folder moved successfully.
C:\OEM\Preload\Autorun\GUI\Packard Bell Packard Bell Quick Start Guide\PL folder moved successfully.
C:\OEM\Preload\Autorun\GUI\Packard Bell Packard Bell Quick Start Guide\NO folder moved successfully.
C:\OEM\Preload\Autorun\GUI\Packard Bell Packard Bell Quick Start Guide\NL folder moved successfully.
C:\OEM\Preload\Autorun\GUI\Packard Bell Packard Bell Quick Start Guide\IT folder moved successfully.
C:\OEM\Preload\Autorun\GUI\Packard Bell Packard Bell Quick Start Guide\HU folder moved successfully.
C:\OEM\Preload\Autorun\GUI\Packard Bell Packard Bell Quick Start Guide\FR folder moved successfully.
C:\OEM\Preload\Autorun\GUI\Packard Bell Packard Bell Quick Start Guide\FI folder moved successfully.
C:\OEM\Preload\Autorun\GUI\Packard Bell Packard Bell Quick Start Guide\ES folder moved successfully.
C:\OEM\Preload\Autorun\GUI\Packard Bell Packard Bell Quick Start Guide\EN folder moved successfully.
C:\OEM\Preload\Autorun\GUI\Packard Bell Packard Bell Quick Start Guide\EL folder moved successfully.
C:\OEM\Preload\Autorun\GUI\Packard Bell Packard Bell Quick Start Guide\DE folder moved successfully.
C:\OEM\Preload\Autorun\GUI\Packard Bell Packard Bell Quick Start Guide\DA folder moved successfully.
C:\OEM\Preload\Autorun\GUI\Packard Bell Packard Bell Quick Start Guide\CS folder moved successfully.
C:\OEM\Preload\Autorun\GUI\Packard Bell Packard Bell Quick Start Guide\AR folder moved successfully.
C:\OEM\Preload\Autorun\GUI\Packard Bell Packard Bell Quick Start Guide folder moved successfully.
C:\OEM\Preload\Autorun\GUI folder moved successfully.
C:\OEM\Preload\Autorun\DRV\Realtek Audio Generic Driver\WDM folder moved successfully.
C:\OEM\Preload\Autorun\DRV\Realtek Audio Generic Driver\Vista64 folder moved successfully.
C:\OEM\Preload\Autorun\DRV\Realtek Audio Generic Driver\Vista folder moved successfully.
C:\OEM\Preload\Autorun\DRV\Realtek Audio Generic Driver\MSHDQFE\Win2K_XP\us folder moved successfully.
C:\OEM\Preload\Autorun\DRV\Realtek Audio Generic Driver\MSHDQFE\Win2K_XP folder moved successfully.
C:\OEM\Preload\Autorun\DRV\Realtek Audio Generic Driver\MSHDQFE\Win2K3\us folder moved successfully.
C:\OEM\Preload\Autorun\DRV\Realtek Audio Generic Driver\MSHDQFE\Win2K3 folder moved successfully.
C:\OEM\Preload\Autorun\DRV\Realtek Audio Generic Driver\MSHDQFE folder moved successfully.
C:\OEM\Preload\Autorun\DRV\Realtek Audio Generic Driver\Config folder moved successfully.
C:\OEM\Preload\Autorun\DRV\Realtek Audio Generic Driver folder moved successfully.
C:\OEM\Preload\Autorun\DRV\Pro-Nets Add on card 802.11 b g n (USB) folder moved successfully.
C:\OEM\Preload\Autorun\DRV\Pro-Nets Add on card 802.11 b g (USB) folder moved successfully.
C:\OEM\Preload\Autorun\DRV\nVidia VGA Generic Driver\HDAudio folder moved successfully.
C:\OEM\Preload\Autorun\DRV\nVidia VGA Generic Driver\Display folder moved successfully.
C:\OEM\Preload\Autorun\DRV\nVidia VGA Generic Driver folder moved successfully.
C:\OEM\Preload\Autorun\DRV\nVidia Chipset Generic Driver\SMU folder moved successfully.
C:\OEM\Preload\Autorun\DRV\nVidia Chipset Generic Driver\SMBUS folder moved successfully.
C:\OEM\Preload\Autorun\DRV\nVidia Chipset Generic Driver\IDE\WinVista64\sata_ide folder moved successfully.
C:\OEM\Preload\Autorun\DRV\nVidia Chipset Generic Driver\IDE\WinVista64\sataraid folder moved successfully.
C:\OEM\Preload\Autorun\DRV\nVidia Chipset Generic Driver\IDE\WinVista64\raidtool folder moved successfully.
C:\OEM\Preload\Autorun\DRV\nVidia Chipset Generic Driver\IDE\WinVista64 folder moved successfully.
C:\OEM\Preload\Autorun\DRV\nVidia Chipset Generic Driver\IDE\Win764\sata_ide folder moved successfully.
C:\OEM\Preload\Autorun\DRV\nVidia Chipset Generic Driver\IDE\Win764\sataraid folder moved successfully.
C:\OEM\Preload\Autorun\DRV\nVidia Chipset Generic Driver\IDE\Win764\raidtool folder moved successfully.
C:\OEM\Preload\Autorun\DRV\nVidia Chipset Generic Driver\IDE\Win764 folder moved successfully.
C:\OEM\Preload\Autorun\DRV\nVidia Chipset Generic Driver\IDE folder moved successfully.
C:\OEM\Preload\Autorun\DRV\nVidia Chipset Generic Driver\Ethernet\NAM folder moved successfully.
C:\OEM\Preload\Autorun\DRV\nVidia Chipset Generic Driver\Ethernet folder moved successfully.
C:\OEM\Preload\Autorun\DRV\nVidia Chipset Generic Driver\Awy folder moved successfully.
C:\OEM\Preload\Autorun\DRV\nVidia Chipset Generic Driver folder moved successfully.
C:\OEM\Preload\Autorun\DRV\LITE-ON Add on card 802.11 b g n (PCI-E) folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Drivers\WDM\HDMI\W764a folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Drivers\WDM\HDMI\W7 folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Drivers\WDM\HDMI\LH64a folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Drivers\WDM\HDMI\LH folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Drivers\WDM\HDMI folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Drivers\WDM folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Drivers\SBDrv\Filter\NB\W764A folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Drivers\SBDrv\Filter\NB\W7 folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Drivers\SBDrv\Filter\NB\LH64A folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Drivers\SBDrv\Filter\NB\LH folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Drivers\SBDrv\Filter\NB folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Drivers\SBDrv\Filter folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Drivers\SBDrv folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Drivers\Display\W7_INF\B_91789 folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Drivers\Display\W7_INF folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Drivers\Display\W76A_INF\B_91789 folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Drivers\Display\W76A_INF folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Drivers\Display folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Drivers folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\VC8RTx86\vcredist_x86 folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\VC8RTx86 folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\VC8RTx64\vcredist_x64\Program Files(64)\Microsoft Visual Studio 9.0\Vc7\WinSXS\AMD64 catalogs folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\VC8RTx64\vcredist_x64\Program Files(64)\Microsoft Visual Studio 9.0\Vc7\WinSXS folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\VC8RTx64\vcredist_x64\Program Files(64)\Microsoft Visual Studio 9.0\Vc7 folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\VC8RTx64\vcredist_x64\Program Files(64)\Microsoft Visual Studio 9.0 folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\VC8RTx64\vcredist_x64\Program Files(64) folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\VC8RTx64\vcredist_x64 folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\VC8RTx64 folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\EnableAero folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\DnDTranscode\DnD folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\DnDTranscode folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CIM\Win64 folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CIM\Win32 folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CIM folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Utility64 folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Utility folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Skins folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\MOM-InstallProxy folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Localization\All folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Localization folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Help\zh-CHT folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Help\zh-CHS folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Help\tr folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Help\th folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Help\sv folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Help\ru folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Help\pt-BR folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Help\pl folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Help\no folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Help\nl folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Help\ko folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Help\ja folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Help\it folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Help\hu folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Help\fr folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Help\fi folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Help\es folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Help\en-us folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Help\el folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Help\de folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Help\da folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Help\cs folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Help folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Graphics-Previews-Vista folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Graphics-Light folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Graphics-Full-New folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Graphics-Full-Existing folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Core-Static folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Core-PreInstall folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Core-Implementation folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC\Branding folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\CCC folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\AVIVO64 folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps\AVIVO folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages\Apps folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Packages folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Images folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Config folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Bin64 folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver\Bin folder moved successfully.
C:\OEM\Preload\Autorun\DRV\AMD VGA Generic Driver folder moved successfully.
C:\OEM\Preload\Autorun\DRV folder moved successfully.
C:\OEM\Preload\Autorun\AutorunX\psd files folder moved successfully.
C:\OEM\Preload\Autorun\AutorunX\PB Logo folder moved successfully.
C:\OEM\Preload\Autorun\AutorunX\HowToUse\_notes folder moved successfully.
C:\OEM\Preload\Autorun\AutorunX\HowToUse\Images folder moved successfully.
C:\OEM\Preload\Autorun\AutorunX\HowToUse folder moved successfully.
C:\OEM\Preload\Autorun\AutorunX folder moved successfully.
C:\OEM\Preload\Autorun\APP\Welcome Center folder moved successfully.
C:\OEM\Preload\Autorun\APP\Skype\SkypeSetup folder moved successfully.
C:\OEM\Preload\Autorun\APP\Skype folder moved successfully.
C:\OEM\Preload\Autorun\APP\PB Software Suite SE folder moved successfully.
C:\OEM\Preload\Autorun\APP\Packard Bell Updater folder moved successfully.
C:\OEM\Preload\Autorun\APP\Packard Bell Registration folder moved successfully.
C:\OEM\Preload\Autorun\APP\Packard Bell Recovery Management folder moved successfully.
C:\OEM\Preload\Autorun\APP\Packard Bell InfoCentre folder moved successfully.
C:\OEM\Preload\Autorun\APP\Packard Bell Identity Card folder moved successfully.
C:\OEM\Preload\Autorun\APP\Norton Online Backup folder moved successfully.
C:\OEM\Preload\Autorun\APP\Nero 9 Essentials PB Edition\Redist\Images\Bckg folder moved successfully.
C:\OEM\Preload\Autorun\APP\Nero 9 Essentials PB Edition\Redist\Images folder moved successfully.
C:\OEM\Preload\Autorun\APP\Nero 9 Essentials PB Edition\Redist folder moved successfully.
C:\OEM\Preload\Autorun\APP\Nero 9 Essentials PB Edition\Nero 9 Essentials\unit_tpi_vcredist-x86-2005_KB973544 folder moved successfully.
C:\OEM\Preload\Autorun\APP\Nero 9 Essentials PB Edition\Nero 9 Essentials\unit_tpi_NeroProductPatcher_85531 folder moved successfully.
C:\OEM\Preload\Autorun\APP\Nero 9 Essentials PB Edition\Nero 9 Essentials\unit_tpi_msxml-4 folder moved successfully.
C:\OEM\Preload\Autorun\APP\Nero 9 Essentials PB Edition\Nero 9 Essentials\unit_tpi_imagxpress-7.0.74.0 folder moved successfully.
C:\OEM\Preload\Autorun\APP\Nero 9 Essentials PB Edition\Nero 9 Essentials\unit_oem_15 folder moved successfully.
C:\OEM\Preload\Autorun\APP\Nero 9 Essentials PB Edition\Nero 9 Essentials\unit_hlp_63 folder moved successfully.
C:\OEM\Preload\Autorun\APP\Nero 9 Essentials PB Edition\Nero 9 Essentials\unit_hlp_6 folder moved successfully.
C:\OEM\Preload\Autorun\APP\Nero 9 Essentials PB Edition\Nero 9 Essentials\unit_hlp_57 folder moved successfully.
C:\OEM\Preload\Autorun\APP\Nero 9 Essentials PB Edition\Nero 9 Essentials\unit_hlp_20 folder moved successfully.
C:\OEM\Preload\Autorun\APP\Nero 9 Essentials PB Edition\Nero 9 Essentials\unit_hlp_19 folder moved successfully.
C:\OEM\Preload\Autorun\APP\Nero 9 Essentials PB Edition\Nero 9 Essentials\unit_hlp_15 folder moved successfully.
C:\OEM\Preload\Autorun\APP\Nero 9 Essentials PB Edition\Nero 9 Essentials\unit_app_76 folder moved successfully.
C:\OEM\Preload\Autorun\APP\Nero 9 Essentials PB Edition\Nero 9 Essentials\unit_app_63 folder moved successfully.
C:\OEM\Preload\Autorun\APP\Nero 9 Essentials PB Edition\Nero 9 Essentials\unit_app_61 folder moved successfully.
C:\OEM\Preload\Autorun\APP\Nero 9 Essentials PB Edition\Nero 9 Essentials\unit_app_6 folder moved successfully.
C:\OEM\Preload\Autorun\APP\Nero 9 Essentials PB Edition\Nero 9 Essentials\unit_app_57 folder moved successfully.
C:\OEM\Preload\Autorun\APP\Nero 9 Essentials PB Edition\Nero 9 Essentials\unit_app_30 folder moved successfully.
C:\OEM\Preload\Autorun\APP\Nero 9 Essentials PB Edition\Nero 9 Essentials\unit_app_20 folder moved successfully.
C:\OEM\Preload\Autorun\APP\Nero 9 Essentials PB Edition\Nero 9 Essentials\unit_app_19 folder moved successfully.
C:\OEM\Preload\Autorun\APP\Nero 9 Essentials PB Edition\Nero 9 Essentials\unit_app_15 folder moved successfully.
C:\OEM\Preload\Autorun\APP\Nero 9 Essentials PB Edition\Nero 9 Essentials folder moved successfully.
C:\OEM\Preload\Autorun\APP\Nero 9 Essentials PB Edition folder moved successfully.
C:\OEM\Preload\Autorun\APP\HotKey Utility v2.5 folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\OEM\Packages\en-us folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\OEM\Packages\default folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\OEM\Packages folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\OEM folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\SCHEMAS folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\JS folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\Images folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\CSS folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\DistribConfigs folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\zh-tw folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\zh-hk folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\zh-cn folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\vi-vn folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\uk-ua folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\tr-tr folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\th-th folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\sv-se folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\sr-latn-cs folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\sr-cyrl-cs folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\sl-si folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\sk-sk folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\ru-ru folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\ro-ro folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\pt-pt folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\pt-br folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\pl-pl folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\nl-nl folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\nl-be folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\nb-no folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\ms-my folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\lv-lv folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\lt-lt folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\ko-kr folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\ja-jp folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\it-it folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\id-id folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\hu-hu folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\hr-hr folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\fr-fr folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\fr-ch folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\fr-ca folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\fr-be folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\fr-145 folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\fi-fi folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\eu-es folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\et-ee folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\es-us folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\es-mx folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\es-es folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\es-cl folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\es-ar folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\es-419 folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\es-001 folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\en-za folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\en-us folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\en-sg folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\en-ph folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\en-nz folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\en-my folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\en-in folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\en-ie folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\en-id folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\en-gb folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\en-ca folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\en-au folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\en-145 folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\en-001 folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\el-gr folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\de-de folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\de-ch folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\de-at folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\da-dk folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\cs-cz folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\ca-es folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale\bg-bg folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata\Locale folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN\configdata folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN\GEN folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands\GEN folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService\brands folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar\InstallerService folder moved successfully.
C:\OEM\Preload\Autorun\APP\Bing Bar folder moved successfully.
C:\OEM\Preload\Autorun\APP\Adobe Reader v9.1 folder moved successfully.
C:\OEM\Preload\Autorun\APP\Adobe Flash Player folder moved successfully.
C:\OEM\Preload\Autorun\APP folder moved successfully.
C:\OEM\Preload\Autorun folder moved successfully.
C:\OEM\Preload folder moved successfully.
C:\OEM\MUI folder moved successfully.
C:\OEM\HOTFIX\KB981287 folder moved successfully.
C:\OEM\HOTFIX folder moved successfully.
C:\OEM\CHANGECOMPUTERICON\Packages\WindowsInformation folder moved successfully.
C:\OEM\CHANGECOMPUTERICON\Packages\DeviceInformation folder moved successfully.
C:\OEM\CHANGECOMPUTERICON\Packages folder moved successfully.
C:\OEM\CHANGECOMPUTERICON folder moved successfully.
C:\OEM folder moved successfully.
ADS C:\ProgramData\TEMP:D1B5B4F1 deleted successfully.
========== REGISTRY ==========
========== COMMANDS ==========
Error: Unable to interpret in the current context!

OTL by OldTimer - Version 3.2.69.0 log created on 09192013_194601

Files\Folders moved on Reboot...
C:\Users\Cyrille\AppData\Local\DProtect\eBP.dll moved successfully.
C:\Users\Cyrille\AppData\Local\DProtect\eBPSD.dll moved successfully.
C:\Users\Cyrille\AppData\Local\DProtect\DProtectSvc.exe moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
par Dori@n
#62726
C'est ok mais j'ai fait une faute de frappe dans mon script alors fais moi ça:
  • Télécharge SFTGC.exe : http://www.archive-host.com/link/646ee8 ... 933f83.exe
  • Enregistre le fichier sur le bureau.
  • Ouvre SFTGC.exe et patiente durant l'initialisation du logiciel.
  • Pour lancer le nettoyage, il suffit de cliquer sur Go.
  • À la fin du nettoyage, un rapport (présent sur le bureau) va s'ouvrir. Pour le poster, héberge-le comme ceci.
Canned speech issu de FEI : http://www.forum-entraide-informatique.com/

=====================

Ensuite, dis moi comment se comporte ton pc, as tu encore le problème?
Avatar du membre
par everoxa
#62777
pour moi c est bon, j ai scanner sur adwcleaner et nettoyé, j espere que ca ne reviendra pas

bon courage pour les autres

eve
Avatar du membre
par Nazbrok
#62783
Bonjour, ma mère s'est fait avoir ce soir en installant "Flash Player Pro" et donc qv06 et son ordinateur ne veut plus s'allumer correctement. Je ne peux meme plus acceder à son bureau (fichier introuvable)... Je ne sais plus quoi faire, vous auriez quelques conseils pour deux novices?
par Dori@n
#62787
@everoxa, @Nazbrok,

Merci à vous de créer votre propre sujet dans la section Désinfection en cliquant sur le bouton ci-dessous:
Image
Cdlt.


======


@ancf,


Réinitialises tes navigateurs:

Réinitialisation d'Internet Explorer:

Outils.
Options Internet.
Onglet Avancé.
Cliquer sur Réinitialiser


Note: Activer la case à cocher Supprimer les paramètres personnels si vous souhaitez également supprimer l'historique de navigation, les moteurs de recherche, les accélérateurs, les pages d'accueil, la protection contre le tracking et les données de filtrage ActiveX.

Lorsqu'Internet Explorer a terminé de réinitialiser les paramètres, cliquer sur Fermer dans la boîte de dialogue Réinitialiser les paramètres d'Internet Explorer.
Démarrer une nouvelle fois Internet Explorer.


======


réinitialiser firefox:

Dans la barre d'adresse, taper la ligne suivante et valider par Entrée :

aboutsupport

Cliquer sur le bouton Réinitialiser Firefox
Cliquer sur Réinitialiser Firefox pour confirmer le choix


Note : Lors de la réinitialisation, marque-pages, historique de navigation, mots de passe, cookies et informations auto-complétées de formulaires web seront conservés. Néanmoins, les extensions et les thèmes seront supprimés, les fenêtres et les onglets ouverts ainsi que les groupes d'onglets ne seront pas conservés et les préférences seront réinitialisées.


======


Fermes Google Chrome

Utilises le raccourci clavier Windows + R

Saisir le chemin vers le répertoire approprié dans la barre d'adresse :

%LOCALAPPDATA%\Google\Chrome\User Data\

Cliquer sur OK

Dans la fenêtre de répertoire qui s'ouvre, repérer le dossier intitulé "Default" et renommez-le "Backup default".

Fermer les fenêtres.

Ouvrir ensuite Google Chrome.

Un nouveau dossier "Default" est créé automatiquement à l'ouverture du navigateur.

Pour récupérer tes favoris:

Copies le fichier "Bookmarks.bak" du dossier "Backup default" puis colles le dans le nouveau dossier "Default".

Une fois le fichier déplacé, renommes-le "Bookmarks" pour finir le transfert.

Récupérer tes Favicons et tes mots de passe:

Dans le dossier backup default, tu as les fichiers Favicons et Login Data.

Les remettre aussi dans le nouveau dossier Default.

Fermes toutes les fenêtres, relances Google Chrome.


======


Puis refais moi un scan OTL:


[*]Fais un double clic sur l'icône pour le lancer. Vérifie que toutes les autres fenêtres sont fermées afin qu'il s'exécute sans interruption.
[*]Quand la fenêtre apparaît, coche la case Tous les utilisateurs.
[*]Sous Processus, Modules, Services, Pilotes, Registre: standard, Registre: approfondi coche Tous.
[*]Coche également les cases Recherche Lop et Recherche Purity.
[*]Dans la partie Personnalisation, colle ceci :






HKCU\Software
HKLM\Software
HKCU\Software\Microsoft\Command Processor /s
HKLM\Software\Microsoft\Command Processor /s
%Homedrive%\*
%Homedrive%\*.
%Userprofile%\*
%Userprofile%\*.
%Allusersprofile%\*
%Allusersprofile%\*.
%LocalAppData%\*
%LocalAppData%\*.
%Userprofile%\Local Settings\Application Data\*
%Userprofile%\Local Settings\Application Data\*.
%programFiles%\*
%programfiles%\Google\Desktop\Install /s
%programFiles%\*.
%Systemroot%\Installer\*.
%Systemroot%\Temp\*.exe /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\*.exe /lockedfiles
%systemroot%\system32\*.in*
%systemroot%\Tasks\*
%systemroot%\Tasks\*.
%systemroot%\system32\Tasks\*
%systemroot%\system32\Tasks\*.
%systemroot%\system32\drivers\*.sy* /lockedfiles
%systemroot%\system32\config\*.exe /s
%Systemroot%\ServiceProfiles\*.exe /s
%systemroot%\system32\*.sys
dir %Homedrive%\* /S /A:L /C
msconfig
activex
/md5start
explorer.exe
winlogon.exe
wininit.exe
volsnap.sys
atapi.sys
ndis.sys
cdrom.sys
i8042prt.sys
iastor.sys
tdx.sys
netbt.sys
afd.sys
/md5stop
netsvcs
safebootminimal
safebootnetwork
CREATERESTOREPOINT







[*]Clique sur le bouton Analyse. L'analyse ne va pas durer longtemps.
[*]Quand l'analyse est terminée, deux fenêtres du Bloc-notes vont s'ouvrir. OTL.Txt et Extras.Txt. Ces fichiers sont sauvegardés au même endroit que OTL.
[*]Héberge-les, comme ceci.
[/list]


======


Puis juste pour moi vérifier si tous les raccourcis des navigateurs sont bien désinfectés, fais moi ça:

  • Télécharge (en copiant/collant cette URL dans la barre d'adresse de ton navigateur) http://www.security-helpzone.com/Tools/ ... Module.exe sur ton bureau.
  • Lance-le puis patiente durant que le logiciel travaille.
  • À la fin, un rapport s'ouvrira (également sauvegardé sous C:\rapport.txt) : héberge-le comme ceci et poste le rapport.
Avatar du membre
par ancf
#62853
je ne pourrais pas tester avant dimanche car pour l'instant je ne suis pas chez moi.

Juste une question :

la ligne %LOCALAPPDATA%\Google\Chrome\User Data\

je la tape telle quelle ou il faut que je remplace %LOCALAPPDATA% ?
par Dori@n
#63683
Désinstalles McAfee.

Ce script va cibler certains éléments à supprimer :

• Lance OTL.
• Copie/colle dans la zone "Personnalisation" de OTL le script qui est indiqué ci-dessous :


:OTL
PRC - [2013/02/05 17:48:44 | 000,272,248 | ---- | M] (McAfee, Inc.) -- C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe
MOD - [2013/02/05 17:48:44 | 000,272,248 | ---- | M] (McAfee, Inc.) -- C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.qvo6.com/?utm_source=butm_me ... 1379585359 b[Pays - ]/b
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.qvo6.com/?utm_source=butm_me ... 1379585359 b[Pays - ]/b
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\bubbledock@nosibay.com: C:\Program Files (x86)\Nosibay\Bubble Dock\extensions\FFSurfMatch
FF - HKLM\Software\MozillaPlugins\@rentabiliweb.net/MailocashHelper: C:\Program Files (x86)\Mailocash\np_mc_ns_invoke_helper_Win32.dll File not found
64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\mrext@rentabiliweb.net: C:\PROGRAM FILES (X86)\MAILOCASH\MREXTJS [2011/07/30 22:43:05 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\mrext@rentabiliweb.net: C:\Program Files (x86)\Mailocash\mrextjs [2011/07/30 22:43:05 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\bubbledock@nosibay.com: C:\Program Files (x86)\Nosibay\Bubble Dock\extensions\FFSurfMatch
O2:64bit: - BHO: (Mailocash Information) - {5C3FF33E-6686-49f1-B4DB-8D24CD1FCF6F} - C:\Program Files (x86)\Mailocash\x64\MailoramaBHO_Win64.dll ()
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
[2013/09/19 19:46:19 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mailocash
:REG
[-HKEY_LOCAL_MACHINE\Software\DProtect]
:COMMANDS
[EMPTYTEMP]
• Clique sur « Correction » et laisse l'outil travailler. Il est possible que l'ordinateur redémarre.
• Copie/colle la totalité du rapport dans ta prochaine réponse.
Avatar du membre
par ancf
#63776
ça m'a l'air d'être bon.

tu crois que c'est utile que je fasse la dernière étape que tu m'indiques ?
Avatar du membre
par 2011N2
#65797
ImageOù en-est votre problème ?

Deux solutions,
  • Votre problème est résolu, dans ce cas pensez à nous en faire part.
  • Votre problème est toujours d'actualité, merci de nous renseigner sur ce qui ne va pas, et donner des nouvelles régulièrement.


    À bientôt sur FEI !
Avatar du membre
par 2011N2
#66725
Image Bonjour,

Nous n'avons plus de nouvelle de l'auteur de ce sujet depuis plus de 10 jours. Nous considérons donc ce problème comme résolu ou abandonné par son auteur. La prochaine fois, merci de nous tenir au courant de l'évolution de votre problème, ou à faire un UP régulièrement !

Ce sujet est verrouillé, si vous souhaitez le reprendre, merci de contacter par message privé un membre de l'équipe de modération du forum.

À bientôt sur FEI !

Bonjour, Est-ce que l'un d'entre vous aurait un &[…]

Gestion des Pare-feu.

Bonjour, J'ai un petit réseau de 3 PC conn[…]

Hi all members

Hello. As far as I know, tomb of the mask is an […]

Configurez la redirection de port sur votre Freebo[…]